build(deps): bump rocksdb & core & update ci codeowners

[julienrbrt]

Description

bump cometbft-db indirect import to 0.15, and rocksdb

Bump for consistency with 0.52, due to cometbft-db 0.15.0 usage (#21598).
Bump core to alpha.2
Update codeowners for ci and scripts

---

Author Checklist

All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.

I have...

• included the correct type prefix in the PR title, you can find examples of the prefixes below:
• confirmed ! in the type prefix if API or client breaking change
• targeted the correct branch (see PR Targeting)
• provided a link to the relevant issue or specification
• reviewed "Files changed" and left comments if necessary
• included the necessary unit and integration tests
• added a changelog entry to CHANGELOG.md
• updated the relevant documentation or specification, including comments for documenting Go code
• confirmed all CI checks have passed

Reviewers Checklist

All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.

Please see Pull Request Reviewer section in the contributing guide for more information on how to review a pull request.

I have...

• confirmed the correct type prefix in the PR title
• confirmed all author checklist items have been addressed
• reviewed state machine logic, API design and naming, documentation is accurate, tests and test coverage

Summary by CodeRabbit

• New Features

  • Enhanced code ownership management by assigning responsibilities for CI and build-related components.
  • Introduced server.DynamicConfig for improved configuration management flexibility.

• Bug Fixes

  • Updated Go version from 1.23 to 1.23.1 in multiple modules, which may include bug fixes and improvements.

• Chores

  • Upgraded the RocksDB version across various workflows, potentially enhancing performance and stability.
  • Updated several indirect dependencies in multiple modules to their latest versions, ensuring compatibility and security.

• Style

  • Minor formatting change in the GitHub Actions workflow configuration for improved readability.

[coderabbitai]

Walkthrough

Walkthrough

The pull request includes updates to GitHub Actions workflow files, Go module files, and introduces a new .github/CODEOWNERS file. Key changes involve upgrading the environment variable ROCKSDB_VERSION from 8.11.3 to 9.6.1 in the workflow files, incrementing the Go version from 1.23 to 1.23.1, and updating several indirect dependencies. Additionally, the new CODEOWNERS file assigns ownership for various directories and files related to continuous integration and build processes.

Changes

Files	Change Summary
.github/workflows/build.yml, .github/workflows/lint.yml, .github/workflows/test.yml	Updated ROCKSDB_VERSION from 8.11.3 to 9.6.1. Minor formatting change in test.yml.
client/v2/go.mod, go.mod, server/v2/cometbft/go.mod, simapp/go.mod, simapp/v2/go.mod, tests/go.mod, x/accounts/defaults/lockup/go.mod, x/accounts/defaults/multisig/go.mod, x/accounts/go.mod, x/authz/go.mod, x/bank/go.mod, x/circuit/go.mod, x/consensus/go.mod, x/distribution/go.mod, x/epochs/go.mod, x/evidence/go.mod, x/feegrant/go.mod, x/gov/go.mod, x/group/go.mod, x/mint/go.mod, x/nft/go.mod, x/params/go.mod, x/protocolpool/go.mod	Updated Go version from 1.23 to 1.23.1 and various indirect dependencies to their latest versions.
.github/CODEOWNERS	Added ownership for paths related to CI and build processes, assigning owners @auricom, @julienrbrt, and @tac0turtle.

Possibly related PRs

• ci: remove nix from gh workflows #21572: This PR modifies the .github/workflows/build.yml and .github/workflows/lint.yml files to include the ROCKSDB_VERSION environment variable, which is directly related to the changes in the main PR that also updates the ROCKSDB_VERSION in these workflow files.
• build(deps): bump to core v1.0.0-alpha.1 and remove replaces #21603: This PR updates the go.mod files to use the new core version v1.0.0-alpha.1, which may be relevant as it could affect the dependencies related to the CI and build processes mentioned in the main PR.
• refactor(store/v2): human readable ss/sc types #21645: This PR introduces support for RocksDB in the Cosmos SDK, which is directly related to the changes in the main PR that involve managing RocksDB versions and configurations.
• ci: rocksdb version in makefile #21654: This PR introduces a script to dynamically retrieve the ROCKSDB_VERSION from a Makefile, which aligns with the main PR's focus on managing the ROCKSDB_VERSION in the workflow files.

