search

rsksmart / rif-marketplace-storage

Pinning contracts
4 stars 5 forks source link

build(deps-dev): bump truffle from 5.2.4 to 5.5.7 #369

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps truffle from 5.2.4 to 5.5.7.

Release notes

Sourced from truffle's releases.

v5.5.7 — Beehive Honey Bundt Cake

Hello! 👋 Its a lovely Spring day, perfect for a new Truffle release! 🌻 🐝 



Trufflers have been hard at work this week with bug fixes and improvements. Notably, we’ve pinned the faker package to the latest non-malicious version to make sure Truffle is resilient and keeps our users safe!

We’ve also replaced our use of the ora package with a custom module that handles simultaneous CLI spinners, because we want the development experience to be as delicious as possible!

Another change of note is that when Truffle forks Ganache for a dry run, it will no longer autogenerate accounts. This means that Truffle dry-runs off of Ganache will now respect your configured accounts as opposed to the accounts Ganache generated. 🎉



Many thanks to @​FrederikBolding and @​CommanderRoot for your contributions to this week's release! 🙇

That’s it for this week, please enjoy!

How to upgrade

We recommend upgrading to the latest version of Truffle by running:

npm uninstall -g truffle
npm install -g truffle

Changelog

Enhancements

Bug fixes

Internal improvements

v5.5.6 — Half-Eaten Candy Bar

Hello all!

We hope you're all enjoying Truffle Dashboard! 🏎 Well, we're hard at work on improvements to it, although you won't see them all yet in this release. However, Truffle Dashboard will now display a message in the terminal to let you know when it's waiting for you to sign a transaction in your browser, so you don't just wander off wondering why your transaction hasn't been sent. 🤔

This enhancement comes to us from @​benjamincburns, a name you may remember! 💭 Welcome back to the team, @​benjamincburns! 🎉 🍫

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

Dependabot tried to add @artem-brazhnikov as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/rsksmart/rif-marketplace-storage/pulls/369/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the rsksmart/rif-marketplace-storage repository. // See: https://docs.github.com/rest/reference/pulls#request-reviewers-for-a-pull-request
dependabot[bot] commented 2 years ago

Superseded by #371.