1.6.1

Fixes

• Update eventsource to 2.0.2 due to CVE-2022-1650. Fixes #590
• Update minimist to 1.2.6. Fixes #585

1.6.0

Fixes

• Remove agent: false to allow usage of globalAgent. Fixes #421

dependencies

• Update url-parse due to CVE-2022-0686, CVE-2022-0639, and CVE-2022-0512. Fixes #576
• Remove json3 dependency. Fixes #476
• Update eventsource to 1.1.0
• Update faye-websocket to 0.11.4
• Update debug to 3.2.7

devDependencies

• Update follow-redirects (devDep) due to CVE-2022-0536 and CVE-2022-0155
• Update karma (devDep) due to CVE-2022-0437
• Update cached-path-relative (devDep) due to CVE-2021-23518
• Update fsevents (devDep) to fix:
  • ini CVE-2020-7788
  • minimist CVE-2020-7598
  • tar CVE-2021-37713, CVE-2021-37701, CVE-2021-32804, CVE-2021-32803
• Update copy-props (devDep) due to CVE-2020-28503
• Update eslint, mocha, gulp-replace, karma-browserify, gulp-sourcemaps, and browserify

Other Changes

• Remove bower
• Remove Travis CI
• Require Node.js 12

1.5.2

• Update url-parse due to CVE-2021-3664.

1.5.1

• Update url-parse due to CVE-2021-27515.

1.5.0

• Update url-parse, kind-of, minimist, websocket-extensions due to security vulnerabilies.
• Update dev dependencies.
• Allow loopback address hostnames on a secure page. Fixes #486
• Enable eventsource transport for node.js clients.

1.4.0

• Add timeout option to set a minimum transport timeout. Fixes #403
• Update dev deps to fix security warnings from npm audit
• Guard against null this._transport in debug statement. Fixes #448

1.3.0

• Revert debug to ^3 because v4 starts using ES6. Fixes #457

1.2.0

• Update all outdated dependencies
• Switch to karma and browserstack for running automated browser tests

1.1.5

• Wrap the the contentWindow access in a try/catch block when in setTimeout #363
• Revised example in README #356
• Fix connection close when Transport timeout #358
• Fixed crash with [email protected] on Android #386
• Update jsDelivr link #404, #405
• Remove Sauce Labs unsupported browsers
• Add link to rust server implementation #411
• location.protocol should include final : #396

1.1.4

• Upgrade debug and fix object key literal mangling, fixes regression in Opera 11.10 #359
• Trim descriptions in package.json and bower.json - #372