Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

deps: bump @metamask/utils to 5.0.1 #1211

Merged
merged 9 commits into from
Apr 19, 2023
Merged

deps: bump @metamask/utils to 5.0.1 #1211

merged 9 commits into from
Apr 19, 2023

Conversation

legobeat
Copy link
Contributor

Description

This has been broken out from #1184 - see there for further context.

Changes

  • CHANGED: Bump @metamask/utils from 3 to 5 in all packages
  • FIXED: dedupe yarn.lock dependencies
    • narrowing to ethereumjs and bn related deps - this does not constitute a complete dedupe
  • CHANGED: @metamask/controller-utils hexToBN returns 0 by default
    • required due to yarn.lock dedupe

Checklist

  • I've updated the test suite for new or updated code as appropriate
  • I've updated documentation for new or updated code as appropriate (note: this will usually be JSDoc)
  • I've highlighted breaking changes using the "BREAKING" category above as appropriate

@legobeat legobeat mentioned this pull request Apr 19, 2023
Open
3 tasks
@socket-security
Copy link

New dependency changes detected. Learn more about Socket for GitHub ↗︎

👍 No new dependency issues detected in pull request

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@* or ignore all packages with @SocketSecurity ignore-all

Pull request alert summary
Issue Status
Install scripts ✅ 0 issues
Native code ✅ 0 issues
Bin script shell injection ✅ 0 issues
Unresolved require ✅ 0 issues
Invalid package.json ✅ 0 issues
HTTP dependency ✅ 0 issues
Git dependency ✅ 0 issues
Potential typo squat ✅ 0 issues
Known Malware ✅ 0 issues
Telemetry ✅ 0 issues
Protestware/Troll package ✅ 0 issues

📊 Modified Dependency Overview:

➕ Added Package Capability Access +/- Transitive Count Publisher
@metamask/utils@5.0.1 None +6 metamaskbot

@legobeat legobeat marked this pull request as ready for review April 19, 2023 04:54
@legobeat legobeat requested a review from a team as a code owner April 19, 2023 04:54
@legobeat legobeat requested a review from Mrtenz April 19, 2023 04:55
@legobeat legobeat merged commit eca9f25 into MetaMask:main Apr 19, 2023
@legobeat legobeat mentioned this pull request Apr 25, 2023
Merged
MajorLift pushed a commit that referenced this pull request Oct 11, 2023
@legobeat @Mrtenz @MajorLift
deps: bump @metamask/utils to 5.0.1 (#1211)
10a0c78 
Update "@metamask/utils" to version "^5.0.1"

This updates the version of "@metamask/utils" to version "^5.0.1" in all relevant package.json files and the yarn.lock file.

* dedupe dependencies
* fix: fall back to 0x0 for undefined input in hexToBN
* update lavamoat policy

---------

Co-authored-by: Maarten Zuidhoorn <maarten@zuidhoorn.com>
MajorLift pushed a commit that referenced this pull request Oct 11, 2023
@legobeat @Mrtenz @MajorLift
deps: bump @metamask/utils to 5.0.1 (#1211)
8b2b6fb 
Update "@metamask/utils" to version "^5.0.1"

This updates the version of "@metamask/utils" to version "^5.0.1" in all relevant package.json files and the yarn.lock file.

* dedupe dependencies
* fix: fall back to 0x0 for undefined input in hexToBN
* update lavamoat policy

---------

Co-authored-by: Maarten Zuidhoorn <maarten@zuidhoorn.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mrtenz Mrtenz Mrtenz approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@legobeat @Mrtenz