Suggested labels

C:Store, backport/v0.52.x

---

Recent review details

Configuration used: .coderabbit.yml
Review profile: CHILL

Commits

Files that changed from the base of the PR and between bcfbc40 and a66222d.

Files ignored due to path filters (27)

• client/v2/go.sum is excluded by !**/*.sum
• go.sum is excluded by !**/*.sum
• runtime/v2/go.sum is excluded by !**/*.sum
• server/v2/cometbft/go.sum is excluded by !**/*.sum
• simapp/go.sum is excluded by !**/*.sum
• simapp/v2/go.sum is excluded by !**/*.sum
• tests/go.sum is excluded by !**/*.sum
• x/accounts/defaults/lockup/go.sum is excluded by !**/*.sum
• x/accounts/defaults/multisig/go.sum is excluded by !**/*.sum
• x/accounts/go.sum is excluded by !**/*.sum
• x/authz/go.sum is excluded by !**/*.sum
• x/bank/go.sum is excluded by !**/*.sum
• x/circuit/go.sum is excluded by !**/*.sum
• x/consensus/go.sum is excluded by !**/*.sum
• x/distribution/go.sum is excluded by !**/*.sum
• x/epochs/go.sum is excluded by !**/*.sum
• x/evidence/go.sum is excluded by !**/*.sum
• x/feegrant/go.sum is excluded by !**/*.sum
• x/gov/go.sum is excluded by !**/*.sum
• x/group/go.sum is excluded by !**/*.sum
• x/mint/go.sum is excluded by !**/*.sum
• x/nft/go.sum is excluded by !**/*.sum
• x/params/go.sum is excluded by !**/*.sum
• x/protocolpool/go.sum is excluded by !**/*.sum
• x/slashing/go.sum is excluded by !**/*.sum
• x/staking/go.sum is excluded by !**/*.sum
• x/upgrade/go.sum is excluded by !**/*.sum

Files selected for processing (28)

• client/v2/go.mod (5 hunks)
• core/CHANGELOG.md (1 hunks)
• go.mod (5 hunks)
• runtime/v2/go.mod (0 hunks)
• server/v2/cometbft/go.mod (6 hunks)
• simapp/go.mod (6 hunks)
• simapp/v2/go.mod (6 hunks)
• tests/go.mod (6 hunks)
• x/accounts/defaults/lockup/go.mod (5 hunks)
• x/accounts/defaults/multisig/go.mod (5 hunks)
• x/accounts/go.mod (5 hunks)
• x/authz/go.mod (5 hunks)
• x/bank/go.mod (5 hunks)
• x/circuit/go.mod (5 hunks)
• x/consensus/go.mod (5 hunks)
• x/distribution/go.mod (5 hunks)
• x/epochs/go.mod (5 hunks)
• x/evidence/go.mod (5 hunks)
• x/feegrant/go.mod (5 hunks)
• x/gov/go.mod (5 hunks)
• x/group/go.mod (6 hunks)
• x/mint/go.mod (5 hunks)
• x/nft/go.mod (5 hunks)
• x/params/go.mod (5 hunks)
• x/protocolpool/go.mod (5 hunks)
• x/slashing/go.mod (5 hunks)
• x/staking/go.mod (6 hunks)
• x/upgrade/go.mod (6 hunks)

Files not reviewed due to no reviewable changes (1)

• runtime/v2/go.mod

Files skipped from review due to trivial changes (6)

• go.mod
• server/v2/cometbft/go.mod
• simapp/v2/go.mod
• x/accounts/defaults/multisig/go.mod
• x/authz/go.mod
• x/feegrant/go.mod

Files skipped from review as they are similar to previous changes (20)

• client/v2/go.mod
• simapp/go.mod
• tests/go.mod
• x/accounts/defaults/lockup/go.mod
• x/accounts/go.mod
• x/bank/go.mod
• x/circuit/go.mod
• x/consensus/go.mod
• x/distribution/go.mod
• x/epochs/go.mod
• x/evidence/go.mod
• x/gov/go.mod
• x/group/go.mod
• x/mint/go.mod
• x/nft/go.mod
• x/params/go.mod
• x/protocolpool/go.mod
• x/slashing/go.mod
• x/staking/go.mod
• x/upgrade/go.mod

Additional context used

Path-based instructions (1)

core/CHANGELOG.md (1)

Pattern **/*.md: "Assess the documentation for misspellings, grammatical errors, missing documentation and correctness"

Additional comments not posted (2)

core/CHANGELOG.md (2)

40-41: LGTM!

