Bump undici from 5.28.2 to 5.28.3 in /packages/core/src/environments/hardhat

[dependabot[bot]]

Bumps undici from 5.28.2 to 5.28.3.

Release notes

Sourced from undici's releases.

v5.28.3

⚠️ Security Release ⚠️

Fixes:

• CVE-2024-24758 Proxy-Authorization header not cleared on cross-origin redirect in fetch

Full Changelog: https://github.com/nodejs/undici/compare/v5.28.2...v5.28.3

Commits

• e71cb4c Bumped v5.28.3
• 20c65b8 Fix tests for Node.js v20.11.0 (#2618)
• 8ec52cd Fix tests for Node.js v21 (#2609)
• d3aa574 Merge pull request from GHSA-3787-6prv-h9w3
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/OpenZeppelin/contracts-wizard/network/alerts).

[socket-security[bot]]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@alloc/quick-lru@5.2.0	None	0	14.1 kB	aleclarson
npm/@babel/code-frame@7.23.5	Transitive: environment	+10	191 kB	nicolo-ribaudo
npm/@isaacs/cliui@8.0.2	None	+7	184 kB	isaacs
npm/@jridgewell/gen-mapping@0.3.3	None	+4	288 kB	jridgewell
npm/@jridgewell/source-map@0.3.5	None	+5	520 kB	jridgewell
npm/@pkgjs/parseargs@0.11.0	None	0	74.2 kB	oss-bot
npm/@polka/url@1.0.0-next.24	None	0	4.38 kB	lukeed
npm/@popperjs/core@2.11.8	None	0	1.46 MB	fezvrasta
npm/@rollup/plugin-alias@5.1.0	Transitive: environment, filesystem, unsafe	+3	6.9 MB	shellscape
npm/@rollup/plugin-commonjs@25.0.7	filesystem Transitive: environment, unsafe	+19	7.92 MB	shellscape
npm/@rollup/plugin-json@6.1.0	Transitive: environment, filesystem, unsafe	+6	7.11 MB	shellscape
npm/@rollup/plugin-node-resolve@15.2.3	filesystem Transitive: environment, unsafe	+17	7.49 MB	shellscape
npm/@rollup/plugin-replace@5.0.5	Transitive: environment, filesystem, unsafe	+8	7.61 MB	shellscape
npm/@rollup/plugin-typescript@11.1.6	environment, filesystem Transitive: unsafe	+14	39.5 MB	shellscape
npm/@rollup/pluginutils@5.1.0	Transitive: environment, filesystem, unsafe	+5	7.1 MB	shellscape
npm/@trysound/sax@0.2.0	None	0	48.8 kB	trysound
npm/@types/cssnano@5.1.0	Transitive: environment, filesystem, network, shell, unsafe	+68	10.4 MB	types
npm/@types/estree@1.0.5	None	0	25.7 kB	types
npm/@types/file-saver@2.0.7	None	0	6.31 kB	types
npm/@types/istanbul-lib-coverage@2.0.6	None	0	5.45 kB	types
npm/@types/node@18.19.17	None	+3	4.1 MB	types
npm/@types/parse-json@4.0.2	None	0	2.95 kB	types
npm/@types/pug@2.0.10	None	0	9.7 kB	types
npm/@types/resize-observer-browser@0.1.11	None	0	5.44 kB	types
npm/@types/uuid@9.0.8	None	0	6.74 kB	types
npm/any-promise@1.3.0	None	0	22.2 kB	kevinbeaty
npm/array-find-index@1.0.2	None	0	2.88 kB	sindresorhus
npm/array.prototype.flat@1.3.2	Transitive: eval	+58	3.23 MB	ljharb
npm/array.prototype.flatmap@1.3.2	Transitive: eval	+58	3.23 MB	ljharb
npm/arrgv@1.0.2	None	0	9.07 kB	astur
npm/arrify@3.0.0	None	0	3.5 kB	sindresorhus
npm/autoprefixer@10.4.17	environment Transitive: filesystem, shell	+13	3.06 MB	ai
npm/ava@5.3.1	Transitive: environment, eval, filesystem, unsafe	+122	5.55 MB	novemberborn
npm/browserslist@4.22.3	environment, filesystem Transitive: shell	+6	2.37 MB	ai
npm/buffer-crc32@0.2.13	None	0	7.95 kB	brianloveswords
npm/callsites@4.1.0	None	0	6.53 kB	sindresorhus
npm/camelcase-css@2.0.1	None	0	4.05 kB	stevenvachon
npm/camelcase@5.3.1	None	0	7.45 kB	sindresorhus
npm/caniuse-lite@1.0.30001581	None	0	1.97 MB	caniuse-lite
npm/ci-info@3.9.0	environment	0	26.1 kB	sibiraj-s
