Snyk upgrade c62ee2d5e90189501b57f3ab10e34495 #6460
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Dargon789
commented
Mar 10, 2025
•
Dargon789
commented
- Because this PR includes a bug fix, relevant tests have been included.
- Because this PR includes a new feature, the change was previously discussed on an Issue or with someone from the team.
- I didn't do anything of this.
Added a notification when a new Hardhat version is available
"@nomicfoundation/hardhat-chai-matchers": patch
SECURITY Supported Versions Use this section to tell people about which versions of your project are currently being supported with security updates. Version Supported 5.1.x ✅ 5.0.x ❌ 4.0.x ✅ < 4.0 ❌ Reporting a Vulnerability
Bumps the npm_and_yarn group with 10 updates in the /docs directory: | Package | From | To | | --- | --- | --- | | [next](https://github.com/vercel/next.js) | `12.3.4` | `13.5.1` | | [undici](https://github.com/nodejs/undici) | `5.26.2` | `5.28.4` | | [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) | `7.17.3` | `7.24.1` | | [browserify-sign](https://github.com/crypto-browserify/browserify-sign) | `4.2.1` | `4.2.3` | | [express](https://github.com/expressjs/express) | `4.17.3` | `4.19.2` | | [ip](https://github.com/indutny/node-ip) | `1.1.5` | `1.1.9` | | [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` | | [tar](https://github.com/isaacs/node-tar) | `6.1.11` | `6.2.1` | | [tough-cookie](https://github.com/salesforce/tough-cookie) | `4.0.0` | `4.1.3` | | [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` | Bumps the npm_and_yarn group with 1 update in the /packages/hardhat-truffle4 directory: [web3](https://github.com/ChainSafe/web3.js). Bumps the npm_and_yarn group with 1 update in the /packages/hardhat-web3-legacy directory: [web3](https://github.com/ChainSafe/web3.js). Updates `next` from 12.3.4 to 13.5.1 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v12.3.4...v13.5.1) Updates `undici` from 5.26.2 to 5.28.4 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.26.2...v5.28.4) Updates `@babel/traverse` from 7.17.3 to 7.24.1 - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.24.1/packages/babel-traverse) Updates `browserify-sign` from 4.2.1 to 4.2.3 - [Changelog](https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md) - [Commits](browserify/browserify-sign@v4.2.1...v4.2.3) Updates `express` from 4.17.3 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.3...4.19.2) Updates `ip` from 1.1.5 to 1.1.9 - [Commits](indutny/node-ip@v1.1.5...v1.1.9) Updates `semver` from 5.7.1 to 5.7.2 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v5.7.2) Updates `tar` from 6.1.11 to 6.2.1 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v6.1.11...v6.2.1) Updates `tough-cookie` from 4.0.0 to 4.1.3 - [Release notes](https://github.com/salesforce/tough-cookie/releases) - [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md) - [Commits](salesforce/tough-cookie@v4.0.0...v4.1.3) Updates `word-wrap` from 1.2.3 to 1.2.5 - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) Updates `web3` from 0.20.7 to 4.7.0 - [Release notes](https://github.com/ChainSafe/web3.js/releases) - [Changelog](https://github.com/web3/web3.js/blob/4.x/CHANGELOG.md) - [Commits](https://github.com/ChainSafe/web3.js/commits/v4.7.0) Updates `web3` from 0.20.7 to 4.7.0 - [Release notes](https://github.com/ChainSafe/web3.js/releases) - [Changelog](https://github.com/web3/web3.js/blob/4.x/CHANGELOG.md) - [Commits](https://github.com/ChainSafe/web3.js/commits/v4.7.0) --- updated-dependencies: - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: undici dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: "@babel/traverse" dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: browserify-sign dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ip dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tar dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: tough-cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: word-wrap dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: web3 dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: web3 dependency-type: direct:development dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
…_and_yarn-9583f44adc Bump the npm_and_yarn group across 3 directories with 11 updates
Bumps the npm_and_yarn group with 2 updates in the /docs directory: [next](https://github.com/vercel/next.js) and [ws](https://github.com/websockets/ws). Updates `next` from 13.5.1 to 14.1.1 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v13.5.1...v14.1.1) Updates `ws` from 7.5.7 to 7.5.10 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@7.5.7...7.5.10) --- updated-dependencies: - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: ws dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
…_and_yarn-e815352417 Bump the npm_and_yarn group across 1 directory with 2 updates
# Security Policy
deploy GitHub-pages
tool fix codeql
APIsec scan test running
ESLint provided.
