Bump the playwright group across 1 directory with 2 updates

[dependabot]

Bumps the playwright group with 2 updates in the /frontend-react directory: @playwright/test and eslint-plugin-playwright.

Updates @playwright/test from 1.47.0 to 1.48.1

Release notes

Sourced from @​playwright/test's releases.

v1.48.1

Highlights

microsoft/playwright#33023 - [Bug]: command line flag --headed has no effect in ui mode microsoft/playwright#33107 - [REGRESSION]: page.waitForRequest does not get resolved since 1.48.0 microsoft/playwright#33085 - [Bug]: WebSocket route does not handle full URLs in Playwright microsoft/playwright#33052 - [Regression]: Inspector not showing recorded steps microsoft/playwright#33132 - [Bug]: Wrong Ubuntu release name in Dockerfile.noble microsoft/playwright#32996 - [BUG] Trace attachments have small unusable height

Browser Versions

• Chromium 130.0.6723.19
• Mozilla Firefox 130.0
• WebKit 18.0

This version was also tested against the following stable channels:

• Google Chrome 129
• Microsoft Edge 129

v1.48.0

WebSocket routing

New methods page.routeWebSocket() and browserContext.routeWebSocket() allow to intercept, modify and mock WebSocket connections initiated in the page. Below is a simple example that mocks WebSocket communication by responding to a "request" with a "response".

await page.routeWebSocket('/ws', ws => {
  ws.onMessage(message => {
    if (message === 'request')
      ws.send('response');
  });
});

See WebSocketRoute for more details.

UI updates

• New "copy" buttons for annotations and test location in the HTML report.
• Route method calls like route.fulfill() are not shown in the report and trace viewer anymore. You can see which network requests were routed in the network tab instead.
• New "Copy as cURL" and "Copy as fetch" buttons for requests in the network tab.

Miscellaneous

• Option form and similar ones now accept FormData.
• New method page.requestGC() may help detect memory leaks.
• New option location to pass custom step location.
• Requests made by APIRequestContext now record detailed timing and security information in the HAR.

Browser Versions

• Chromium 130.0.6723.19

... (truncated)

Commits

• ceb756d chore: mark v1.48.1 (#33136)
• c3740d3 cherry-pick(#33133): (docker): correct Ubuntu Noble name in name template
• 2ec0c86 cherry-pick(#33124): test: unflake ff debugger test
• 8ef381f cherry-pick(#33122): chore: fix ff test for codegen
• c72a253 cherry-pick(#33110): fix(chromium): disable PlzDedicatedWorker again (#33113)
• 3d7ef3c cherry-pick(#33095): fix(routeWebSocket): make sure ws url without trailing s...
• 78c43bc cherry-pick(#33097): docs: improve docs for WebSocketRoute
• 6dc9ec7 cherry-pick(#33099): chore: fix codegen selector while debugging
• e5bbd5e cherry-pick(#33096): chore: various v1.48.0 roll fixes for .NET
• daff1a9 cherry-pick(#33030): fix(ui): bring back the headed param
• Additional commits viewable in compare view

Updates eslint-plugin-playwright from 1.6.2 to 1.8.1

Release notes

Sourced from eslint-plugin-playwright's releases.

v1.8.1

1.8.1 (2024-10-21)

Bug Fixes

• no-useless-await: Fix false positive with expect.poll and resolves/rejects (23663fb), closes #323

v1.8.0

1.8.0 (2024-10-19)

Features

• no-useless-await: Remove useless awaits from expect methods (e283efc), closes #306

Bug Fixes

• valid-title: Accept string variables as a valid title (ef8cfa5), closes #295 #243 #312 #320

v1.7.0

1.7.0 (2024-10-11)

Features

• prefer-locator: Add rule to suggest not using page methods (#315) (731a4e1)
• prefer-native-locators: Add rule to suggest using built-in locators (#308) (e6f92b0)
• prefer-to-have-count: Warn about use of .all() and .toHaveLength() (149ddc2), closes #284
• Support test.expect style (6a84431), closes #297
• Apply title rules to test.step and add ignoreTypeOfStepName option (playwright-community/eslint-plugin-playwright#309)

Bug Fixes

• Flat config TypeScript fix (1b5aadb), closes #299
• no-conditional-expect: Fix false positive with asymmetric matchers (#304) (3860f1e)