npm/cliui@5.0.0	None	+9	124 kB	bcoe
npm/commander@7.2.0	filesystem, shell	0	145 kB	abetomo
npm/console-clear@1.1.1	None	0	2.46 kB	lukeed
npm/cosmiconfig@7.1.0	filesystem Transitive: environment, unsafe	+23	794 kB	d-fischer
npm/cross-spawn@6.0.5	environment, filesystem, shell	+7	117 kB	satazor
npm/css-declaration-sorter@7.1.1	Transitive: environment, filesystem	+4	471 kB	siilwyn
npm/css-select@5.1.0	Transitive: network	+8	1.02 MB	feedic
npm/css-tree@2.3.1	unsafe	+2	1.94 MB	lahmatiy
npm/css-what@6.1.0	None	0	66 kB	feedic
npm/cssnano-preset-default@6.0.3	Transitive: environment, filesystem, network, shell, unsafe	+65	10.4 MB	ludovicofischer
npm/cssnano-utils@4.0.1	Transitive: environment, filesystem	+4	381 kB	ludovicofischer
npm/cssnano@6.0.3	Transitive: environment, filesystem, network, shell, unsafe	+67	10.4 MB	ludovicofischer
npm/csso@5.0.5	unsafe	+3	2.5 MB	lahmatiy
npm/decamelize@1.2.0	None	0	2.94 kB	sindresorhus
npm/decode-uri-component@0.2.2	None	0	6.09 kB	samverschueren
npm/detect-indent@6.1.0	None	0	9.68 kB	sindresorhus
npm/didyoumean@1.2.2	None	0	17.3 kB	dcporter
npm/dlv@1.1.3	None	0	5.8 kB	developit
npm/dom-serializer@2.0.0	None	+3	528 kB	feedic
npm/domelementtype@2.3.0	None	0	11.4 kB	feedic
npm/domhandler@5.0.3	None	+1	86.7 kB	feedic
npm/domutils@3.1.0	network	+4	690 kB	feedic
npm/entities@4.5.0	None	0	413 kB	feedic
npm/es6-promise@3.3.1	eval	0	173 kB	stefanpenner
npm/estree-walker@2.0.2	None	0	50.2 kB	rich_harris
npm/eventemitter3@4.0.7	None	0	38 kB	lpinca
npm/file-saver@2.0.5	None	0	36 kB	endless
npm/filter-obj@1.1.0	None	0	2.95 kB	sindresorhus
npm/find-up@3.0.0	Transitive: filesystem	+5	28.8 kB	sindresorhus
npm/foreground-child@3.1.1	shell Transitive: environment, filesystem	+7	189 kB	isaacs
npm/glob@7.2.3	filesystem Transitive: environment	+10	145 kB	isaacs
npm/highlight.js@11.9.0	None	0	5.29 MB	highlightjs_bot
npm/highlightjs-cairo@0.4.0	None	0	10.5 kB	ericglau
npm/highlightjs-solidity@2.0.6	None	0	42 kB	haltman
npm/icss-utils@5.1.0	Transitive: environment, filesystem	+4	386 kB	evilebottnawi
npm/immediate@3.0.6	None	0	14.6 kB	cwmma
npm/is-arguments@1.1.1	Transitive: eval	+11	237 kB	ljharb
npm/is-generator-function@1.0.10	eval	+2	63.4 kB	ljharb
npm/is-string@1.0.7	None	+2	50.6 kB	ljharb
npm/is-symbol@1.0.4	None	+1	42.6 kB	ljharb
npm/is-typed-array@1.1.12	Transitive: eval	+15	316 kB	ljharb
npm/isarray@2.0.5	None	0	3.43 kB	juliangruber
npm/jackspeak@2.3.6	environment	+9	512 kB	isaacs
npm/jest-worker@26.6.2	environment, shell	+3	4.13 MB	simenb
npm/jiti@1.21.0	environment, filesystem, unsafe	0	1.91 MB	pi0
npm/jszip@3.10.1	Transitive: environment	+11	1.76 MB	stuk
npm/kleur@4.1.5	None	0	20.3 kB	lukeed
npm/lilconfig@3.0.0	filesystem	0	19.3 kB	antonk52
npm/livereload-js@3.4.1	environment, eval	0	265 kB	smhg
npm/livereload@0.9.3	filesystem, network Transitive: environment, eval	+18	996 kB	bphogan
npm/local-access@1.1.0	environment	0	4.96 kB	lukeed
npm/magic-string@0.30.6	None	+1	485 kB	antfu
npm/mdn-data@2.0.30	None	0	602 kB	schalkneethling
npm/min-indent@1.0.1	None	0	2.97 kB	thejameskyle
npm/minipass@7.0.4	None	0	285 kB	isaacs
npm/mri@1.2.0	None	0	13.3 kB	lukeed
npm/mrmime@2.0.0	None	0	32.7 kB	lukeed
npm/mz@2.7.0	filesystem, network, shell	+4	52 kB	jongleberry
npm/normalize-url@6.1.0	None	0	21.2 kB	sindresorhus