# Node.js # Build a general Node.js project with npm. # Add steps that analyze code, save build artifacts, deploy, and more: # https://docs.microsoft.com/azure/devops/pipelines/languages/javascript
# Node.js # Build a general Node.js project with npm. # Add steps that analyze code, save build artifacts, deploy, and more: # https://docs.microsoft.com/azure/devops/pipelines/languages/javascript
Bumps the npm_and_yarn group with 1 update in the /docs directory: [webpack](https://github.com/webpack/webpack). Updates `webpack` from 4.46.0 to 4.47.0 - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](webpack/webpack@v4.46.0...v4.47.0) --- updated-dependencies: - dependency-name: webpack dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm_and_yarn group with 3 updates in the /docs directory: [next](https://github.com/vercel/next.js), [express](https://github.com/expressjs/express) and [markdown-to-jsx](https://github.com/quantizor/markdown-to-jsx). Updates `next` from 14.1.1 to 14.2.10 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v14.1.1...v14.2.10) Updates `express` from 4.19.2 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](expressjs/express@4.19.2...4.21.1) Updates `markdown-to-jsx` from 7.1.6 to 7.5.0 - [Release notes](https://github.com/quantizor/markdown-to-jsx/releases) - [Changelog](https://github.com/quantizor/markdown-to-jsx/blob/main/CHANGELOG.md) - [Commits](quantizor/markdown-to-jsx@7.1.6...v7.5.0) Updates `path-to-regexp` from 0.1.7 to 0.1.10 - [Release notes](https://github.com/pillarjs/path-to-regexp/releases) - [Changelog](https://github.com/pillarjs/path-to-regexp/blob/master/History.md) - [Commits](pillarjs/path-to-regexp@v0.1.7...v0.1.10) Updates `send` from 0.18.0 to 0.19.0 - [Release notes](https://github.com/pillarjs/send/releases) - [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md) - [Commits](pillarjs/send@0.18.0...0.19.0) Updates `serve-static` from 1.15.0 to 1.16.2 - [Release notes](https://github.com/expressjs/serve-static/releases) - [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md) - [Commits](expressjs/serve-static@v1.15.0...v1.16.2) --- updated-dependencies: - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: markdown-to-jsx dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-to-regexp dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: send dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serve-static dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
#11) Bumps the npm_and_yarn group with 1 update in the /docs directory: [body-parser](https://github.com/expressjs/body-parser). Updates `body-parser` from 1.20.0 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](expressjs/body-parser@1.20.0...1.20.3) --- updated-dependencies: - dependency-name: body-parser dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
…on (#10) Signed-off-by: Legion's <[email protected]> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Signed-off-by: Legion's <[email protected]>
Signed-off-by: Legion's <[email protected]>
) Bumps the npm_and_yarn group with 1 update in the /docs directory: [elliptic](https://github.com/indutny/elliptic). Updates `elliptic` from 6.5.4 to 6.6.0 - [Commits](indutny/elliptic@v6.5.4...v6.6.0) --- updated-dependencies: - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm_and_yarn group with 1 update in the /docs directory: [nanoid](https://github.com/ai/nanoid). Updates `nanoid` from 3.3.1 to 3.3.8 - [Release notes](https://github.com/ai/nanoid/releases) - [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md) - [Commits](ai/nanoid@3.3.1...3.3.8) --- updated-dependencies: - dependency-name: nanoid dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps the npm_and_yarn group with 4 updates in the /docs directory: [next](https://github.com/vercel/next.js), [undici](https://github.com/nodejs/undici), [elliptic](https://github.com/indutny/elliptic) and [store2](https://github.com/nbubna/store). Updates `next` from 14.2.10 to 14.2.21 - [Release