Update dependency ws to v5 (main)

[mend-for-github-com]

This PR contains the following updates:

Package	Type	Update	Change
ws	dependencies	major	^3.3.3 → ^5.0.0

By merging this PR, the issue #118 will be automatically resolved and closed:

Severity	CVSS Score	Vulnerability	Reachability
High	7.5	CVE-2024-37890	Unreachable

---

Release Notes

websockets/ws (ws)

v5.2.4

Compare Source

Bug fixes

• Backported e55e510 to the 5.x release line (4abd8f6).

v5.2.3

Compare Source

Bug fixes

• Backported 00c425e to the 5.x release line (76d47c1).

v5.2.2

Compare Source

Bug fixes

• Fixed a use after invalidation bug introduced in 6046a28 (8aba871).

v5.2.1

Compare Source

Bug fixes

• Fixed a bug that could prevent buffered data from being processed under
  certain circumstances (6046a28).

v5.2.0

Compare Source

Features

• Added ability to specify custom headers when rejecting the handshake (#​1379).

v5.1.1

Compare Source

Bug fixes

• Fixed a regression introduced in 9e152f9 (#​1347).

v5.1.0

Compare Source

Features

• The address argument of the WebSocket constructor can now be a URL
  instance (#​1329).
• The options argument of the WebSocket constructor now accepts any TLS
  option that is also accepted by https.request() (#​1332).

v5.0.0

Compare Source

Breaking changes

• Dropped support for Node.js < 4.5.0 (#​1313).
• The connection is no longer closed if the server does not agree to any of
  the client's requested subprotocols (#​1312).
• net.Socket errors are no longer re-emitted (a4050db).

Features

• Read backpressure is now properly handled when permessage-deflate is enabled
  (#​1302).

v4.1.0

Compare Source

Features

• Added WebSocketServer.prototype.address() (#​1294).
• Added zlib{Deflate,Inflate}Options options (#​1306).

v4.0.0

Compare Source

Breaking changes

• The close status code is now set to 1005 if the received close frame contains
  no status code (a31b1f6).
• Error messages and types have been updated (695c5ea).
• The onerror event handler now receives an ErrorEvent instead of JavaScript
  error (63e275e).
• The third argument of WebSocket.prototype.ping() and
  WebSocket.prototype.pong() is no longer a boolean but an optional callback
  (30c9f71).
• The non-standard protocolVersion and bytesReceived attributes have been
  removed (30c9f71...ee9b5f3).
• The extensions attribute is no longer an object but a string representing
  the extensions selected by the server (fdec524).
• The 'headers' event on the client has been renamed to 'upgrade'. Listeners
  of this event now receive only the response argument (1c783c2).
• The WebSocket.prototype.pause() and WebSocket.prototype.resume() methods
  have been removed to prevent the user from interfering with the state of the
  underlying net.Socket stream (a206e98).

---

• If you want to rebase/retry this PR, check this box