npm/object-hash@3.0.0	None	0	58.9 kB	addaleax
npm/p-queue@6.6.2	None	+3	79.4 kB	sindresorhus
npm/path-browserify@1.0.1	None	0	54.3 kB	goto-bus-stop
npm/path-key@2.0.1	None	0	3.02 kB	sindresorhus
npm/path-scurry@1.10.1	filesystem	+2	1.27 MB	isaacs
npm/pify@2.3.0	None	0	6.02 kB	sindresorhus
npm/pirates@4.0.6	unsafe	0	13.5 kB	danez
npm/postcss-calc@9.0.1	Transitive: environment, filesystem	+8	762 kB	ludovicofischer
npm/postcss-colormin@6.0.2	Transitive: environment, filesystem, shell	+15	2.95 MB	ludovicofischer
npm/postcss-convert-values@6.0.2	Transitive: environment, filesystem, shell	+11	2.78 MB	ludovicofischer
npm/postcss-discard-comments@6.0.1	Transitive: environment, filesystem	+4	386 kB	ludovicofischer
npm/postcss-discard-duplicates@6.0.1	Transitive: environment, filesystem	+4	382 kB	ludovicofischer
npm/postcss-discard-empty@6.0.1	Transitive: environment, filesystem	+4	380 kB	ludovicofischer
npm/postcss-discard-overridden@6.0.1	Transitive: environment, filesystem	+4	382 kB	ludovicofischer
npm/postcss-import@15.1.0	Transitive: environment, filesystem	+13	675 kB	ryanzim
npm/postcss-js@4.0.1	Transitive: environment, filesystem	+5	388 kB	ai
npm/postcss-load-config@4.0.2	environment, unsafe Transitive: filesystem	+26	39.2 MB	ai
npm/postcss-merge-longhand@6.0.2	Transitive: environment, filesystem, shell	+15	3.05 MB	ludovicofischer
npm/postcss-merge-rules@6.0.3	Transitive: environment, filesystem, shell	+17	3.03 MB	ludovicofischer
npm/postcss-minify-font-values@6.0.1	Transitive: environment, filesystem	+5	419 kB	ludovicofischer
npm/postcss-minify-gradients@6.0.1	Transitive: environment, filesystem	+7	532 kB	ludovicofischer
npm/postcss-minify-params@6.0.2	Transitive: environment, filesystem, shell	+12	2.78 MB	ludovicofischer
npm/postcss-minify-selectors@6.0.2	Transitive: environment, filesystem	+7	594 kB	ludovicofischer
npm/postcss-modules-extract-imports@3.0.0	Transitive: environment, filesystem	+4	388 kB	evilebottnawi
npm/postcss-modules-local-by-default@4.0.4	Transitive: environment, filesystem	+9	644 kB	evilebottnawi
npm/postcss-modules-scope@3.1.1	Transitive: environment, filesystem	+7	599 kB	evilebottnawi
npm/postcss-modules-values@4.0.0	Transitive: environment, filesystem	+5	395 kB	evilebottnawi
npm/postcss-nested@6.0.1	Transitive: environment, filesystem	+7	598 kB	ai
npm/postcss-normalize-charset@6.0.1	Transitive: environment, filesystem	+4	380 kB	ludovicofischer
npm/postcss-normalize-display-values@6.0.1	Transitive: environment, filesystem	+5	408 kB	ludovicofischer
npm/postcss-normalize-positions@6.0.1	Transitive: environment, filesystem	+5	411 kB	ludovicofischer
npm/postcss-normalize-repeat-style@6.0.1	Transitive: environment, filesystem	+5	410 kB	ludovicofischer
npm/postcss-normalize-string@6.0.1	Transitive: environment, filesystem	+5	414 kB	ludovicofischer
npm/postcss-normalize-timing-functions@6.0.1	Transitive: environment, filesystem	+5	409 kB	ludovicofischer
npm/postcss-normalize-unicode@6.0.2	Transitive: environment, filesystem, shell	+11	2.77 MB	ludovicofischer
npm/postcss-normalize-url@6.0.1	Transitive: environment, filesystem	+5	413 kB	ludovicofischer
npm/postcss-normalize-whitespace@6.0.1	Transitive: environment, filesystem	+5	409 kB	ludovicofischer
npm/postcss-ordered-values@6.0.1	Transitive: environment, filesystem	+6	437 kB	ludovicofischer
