Happy DOM is a JavaScript implementation simulating a web browser environment without the graphical user interface, designed specifically for testing and server-side rendering. Version 2.55.0 builds upon the foundation of version 2.54.0, introducing refinements and improvements under the hood to enhance its capabilities.
While both versions share core dependencies like he, css.escape, node-fetch, sync-request, whatwg-encoding, whatwg-mimetype, and webidl-conversions, the update from 2.54.0 to 2.55.0 includes alterations that impact the packaged size and file count. Version 2.55.0 sees an increase in the number of files within the package, moving from 813 to 821. Correspondingly, the unpacked size grows from 1,887,660 bytes to 1,897,433 bytes. These changes likely incorporate bug fixes, performance enhancements, or new feature implementations.
For developers utilizing Happy DOM, these subtle enhancements contribute to a more stable and feature-rich environment for simulating browser interactions. The package's dedication to web standards from WHATWG DOM and HTML enables developers to confidently test their code in a realistic context, independent of a browser's visual rendering engine. The upgrade to version 2.55.0 should provide a smoother and more comprehensive experience, further solidifying Happy DOM's position as a dependable solution for headless browser emulation in JavaScript projects.
All the vulnerabilities related to the version 2.55.0 of the package
happy-dom allows for server side code to be executed by a <script> tag
Consumers of the NPM package happy-dom
The security vulnerability has been patched in v15.10.2
No easy workarounds to my knowledge
