build(deps-dev): bump truffle from 5.2.4 to 5.5.4

[dependabot[bot]]

Bumps truffle from 5.2.4 to 5.5.4.

Release notes

Sourced from truffle's releases.

v5.5.4 – Funfetti Cupcake

Hey friends! Spring is around the corner and so we're excited to bring you some new and exciting features before we close out the winter. 🌼🌺

This week @​Pobepto added support for BigInt as a numberFormat to @truffle/contract for outputs; previously @truffle/contract only supported BigInts in input. Meanwhile, @​wbt removed the bytes0 type from contract-schema, which had been erroneously included as a legal Solidity type. So a big thank you to the both of them!

We improved our Solidity stacktracing functionality, so you'll see cleaner stacktraces both when using truffle test --stacktrace and when using truffle debug. The debugger will also now print a warning if you are past the end of a source in the source map.

In addition, we made an upgrade to @truffle/hdwallet-provider that prevents an error that can occur when passing only a single argument to hdwallet-provider. Lastly, we addressed a transitive dependency on an outdated version of rpc-websockets by updating dependencies in @truffle/preserves, eliminating a dependence on vulnerable packages.

Lots of updates but as always we're glad to bring them to you. Hope you like Funfetti as much as we do! See you next week. 🧁🌈

How to upgrade

We recommend upgrading to the latest version of Truffle by running:

See the example here:

npm uninstall -g truffle
npm install -g truffle

Changelog

Enhancements

• Support for "BigInt" as a numberFormat (for output) (#4813 by @​Pobepto)
• Re-add system to skip uninformative frames in stacktraces (#4755 by @​haltman-at)

Bug fixes

• Improve hdwallet-provider argument validation (#4816 by @​eggplantzzz)
• Disallow bytes0 as valid Solidity type (#4827 by @​wbt)
• Allow debugger to handle an instruction with invalid source range (#4742 by @​dongmingh)

Internal improvements

• Add url to debugger usage line (#4799 by @​haltman-at)
• Remove compatibility selectors from debugger (#4811 by @​haltman-at)
• Add .eslintrc to truffledb (#4797 by @​tenthirtyone)
• Rename debugger solidity submodule to sourcemapping (#4808 by @​haltman-at)

Dependency updates

• Update preserves dependencies (#4829 by @​fainashalts)
• Bump Truffle DB Deps, Apollo 3 (#4801 by @​tenthirtyone)
• Bump ganache to ^7.0.3 (#4693 by @​eggplantzzz)

... (truncated)

Commits

• 01c1d42 Publish
• 428f662 Update preserves dependencies
• b389f81 bump ganache to ^7.0.3
• c05d042 bump ganache to ^7.0.2
• dddefba Publish
• 38f9337 truffle: disable EthPM zeppelin integration test
• a11dfb2 Publish
• d66a795 Merge pull request #4745 from trufflesuite/open-the-gates
• ff5e098 Publish
• c308128 Clarify "strange event" test
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by leeftk, a new releaser for truffle since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Dependabot tried to add @artem-brazhnikov as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/rsksmart/rif-marketplace-storage/pulls/360/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the rsksmart/rif-marketplace-storage repository. // See: https://docs.github.com/rest/reference/pulls#request-reviewers-for-a-pull-request

[dependabot[bot]]

Superseded by #364.