The new release version is correctly added to the changelog and linked to the GitHub tag.

---

42-44: LGTM!

The new feature is documented correctly in the changelog, with a clear description and a link to the relevant pull request.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai generate interesting stats about this repository and render them as a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 0

Outside diff range and nitpick comments (1)

client/v2/go.mod (1)

Line range hint 185-193: Don't forget to address the TODO comment.

The TODO comment indicates that the replace directives should be removed after spinning out all modules. It's important to keep track of such comments and address them in a timely manner to maintain a clean codebase.

Consider creating a separate issue or task to track the removal of the replace directives and ensure it's not forgotten.

Do you need any assistance with spinning out the modules and removing the replace directives? I'd be happy to help!

Review details

Configuration used: .coderabbit.yml
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 071aa50 and 841b634.

Files ignored due to path filters (26)

• client/v2/go.sum is excluded by !**/*.sum
• go.sum is excluded by !**/*.sum
• server/v2/cometbft/go.sum is excluded by !**/*.sum
• simapp/go.sum is excluded by !**/*.sum
• simapp/v2/go.sum is excluded by !**/*.sum
• tests/go.sum is excluded by !**/*.sum
• x/accounts/defaults/lockup/go.sum is excluded by !**/*.sum
• x/accounts/defaults/multisig/go.sum is excluded by !**/*.sum
• x/accounts/go.sum is excluded by !**/*.sum
• x/authz/go.sum is excluded by !**/*.sum
• x/bank/go.sum is excluded by !**/*.sum
• x/circuit/go.sum is excluded by !**/*.sum
• x/consensus/go.sum is excluded by !**/*.sum
• x/distribution/go.sum is excluded by !**/*.sum
• x/epochs/go.sum is excluded by !**/*.sum
• x/evidence/go.sum is excluded by !**/*.sum
• x/feegrant/go.sum is excluded by !**/*.sum
• x/gov/go.sum is excluded by !**/*.sum
• x/group/go.sum is excluded by !**/*.sum
• x/mint/go.sum is excluded by !**/*.sum
• x/nft/go.sum is excluded by !**/*.sum
• x/params/go.sum is excluded by !**/*.sum
• x/protocolpool/go.sum is excluded by !**/*.sum
• x/slashing/go.sum is excluded by !**/*.sum
• x/staking/go.sum is excluded by !**/*.sum
• x/upgrade/go.sum is excluded by !**/*.sum

Files selected for processing (29)

• .github/workflows/build.yml (1 hunks)
• .github/workflows/lint.yml (1 hunks)
• .github/workflows/test.yml (1 hunks)
• client/v2/go.mod (5 hunks)
• go.mod (4 hunks)
• server/v2/cometbft/go.mod (5 hunks)
• simapp/go.mod (5 hunks)
• simapp/v2/go.mod (5 hunks)
• tests/go.mod (5 hunks)
• x/accounts/defaults/lockup/go.mod (5 hunks)
• x/accounts/defaults/multisig/go.mod (5 hunks)
• x/accounts/go.mod (5 hunks)
• x/authz/go.mod (5 hunks)
• x/bank/go.mod (5 hunks)
• x/circuit/go.mod (5 hunks)
• x/consensus/go.mod (5 hunks)
• x/distribution/go.mod (5 hunks)
• x/epochs/go.mod (5 hunks)
• x/evidence/go.mod (5 hunks)
• x/feegrant/go.mod (5 hunks)
• x/gov/go.mod (5 hunks)
• x/group/go.mod (5 hunks)
• x/mint/go.mod (5 hunks)
• x/nft/go.mod (5 hunks)
• x/params/go.mod (5 hunks)
• x/protocolpool/go.mod (5 hunks)
• x/slashing/go.mod (5 hunks)
• x/staking/go.mod (6 hunks)
• x/upgrade/go.mod (5 hunks)

