devDeps: Manually bump msw from 2.6.0 to 2.6.6

This bumps msw from 2.6.0 to 2.6.6

package-lock.json

@@ -73,7 +73,7 @@
         "madge": "8.0.0",
         "mini-css-extract-plugin": "2.9.1",
         "moment": "2.30.1",
-        "msw": "2.6.0",
+        "msw": "2.6.6",
         "npm-run-all": "4.1.5",
         "postcss-scss": "4.0.9",
         "react-chartjs-2": "5.2.0",
@@ -3105,9 +3105,9 @@
       }
     },
     "node_modules/@mswjs/interceptors": {
-      "version": "0.36.10",
-      "resolved": "https://registry.npmjs.org/@mswjs/interceptors/-/interceptors-0.36.10.tgz",
-      "integrity": "sha512-GXrJgakgJW3DWKueebkvtYgGKkxA7s0u5B0P5syJM5rvQUnrpLPigvci8Hukl7yEM+sU06l+er2Fgvx/gmiRgg==",
+      "version": "0.37.1",
+      "resolved": "https://registry.npmjs.org/@mswjs/interceptors/-/interceptors-0.37.1.tgz",
+      "integrity": "sha512-SvE+tSpcX884RJrPCskXxoS965Ky/pYABDEhWW6oeSRhpUDLrS5nTvT5n1LLSDVDYvty4imVmXsy+3/ROVuknA==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
@@ -14610,18 +14610,18 @@
       "license": "MIT"
     },
     "node_modules/msw": {
-      "version": "2.6.0",
-      "resolved": "https://registry.npmjs.org/msw/-/msw-2.6.0.tgz",
-      "integrity": "sha512-n3tx2w0MZ3H4pxY0ozrQ4sNPzK/dGtlr2cIIyuEsgq2Bhy4wvcW6ZH2w/gXM9+MEUY6HC1fWhqtcXDxVZr5Jxw==",
+      "version": "2.6.6",
+      "resolved": "https://registry.npmjs.org/msw/-/msw-2.6.6.tgz",
+      "integrity": "sha512-npfIIVRHKQX3Lw4aLWX4wBh+lQwpqdZNyJYB5K/+ktK8NhtkdsTxGK7WDrgknozcVyRI7TOqY6yBS9j2FTR+YQ==",
       "dev": true,
       "hasInstallScript": true,
       "license": "MIT",
       "dependencies": {
-        "@bundled-es-modules/cookie": "^2.0.0",
+        "@bundled-es-modules/cookie": "^2.0.1",
         "@bundled-es-modules/statuses": "^1.0.1",
         "@bundled-es-modules/tough-cookie": "^0.1.6",
         "@inquirer/confirm": "^5.0.0",
-        "@mswjs/interceptors": "^0.36.5",
+        "@mswjs/interceptors": "^0.37.0",
         "@open-draft/deferred-promise": "^2.2.0",
         "@open-draft/until": "^2.1.0",
         "@types/cookie": "^0.6.0",

package.json

@@ -71,7 +71,7 @@
     "madge": "8.0.0",
     "mini-css-extract-plugin": "2.9.1",
     "moment": "2.30.1",
-    "msw": "2.6.0",
+    "msw": "2.6.6",
     "npm-run-all": "4.1.5",
     "postcss-scss": "4.0.9",
     "react-chartjs-2": "5.2.0",

src/mockServiceWorker.js

@@ -8,8 +8,8 @@
  * - Please do NOT serve this file on production.
  */
 
-const PACKAGE_VERSION = '2.6.0'
-const INTEGRITY_CHECKSUM = '07a8241b182f8a246a7cd39894799a9e'
+const PACKAGE_VERSION = '2.6.6'
+const INTEGRITY_CHECKSUM = 'ca7800994cc8bfb5eb961e037c877074'
 const IS_MOCKED_RESPONSE = Symbol('isMockedResponse')
 const activeClientIds = new Set()
 
@@ -192,12 +192,14 @@ async function getResponse(event, client, requestId) {
   const requestClone = request.clone()
 
   function passthrough() {
-    const headers = Object.fromEntries(requestClone.headers.entries())
+    // Cast the request headers to a new Headers instance
+    // so the headers can be manipulated with.
+    const headers = new Headers(requestClone.headers)
 
-    // Remove internal MSW request header so the passthrough request
-    // complies with any potential CORS preflight checks on the server.
-    // Some servers forbid unknown request headers.
-    delete headers['x-msw-intention']
+    // Remove the "accept" header value that marked this request as passthrough.
+    // This prevents request alteration and also keeps it compliant with the
+    // user-defined CORS policies.
+    headers.delete('accept', 'msw/passthrough')
 
     return fetch(requestClone, { headers })
   }