Bump tough-cookie and web3

[dependabot[bot]]

Removes tough-cookie. It's no longer used after updating ancestor dependency web3. These dependencies need to be updated together.

Removes tough-cookie

Updates web3 from 1.5.2 to 4.0.2

Release notes

Sourced from web3's releases.

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Changed

• Update version to 1.0.0-alpha.1 for web3-providers-base
• Update version to 4.0.0-alpha.0 for web3-utils in web3-providers-base

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Initial alpha release

Install with yarn add [email protected]

Changelog

Sourced from web3's changelog.

[1.5.2]

Fixed

• Remove transaction type defaulting for eth.sendTransaction, eth.sendRawTransaction (#4241)
• type: 0x0 was being added to legacy transaction when using eth.signTransaction (#4241)

[1.5.3]

Fixed

• Unable to send legacy transaction if network supported EIP-1559 (#4277)
• Fixed bug in sending transaction with providers not support "newBlockHeaders" event (#3891)

Changed

• ethers from 5.1.4 to 5.4.4 (#4231)
• karma from 5.2.3 to 6.3.4 (#4231)
• lerna from 3.22.1 to 4.0.0 (#4231)
• Dropped build tests in CI for Node v8 and v10, and added support for Node v14 (#4231)
• Change default value for maxPriorityFeePerGas from 1 Gwei to 2.5 Gwei (#4284)
• Fixed bug in signTransaction (#4295)

[1.6.0]

Changed

• Partially replace usage of eth-lib with ethereumjs-util (#4390)

[1.6.1]

Added

• Support for eth_createAccessList as both an rpc call (web3.eth.createAccessList) and property of contract method wrappers (contractInstance.methods.getValue().createAccessList) (#4332)

Changed

• Not considering tx.chainId if tx.common.customChain.chainId is provided for web3.eth.accounts.signTransaction function (#4293)
• Added missing PromiEvent handler types (#4194)
• Updated README to include Webpack 5 angular support instructions (#4174)
• Updated the documentation for the Web3.utils, removed context for _ (underscore lib) (#4403)
• Emit subscription id with connect event when creating a subscription (#4300)
• Introduced new configuration "blockHeaderTimeout" for waiting of block headers for transaction receipt (#3891)
• Format block.baseFeePerGas to number (#4330)
• Correct web3-eth-personal.sendTransaction example in documentation (#4409)
• Updated README to include Webpack 5 angular support instructions (#4174)

Fixed

• Fix 1.6.1 build size issue with removing static asset files (#4506)

... (truncated)

Commits

• 47583e7 version bumps
• 48bb05f changelog updates
• 3f49e18 Ensure r and s returned by signTransaction to have 64 character (#6216)
• e8d579c Refactor subscription's logic (#6210)
• 51a59f9 Few touches on the Plugin Guid (#6182)
• a2a232f Add .on('error') test for reverted contract methods (#6194)
• 023f02d fix: add 'receive' to FragmentTypes (#6204)
• ab0f4cb added ws types in dep (#6205)
• 2130d22 TS v5 support (#6195)
• f8a2533 6164 batch request fix (#6166)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by jdevcs, a new releaser for web3 since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

[codecov[bot]]

Codecov Report

Merging #416 (c2ee55f) into dev (6d07cb3) will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##              dev     #416   +/-   ##
=======================================
  Coverage   98.02%   98.02%           
=======================================
  Files         161      161           
  Lines        7596     7596           
  Branches      571      571           
=======================================
  Hits         7446     7446           
  Misses        150      150