Files skipped from review due to trivial changes (20)

• go.mod
• server/v2/cometbft/go.mod
• tests/go.mod
• x/accounts/defaults/lockup/go.mod
• x/accounts/defaults/multisig/go.mod
• x/accounts/go.mod
• x/authz/go.mod
• x/bank/go.mod
• x/consensus/go.mod
• x/distribution/go.mod
• x/epochs/go.mod
• x/evidence/go.mod
• x/feegrant/go.mod
• x/group/go.mod
• x/mint/go.mod
• x/nft/go.mod
• x/params/go.mod
• x/protocolpool/go.mod
• x/slashing/go.mod
• x/staking/go.mod

Additional comments not posted (42)

.github/workflows/build.yml (1)

17-17: LGTM! Verify the impact of the RocksDB version upgrade.

The ROCKSDB_VERSION environment variable has been updated to 9.6.1, indicating an upgrade to a newer version of RocksDB. This change is reflected in the cache key for the RocksDB libraries cache.

Please ensure that the updated RocksDB version is compatible with the project and verify that the upgrade does not introduce any unexpected behavior or issues in the components relying on RocksDB.

.github/workflows/lint.yml (1)

13-13: Verify compatibility of the new RocksDB version.

The ROCKSDB_VERSION environment variable has been updated from 8.11.3 to 9.6.1. This change may affect the behavior of jobs or steps that rely on this environment variable.

Please ensure that the new RocksDB version is compatible with the project and doesn't introduce any breaking changes. Consider running comprehensive tests to validate the compatibility and stability of the updated dependency.

Run the following script to verify the compatibility of the new RocksDB version:

If any of the tests yield unexpected results, it may indicate potential compatibility issues with the new RocksDB version. In such cases, please investigate further and consider reverting the version update if necessary.

x/circuit/go.mod (7)

3-3: LGTM!

The Go version update to 1.23.1 is approved.

---

44-44: LGTM!

The github.com/cockroachdb/pebble dependency update to version 1.1.2 is approved.

---

48-48: LGTM, but verify compatibility.

The github.com/cometbft/cometbft-db dependency update to version 0.15.0 is approved.

However, since this is a minor version bump, it is important to verify that the update does not introduce any breaking changes that could affect the functionality of the module.

---

62-62: LGTM, but verify compatibility.

The github.com/dgraph-io/badger/v4 dependency update to version 4.3.0 is approved.

However, since this is a minor version bump, it is important to verify that the update does not introduce any breaking changes that could affect the functionality of the module.

---

63-63: LGTM, but verify compatibility and stability.

The github.com/dgraph-io/ristretto dependency update to version 0.1.2-0.20240116140435-c67e07994f91 is approved.

However, since this is a pre-release version bump, it is important to verify that the update does not introduce any breaking changes or instability that could affect the functionality of the module.

---

80-80: LGTM!

The github.com/google/btree dependency update to version 1.1.3 is approved.

---

107-107: LGTM, but verify compatibility.

The github.com/linxGnu/grocksdb dependency update to version 1.9.3 is approved.

However, since this is a minor version bump, it is important to verify that the update does not introduce any breaking changes that could affect the functionality of the module.

x/gov/go.mod (7)

3-3: Go version update looks good.

Incrementing the Go version from 1.23 to 1.23.1 is a minor update that should not introduce any breaking changes. It likely includes bug fixes and performance improvements.

---

54-54: Dependency update looks good.

Updating github.com/cockroachdb/pebble from v1.1.1 to v1.1.2 is a patch version update that should not introduce any breaking changes. It likely includes bug fixes or minor enhancements.

---

57-57: Verify the impact of the dependency update.

Updating github.com/cometbft/cometbft-db from v0.14.0 to v0.15.0 is a minor version update that may introduce breaking changes or new features.

Please ensure that the update is compatible with the current codebase and does not introduce any unexpected behavior.

---

70-70: Verify the impact of the dependency update.

Updating github.com/dgraph-io/badger/v4 from v4.2.0 to v4.3.0 is a minor version update that may introduce breaking changes or new features.

