Closed dependabot[bot] closed 2 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/@noble/curves@1.2.0 | None | 0 |
1.35 MB | paulmillr |
npm/@noble/hashes@1.3.2 | None | 0 |
747 kB | paulmillr |
npm/ethers@6.13.1 | network | +1 |
16.3 MB | ricmoo |
npm/ws@8.17.1 | environment, network | 0 |
141 kB | lpinca |
🚮 Removed packages: npm/@noble/hashes@1.1.2, npm/@noble/secp256k1@1.7.1, npm/ethers@6.6.0, npm/ws@8.5.0
Coverage from tests in ./e2e_test/...
for ./consensus/istanbul/...
at commit 78870df3724fd457bf2c88de53a71f86008a141d
coverage: 63.4% of statements in consensus/istanbul coverage: 42.8% of statements in consensus/istanbul/announce coverage: 55.6% of statements in consensus/istanbul/backend coverage: 0.0% of statements in consensus/istanbul/backend/backendtest coverage: 24.3% of statements in consensus/istanbul/backend/internal/replica coverage: 61.5% of statements in consensus/istanbul/core coverage: 50.0% of statements in consensus/istanbul/db coverage: 0.0% of statements in consensus/istanbul/proxy coverage: 64.2% of statements in consensus/istanbul/uptime coverage: 51.8% of statements in consensus/istanbul/validator coverage: 79.2% of statements in consensus/istanbul/validator/random
Bumps ws to 8.17.1 and updates ancestor dependency ethers. These dependencies need to be updated together.
Updates
ws
from 8.5.0 to 8.17.1Release notes
Sourced from ws's releases.
... (truncated)
Commits
3c56601
[dist] 8.17.1e55e510
[security] Fix crash when the Upgrade header cannot be read (#2231)6a00029
[test] Increase code coverageddfe4a8
[perf] Reduce the amount ofcrypto.randomFillSync()
callsb73b118
[dist] 8.17.029694a5
[test] Use thehighWaterMark
variable934c9d6
[ci] Test on node 221817bac
[ci] Do not test on node 2196c9b3d
[major] Flip the default value ofallowSynchronousEvents
(#2221)e5f32c7
[fix] Emit at most one event per event loop iteration (#2218)Updates
ethers
from 6.6.0 to 6.13.1Release notes
Sourced from ethers's releases.
... (truncated)
Changelog
Sourced from ethers's changelog.
... (truncated)
Commits
a4b1d1f
Update ws package to address possible DoS vulnerability.16b8e18
docs: fixed paragraph leaking into code in migration docs9276187
admin: updated dist files90c196a
Fix missing return for Result proxy (#4681).5b8781d
admin: updated dist filese97ca3b
Merge branch 'wip-6.13'c2d5346
tests: added gasless testcase for RicMoo-controlled domain0f1434b
admin: remove deprecated mumbai network from tests.33bb0bf
Added Options for BrowserProvider (#4707).2d2572a
admin: update dist filesDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show