Skip to content

Release 1.3.23 #239

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
TheLastCicada merged 74 commits into from
Feb 7, 2025
Merged

Release 1.3.23 #239

TheLastCicada merged 74 commits into from
Feb 7, 2025

Conversation

@TheLastCicada
Copy link
Contributor

@TheLastCicada TheLastCicada commented Dec 18, 2024

No description provided.

TheLastCicada and others added 25 commits November 6, 2024 13:18
@TheLastCicada
ci: upgrade from checkoutv3 to v4
268b7ad
@TheLastCicada
Merge pull request #231 from Chia-Network/checkoutv4
e9ccbbe 
ci: upgrade from checkoutv3 to v4
@wwills2
fix: incorrect resource url for cadt organizations sync status
5088617
@TheLastCicada
ci: allow dependabot builds without package signing
9c12016
@TheLastCicada
Merge pull request #233 from Chia-Network/dependabot-builds-yes
b569ed1 
ci: allow dependabot builds without package signing
@dependabot
chore(deps): bump http-proxy-middleware from 2.0.6 to 2.0.7
6f04760 
Bumps [http-proxy-middleware](https://github.com/chimurai/http-proxy-middleware) from 2.0.6 to 2.0.7.
- [Release notes](https://github.com/chimurai/http-proxy-middleware/releases)
- [Changelog](https://github.com/chimurai/http-proxy-middleware/blob/v2.0.7/CHANGELOG.md)
- [Commits](chimurai/http-proxy-middleware@v2.0.6...v2.0.7)

---
updated-dependencies:
- dependency-name: http-proxy-middleware
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps): bump braces from 3.0.2 to 3.0.3
e1c54ce 
Bumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3.
- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)
- [Commits](micromatch/braces@3.0.2...3.0.3)

---
updated-dependencies:
- dependency-name: braces
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps-dev): bump ws from 7.5.9 to 7.5.10
0964775 
Bumps [ws](https://github.com/websockets/ws) from 7.5.9 to 7.5.10.
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@7.5.9...7.5.10)

---
updated-dependencies:
- dependency-name: ws
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@TheLastCicada
Merge pull request #229 from Chia-Network/dependabot/npm_and_yarn/htt…
d759258 
…p-proxy-middleware-2.0.7

chore(deps): bump http-proxy-middleware from 2.0.6 to 2.0.7
@TheLastCicada
Merge pull request #218 from Chia-Network/dependabot/npm_and_yarn/bra…
c2c4b28 
…ces-3.0.3

chore(deps): bump braces from 3.0.2 to 3.0.3
@TheLastCicada
Merge pull request #217 from Chia-Network/dependabot/npm_and_yarn/ws-…
ef44211 
…7.5.10

chore(deps-dev): bump ws from 7.5.9 to 7.5.10
@dependabot
chore(deps): bump express from 4.19.2 to 4.20.0
3ad7378 
Bumps [express](https://github.com/expressjs/express) from 4.19.2 to 4.20.0.
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.19.2...4.20.0)

---
updated-dependencies:
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps): bump micromatch from 4.0.5 to 4.0.8
4aca953 
Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.5 to 4.0.8.
- [Release notes](https://github.com/micromatch/micromatch/releases)
- [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md)
- [Commits](micromatch/micromatch@4.0.5...4.0.8)

---
updated-dependencies:
- dependency-name: micromatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@TheLastCicada
Merge pull request #220 from Chia-Network/dependabot/npm_and_yarn/mic…
974d173 
…romatch-4.0.8

chore(deps): bump micromatch from 4.0.5 to 4.0.8
@TheLastCicada
Merge pull request #232 from Chia-Network/dependabot/npm_and_yarn/exp…
fbfbeeb 
…ress-4.20.0

chore(deps): bump express from 4.19.2 to 4.20.0
@dependabot
chore(deps): bump cookie and express
098bf56 
Bumps [cookie](https://github.com/jshttp/cookie) to 0.7.1 and updates ancestor dependency [express](https://github.com/expressjs/express). These dependencies need to be updated together.


Updates `cookie` from 0.6.0 to 0.7.1
- [Release notes](https://github.com/jshttp/cookie/releases)
- [Commits](jshttp/cookie@v0.6.0...v0.7.1)

Updates `express` from 4.20.0 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](expressjs/express@4.20.0...4.21.2)

---
updated-dependencies:
- dependency-name: cookie
  dependency-type: indirect
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
chore(deps): bump send and express
5d13c09 
Bumps [send](https://github.com/pillarjs/send) to 0.19.0 and updates ancestor dependency [express](https://github.com/expressjs/express). These dependencies need to be updated together.


