This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade ethers from 5.7.1 to 6.12.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 68 versions ahead of your current version.

• The recommended version was released on 2 months ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-2863123	292	No Known Exploit
	Uncaught Exception SNYK-JS-YAML-5458867	292	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	292	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GETFUNCNAME-5923417	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-2863123	292	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-2863123	292	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UNDICI-3323845	292	Proof of Concept
	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	292	Proof of Concept
	Improper Input Validation SNYK-JS-OPENZEPPELINCONTRACTS-5425051	292	No Known Exploit
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	292	No Known Exploit
	Improper Input Validation SNYK-JS-OPENZEPPELINCONTRACTS-5711902	292	No Known Exploit
	Improper Encoding or Escaping of Output SNYK-JS-OPENZEPPELINCONTRACTS-5838352	292	No Known Exploit
	Out-of-bounds Read SNYK-JS-OPENZEPPELINCONTRACTS-6346765	292	No Known Exploit
	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	292	Proof of Concept
	CRLF Injection SNYK-JS-UNDICI-3323844	292	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WORDWRAP-3149973	292	Proof of Concept
	Denial of Service (DoS) SNYK-JS-OPENZEPPELINCONTRACTS-5425827	292	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	292	Proof of Concept
	Missing Authorization SNYK-JS-OPENZEPPELINCONTRACTS-5672116	292	No Known Exploit
	Information Exposure SNYK-JS-UNDICI-5962466	292	No Known Exploit
	Permissive Cross-domain Policy with Untrusted Domains SNYK-JS-UNDICI-6252336	292	No Known Exploit
	Improper Access Control SNYK-JS-UNDICI-6564963	292	No Known Exploit
	Improper Authorization SNYK-JS-UNDICI-6564964	292	No Known Exploit

Release notes

Package name: ethers

• 6.12.1 - 2024-05-01
  
  • Prevent bad Interface clone when using two different versions of v6 (#4689; 4d2d90f).
  • Fixed typo in error message for invalid quorum weight (#4149; 45b9b9c).
  • Added matic-amoy to EtherescanProvider (#4711; 5c8d17a).
  • Fix JsonRpcProvider ignoring pollingInterval in options (#4644; 7b7be0d).
• 6.12.0 - 2024-04-17
  
  • Added Linea Sepolia network and Infura endpoint (#4655; b4aaab8).
  • Do not send unsubscribe messages to destroyed Providers (#4678; c45935e).
  • Get definitive network from InfuraProvider when using InfuraWebSocketProvider (38e32d8).
  • Better error messages for transaction field mismatch (#4659; 9230aa0).
  • Added prevRandao to block (#3372; ec6a754).
  • Added Polygon Amoy testnet (#4645; 1717abb).
  • Added Chainstack provider (#2741; 014004d).
  • Added deep convertion to Result for toObject and toArray (#4681; 03bfe2a).
  • Added EIP-4844 broadcast support (92bad88).
  • Fix ignored throttle parameters (#4663; 12772e9).
• 6.12.0-beta.1 - 2024-03-27
  
  • Added EIP-4844 broadcast support.
  • Fix ignored throttle parameters (#4663; 12772e9).
• 6.11.1 - 2024-02-14
  
  • Throw an error when attempting to derive from a master path from a non-master node (#4551; 556fdd9).
  • Allow ENS wildcards with labels up to 255 bytes wide; discussed with ENS and deemed safe (#4543; 7f14bde).
  • Enforce string is passed to toUtf8Bytes (#4583; f45bb87).
  • Fix transaction.index not being populated on some backends (#4591; 7f0e140).
• 6.11.0 - 2024-02-09
  
  • Allow transaction encoding for inferred type transactions (f02211d).
  • Added EIP-4788, receipts root and state root fields to Block (#4570; c5f126f).
  • Added EIP-4844 fields to Provider classes and formatter (#4570; 7b4f2c1).
  • Assert BrowserProvider receives an EIP-1193 provider to fail early when passing undefined ethereum object (b69f43b).
  • Add timeout to ContractTransactionResponse wait (#4497; 095de51).
  • Allow override keyword in human-readable ABI and improve error messages (#4514, #4548; be5ec2d).
  • Expand Contract sub-class to accept BaseContract super-class constructor arguments (#4538; 98496bc).
  • Allow network for default provider to be null to select mainnet (#4501; b6bf7ab).
  • Allow long dnsEncode names with optional length parameter (#4543; a136348).
  • Fix parseLog signature when receiving read-only array for topics (#4029, #4459; 20cd8a2).
  • Use Secure endpoints for BNB on Etherscan (#4525; 1f6e188).
  • Added holesky network and related end-points for supporting providers (c6e6c43).
  • Added EIP-4844 BLOb transactions (#4554; 9c1e82e).
  • Normalize EIP-712 types before computing the payload (#4541; 56c1361).
  • Updated thrid-part provider URLs for QuickNode (2b4891d).
  • Fixed normalization and abstracted EIP-712 Array parsing (#4541; 8f99601).
  • Updated third-party provider network URLs (#4542; 84ca14f).
  • Added additional sepolia testnets (4efef76).
  • Fix EIP-712 type aliases for uint and int (#4541; 43fb9c2).
  • Fixed typo in Error string (#4539; 7882905).
  • Better debugging output on fetch errors (bee07a0).
• 6.10.0 - 2024-01-13
  
