chore: bump @solana/spl-token from 0.3.8 to 0.4.0

[dependabot]

Bumps @solana/spl-token from 0.3.8 to 0.4.0.

Release notes

Sourced from @​solana/spl-token's releases.

SPL Token JS - v0.4.0

This change repairs two notable bugs in the Token JS client:

• Removes and replaces the broken addExtraAccountsToInstruction with the new offchain helper addExtraAccountMetasForExecute. Fixes #6064.
• Adds serialization support to various instructions to properly serialize a COption::None. Fixes #6113.

What's Changed

• token js: create new offchain helper by @​buffalojoec in solana-labs/solana-program-library#6108
• token 2022 & transfer hook: drop deprecated helpers by @​buffalojoec in solana-labs/solana-program-library#6122
• token-js: add COption<Pubkey> support to InitializeTransferFeeConfig instruction by @​buffalojoec in solana-labs/solana-program-library#6164
• fix: Use COptionPubkeyLayout for all COption fields by @​qiweiii in solana-labs/solana-program-library#6173
• token js: bump to 0.4.0 by @​buffalojoec in solana-labs/solana-program-library#6188

Shout out to @​qiweiii for the contributions!!

SPL Token JS - v0.3.10

Summary

SPL Token JS now leverages the new SPL Token Metadata JS library to manage token metadata alongside Token2022 mints. All instructions from the SPL Token Metadata interface (implemented by Token2022) are now supported in @solana/[email protected]. Developers can also deserialize token metadata from a mint as well.

Shout out to @​mistersimon for the token metadata support (#5667)!

What's Changed

• js: remove workspace paths by @​buffalojoec in solana-labs/solana-program-library#5969
• Adding Token Metadata Support to @​solana/spl-token by @​mistersimon in solana-labs/solana-program-library#5667
• token js: bump to 0.3.10 by @​buffalojoec in solana-labs/solana-program-library#6018

SPL Transfer Hook Example v0.4.0

The example program has been updated to implement the new UpdateExtraAccountMetaList instruction from the SPL Transfer Hook interface!

Shout out to @​tonton-sol for the PR! #5894

SPL Token JS - v0.3.9

Introduces support for new Token2022 extension functionality:

• TransferHook extension:
  • Account data seed configurations for account resolution (#5815)
  • Account meta de-escalation checks when adding extra metas to instructions (#5816)
  • Accounts list ordering ensured to match Rust offchain implementation (#5817)
• MetadataPointer extension:
  • Adds the MetadataPointer extension to the library's extension support (#5805)

Thanks for the contributions, @​mistersimon !

SPL TLV Account Resolution - v0.4.0

What's new

Miscellaneous Tasks

• Bump token-2022 and all dependencies (#5189)
• Bump bytemuck from 1.13.1 to 1.14.0 (#5210)

Other

... (truncated)

Commits

• 97beb54 token js: bump to 0.4.0 (#6188)
• 260f809 build(deps): bump strum from 0.25.0 to 0.26.1 (#6196)
• afd6031 build(deps): bump serde_json from 1.0.111 to 1.0.113 (#6195)
• ac0ea80 build(deps): bump strum_macros from 0.25.3 to 0.26.1 (#6197)
• 6e364b8 build(deps): bump serde_yaml from 0.9.30 to 0.9.31 (#6194)
• b1eca6c build(deps): bump serde from 1.0.195 to 1.0.196 (#6193)
• 5e4badf reduce cluttering by removing debug print command (#6191)
• efc68c3 token-2022: Bump to v2 (#6187)
• 8938033 Update solana dependency version to allow 2.0.0 (#6182)
• d74ba01 build(deps-dev): bump @​types/node from 20.11.6 to 20.11.7 (#6186)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by buffalojoec, a new releaser for @​solana/spl-token since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@solana/[email protected]	Transitive: environment, filesystem, network, shell	+55	28.6 MB

🚮 Removed packages: npm/@solana/[email protected]

View full report↗︎

[github-actions]

🎉 This PR is included in version 1.90.0 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀

[github-actions]

Because there has been no activity on this PR for 14 days since it was merged, it has been automatically locked. Please open a new issue if it requires a follow up.