From e6224078aeea63a6d37250ca07be0e7855fbe217 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 7 May 2024 14:43:30 +0000 Subject: [PATCH] fix: upgrade web3 from 0.18.4 to 0.20.7 Snyk has created this PR to upgrade web3 from 0.18.4 to 0.20.7. See this package in npm: https://www.npmjs.com/package/web3 See this project in Snyk: https://app.snyk.io/org/youtardiness/project/468b7fec-a0ae-4e29-afbf-fd9739621a23?utm_source=github&utm_medium=referral&page=upgrade-pr --- .../package-lock.json | 63 +++++++++++-------- .../git_sub_dep_invalid_from/package.json | 2 +- 2 files changed, 38 insertions(+), 27 deletions(-) diff --git a/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package-lock.json b/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package-lock.json index 990269026e..b214eb5b0d 100644 --- a/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package-lock.json +++ b/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package-lock.json @@ -10,18 +10,21 @@ "license": "ISC", "dependencies": { "fetch-factory": "^0.0.1", - "web3": "0.18.4" + "web3": "^0.20.7" } }, "node_modules/bignumber.js": { "version": "2.0.7", - "resolved": "git+ssh://git@github.com/debris/bignumber.js.git#94d7146671b9719e00a09c29b01a691bc85048c2", - "integrity": "sha512-rjbVI8RX9gb0ly+xdEF9qu6Xq7c8uAurfHK7nt/sAtyYKdv7zKYv9zGk/dg+Ofyy+rgdDYpp1qIsI19pubVjAg==", - "license": "MIT", + "resolved": "git+ssh://git@github.com/frozeman/bignumber.js-nolookahead.git#57692b3ecfc98bbdd6b3a516cb2353652ea49934", "engines": { "node": "*" } }, + "node_modules/cookiejar": { + "version": "2.1.4", + "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.4.tgz", + "integrity": "sha512-LDx6oHrK+PhzLKJU9j5S7/Y3jM/mUHvD/DeI1WQmJn652iPC5Y4TBzC9l+5OMOXlyTTA+SmVUPm0HQUwpD5Jqw==" + }, "node_modules/crypto-js": { "version": "3.1.8", "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.1.8.tgz", @@ -103,14 +106,14 @@ "integrity": "sha1-H6DZJw6b6FDZsFAn9jUZv0ZFfZY=" }, "node_modules/web3": { - "version": "0.18.4", - "resolved": "https://registry.npmjs.org/web3/-/web3-0.18.4.tgz", - "integrity": "sha1-gewXhBRUkfLqqJVbMcBgSeB8Xn0=", + "version": "0.20.7", + "resolved": "https://registry.npmjs.org/web3/-/web3-0.20.7.tgz", + "integrity": "sha512-VU6/DSUX93d1fCzBz7WP/SGCQizO1rKZi4Px9j/3yRyfssHyFcZamMw2/sj4E8TlfMXONvZLoforR8B4bRoyTQ==", "dependencies": { - "bignumber.js": "git+https://github.com/debris/bignumber.js.git#94d7146671b9719e00a09c29b01a691bc85048c2", + "bignumber.js": "git+https://github.com/frozeman/bignumber.js-nolookahead.git", "crypto-js": "^3.1.4", "utf8": "^2.1.1", - "xhr2": "*", + "xhr2-cookies": "^1.1.0", "xmlhttprequest": "*" } }, @@ -119,12 +122,12 @@ "resolved": "https://registry.npmjs.org/whatwg-fetch/-/whatwg-fetch-3.0.0.tgz", "integrity": "sha512-9GSJUgz1D4MfyKU7KRqwOjXCXTqWdFNvEr7eUBYchQiVc744mqK/MzXPNR2WsPkmkOa4ywfg8C2n8h+13Bey1Q==" }, - "node_modules/xhr2": { - "version": "0.1.4", - "resolved": "https://registry.npmjs.org/xhr2/-/xhr2-0.1.4.tgz", - "integrity": "sha1-f4dliEdxbbUCYyOBL4GMras4el8=", - "engines": { - "node": ">= 