hedera-sdk-java icon indicating copy to clipboard operation
hedera-sdk-java copied to clipboard

Published 20 hours ago verified publisher icon hashgraph

chore(deps): bump headlong from 7.0.0 to 8.0.0

Open dependabot[bot] opened this issue 2 years ago • 1 comments

Bumps headlong from 7.0.0 to 8.0.0.

Release notes

Sourced from headlong's releases.

v8.0.0 (API refresh)

redesign RLPEncoder API; ByteType no longer extends UnitType; reject Records with out-of-order keys on decode; reject unexpected RLP lists found in Record items; improve Record encoding performance; make RLPItem Comparable; make Strings.URL_SAFE_FLAGS private; limit Function names to 2048 chars; limit ABI types to 2000 chars; abort array ABI decode early if input obviously too short; raise max decodeable array length to 2^19 - 1; rename JsonUtils.parse to parseElement; remove JsonUtils.getArray(JsonObject,String,JsonArray); remove JsonUtils.toPrettyPrint; for better security, do cryptographic hash comparisons in constant time; fix misleading error message;

SHA-256 (headlong-8.0.0.jar): ce55ec4b3a9c9087f9f9cfad304e79688e7421e75b1b056853ecf5a79611f754

Full Changelog: https://github.com/esaulpaugh/headlong/compare/v7.0.0...v8.0.0

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Aug 15 '22 10:08 dependabot[bot]

@Sean-Tedrow-LB very low priority, but once you have time please take a look at what needs to be done to fix the build for this PR.

janaakhterov avatar Aug 15 '22 17:08 janaakhterov

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 1 Code Smell

0.0% 0.0% Coverage
0.0% 0.0% Duplication

sonarqubecloud[bot] avatar Aug 18 '22 02:08 sonarqubecloud[bot]