notes](https://github.com/vercel/next.js/releases) - [Changelog](https://github.com/vercel/next.js/blob/canary/release.js) - [Commits](vercel/next.js@v14.2.10...v14.2.21) Updates `undici` from 5.28.4 to 5.28.5 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.28.4...v5.28.5) Updates `elliptic` from 6.6.0 to 6.6.1 - [Commits](indutny/elliptic@v6.6.0...v6.6.1) Updates `store2` from 2.13.1 to 2.14.4 - [Commits](nbubna/store@2.13.1...2.14.4) --- updated-dependencies: - dependency-name: next dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: undici dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: elliptic dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: store2 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Snyk has created this PR to upgrade @typescript-eslint/utils from 5.62.0 to 8.21.0. See this package in npm: @typescript-eslint/utils See this project in Snyk: https://app.snyk.io/org/dargon789/project/8f73516b-9b7b-4d90-a805-5c8eebf8fe2e?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade fs-extra from 7.0.1 to 11.3.0. See this package in npm: fs-extra See this project in Snyk: https://app.snyk.io/org/dargon789/project/60c09014-60eb-40c8-82d4-eb105dab9674?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Signed-off-by: AU_gdev_19 <[email protected]>
Snyk has created this PR to upgrade chalk from 2.4.2 to 5.4.1. See this package in npm: chalk See this project in Snyk: https://app.snyk.io/org/dargon789/project/60c09014-60eb-40c8-82d4-eb105dab9674?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade @ledgerhq/hw-app-eth from 6.33.6 to 6.42.3. See this package in npm: @ledgerhq/hw-app-eth See this project in Snyk: https://app.snyk.io/org/dargon789/project/60c09014-60eb-40c8-82d4-eb105dab9674?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade semver from 6.3.1 to 7.7.1. See this package in npm: semver See this project in Snyk: https://app.snyk.io/org/dargon789/project/d8b67e09-3b40-4806-96b4-f31119d86353?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade fs-extra from 7.0.1 to 11.3.0. See this package in npm: fs-extra See this project in Snyk: https://app.snyk.io/org/dargon789/project/d8b67e09-3b40-4806-96b4-f31119d86353?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade ora from 5.4.1 to 8.2.0. See this package in npm: ora See this project in Snyk: https://app.snyk.io/org/dargon789/project/60c09014-60eb-40c8-82d4-eb105dab9674?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade @ledgerhq/hw-app-eth from 6.42.3 to 6.42.5. See this package in npm: @ledgerhq/hw-app-eth See this project in Snyk: https://app.snyk.io/org/dargon789/project/60c09014-60eb-40c8-82d4-eb105dab9674?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
Snyk has created this PR to upgrade @nomicfoundation/ethereumjs-util from 9.0.2 to 9.0.4. See this package in npm: @nomicfoundation/ethereumjs-util See this project in Snyk: https://app.snyk.io/org/dargon789/project/60c09014-60eb-40c8-82d4-eb105dab9674?utm_source=github&utm_medium=referral&page=upgrade-pr Co-authored-by: snyk-bot <[email protected]>
* Add .circleci/config.yml * Add .circleci/config.yml
* Add .circleci/config.yml * Add .circleci/config.yml 06ab62c
Signed-off-by: AU_gdev_19 <[email protected]>
Signed-off-by: AU_gdev_19 <[email protected]>
Snyk has created this PR to upgrade solhint from 3.6.2 to 5.0.5. See this package in npm: solhint See this project in Snyk: https://app.snyk.io/org/dargon789/project/4daa2133-551c-4e2d-95c2-66e300887f08?utm_source=github&utm_medium=referral&page=upgrade-pr
🦋 Changeset detectedLatest commit: d85ad76 The changes in this PR will be included in the next version bump. This PR includes changesets to release 4 packages
Not sure what this means? Click here to learn what changesets are. Click here if you're a maintainer who wants to add another changeset to this PR |
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
|
I am closing this PR inline with our contribution guidelines: https://github.com/NomicFoundation/hardhat/blob/main/CONTRIBUTING.md#note-about-small-prs-and-airdrop-farming |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.