0.6" + "node_modules/xhr2-cookies": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/xhr2-cookies/-/xhr2-cookies-1.1.0.tgz", + "integrity": "sha512-hjXUA6q+jl/bd8ADHcVfFsSPIf+tyLIjuO9TwJC9WI6JP2zKcS7C+p56I9kCLLsaCiNT035iYvEUUzdEFj/8+g==", + "dependencies": { + "cookiejar": "^2.1.1" } }, "node_modules/xmlhttprequest": { @@ -138,8 +141,13 @@ }, "dependencies": { "bignumber.js": { - "version": "git+ssh://git@github.com/debris/bignumber.js.git#94d7146671b9719e00a09c29b01a691bc85048c2", - "from": "bignumber.js@git+https://github.com/debris/bignumber.js.git#94d7146671b9719e00a09c29b01a691bc85048c2" + "version": "git+ssh://git@github.com/frozeman/bignumber.js-nolookahead.git#57692b3ecfc98bbdd6b3a516cb2353652ea49934", + "from": "bignumber.js@git+https://github.com/frozeman/bignumber.js-nolookahead.git" + }, + "cookiejar": { + "version": "2.1.4", + "resolved": "https://registry.npmjs.org/cookiejar/-/cookiejar-2.1.4.tgz", + "integrity": "sha512-LDx6oHrK+PhzLKJU9j5S7/Y3jM/mUHvD/DeI1WQmJn652iPC5Y4TBzC9l+5OMOXlyTTA+SmVUPm0HQUwpD5Jqw==" }, "crypto-js": { "version": "3.1.8", @@ -216,14 +224,14 @@ "integrity": "sha1-H6DZJw6b6FDZsFAn9jUZv0ZFfZY=" }, "web3": { - "version": "0.18.4", - "resolved": "https://registry.npmjs.org/web3/-/web3-0.18.4.tgz", - "integrity": "sha1-gewXhBRUkfLqqJVbMcBgSeB8Xn0=", + "version": "0.20.7", + "resolved": "https://registry.npmjs.org/web3/-/web3-0.20.7.tgz", + "integrity": "sha512-VU6/DSUX93d1fCzBz7WP/SGCQizO1rKZi4Px9j/3yRyfssHyFcZamMw2/sj4E8TlfMXONvZLoforR8B4bRoyTQ==", "requires": { - "bignumber.js": "git+https://github.com/debris/bignumber.js.git#94d7146671b9719e00a09c29b01a691bc85048c2", + "bignumber.js": "git+https://github.com/frozeman/bignumber.js-nolookahead.git", "crypto-js": "^3.1.4", "utf8": "^2.1.1", - "xhr2": "*", + "xhr2-cookies": "^1.1.0", "xmlhttprequest": "*" } }, @@ -232,10 +240,13 @@ "resolved": "https://registry.npmjs.org/whatwg-fetch/-/whatwg-fetch-3.0.0.tgz", "integrity": "sha512-9GSJUgz1D4MfyKU7KRqwOjXCXTqWdFNvEr7eUBYchQiVc744mqK/MzXPNR2WsPkmkOa4ywfg8C2n8h+13Bey1Q==" }, - "xhr2": { - "version": "0.1.4", - "resolved": "https://registry.npmjs.org/xhr2/-/xhr2-0.1.4.tgz", - "integrity": "sha1-f4dliEdxbbUCYyOBL4GMras4el8=" + "xhr2-cookies": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/xhr2-cookies/-/xhr2-cookies-1.1.0.tgz", + "integrity": "sha512-hjXUA6q+jl/bd8ADHcVfFsSPIf+tyLIjuO9TwJC9WI6JP2zKcS7C+p56I9kCLLsaCiNT035iYvEUUzdEFj/8+g==", + "requires": { + "cookiejar": "^2.1.1" + } }, "xmlhttprequest": { "version": "1.8.0", diff --git a/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package.json b/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package.json index b1e7fb2727..d66093513d 100644 --- a/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package.json +++ b/npm_and_yarn/spec/fixtures/projects/npm8/git_sub_dep_invalid_from/package.json @@ -10,6 +10,6 @@ "license": "ISC", "dependencies": { "fetch-factory": "^0.0.1", - "web3": "0.18.4" + "web3": "0.20.7" } }