  • Limit decoded result imflation ratio from ABI-encoded data (#4537; 1b4debd).
• 6.9.2 - 2024-01-03
  
  • Fix Base58 padding for string representation of binary data (#4527; ccac24a).
• 6.9.1 - 2023-12-20
  
  • Fix uncatchable issue when sending transactions over JSON-RPC and provide some retry-recovery for missing v (#4513; 1802215).
• 6.9.0 - 2023-11-27
  
  • Use provider-specified suggested priority fee when available, otherwise fallback onto existing logic of 1 gwei (#4463; f8f11c7).
  • Add auto-detected static network support to providers and allow customizing socket provider options (#4199, #4418, #4441; 4681b83).
  • Added Base network to AlchemyProvider (#4384; 9e74d14).
  • Fixed ParamType formatting causing bad tuple full and minimal ABI output (#4329, #4479; 2b67488).
  • Adjust for provider config weight when kicking off a request in FallbackProvider (#4298; da34e35).
  • More robust FallbackProvider broadcast (#4186, #4297, #4442; e2485b8).
  • Added safe and finalized provider events (#3921; a92766e).
• 6.8.1 - 2023-11-01
  
  • Fixed typo in error description when converting values to arrays (#4427, #4446; 8fed2f8).
  • Fix invalid token nonpayable being included in formatted constructor (#4412; 2e0bd90).
  • Add ENS support for Sepolia (#4422; 1da50ae).
• 6.8.0 - 2023-10-11
• 6.7.1 - 2023-08-15
• 6.7.0 - 2023-08-03
• 6.6.7 - 2023-07-28
• 6.6.6 - 2023-07-28
• 6.6.5 - 2023-07-24
• 6.6.4 - 2023-07-16
• 6.6.3 - 2023-07-12
• 6.6.2 - 2023-06-28
• 6.6.1 - 2023-06-23
• 6.6.0 - 2023-06-14
• 6.5.1 - 2023-06-08
• 6.5.0 - 2023-06-07
• 6.4.2 - 2023-06-06
• 6.4.1 - 2023-06-02
• 6.4.0 - 2023-05-20
• 6.3.0 - 2023-04-07
• 6.2.3 - 2023-03-28
• 6.2.2 - 2023-03-24
• 6.2.1 - 2023-03-23
• 6.2.0 - 2023-03-20
• 6.1.0 - 2023-03-07
• 6.0.8 - 2023-02-23
• 6.0.7 - 2023-02-23
• 6.0.6 - 2023-02-23
• 6.0.5 - 2023-02-19
• 6.0.4 - 2023-02-16
• 6.0.3 - 2023-02-13
• 6.0.2 - 2023-02-04
• 6.0.1 - 2023-02-04
• 6.0.0 - 2023-02-03
• 6.0.0-beta-exports.16 - 2023-02-02
• 6.0.0-beta-exports.15 - 2023-01-31
• 6.0.0-beta-exports.14 - 2023-01-27
• 6.0.0-beta-exports.13 - 2023-01-27
• 6.0.0-beta-exports.12 - 2023-01-27
• 6.0.0-beta-exports.11 - 2023-01-22
• 6.0.0-beta-exports.10 - 2023-01-15
• 6.0.0-beta-exports.9 - 2022-12-30
• 6.0.0-beta-exports.8 - 2022-12-10
• 6.0.0-beta-exports.7 - 2022-11-30
• 6.0.0-beta-exports.6 - 2022-11-09
• 6.0.0-beta-exports.5 - 2022-11-09
• 6.0.0-beta-exports.4 - 2022-10-01
• 6.0.0-beta-exports.3 - 2022-09-30
• 6.0.0-beta-exports.2 - 2022-09-27
• 6.0.0-beta-exports.1 - 2022-09-16
• 6.0.0-beta-exports.0 - 2022-09-05
• 6.0.0-beta.9 - 2022-04-20
• 6.0.0-beta.8 - 2022-04-20
• 6.0.0-beta.7 - 2022-04-20
• 6.0.0-beta.6 - 2022-04-20
• 6.0.0-beta.5 - 2022-04-19
• 6.0.0-beta.4 - 2022-04-17
• 6.0.0-beta.3 - 2022-04-14
• 6.0.0-beta.2 - 2022-04-11
• 6.0.0-beta.1 - 2022-04-11
• 5.7.2 - 2022-10-19
• 5.7.1 - 2022-09-14

from ethers GitHub release notes

---

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs