ronin-smart-contracts
ronin-smart-contracts copied to clipboard
axieinfinity
Hi, Could you be more specific? Better yet, could you provide a real working example of the attack? _Originally posted by @hosyvietanh in https://github.com/axieinfinity/ronin-smart-contracts/issues/19#issuecomment-751206179_
Hi, Could you be more specific? Better yet, could you provide a real working example of the attack? _Originally posted by @hosyvietanh in https://github.com/axieinfinity/ronin-smart-contracts/issues/19#issuecomment-751206179_
.
in ronin-smart-contracts / contracts / chain / sidechain / SidechainGatewayManager.sol lines 73-76 can be used to introduce lines of code that could affect the system If this is not resolved,...
Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.19.2. Release notes Sourced from express's releases. 4.19.2 What's Changed Improved fix for open redirect allow list bypass Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2 4.19.1 What's Changed Fix...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.9 to 1.15.6. Commits 35a517c Release version 1.15.6 of the npm package. c4f847f Drop Proxy-Authorization across hosts. 8526b4a Use GitHub for disclosure. b1677ce Release version 1.15.5 of...
Bumps [@openzeppelin/contracts](https://github.com/OpenZeppelin/openzeppelin-contracts) from 4.5.0 to 4.9.6. Release notes Sourced from @openzeppelin/contracts's releases. v4.9.6 Base64: Fix issue where dirty memory located just after the input buffer is affecting the result. (#4929)...
Bumps [es5-ext](https://github.com/medikoo/es5-ext) from 0.10.59 to 0.10.63. Release notes Sourced from es5-ext's releases. 0.10.63 (2024-02-23) Bug Fixes Do not rely on problematic regex (3551cdd), addresses #201 Support ES2015+ function definitions in...
Bumps [cross-fetch](https://github.com/lquixada/cross-fetch) from 2.2.5 to 2.2.6. Commits bfe5fe2 2.2.6 1a89b66 added caret range to whatwg-fetch. 695a888 removed and disabled package-lock.json. eac6c00 Update away from vulnerable version of node-fetch (#135) See...
Bumps [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) from 4.1.0 to 4.1.1. Commits 2449650 Update mocha 560b2d8 Don't use regex to trim whitespace b1bdb92 Remove linting package zoo c20dc7e Cache 308 See full diff in compare...
Bumps [cookiejar](https://github.com/bmeck/node-cookiejar) from 2.1.2 to 2.1.4. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...