build(deps): bump ws and discord.js

[dependabot]

Bumps ws to 8.18.1 and updates ancestor dependency discord.js. These dependencies need to be updated together.

Updates ws from 8.14.2 to 8.18.1

Release notes

Sourced from ws's releases.

8.18.1

Bug fixes

• The length of the UNIX domain socket paths in the tests has been shortened to make them work when run via CITGM (021f7b8b).

8.18.0

Features

• Added support for Blob (#2229).

8.17.1

Bug fixes

• Fixed a DoS vulnerability (#2231).

A request with a number of headers exceeding the[server.maxHeadersCount][] threshold could be used to crash a ws server.

const http = require('http');
const WebSocket = require('ws');
const wss = new WebSocket.Server({ port: 0 }, function () {
const chars = "!#$%&'*+-.0123456789abcdefghijklmnopqrstuvwxyz^_`|~".split('');
const headers = {};
let count = 0;
for (let i = 0; i < chars.length; i++) {
if (count === 2000) break;
for (let j = 0; j &lt; chars.length; j++) {
  const key = chars[i] + chars[j];
  headers[key] = 'x';
if (++count === 2000) break;
}

}
headers.Connection = 'Upgrade';
headers.Upgrade = 'websocket';
headers['Sec-WebSocket-Key'] = 'dGhlIHNhbXBsZSBub25jZQ==';
headers['Sec-WebSocket-Version'] = '13';
const request = http.request({
headers: headers,
host: '127.0.0.1',
port: wss.address().port
</tr></table>

... (truncated)

Commits

• b92745a [dist] 8.18.1
• b3d9747 [doc] Fix nit
• 021f7b8 [test] Shorten the path lengths
• b9ca55b [pkg] Update eslint-config-prettier to version 10.0.1
• c798dd4 [doc] Fix typo (#2271)
• 6861472 [ci] Test on node 23
• 019f28f [minor] Improve JSDoc-inferred types (#2242)
• bfe1b2a [doc] Remove unnecessary period (#2240)
• f7dc469 [doc] Fix the type of the data argument
• 976c53c [dist] 8.18.0
• Additional commits viewable in compare view

Updates discord.js from 14.14.1 to 14.18.0

Release notes

Sourced from discord.js's releases.

14.18.0

Bug Fixes

• Guild: Type error with permissionOverwrites (#10527) (8e1e1be)
• Incorrect relative path (#10734) (b7f1ebc)
• PresenceUpdate: Correctly add user regardless of their properties (#10672) (7c1b73c)
• InteractionResponses: Mark replied true for followUps (#10688) (32dff01)

Documentation

• Use link tags to render links on the documentation (#10731) (66b9718)
• Message: Improve message snapshots description (#10709) (31df3d2)

Features

• Message forwards (#10733) (89c076c)
• Incident Actions (#10727) (41dee51)
• website: Type parameters links, builtin doc links, default values (#10515) (43235d4)
• PartialGroupDMChannel: Add missing properties (#10502) (5e66f85)
• Subscription: Add renewalSkuIds (#10662) (efa50fc)
• website: Include reexported members in docs (#10518) (aa61c20)

Refactor

• Use throw instead of Promise.reject (#10712) (2663d76)
• Remove data resolver exports (#10701) (4606041)
• IntegrationApplication: Move common properties to Application (#10627) (95db597)

Styling

• Prettier (92aea94)

Typings

• Fix recurrence rule types (#10694) (193a5e9)
• ThreadOnlyChannel: Remove incorrect messages property (#10708) (44a1e85)
• Add undefined to flags for exactOptionalPropertyTypes (#10707) (d2e1924)
• Allow only ephemeral for defer reply (#10696) (68dd260)
• Remove createComponent and createComponentBuilder (#10687) (0047a49)

14.17.3

Bug Fixes

• Message: Ensure channel is defined for clean content (#10681) (46bf8f0)
• Use resolve() for PermissionOverwrites (#10686) (7280d4e)

14.17.2

Bug Fixes

• InteractionResponses: Check correct property for deprecation (77804cf)

... (truncated)

Changelog

Sourced from discord.js's changelog.

14.18.0 - (2025-02-10)

Bug Fixes

• Guild: Type error with permissionOverwrites (#10527) (8e1e1be)
• Incorrect relative path (#10734) (b7f1ebc)
• PresenceUpdate: Correctly add user regardless of their properties (#10672) (7c1b73c)
• InteractionResponses: Mark replied true for followUps (#10688) (32dff01)

Documentation

• Use link tags to render links on the documentation (#10731) (66b9718)
• Message: Improve message snapshots description (#10709) (31df3d2)

Features

• Message forwards (#10733) (89c076c)
• Incident Actions (#10727) (41dee51)
• website: Type parameters links, builtin doc links, default values (#10515) (43235d4)
• PartialGroupDMChannel: Add missing properties (#10502) (5e66f85)
• Subscription: Add renewalSkuIds (#10662) (efa50fc)
• website: Include reexported members in docs (#10518) (aa61c20)

Refactor

• Use throw instead of Promise.reject (#10712) (2663d76)
• Remove data resolver exports (#10701) (4606041)
• IntegrationApplication: Move common properties to Application (#10627) (95db597)

Styling

• Prettier (92aea94)

Typings

• Fix recurrence rule types (#10694) (193a5e9)
• ThreadOnlyChannel: Remove incorrect messages property (#10708) (44a1e85)
• Add undefined to flags for exactOptionalPropertyTypes (#10707) (d2e1924)
• Allow only ephemeral for defer reply (#10696) (68dd260)
• Remove createComponent and createComponentBuilder (#10687) (0047a49)

14.17.3 - (2025-01-08)

Bug Fixes

• Message: Ensure channel is defined for clean content (#10681) (46bf8f0)
• Use resolve() for PermissionOverwrites (#10686) (7280d4e)

14.17.2 - (2025-01-02)

... (truncated)

Commits

• 595bded chore(discord.js): release discord.js@14.18.0
• c74c632 build: bump @​discordjs/ws to 1.2.1
• fc00305 build: bump @​discordjs/builders to 1.10.1
• c2b18d6 build: bump undici to 6.21.1
• 519aa3a build: bump discord-api-types to 0.37.119
• 89c076c feat: message forwards (#10733)
• 8e1e1be fix(Guild): type error with permissionOverwrites (#10527)
• 193a5e9 types: fix recurrence rule types (#10694)
• 73c6bc2 chore: Add contributors and last commit badges (#10428)
• b7f1ebc fix: incorrect relative path (#10734)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.