Upgrade socket.io to version 4.8.0 for security improvements

[sumansaurabh]

User description

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• server/package.json
• server/package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Denial of Service (DoS) SNYK-JS-WS-7266574	696

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Denial of Service (DoS)

---

Description

• Upgraded socket.io from version 4.6.0 to 4.8.0 to address security vulnerabilities.
• Updated server/package-lock.json to reflect the new dependency versions and improve overall security.
• This change resolves a Denial of Service (DoS) vulnerability identified by Snyk.

---

Changes walkthrough 📝

	Relevant files
Dependencies	package.json Update socket.io dependency version                                            server/package.json Updated socket.io dependency from 4.6.0 to 4.8.0. +1/-1      package-lock.json Update package-lock for socket.io and other dependencies  server/package-lock.json Updated socket.io version to 4.8.0. Updated several other dependencies to their latest versions. +91/-44

[penify-dev]

PR Review 🔍

⏱️ Estimated effort to review [1-5]	2, because the changes are straightforward version upgrades with no complex logic involved.
🧪 Relevant tests	No
⚡ Possible issues	No
🔒 Security concerns	No

[penify-dev]

PR Code Suggestions ✨

Category	Suggestion	Score
Possible issue	Review compatibility with the new socket.io version to avoid potential issues Consider reviewing the compatibility of your application with socket.io version 4.8.0, as upgrading may introduce breaking changes or require adjustments in your codebase. server/package.json [5] -"socket.io": "^4.8.0", +"socket.io": "^4.8.0", // Ensure compatibility with existing code Suggestion importance[1-10]: 7 Why: The suggestion addresses a valid concern regarding potential breaking changes with the new socket.io version, which is important for maintaining application stability. However, it does not directly suggest a code change or improvement, hence the score is moderate.	7