Bump ws and puppeteer in /tests-app

[dependabot]

Bumps ws to 8.19.0 and updates ancestor dependency puppeteer. These dependencies need to be updated together.

Updates ws from 8.13.0 to 8.19.0

Release notes

Sourced from ws's releases.

8.19.0

Features

• Added the closeTimeout option (#2308).

Bug fixes

• Handled a forthcoming breaking change in Node.js core (19984854).

8.18.3

Bug fixes

• Fixed a spec violation where the Sec-WebSocket-Version header was not added to the HTTP response if the client requested version was either invalid or unacceptable (#2291).

8.18.2

Bug fixes

• Fixed an issue that, during message decompression when the maximum size was exceeded, led to the emission of an inaccurate error and closure of the connection with an improper close code (#2285).

8.18.1

Bug fixes

• The length of the UNIX domain socket paths in the tests has been shortened to make them work when run via CITGM (021f7b8b).

8.18.0

Features

• Added support for Blob (#2229).

8.17.1

Bug fixes

• Fixed a DoS vulnerability (#2231).

A request with a number of headers exceeding the[server.maxHeadersCount][] threshold could be used to crash a ws server.

const http = require('http');
const WebSocket = require('ws');
const wss = new WebSocket.Server({ port: 0 }, function () {
const chars = "!#$%&'*+-.0123456789abcdefghijklmnopqrstuvwxyz^_`|~".split('');
</tr></table>

... (truncated)

Commits

• 61349ec [dist] 8.19.0
• 3f9ffc6 [feature] Introduce the closeTimeout option (#2308)
• 1998485 [fix] Ensure all remaining data is read as a single chunk
• 726c373 [doc] Sort options alphabetically
• b151f1e [ci] Update actions/checkout action to v6
• dabdd5b [ci] Update actions/setup-node action to v6
• 86eac5b [ci] Test on node 25
• 1891e14 [ci] Update actions/setup-node action to v5
• aa28c77 [ci] Update actions/checkout action to v5
• dabbdec [dist] 8.18.3
• Additional commits viewable in compare view

Updates puppeteer from 19.11.1 to 24.37.5

Release notes

Sourced from puppeteer's releases.

puppeteer-core: v24.37.5

24.37.5 (2026-02-19)

🛠️ Fixes

• roll to Chrome 145.0.7632.77 (#14703) (b31215e)

puppeteer: v24.37.5

24.37.5 (2026-02-19)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • puppeteer-core bumped from 24.37.4 to 24.37.5

puppeteer-core: v24.37.4

24.37.4 (2026-02-18)

🛠️ Fixes

• cdp: add missing .catch(debugError) to void initialize() in onAttachedToTarget (#14701) (b8b1004)
• roll to Chrome 145.0.7632.76 (#14684) (6624d1d)
• roll to Firefox 147.0.4 (#14697) (eed313f)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 2.12.1 to 2.13.0

puppeteer: v24.37.4

24.37.4 (2026-02-18)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

... (truncated)

Changelog

Sourced from puppeteer's changelog.

24.37.5 (2026-02-19)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • puppeteer-core bumped from 24.37.4 to 24.37.5

🛠️ Fixes

• roll to Chrome 145.0.7632.77 (#14703) (b31215e)

24.37.4 (2026-02-18)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 2.12.1 to 2.13.0

🛠️ Fixes

• cdp: add missing .catch(debugError) to void initialize() in onAttachedToTarget (#14701) (b8b1004)
• roll to Chrome 145.0.7632.76 (#14684) (6624d1d)
• roll to Firefox 147.0.4 (#14697) (eed313f)

24.37.3 (2026-02-13)

♻️ Chores

• puppeteer: Synchronize puppeteer versions

... (truncated)

Commits

• fcb37e3 chore: release main (#14704)
• d9a7954 ci: use lower case as every other label (#14702)
• b31215e fix: roll to Chrome 145.0.7632.77 (#14703)
• c771d9c chore: release main (#14688)
• e315ef6 chore: disable blank issues (#14699)
• b8b1004 fix(cdp): add missing .catch(debugError) to void initialize() in onAttachedTo...
• 27d4bea test: fix of Windows and MacOS (#14698)
• eed313f fix: roll to Firefox 147.0.4 (#14697)
• 4b65f3a chore: use the Type in issue template (#14691)
• c2eaedc ci: track flaky from the UI (#14690)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for puppeteer since your current version.

Install script changes

This version adds postinstall script that runs during installation. Review the package contents before updating.

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.