Please ensure that the update is compatible with the current codebase and does not introduce any unexpected behavior.

---

71-71: Verify the impact of the dependency update.

Updating github.com/dgraph-io/ristretto from v0.1.1 to v0.1.2-0.20240116140435-c67e07994f91 includes a specific commit hash, suggesting a custom or patched version.

Please ensure that the update is necessary and does not introduce any unexpected behavior. Consider documenting the reason for using a specific commit hash instead of a tagged version.

---

87-87: Dependency update looks good.

Updating github.com/google/btree from v1.1.2 to v1.1.3 is a patch version update that should not introduce any breaking changes. It likely includes bug fixes or minor enhancements.

---

114-114: Verify the impact of the dependency update.

Updating github.com/linxGnu/grocksdb from v1.8.14 to v1.9.3 is a minor version update that may introduce breaking changes or new features.

Please ensure that the update is compatible with the current codebase and does not introduce any unexpected behavior.

client/v2/go.mod (2)

3-3: Go version update looks good!

The minor version bump from 1.23 to 1.23.1 should bring bug fixes and improvements without introducing breaking changes.

---

46-46: Dependency updates look good, but verify compatibility and test thoroughly.

The updates to the indirect dependencies appear to be routine version bumps, which is a good practice for maintaining security and compatibility. No major version changes are observed, reducing the risk of breaking changes.

However, it's important to verify that the updated versions are compatible with the rest of the codebase and to thoroughly test the changes to ensure no unexpected issues are introduced.

Also applies to: 50-50, 64-64, 65-65, 83-83, 111-111

x/upgrade/go.mod (7)

3-3: Go version update looks good.

The minor version bump from 1.23 to 1.23.1 should include bug fixes and performance improvements without introducing breaking changes.

---

67-67: Dependency update looks good, but review the changelog.

The minor version bump to github.com/cockroachdb/pebble from v1.1.1 to v1.1.2 suggests improvements or fixes. However, it's a good practice to review the changelog to understand the impact of the changes and ensure compatibility with the current codebase.

---

70-70: Verify the dependency update and review the changelog.

The minor version bump to github.com/cometbft/cometbft-db from v0.14.0 to v0.15.0 suggests new features or significant improvements, which may introduce breaking changes. It's crucial to:

1. Review the changelog to understand the impact of the changes.
2. Thoroughly test the integration to ensure compatibility with the current codebase.

---

81-81: Verify the dependency update and review the changelog.

The minor version bump to github.com/dgraph-io/badger/v4 from v4.2.0 to v4.3.0 suggests new features or improvements, which may introduce breaking changes. It's important to:

1. Review the changelog to understand the impact of the changes.
2. Test the integration to ensure compatibility with the current codebase.

---

82-82: Verify the dependency update and clarify the reason for using a specific commit hash.

The update to github.com/dgraph-io/ristretto points to a specific commit hash v0.1.2-0.20240116140435-c67e07994f91, which suggests a custom or patched version. It's crucial to:

1. Understand the reason behind using a specific commit instead of a tagged version.
2. Ensure that using this specific commit is necessary and safe.

Please provide more context on why this specific commit is being used and confirm that it has been thoroughly tested.

---

100-100: Dependency update looks good, but review the changelog.

The patch version bump to github.com/google/btree from v1.1.2 to v1.1.3 suggests minor improvements or bug fixes, which are unlikely to introduce breaking changes. However, it's still a good practice to review the changelog to understand the impact of the changes and ensure compatibility with the current codebase.

---

132-132: Verify the dependency update and review the changelog.

The minor version bump to github.com/linxGnu/grocksdb from v1.8.14 to v1.9.3 suggests new features or significant improvements, which may introduce breaking changes. It's crucial to:

1. Review the changelog to understand the impact of the changes.
2. Thoroughly test the integration to ensure compatibility with the current codebase.

simapp/go.mod (7)

3-3: Go version update looks good.

Updating to Go 1.23.1 should bring in bug fixes and improvements without introducing breaking changes.

---

83-83: Dependency update looks good.

Updating github.com/cockroachdb/pebble to v1.1.2 should bring in bug fixes or minor enhancements without introducing breaking changes.

