From 4512ca1c463fb631d6a2246196a0a4a67afc228a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 22 May 2026 00:08:34 +0000
Subject: [PATCH] chore(deps): bump ws from 8.18.3 to 8.20.1

Bumps [ws](https://github.com/websockets/ws) from 8.18.3 to 8.20.1.
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](https://github.com/websockets/ws/compare/8.18.3...8.20.1)

---
updated-dependencies:
- dependency-name: ws
  dependency-version: 8.20.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 apps/engine/package.json            |  2 +-
 packages/source-stripe/package.json |  2 +-
 pnpm-lock.yaml                      | 38 ++++++++++++-----------------
 3 files changed, 17 insertions(+), 25 deletions(-)

diff --git a/apps/engine/package.json b/apps/engine/package.json
index 78ec30e3f..3e67583be 100644
--- a/apps/engine/package.json
+++ b/apps/engine/package.json
@@ -66,7 +66,7 @@
     "openapi-fetch": "^0.17.0",
     "pg": "^8.16.3",
     "react": "19.2.5",
-    "ws": "^8.18.0",
+    "ws": "^8.20.1",
     "zod": "^4.3.6"
   },
   "devDependencies": {
diff --git a/packages/source-stripe/package.json b/packages/source-stripe/package.json
index 7f8ad4416..47fb84e6e 100644
--- a/packages/source-stripe/package.json
+++ b/packages/source-stripe/package.json
@@ -37,7 +37,7 @@
     "@stripe/sync-protocol": "workspace:*",
     "https-proxy-agent": "^7.0.6",
     "undici": "^7.16.0",
-    "ws": "^8.18.0",
+    "ws": "^8.20.1",
     "zod": "^4.3.6"
   },
   "devDependencies": {
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index e6ae53cb3..417d1d124 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -210,8 +210,8 @@ importers:
         specifier: 19.2.5
         version: 19.2.5
       ws:
-        specifier: ^8.18.0
-        version: 8.18.3
+        specifier: ^8.20.1
+        version: 8.20.1
       zod:
         specifier: ^4.3.6
         version: 4.3.6
@@ -626,8 +626,8 @@ importers:
         specifier: ^7.16.0
         version: 7.24.6
       ws:
-        specifier: ^8.18.0
-        version: 8.18.3
+        specifier: ^8.20.1
+        version: 8.20.1
       zod:
         specifier: ^4.3.6
         version: 4.3.6
@@ -1254,6 +1254,9 @@ packages:
   '@hyperjump/uri@1.3.3':
     resolution: {integrity: sha512-rUqeUdL2aW7lzvSnCL6yUetXYzqxhsBEw9Z7Y1bEhgiRzcfO3kjY0UdD6c4H/bzxe0fXIjYuocjWQzinio8JTQ==}
 
+  '@hyperjump/uri@1.3.4':
+    resolution: {integrity: sha512-aUVWwu2GtC/cU4DwdTM+b+5jjboM6wft6vNg1+7pUTk/nNRNaBYcYhaEnCir9eRLBbkcGPkiEO7XRUlcDkxj4Q==}
+
   '@img/colour@1.1.0':
     resolution: {integrity: sha512-Td76q7j57o/tLVdgS746cYARfSyxk8iEfRxewL9h4OMzYhbW4TAcppl0mT4eyqXddh6L/jwoM75mo7ixa/pCeQ==}
     engines: {node: '>=18'}
@@ -4661,6 +4664,7 @@ packages:
 
   uuid@9.0.1:
     resolution: {integrity: sha512-b+1eJOlsR9K8HJpow9Ok3fiWOWSIcIzXodvv0rQjVoOVNpWMpxf1wZNpt4y9h10odCNrqnYp1OBzRktckBe3sA==}
+    deprecated: uuid@10 and below is no longer supported.  For ESM codebases, update to uuid@latest.  For CommonJS codebases, use uuid@11 (but be aware this version will likely be deprecated in 2028).
     hasBin: true
 
   vite-node@3.2.4:
@@ -4849,20 +4853,8 @@ packages:
       utf-8-validate:
         optional: true
 
-  ws@8.18.3:
-    resolution: {integrity: sha512-PEIGCY5tSlUt50cqyMXfCzX+oOPqN0vuGqWzbcJ2xvnkzkq46oOpz7dQaTDBdfICb4N14+GARUDw2XV2N4tvzg==}
-    engines: {node: '>=10.0.0'}
-    peerDependencies:
-      bufferutil: ^4.0.1
-      utf-8-validate: '>=5.0.2'
-    peerDependenciesMeta:
-      bufferutil:
-        optional: true
-      utf-8-validate:
-        optional: true
-
-  ws@8.20.0:
-    resolution: {integrity: sha512-sAt8BhgNbzCtgGbt2OxmpuryO63ZoDk/sqaB/znQm94T4fCEsy/yV+7CdC1kJhOU9lboAEU7R3kquuycDoibVA==}
+  ws@8.20.1:
+    resolution: {integrity: sha512-It4dO0K5v//JtTXuPkfEOaI3uUN87iYPnqo/ZzqCoG3g8uhA66QUMs/SrM0YK7/NAu+r4LMh/9dq2A7k+rHs+w==}
     engines: {node: '>=10.0.0'}
     peerDependencies:
       bufferutil: ^4.0.1
@@ -5719,7 +5711,7 @@ snapshots:
   '@hyperjump/browser@1.3.1':
     dependencies:
       '@hyperjump/json-pointer': 1.1.2
-      '@hyperjump/uri': 1.3.3
+      '@hyperjump/uri': 1.3.4
       content-type: 1.0.5
       just-curry-it: 5.3.0
 
@@ -5746,6 +5738,8 @@ snapshots:
 
   '@hyperjump/uri@1.3.3': {}
 
+  '@hyperjump/uri@1.3.4': {}
+
   '@img/colour@1.1.0':
     optional: true
 
@@ -8205,7 +8199,7 @@ snapshots:
       type-fest: 5.6.0
       widest-line: 6.0.0
       wrap-ansi: 10.0.0
-      ws: 8.20.0
+      ws: 8.20.1
       yoga-layout: 3.2.1
     optionalDependencies:
       '@types/react': 19.2.14
@@ -9486,9 +9480,7 @@ snapshots:
 
   ws@7.5.10: {}
 
-  ws@8.18.3: {}
-
-  ws@8.20.0: {}
+  ws@8.20.1: {}
 
   xmlhttprequest-ssl@1.6.3: {}