Updates `send` from 0.18.0 to 0.19.0
- [Release notes](https://github.com/pillarjs/send/releases)
- [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md)
- [Commits](pillarjs/send@0.18.0...0.19.0)

Updates `express` from 4.20.0 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](expressjs/express@4.20.0...4.21.2)

---
updated-dependencies:
- dependency-name: send
  dependency-type: indirect
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@TheLastCicada
Merge pull request #234 from Chia-Network/dependabot/npm_and_yarn/mul…
ea66909 
…ti-d74e9e8b49

chore(deps): bump cookie and express
@TheLastCicada
Merge pull request #235 from Chia-Network/dependabot/npm_and_yarn/mul…
35790f4 
…ti-db17b8dbde

chore(deps): bump send and express
@TheLastCicada
ci: update everything to v4
a130d0c
@TheLastCicada
Merge pull request #236 from Chia-Network/v4
f28fdba 
ci: update everything to v4
@wwills2
Merge pull request #237 from Chia-Network/correct-org-sync-endpoint
f1f1d7b 
fix: incorrect resource url for cadt organizations sync status
@TheLastCicada
ci: introduce rc workflow and update dependencies
3334d7a
@TheLastCicada
chore: version bump
8f7e0f1
@TheLastCicada
Merge pull request #238 from Chia-Network/rc-workflow
5e441b5 
ci: introduce rc workflow and update dependencies
@socket-security
Copy link

socket-security bot commented Dec 18, 2024
edited
Loading

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@chia-carbon/core-registry-logger@1.0.13 🔁 npm/@chia-carbon/core-registry-logger@1.0.12 None 0 24 kB chia-automation
npm/@yao-pkg/pkg@5.16.1 🔁 npm/@yao-pkg/pkg@5.12.0 Transitive: network +90 8.6 MB roberts_lando
npm/body-parser@1.20.3 🔁 npm/body-parser@1.20.2 Transitive: environment, eval, filesystem, unsafe +40 1.55 MB ulisesgascon
npm/chai@4.5.0 🔁 npm/chai@4.4.1 None +7 910 kB chaijs
npm/chia-datalayer@2.0.20 🔁 npm/chia-datalayer@2.0.14 None +1 27.4 kB michaeltaylor3d
npm/dotenv@16.4.7 🔁 npm/dotenv@16.4.5 None 0 75.8 kB motdotla
npm/express@4.21.2 🔁 npm/express@4.19.2 Transitive: eval, unsafe +62 1.71 MB jonchurch
npm/http-proxy-middleware@2.0.7 🔁 npm/http-proxy-middleware@2.0.6 None +15 2.96 MB chimurai
npm/joi@17.13.3 🔁 npm/joi@17.12.1 None +5 670 kB marsup
npm/nock@13.5.6 🔁 npm/nock@13.5.3 None +2 211 kB nockbot
npm/winston@3.17.0 🔁 npm/winston@3.11.0 Transitive: environment +27 1.7 MB dabh

View full report↗︎

@socket-security
Copy link

socket-security bot commented Dec 18, 2024
edited
Loading

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/@yao-pkg/pkg@5.16.1

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

@TheLastCicada
Copy link
Contributor Author

TheLastCicada commented Dec 18, 2024

@SocketSecurity ignore npm/@yao-pkg/pkg@5.16.1

ChiaAutomation and others added 27 commits January 14, 2025 12:01
@ChiaAutomation
chore: Update license
bff3967
@wwills2
feat: add apple ARM package target
28cd30a
@wwills2
Merge remote-tracking branch 'origin/develop' into develop
5fb883c
@TheLastCicada
Merge pull request #258 from Chia-Network/update-license
061a2a8 
Updated License
@wwills2
fix: cadt commits endpoint path
c383513
@wwills2
fix: retirements task
8479d96
@wwills2
fix: tests
2a6c457 
fix: error handling
@wwills2
chore: dep updates
2eeeca9 
fix: code quality for api key assertion
@TheLastCicada
ci: switch to jinjanate and GH hosted ARM runner
0d7a698
@TheLastCicada
ci: linux arm targeting
3017a4f
@TheLastCicada
Merge pull request #261 from Chia-Network/jinjanate
b6e8c84 
ci: switch to jinjanate and GH hosted ARM runner
@wwills2
fix: over-calling explorer activities endpoint
1c72d96
@wwills2
fix: failing tests part 2
fea4977
@wwills2
fix: failing tests part 2
120c1ce
@wwills2
Merge remote-tracking branch 'origin/fix-retirement-task' into fix-re…
1659791 
…tirement-task
@wwills2
Merge pull request #259 from Chia-Network/fix-retirement-task
308f4f5 
fix: retirements task
@wwills2
Merge branch 'develop' into dep-updates-and-api-verfiction-tweak
7505868
@wwills2
fix: tests part 3
4d2b1e2
@wwills2
Revert "fix: tests part 3"
7a7c199 
This reverts commit 4d2b1e2.
@wwills2
fix: explorer test
f56adda
@wwills2
Merge pull request #263 from Chia-Network/explorer-test-fix
4ee4b4e 
fix: explorer test
@wwills2
Merge pull request #260 from Chia-Network/dep-updates-and-api-verfict…
c6a5350 
…ion-tweak

chore: dep updates
@wwills2
Revert "chore: dep updates"
6475a24
@wwills2
Merge pull request #264 from Chia-Network/revert-260-dep-updates-and-…
80a40d1 
…api-verfiction-tweak

Revert "chore: dep updates"
@wwills2
chore: dep updates
f448798 
feat: code quality tweak
@wwills2
chore: dep updates
6121556 
feat: code quality tweak
@wwills2
Merge remote-tracking branch 'origin/develop' into develop
f2991fe
@TheLastCicada TheLastCicada merged commit e4f43b6 into main Feb 7, 2025
26 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cmmarslender cmmarslender cmmarslender approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@TheLastCicada @cmmarslender @wwills2 @ChiaAutomation