---

86-86: Dependency update looks good, but verify compatibility.

Updating github.com/cometbft/cometbft-db to v0.15.0 introduces new functionality or significant changes. Please verify that this update is compatible with the codebase and assess its impact.

---

100-100: Dependency update looks good, but verify compatibility.

Updating github.com/dgraph-io/badger/v4 to v4.3.0 introduces new functionality or significant changes. Please verify that this update is compatible with the codebase and assess its impact.

---

101-101: Please provide more context for updating to a specific commit.

Updating github.com/dgraph-io/ristretto to commit c67e07994f91 suggests a fix or enhancement that hasn't been released in a version yet. Can you please provide more information about the reason for this update? Also, please verify the stability of this specific commit.

---

120-120: Dependency update looks good.

Updating github.com/google/btree to v1.1.3 should bring in bug fixes or minor enhancements without introducing breaking changes.

---

156-156: Dependency update looks good, but verify compatibility.

Updating github.com/linxGnu/grocksdb to v1.9.3 introduces new functionality or significant changes. Please verify that this update is compatible with the codebase and assess its impact.

simapp/v2/go.mod (7)

3-3: Go version update looks good!

The minor version update from 1.23 to 1.23.1 is unlikely to introduce breaking changes and may include bug fixes or performance improvements.

---

84-84: Dependency update looks good!

The patch version update of github.com/cockroachdb/pebble from v1.1.1 to v1.1.2 is unlikely to introduce breaking changes and may include bug fixes or minor enhancements.

---

87-87: Verify the impact of the dependency update.

The minor version update of github.com/cometbft/cometbft-db from v0.14.0 to v0.15.0 suggests new features or significant changes. It's important to verify that this update does not introduce any breaking changes or compatibility issues with the codebase.

---

103-103: Verify the impact of the dependency update.

The minor version update of github.com/dgraph-io/badger/v4 from v4.2.0 to v4.3.0 suggests new features or significant changes. It's important to verify that this update does not introduce any breaking changes or compatibility issues with the codebase.

---

104-104: Verify the reason for using a specific commit and its impact.

The update of github.com/dgraph-io/ristretto to a specific commit hash (v0.1.2-0.20240116140435-c67e07994f91) suggests the use of a custom or patched version. It's important to verify the reason for using this specific commit and ensure that it does not introduce any unintended changes or compatibility issues with the codebase.

---

124-124: Dependency update looks good!

The patch version update of github.com/google/btree from v1.1.2 to v1.1.3 is unlikely to introduce breaking changes and may include bug fixes or minor enhancements.

---

160-160: Verify the impact of the dependency update.

The minor version update of github.com/linxGnu/grocksdb from v1.8.14 to v1.9.3 suggests new features or significant changes. It's important to verify that this update does not introduce any breaking changes or compatibility issues with the codebase.

.github/workflows/test.yml (3)

17-17: Approve the RocksDB version update, but verify compatibility.

The update of ROCKSDB_VERSION from 8.11.3 to 9.6.1 looks good.

However, please ensure that:

1. RocksDB version 9.6.1 is compatible with the codebase and doesn't introduce any breaking changes.
2. All dependencies in the codebase that rely on RocksDB are compatible with version 9.6.1.

---

Line range hint 1010-1010: Verify that dependent jobs handle the RocksDB version update correctly.

The following jobs depend on RocksDB and may be impacted by the version update:

• test-store
• test-store-v2

Please ensure that these jobs:

1. Update the cache key to reflect the new RocksDB version, if necessary.
2. Handle the new RocksDB version correctly during installation, if not cached.

Also applies to: 1041-1041

---

Line range hint 1010-1010: The caching setup handles the RocksDB version update correctly.

The cache key for RocksDB libraries correctly includes the ROCKSDB_VERSION environment variable:

${{ runner.os }}-rocksdb-${{ env.ROCKSDB_VERSION }}-amd64

Therefore, updating ROCKSDB_VERSION will automatically invalidate the old cache and create a new cache for the updated version.

No changes are necessary to the caching setup.

Also applies to: 1041-1041

[coderabbitai]

Actionable comments posted: 1

Review details

Configuration used: .coderabbit.yml
Review profile: CHILL

Commits

Files that changed from the base of the PR and between 071aa50 and 841b634.