Commits

• 23663fb fix(no-useless-await): Fix false positive with expect.poll and resolves/`...
• 6369932 chore(valid-title): Fix types
• e283efc feat(no-useless-await): Remove useless awaits from expect methods
• ef8cfa5 fix(valid-title): Accept string variables as a valid title
• 79a9681 chore(deps-dev): Bump rollup from 4.21.3 to 4.22.4 (#318)
• ef33af2 chore(deps-dev): Bump vite from 5.2.8 to 5.4.6 (#317)
• 731a4e1 feat(prefer-locator): Add rule to suggest not using page methods (#315)
• 5c20c52 Add test
• e6f92b0 feat(prefer-native-locators): Add rule to suggest using built-in locators (#308)
• 482e4cd chore(deps): Bump micromatch from 4.0.5 to 4.0.8 (#313)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
npm/@playwright/test	^1.48.1	🟢 6.5	Details Check Score Reason Maintained 🟢 10 30 commit(s) out of 30 and 6 issue activity out of 30 found in the last 90 days -- score normalized to 10 Code-Review 🟢 9 GitHub code reviews found for 29 commits out of the last 30 -- score normalized to 9 CII-Best-Practices ⚠️ 0 no badge detected Vulnerabilities 🟢 10 no vulnerabilities detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 no published package detected Token-Permissions ⚠️ 0 non read-only tokens detected in GitHub workflows Binary-Artifacts 🟢 6 binaries present in source code Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection 🟢 3 branch protection is not maximal on development and all release branches
npm/eslint-plugin-playwright	^1.8.1	Unknown	Unknown
npm/@playwright/test	1.48.1	🟢 6.5	Details Check Score Reason Maintained 🟢 10 30 commit(s) out of 30 and 6 issue activity out of 30 found in the last 90 days -- score normalized to 10 Code-Review 🟢 9 GitHub code reviews found for 29 commits out of the last 30 -- score normalized to 9 CII-Best-Practices ⚠️ 0 no badge detected Vulnerabilities 🟢 10 no vulnerabilities detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 no published package detected Token-Permissions ⚠️ 0 non read-only tokens detected in GitHub workflows Binary-Artifacts 🟢 6 binaries present in source code Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection 🟢 3 branch protection is not maximal on development and all release branches
npm/eslint-plugin-playwright	1.8.1	Unknown	Unknown
npm/playwright	1.48.1	🟢 6.5	Details Check Score Reason Maintained 🟢 10 30 commit(s) out of 30 and 6 issue activity out of 30 found in the last 90 days -- score normalized to 10 Code-Review 🟢 9 GitHub code reviews found for 29 commits out of the last 30 -- score normalized to 9 CII-Best-Practices ⚠️ 0 no badge detected Vulnerabilities 🟢 10 no vulnerabilities detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 no published package detected Token-Permissions ⚠️ 0 non read-only tokens detected in GitHub workflows Binary-Artifacts 🟢 6 binaries present in source code Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection 🟢 3 branch protection is not maximal on development and all release branches
npm/playwright-core	1.48.1	🟢 6.5	Details Check Score Reason Maintained 🟢 10 30 commit(s) out of 30 and 6 issue activity out of 30 found in the last 90 days -- score normalized to 10 Code-Review 🟢 9 GitHub code reviews found for 29 commits out of the last 30 -- score normalized to 9 CII-Best-Practices ⚠️ 0 no badge detected Vulnerabilities 🟢 10 no vulnerabilities detected Signed-Releases ⚠️ -1 no releases found Security-Policy 🟢 10 security policy file detected License 🟢 10 license file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Packaging ⚠️ -1 no published package detected Token-Permissions ⚠️ 0 non read-only tokens detected in GitHub workflows Binary-Artifacts 🟢 6 binaries present in source code Dependency-Update-Tool 🟢 10 update tool detected Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Branch-Protection 🟢 3 branch protection is not maximal on development and all release branches

Scanned Manifest Files

frontend-react/package.json

• @playwright/test@^1.48.1
• eslint-plugin-playwright@^1.8.1
• @playwright/test@^1.47.0
• eslint-plugin-playwright@^1.6.2

frontend-react/yarn.lock

• @playwright/[email protected]
• [email protected]
• [email protected]
• [email protected]
• @playwright/[email protected]
• [email protected]
• [email protected]
• [email protected]