npm/postcss-reduce-initial@6.0.2	Transitive: environment, filesystem, shell	+13	2.81 MB	ludovicofischer
npm/postcss-reduce-transforms@6.0.1	Transitive: environment, filesystem	+5	412 kB	ludovicofischer
npm/postcss-selector-parser@6.0.15	None	+2	209 kB	evilebottnawi
npm/postcss-svgo@6.0.2	Transitive: environment, filesystem, network, shell, unsafe	+22	7.08 MB	ludovicofischer
npm/postcss-unique-selectors@6.0.2	Transitive: environment, filesystem	+7	589 kB	ludovicofischer
npm/postcss-value-parser@4.2.0	None	0	27.2 kB	evilebottnawi
npm/postcss@8.4.35	environment, filesystem	+3	376 kB	ai
npm/query-string@7.1.3	None	+4	61.6 kB	sindresorhus
npm/resolve.exports@2.0.2	None	0	23.9 kB	lukeed
npm/resolve@1.22.8	environment, filesystem	+5	232 kB	ljharb
npm/rimraf@5.0.5	environment, filesystem Transitive: shell	+44	4.24 MB	isaacs
npm/rollup-plugin-livereload@2.0.5	environment, network, shell Transitive: eval, filesystem	+19	1.01 MB	thgh
npm/rollup-plugin-styles@4.0.0	environment, filesystem Transitive: network, shell, unsafe	+170	24.3 MB	anidetrix
npm/rollup-plugin-svelte@7.1.6	filesystem Transitive: environment, unsafe	+24	13.3 MB	conduitry
npm/rollup-plugin-terser@7.0.2	eval Transitive: environment, filesystem, shell, unsafe	+32	15.4 MB	trysound
npm/rollup@2.79.1	environment, filesystem, unsafe	+1	6.88 MB	lukastaegert
npm/sade@1.8.1	None	+1	44.8 kB	lukeed
npm/sander@0.5.1	filesystem Transitive: environment, eval	+16	623 kB	rich_harris
npm/semiver@1.1.0	None	0	5.44 kB	lukeed
npm/sirv-cli@2.0.2	environment, filesystem, network	+11	152 kB	lukeed
npm/solidity-ast@0.4.55	Transitive: eval	+59	3.48 MB	frangio
npm/sorcery@0.11.0	Transitive: environment, eval, filesystem	+19	834 kB	rich_harris
npm/source-map-js@1.0.2	None	0	148 kB	7rulnik
npm/string-width@3.1.0	None	+4	53.7 kB	sindresorhus
npm/strip-ansi@5.2.0	None	+1	9.34 kB	sindresorhus
npm/strip-indent@3.0.0	None	+1	6.28 kB	sindresorhus
npm/sucrase@3.35.0	Transitive: environment, filesystem, network, shell, unsafe	+38	4.52 MB	alangpierce
npm/svelte-check@3.6.3	Transitive: environment, eval, filesystem, unsafe	+97	55.5 MB	svelte-language-tools-deploy
npm/svelte-preprocess@5.1.3	environment, filesystem Transitive: eval, unsafe	+64	45.5 MB	kaisermann
npm/svelte@4.2.11	Transitive: unsafe	+18	6.28 MB	conduitry, rich_harris, svelte-admin
npm/tailwindcss@3.4.1	environment, filesystem Transitive: network, shell, unsafe	+111	52.5 MB	adamwathan
npm/throat@4.1.0	None	0	7.91 kB	forbeslindesay
npm/tippy.js@6.3.7	environment	+1	3.53 MB	atomiks
npm/typescript@4.9.5	None	0	66.8 MB	typescript-bot
npm/util@0.12.5	environment Transitive: eval	+19	415 kB	goto-bus-stop
npm/uuid@9.0.1	None	0	123 kB	ctavan
npm/which-typed-array@1.1.13	Transitive: eval	+14	299 kB	ljharb
npm/wsrun@5.2.4	environment, filesystem, shell Transitive: eval, unsafe	+70	3.15 MB	ivasilov
npm/yaml@1.10.2	environment	0	448 kB	eemeli
npm/yargs-parser@13.1.2	environment	+2	67.5 kB	oss-bot

🚮 Removed packages: npm/@nomicfoundation/hardhat-toolbox@3.0.0, npm/@nomicfoundation/hardhat-toolbox@4.0.0, npm/@openzeppelin/hardhat-upgrades@3.0.3

View full report↗︎

[socket-security[bot]]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/svelte-preprocess@5.1.3

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

[ericglau]

@SocketSecurity ignore npm/svelte-preprocess@5.1.3