Files ignored due to path filters (26)

• client/v2/go.sum is excluded by !**/*.sum
• go.sum is excluded by !**/*.sum
• server/v2/cometbft/go.sum is excluded by !**/*.sum
• simapp/go.sum is excluded by !**/*.sum
• simapp/v2/go.sum is excluded by !**/*.sum
• tests/go.sum is excluded by !**/*.sum
• x/accounts/defaults/lockup/go.sum is excluded by !**/*.sum
• x/accounts/defaults/multisig/go.sum is excluded by !**/*.sum
• x/accounts/go.sum is excluded by !**/*.sum
• x/authz/go.sum is excluded by !**/*.sum
• x/bank/go.sum is excluded by !**/*.sum
• x/circuit/go.sum is excluded by !**/*.sum
• x/consensus/go.sum is excluded by !**/*.sum
• x/distribution/go.sum is excluded by !**/*.sum
• x/epochs/go.sum is excluded by !**/*.sum
• x/evidence/go.sum is excluded by !**/*.sum
• x/feegrant/go.sum is excluded by !**/*.sum
• x/gov/go.sum is excluded by !**/*.sum
• x/group/go.sum is excluded by !**/*.sum
• x/mint/go.sum is excluded by !**/*.sum
• x/nft/go.sum is excluded by !**/*.sum
• x/params/go.sum is excluded by !**/*.sum
• x/protocolpool/go.sum is excluded by !**/*.sum
• x/slashing/go.sum is excluded by !**/*.sum
• x/staking/go.sum is excluded by !**/*.sum
• x/upgrade/go.sum is excluded by !**/*.sum

Files selected for processing (29)

• .github/workflows/build.yml (1 hunks)
• .github/workflows/lint.yml (1 hunks)
• .github/workflows/test.yml (1 hunks)
• client/v2/go.mod (5 hunks)
• go.mod (4 hunks)
• server/v2/cometbft/go.mod (5 hunks)
• simapp/go.mod (5 hunks)
• simapp/v2/go.mod (5 hunks)
• tests/go.mod (5 hunks)
• x/accounts/defaults/lockup/go.mod (5 hunks)
• x/accounts/defaults/multisig/go.mod (5 hunks)
• x/accounts/go.mod (5 hunks)
• x/authz/go.mod (5 hunks)
• x/bank/go.mod (5 hunks)
• x/circuit/go.mod (5 hunks)
• x/consensus/go.mod (5 hunks)
• x/distribution/go.mod (5 hunks)
• x/epochs/go.mod (5 hunks)
• x/evidence/go.mod (5 hunks)
• x/feegrant/go.mod (5 hunks)
• x/gov/go.mod (5 hunks)
• x/group/go.mod (5 hunks)
• x/mint/go.mod (5 hunks)
• x/nft/go.mod (5 hunks)
• x/params/go.mod (5 hunks)
• x/protocolpool/go.mod (5 hunks)
• x/slashing/go.mod (5 hunks)
• x/staking/go.mod (6 hunks)
• x/upgrade/go.mod (5 hunks)

Files skipped from review due to trivial changes (22)

• go.mod
• server/v2/cometbft/go.mod
• simapp/go.mod
• tests/go.mod
• x/accounts/defaults/lockup/go.mod
• x/accounts/defaults/multisig/go.mod
• x/accounts/go.mod
• x/authz/go.mod
• x/bank/go.mod
• x/circuit/go.mod
• x/consensus/go.mod
• x/distribution/go.mod
• x/epochs/go.mod
• x/evidence/go.mod
• x/feegrant/go.mod
• x/gov/go.mod
• x/group/go.mod
• x/mint/go.mod
• x/params/go.mod
• x/protocolpool/go.mod
• x/slashing/go.mod
• x/staking/go.mod

Additional comments not posted (25)

.github/workflows/build.yml (1)

17-17: Upgrade RocksDB version

The update of the ROCKSDB_VERSION environment variable from 8.11.3 to 9.6.1 is approved.

