[Snyk] Security upgrade adamant-api from 0.5.3 to 1.0.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	554/1000 Why? Has a fix available, CVSS 6.8	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	Yes	No Known Exploit
	509/1000 Why? Has a fix available, CVSS 5.9	Timing Attack SNYK-JS-ELLIPTIC-511941	Yes	No Known Exploit
	706/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.7	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	Yes	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Command Injection SNYK-JS-LODASH-1040724	Yes	Proof of Concept
	704/1000 Why? Has a fix available, CVSS 9.8	Prototype Pollution SNYK-JS-LODASH-590103	Yes	No Known Exploit
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-608086	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: adamant-api

The new version differs by 57 commits.

• 930c90e Upd readme
• 36628f1 Bupm version
• eb3a6f7 Export constants
• a81615c Comments
• e6fa53d Clean up
• b8b0360 We can use public key instead of address to send tokens
• 766fa33 We can use public key instead of address to send message
• 5bac72e Cache public keys
• ff6e760 Add validateAdmPublicKey()
• ca6f42f Descriptions
• 32c5469 Remove web3 lib
• 4fc3955 Update healthCheck
• b37f8f8 Remove lodash
• a5e9742 Remove lodash
• befa90f Remove lodash
• c7d73fb Remove lodash from get
• ac29fbf Clean up
• fe1f449 Update eth dependencies
• 40b7449 Replace request with axios
• 3b22b51 Add validateEndpoint()
• 3361846 Update validator
• 9567e3c Update sendMessage
• cf01c0a Update getPublicKey
• f58c7a0 Update errorMessage

See the full diff

Some vulnerabilities couldn't be fully fixed and so Snyk will still find them when the project is tested again. This may be because the vulnerability existed within more than one direct dependency, but not all of the effected dependencies could be upgraded.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic