Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): Bump github.com/cosmos/cosmos-sdk from 0.50.4 to 0.50.7 in /tools/hubl #469

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jun 27, 2024

Bumps github.com/cosmos/cosmos-sdk from 0.50.4 to 0.50.7.

Release notes

Sourced from github.com/cosmos/cosmos-sdk's releases.

v0.50.7

Cosmos SDK v0.50.7 Release Notes

💬 Release Discussion

🚀 Highlights

For this month patch release of the v0.50.x line, a few improvements were added to the SDK and some bugs were fixed.

Notably, we added and fixed the following:

  • Add extra checks in x/consensus MsgUpdateParams to prevent footguns when updating the consensus parameters.
    • Forgetting a field in a x/consensus parameter change gov proposal could lead to a chain halt.
    • The fix is in theory consensus breaking, but in practice, it is only a footgun prevention (the path only triggers if the proposal was executed and was invalid). Please ensure that all validators are on v0.50.7 before the execution of a x/consensus params update proposal.
  • Remove txs from the mempool when they fail in RecheckTX

📝 Changelog

Check out the changelog for an exhaustive list of changes, or compare changes from the last release.

Refer to the upgrading guide when migrating from v0.47.x to v0.50.1. Note, that the next SDK release, v0.51, will not include x/params migration, when migrating from < v0.47, v0.50.x or v0.47.x, is a mandatory migration.

v0.50.6

Cosmos SDK v0.50.6 Release Notes

💬 Release Discussion

🚀 Highlights

For this month's patch release of the v0.50.x line, a few features and improvements were added to the SDK.

Notably, we added and fixed the following:

  • Add start customizability to start command options. Customize how an application starts with the new StartCommandHandler field in server.StartCmdOptions struct.
  • Fixing GHSA-4j93-fm92-rp4m in x/feegrant and x/authz modules. The upgrade instructions were provided in the v0.50.4 release notes. If you depend on the x/authz or x/feegrant module in one of your module, and you do not use depinject, please add .SetBankKeeper(...) onto x/authz or x/feegrant keeper in your app.go.

📝 Changelog

Check out the changelog for an exhaustive list of changes, or compare changes from the last release.

Refer to the upgrading guide when migrating from v0.47.x to v0.50.1. Note, that the next SDK release, v0.51, will not include x/params migration, when migrating from < v0.47, v0.50.x or v0.47.x, is a mandatory migration.

v0.50.5

Cosmos SDK v0.50.5 Release Notes

💬 Release Discussion

... (truncated)

Changelog

Sourced from github.com/cosmos/cosmos-sdk's changelog.

v0.50.7 - 2024-06-04

Improvements

  • (debug) #20328 Add consensus address for debug cmd.
  • (runtime) #20264 Expose grpc query router via depinject.
  • (x/consensus) #20381 Use Comet utility for consensus module consensus param updates.
  • (client) #20356 Overwrite client context when available in SetCmdClientContext.

Bug Fixes

  • (baseapp) #20346 Correctly assign execModeSimulate to context for simulateTx.
  • (baseapp) #20144 Remove txs from mempool when AnteHandler fails in recheck.
  • (baseapp) #20107 Avoid header height overwrite block height.
  • (cli) #20020 Make bootstrap-state command support both new and legacy genesis format.
  • (testutil/sims) #20151 Set all signatures and don't overwrite the previous one in GenSignedMockTx.

v0.50.6 - 2024-04-22

Features

  • (types) #19759 Align SignerExtractionAdapter in PriorityNonceMempool Remove.
  • (client) #19870 Add new query command wait-tx. Alias event-query-tx-for to wait-tx for backward compatibility.

Improvements

  • (telemetry) #19903 Conditionally emit metrics based on enablement.
    • Introduction of Now Function: Added a new function called Now to the telemetry package. It returns the current system time if telemetry is enabled, or a zero time if telemetry is not enabled.
    • Atomic Global Variable: Implemented an atomic global variable to manage the state of telemetry's enablement. This ensures thread safety for the telemetry state.
    • Conditional Telemetry Emission: All telemetry functions have been updated to emit metrics only when telemetry is enabled. They perform a check with isTelemetryEnabled() and return early if telemetry is disabled, minimizing unnecessary operations and overhead.
  • (deps) #19810 Upgrade prometheus version and fix API breaking change due to prometheus bump.
  • (deps) #19810 Bump cosmossdk.io/store to v1.1.0.
  • (server) #19884 Add start customizability to start command options.
  • (x/gov) #19853 Emit depositor in EventTypeProposalDeposit.
  • (x/gov) #19844 Emit the proposer of governance proposals.
  • (baseapp) #19616 Don't share gas meter in tx execution.

Bug Fixes

  • (x/authz) #20114 Follow up of GHSA-4j93-fm92-rp4m for x/authz.
  • (crypto) #19691 Fix tx sign doesn't throw an error when incorrect Ledger is used.
  • (baseapp) #19970 Fix default config values to use no-op mempool as default.
  • (crypto) #20027 secp256r1 keys now implement gogoproto's customtype interface.
  • (x/bank) #20028 Align query with multi denoms for send-enabled.

v0.50.5 - 2024-03-12

Features

  • (baseapp) #19626 Add DisableBlockGasMeter option to BaseApp, which removes the block gas meter during transaction execution.

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/cosmos/cosmos-sdk](https://github.com/cosmos/cosmos-sdk) from 0.50.4 to 0.50.7.
- [Release notes](https://github.com/cosmos/cosmos-sdk/releases)
- [Changelog](https://github.com/cosmos/cosmos-sdk/blob/main/CHANGELOG.md)
- [Commits](cosmos/cosmos-sdk@v0.50.4...v0.50.7)

---
updated-dependencies:
- dependency-name: github.com/cosmos/cosmos-sdk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jun 27, 2024
Copy link
Author

dependabot bot commented on behalf of github Jun 27, 2024

The following labels could not be found: A:automerge.

Copy link

This pull request has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

@github-actions github-actions bot added the Stale label Jul 28, 2024
@github-actions github-actions bot closed this Aug 1, 2024
Copy link
Author

dependabot bot commented on behalf of github Aug 1, 2024

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/go_modules/tools/hubl/github.com/cosmos/cosmos-sdk-0.50.7 branch August 1, 2024 00:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
C:Hubl dependencies Pull requests that update a dependency file Stale
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants