-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Snyk] Fix for 4 vulnerabilities #7244
base: 4.x
Are you sure you want to change the base?
Conversation
…ties The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACES-6838727 - https://snyk.io/vuln/SNYK-JS-SEMVER-3247795 - https://snyk.io/vuln/SNYK-JS-JSON5-3182856 - https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728
Bundle StatsHey there, this message comes from a GitHub action that helps you and reviewers to understand how these changes affect the size of this project's bundle. As this PR is updated, I'll keep you updated on how the bundle size is impacted. Total
Changeset No files were changed View detailed bundle breakdownAdded No assets were added Removed No assets were removed Bigger No assets were bigger Smaller No assets were smaller Unchanged
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Benchmark
Benchmark suite | Current: 735b7f1 | Previous: b86d8ca | Ratio |
---|---|---|---|
processingTx |
20105 ops/sec (±7.84% ) |
22440 ops/sec (±7.06% ) |
1.12 |
processingContractDeploy |
38463 ops/sec (±6.33% ) |
38564 ops/sec (±7.90% ) |
1.00 |
processingContractMethodSend |
15115 ops/sec (±9.45% ) |
16696 ops/sec (±7.81% ) |
1.10 |
processingContractMethodCall |
27825 ops/sec (±6.46% ) |
27650 ops/sec (±7.82% ) |
0.99 |
abiEncode |
42595 ops/sec (±7.00% ) |
44651 ops/sec (±6.88% ) |
1.05 |
abiDecode |
29583 ops/sec (±7.65% ) |
30424 ops/sec (±7.61% ) |
1.03 |
sign |
1488 ops/sec (±3.09% ) |
1574 ops/sec (±0.58% ) |
1.06 |
verify |
363 ops/sec (±0.41% ) |
365 ops/sec (±2.65% ) |
1.01 |
This comment was automatically generated by workflow using github-action-benchmark.
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## 4.x #7244 +/- ##
=======================================
Coverage 94.44% 94.44%
=======================================
Files 216 216
Lines 8454 8454
Branches 2335 2335
=======================================
Hits 7984 7984
Misses 470 470
Flags with carried forward coverage won't be shown. Click here to find out more. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
eslint test should be fixed
Snyk has created this PR to fix 4 vulnerabilities in the yarn dependencies of this project.
Snyk changed the following file(s):
tools/eslint-config-base-web3/package.json
Note for zero-installs users
If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the
.yarn/cache/
directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to runyarn
to update the contents of the./yarn/cache
directory.If you are not using zero-install you can ignore this as your flow should likely be unchanged.
Vulnerabilities that will be fixed with an upgrade:
SNYK-JS-BRACES-6838727
SNYK-JS-SEMVER-3247795
SNYK-JS-JSON5-3182856
SNYK-JS-MICROMATCH-6838728
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Uncontrolled resource consumption
🦉 Prototype Pollution