web3.js
web3.js copied to clipboard
web3
[Snyk] Security upgrade eslint from 8.22.0 to 8.26.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- tools/eslint-config-base-web3/package.json
Note for zero-installs users
If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.
β οΈ Warning
Failed to update the yarn.lock, please update manually before merging.
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5 |
Uncontrolled resource consumption SNYK-JS-BRACES-6838727 |
No | No Known Exploit |
|
661/1000 Why? Recently disclosed, Has a fix available, CVSS 7.5 |
Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728 |
No | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
π§ View latest project report
π Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
π¦ Uncontrolled resource consumption
Bundle Stats
Hey there, this message comes from a GitHub action that helps you and reviewers to understand how these changes affect the size of this project's bundle.
As this PR is updated, I'll keep you updated on how the bundle size is impacted.
Total
| Files count | Total bundle size | % Changed |
|---|---|---|
| 10 | 624.29 kB | 0% |
Changeset
No files were changed
View detailed bundle breakdown
Added
No assets were added
Removed
No assets were removed
Bigger
No assets were bigger
Smaller
No assets were smaller
Unchanged
| Asset | File Size | % Changed |
|---|---|---|
| web3.min.js | 604.99 kB | 0% |
| ../lib/commonjs/index.d.ts | 8.69 kB | 0% |
| ../lib/commonjs/accounts.d.ts | 3.89 kB | 0% |
| ../lib/commonjs/types.d.ts | 2.67 kB | 0% |
| ../lib/commonjs/web3.d.ts | 1.35 kB | 0% |
| ../lib/commonjs/web3_eip6963.d.ts | 1.2 kB | 0% |
| ../lib/commonjs/abi.d.ts | 999 B | 0% |
| ../lib/commonjs/eth.exports.d.ts | 280 B | 0% |
| ../lib/commonjs/providers.exports.d.ts | 183 B | 0% |
| ../lib/commonjs/version.d.ts | 60 B | 0% |
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Codecov Report
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 91.97%. Comparing base (
4358140) to head (0de13f7). Report is 289 commits behind head on 4.x.
Additional details and impacted files
@@ Coverage Diff @@
## 4.x #7039 +/- ##
==========================================
+ Coverage 87.37% 91.97% +4.60%
==========================================
Files 197 215 +18
Lines 7548 8287 +739
Branches 2059 2277 +218
==========================================
+ Hits 6595 7622 +1027
+ Misses 953 665 -288
| Flag | Coverage Ξ | |
|---|---|---|
| UnitTests | 91.97% <ΓΈ> (+4.60%) |
:arrow_up: |
Flags with carried forward coverage won't be shown. Click here to find out more.
| Components | Coverage Ξ | |
|---|---|---|
| web3 | β
<ΓΈ> (β
) |
|
| web3-core | β
<ΓΈ> (β
) |
|
| web3-errors | β
<ΓΈ> (β
) |
|
| web3-eth | β
<ΓΈ> (β
) |
|
| web3-eth-abi | β
<ΓΈ> (β
) |
|
| web3-eth-accounts | β
<ΓΈ> (β
) |
|
| web3-eth-contract | β
<ΓΈ> (β
) |
|
| web3-eth-ens | β
<ΓΈ> (β
) |
|
| web3-eth-iban | β
<ΓΈ> (β
) |
|
| web3-eth-personal | β
<ΓΈ> (β
) |
|
| web3-net | β
<ΓΈ> (β
) |
|
| web3-providers-http | β
<ΓΈ> (β
) |
|
| web3-providers-ipc | β
<ΓΈ> (β
) |
|
| web3-providers-ws | β
<ΓΈ> (β
) |
|
| web3-rpc-methods | β
<ΓΈ> (β
) |
|
| web3-utils | β
<ΓΈ> (β
) |
|
| web3-validator | β
<ΓΈ> (β
) |
![codecov[bot] avatar](https://avatars.githubusercontent.com/in/254?v=4 "Published by a pub.dev verified publisher"){kind=small}
This PR has been automatically marked as stale because it has not had recent activity. It will be closed in 7 days if no further activity occurs. Thank you for your contributions. If you believe this was a mistake, please comment.