chore(deps-dev): bump libp2p from 0.37.3 to 0.41.0

[dependabot[bot]]

Bumps libp2p from 0.37.3 to 0.41.0.

Release notes

Sourced from libp2p's releases.

libp2p v0.41.0

⚠ BREAKING CHANGES

• libp2p.hangUp and libp2p.fetch require PeerId or Multiaddr objects the same as other methods
• the libp2p opts have changed to accept a metrics object factory function instead of a config object

Features

• allow skipping upgrade steps for incoming connections (#1502) (987c738)
• configure metrics implementation as a module instead of shipping a built-in version (#1471) (5e9dcf3)
• start libp2p nodes by default (#1500) (61fcc0b), closes #1499

Bug Fixes

• allow listening on duplicate addresses (#1472) (030dbc8)
• dialling duplicated addresses (#1489) (9fd58c8), closes #1409
• pipe muxer/connection input/output streams in parallel (#1491) (fb5fa3d), closes #1342
• registrar is not calling topology on peer reconnect (#1504) (5a62f4f), closes #1496
• remove strings from fetch and hangUp (#1495) (bae32ba)
• when passed a multiaddr, only dial that multiaddr (#1498) (d01c37e)

libp2p v0.40.0

Upgrading

Please see the migration guide for upgrading to this release: doc/migrations/v0.37-v0.40.md

⚠ BREAKING CHANGES

• libp2p no longer automatically dials every discovered peer
  • to replicate the old behaviour, listen for 'peer:discovery' events and dial peers manually
• modules no longer implement Initializable instead switching to constructor injection
  • details in: remove @​libp2p/components (#1427) (a3847f2)

Features

• allow skipping encryption and custom muxer factory in upgrader (#1411) (6615efa)
• deny incoming connections and add allow/deny lists (#1398) (c185ef5)

Bug Fixes

• add after upgrade inbound method (#1422) (487b942)
• add pending connection limit (#1423) (b717beb)
• close stream after sending identify (#1424) (a74d22a)
• do not auto-dial peers (#1397) (ca30192)
• enable identify service all the time (#1440) (931e042)
• regenerate protobuf defs (#1439) (e10eea2)

... (truncated)

Changelog

Sourced from libp2p's changelog.

0.41.0 (2022-12-06)

⚠ BREAKING CHANGES

• libp2p.hangUp and libp2p.fetch require PeerId or Multiaddr objects the same as other methods
• the libp2p opts have changed to accept a metrics object factory function instead of a config object

Features

• allow skipping upgrade steps for incoming connections (#1502) (987c738)
• configure metrics implementation as a module instead of shipping a built-in version (#1471) (5e9dcf3)
• start libp2p nodes by default (#1500) (61fcc0b), closes #1499

Bug Fixes

• allow listening on duplicate addresses (#1472) (030dbc8)
• dialling duplicated addresses (#1489) (9fd58c8), closes #1409
• pipe muxer/connection input/output streams in parallel (#1491) (fb5fa3d), closes #1342
• registrar is not calling topology on peer reconnect (#1504) (5a62f4f), closes #1496
• remove strings from fetch and hangUp (#1495) (bae32ba)
• when passed a multiaddr, only dial that multiaddr (#1498) (d01c37e)

0.40.0 (2022-10-17)

⚠ BREAKING CHANGES

• modules no longer implement Initializable instead switching to constructor injection
• the old behaviour was to dial any peer we discover, now we just add them to the peer store instead

Features

• allow skipping encryption and custom muxer factory in upgrader (#1411) (6615efa)
• deny incoming connections and add allow/deny lists (#1398) (c185ef5)

Bug Fixes

• add after upgrade inbound method (#1422) (487b942)
• add pending connection limit (#1423) (b717beb)
• close stream after sending identify (#1424) (a74d22a)
• do not auto-dial peers (#1397) (ca30192)
• enable identify service all the time (#1440) (931e042)
• regenerate protobuf defs (#1439) (e10eea2)
• remove @​libp2p/components (#1427) (a3847f2)

0.39.5 (2022-10-05)

... (truncated)

Commits

• 7bbf6fd chore: release 0.41.0 (#1474)
• 99446ff docs: updated projects using libp2p in README (#1506)
• 2d984ed docs: update limits doc (#1456)
• 5a62f4f fix: registrar is not calling topology on peer reconnect (#1504)
• 61fcc0b feat: start libp2p nodes by default (#1500)
• 987c738 feat: allow skipping upgrade steps for incoming connections (#1502)
• d01c37e fix: when passed a multiaddr, only dial that multiaddr (#1498)
• bae32ba fix!: remove strings from fetch and hangUp (#1495)
• 9fd58c8 fix: dialling duplicated addresses (#1489)
• 8f4cfa1 chore: migrate connection implementation from separate package (#1494)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by npm-service-account-libp2p, a new releaser for libp2p since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #159.