2.0.3 (2024-05-22)

Bug Fixes

• Ensure that each request can only fail once. (#28) (bcceb35)
• Stop reconnect timer when event source is closed. (#29) (a73a118)

2.0.2 (2024-04-26)

Bug Fixes

• Include message for closed or ended event source connections. (#24) (48f4cc1)

[2.0.1] - 2023-08-28

Fixed:

• Fixed an issue in the pre-allocation algorithm handling partial messages.

[2.0.0] - 2023-07-05

Changed:

• Changed the way allocations are handled when receiving a line over multiple chunks. Instead of concatenating buffers together as they are received, instead an exponential doubling capacity algorithm will be used to allocate buffers to which multiple chunks may be copied. The algorithm will double until the excess capacity allocated reaches 1MiB. At that point subsequent re-allocations will allocate at maximum 1MiB of extra capacity.

[1.4.4] - 2022-03-10

Fixed:

• Removed the dependency on the original package. A transitive dependency of this package was flagged in CVE-2022-0686.

[1.4.3] - 2022-01-10

This release fixes a number of SSE spec compliance issues which do not affect usage in the LaunchDarkly SDKs, but could be relevant in other use cases.

Fixed:

• If an event's id: field contains a null character, the whole field should be ignored.
• The parser was incorrectly ignoring lines that did not contain a colon, instead of treating them as a field with an empty value. For instance, data on a line by itself should be equivalent to data:.
• The parser should ignore any incomplete messages at the end of a stream if the stream disconnects.

[1.4.2] - 2022-01-04

Fixed:

• If the stream URL contained user/password basicauth fields, they were not being included in the request.
• Some unsupported options were accidentally being passed to http.request and https.request. This did not affect Node itself, but it could cause problems when using interceptors that inspect the options, as discussed here.

[1.4.1] - 2021-05-10

Fixed:

• Updated the dependency on the package original in order to pick up a newer version of the transitive dependency url-parse. Older versions of url-parse had a known vulnerability. (Thanks, m-schrepel!)

[1.4.0] - 2021-01-25

Added:

• Added readTimeoutMillis option for automatically dropping and restarting a connection if too much time has elapsed without receiving any data.

[1.3.1] - 2020-06-29

Fixed:

• Incorporated a fix from the upstream repository that avoids unnecessary delays when parsing a long message that is received in multiple chunks.