fix(run-server): handle malformed JSON frames without crashing

[yury-s]

Summary

• run-server crashed on a single malformed WebSocket text frame because JSON.parse in the message listener was unprotected, turning a SyntaxError into an unhandled rejection that terminated the process — a pre-auth DoS when the endpoint is exposed beyond localhost.
• Catch the parse error, close the offending connection with WebSocket code 1007 (invalid frame payload data), and keep the server running.
• Added a regression test that sends ] on a raw WebSocket and then reconnects via browserType.connect to verify the server is still alive.

[github-actions]

Test results for "tests 1"

8 flaky

⚠️ [chromium-library] › library/video.spec.ts:118 › screencast › should capture static page `@ubuntu-22.04-chromium-tip-of-tree`
⚠️ [chromium-library] › library/video.spec.ts:342 › screencast › should work for popups `@ubuntu-22.04-chromium-tip-of-tree`
⚠️ [chromium-library] › library/video.spec.ts:342 › screencast › should work for popups `@chromium-ubuntu-22.04-arm-node20`
⚠️ [chromium-library] › library/video.spec.ts:724 › screencast › should work with video+trace `@chromium-ubuntu-22.04-arm-node20`
⚠️ [chromium-page] › page/page-request-continue.spec.ts:754 › propagate headers cross origin redirect after interception `@chromium-ubuntu-22.04-arm-node20`
⚠️ [chromium-library] › library/video.spec.ts:342 › screencast › should work for popups `@chromium-ubuntu-22.04-node24`
⚠️ [chromium-library] › library/video.spec.ts:724 › screencast › should work with video+trace `@chromium-ubuntu-22.04-node20`
⚠️ [webkit-page] › page/page-set-input-files.spec.ts:38 › should upload a folder `@webkit-ubuntu-22.04-node20`

39196 passed, 846 skipped

---

Merge workflow run.

[github-actions]

Test results for "MCP"

6468 passed, 383 skipped

---

Merge workflow run.