Allow to provide custom signers for x/auth/tx using depinject
We recommended to upgrade to this patch release as soon as possible.
When upgrading from <= v0.50.4, please ensure that 2/3 of the validator power upgrade to v0.50.5.
π Changelog
Check out the changelog for an exhaustive list of changes, or compare changes from the last release.
Refer to the upgrading guide when migrating from v0.47.x to v0.50.1.
Note, that the next SDK release, v0.51, will not include x/params migration, when migrating from < v0.47, v0.50.x or v0.47.x, is a mandatory migration.
(baseapp) #19626 Add DisableBlockGasMeter option to BaseApp, which removes the block gas meter during transaction execution.
Improvements
(x/distribution) #19707 Add autocli config for DelegationTotalRewards for CLI consistency with q rewards commands in previous versions.
(x/auth) #19651 Allow empty public keys in GetSignBytesAdapter.
Bug Fixes
(x/gov) #19725 Fetch a failed proposal tally from proposal.FinalTallyResult in the gprc query.
(types) #19709 Fix skip staking genesis export when using CoreAppModuleAdaptor / CoreAppModuleBasicAdaptor for it.
(x/auth) #19549 Accept custom get signers when injecting x/auth/tx.
(x/staking) Fix a possible bypass of delegator slashing: GHSA-86h5-xcpx-cfqc
(baseapp) Fix a bug in baseapp.ValidateVoteExtensions helper (GHSA-95rx-m9m5-m94v). The helper has been fixed and for avoiding API breaking changes currentHeight and chainID arguments are ignored. Those arguments are removed from the helper in v0.51+.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/cosmos/relayer/network/alerts).
Bumps github.com/cosmos/cosmos-sdk from 0.50.4 to 0.50.5.
Release notes
Sourced from github.com/cosmos/cosmos-sdk's releases.
Changelog
Sourced from github.com/cosmos/cosmos-sdk's changelog.
Commits
a321866
chore: prepare v0.50.5 (#19715)a877c47
fix(x/gov): grpc query tally for failed proposal (backport #19725) (#19727)c382225
feat(x/distribution): add rewards-by-validator autocli config (backport #1970...f055cde
feat(baseapp): add option to disable block gas meter (#19626)4467110
Merge pull request from GHSA-95rx-m9m5-m94v6689e36
build(deps): Bump deps (backport #19655) (#19711)3382e8e
fix(types): check for HasABCIGenesis in CoreAppModuleBasicAdaptor (#19709)f9041cd
refactor(x/auth): allow empty public keys for GetSignBytesAdapter (backport #...2abd2ec
feat(client/v2): marshal enum as string (#19653)09a49fe
build(deps): Bump cosmossdk.io/x/tx from 0.13.0 to 0.13.1 (#19665)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show