However, please ensure that:

1. The updated RocksDB version is compatible with the project and does not introduce any breaking changes.
2. The performance of the application with the new RocksDB version is thoroughly tested, especially in the "Build with rocksdb backend" job.
3. Any issues or anomalies observed during the build or testing process are promptly investigated and addressed.

.github/workflows/lint.yml (1)

13-13: LGTM! Verify compatibility of the new RocksDB version.

The ROCKSDB_VERSION has been updated to 9.6.1, which is necessary to maintain consistency with the project's dependencies.

Please ensure that the linting job functions as expected with this new version and that there are no breaking changes or compatibility issues introduced by the upgrade.

x/nft/go.mod (7)

3-3: LGTM!

The Go version update from 1.23 to 1.23.1 is approved.

---

45-45: LGTM!

The github.com/cockroachdb/pebble dependency update from v1.1.1 to v1.1.2 is approved.

---

49-49: LGTM!

The github.com/cometbft/cometbft-db dependency update from v0.14.0 to v0.15.0 is approved.

---

62-62: LGTM!

The github.com/dgraph-io/badger/v4 dependency update from v4.2.0 to v4.3.0 is approved.

---

63-63: LGTM!

The github.com/dgraph-io/ristretto dependency update from v0.1.1 to v0.1.2-0.20240116140435-c67e07994f91 is approved.

---

79-79: LGTM!

The github.com/google/btree dependency update from v1.1.2 to v1.1.3 is approved.

---

106-106: LGTM!

The github.com/linxGnu/grocksdb dependency update from v1.8.14 to v1.9.3 is approved.

client/v2/go.mod (6)

3-3: Go version update looks good.

Updating to Go 1.23.1 is a minor version bump that likely includes bug fixes and improvements without introducing breaking changes.

---

46-46: Dependency update looks good.

Updating github.com/cockroachdb/pebble to v1.1.2 is a patch version bump that likely includes bug fixes or minor enhancements without introducing breaking changes.

---

83-83: Dependency update looks good.

Updating github.com/google/btree to v1.1.3 is a patch version bump that likely includes bug fixes or minor enhancements without introducing breaking changes.

---

50-50: Verify the impact of updating github.com/cometbft/cometbft-db.

Updating to v0.15.0 is a minor version bump that may introduce new features or breaking changes.

Ensure that the update does not break the existing functionality by running the following script:

---

64-64: Verify the impact of updating github.com/dgraph-io/badger/v4.

Updating to v4.3.0 is a minor version bump that may introduce new features or breaking changes.

Ensure that the update does not break the existing functionality by running the following script:

Verification successful

---

Verify the compatibility of transitive dependencies with badger/v4 v4.3.0.

The update to github.com/dgraph-io/badger/v4 v4.3.0 includes fixes and performance improvements without explicit breaking changes. Since it is an indirect dependency, ensure that any transitive dependencies are compatible with this version.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash  
# Description: Verify the usage of `github.com/dgraph-io/badger/v4` across the codebase.

# Test: Search for import statements. Expect: Only the updated version is used.
rg --type go $'github.com/dgraph-io/badger/v4'

Length of output: 45

---

Script:

#!/bin/bash
# Check for dependencies in go.mod that might rely on badger/v4
grep 'require' client/v2/go.mod

# Fetch the changelog or release notes for badger/v4 to identify any breaking changes
curl -s https://api.github.com/repos/dgraph-io/badger/releases | jq -r '.[] | select(.tag_name == "v4.3.0") | .body'

Length of output: 4651

---

111-111: Verify the impact of updating github.com/linxGnu/grocksdb.

Updating to v1.9.3 is a minor version bump that may introduce new features or breaking changes.

Ensure that the update does not break the existing functionality by running the following script:

x/upgrade/go.mod (2)

3-3: LGTM!

The Go version update to 1.23.1 is approved.

---

67-67: Verify the impact of the indirect dependency updates.

The updates to the following indirect dependencies are approved:

• github.com/cockroachdb/pebble from v1.1.1 to v1.1.2
• github.com/cometbft/cometbft-db from v0.14.0 to v0.15.0
• github.com/dgraph-io/badger/v4 from v4.2.0 to v4.3.0
• github.com/dgraph-io/ristretto from v0.1.1 to v0.1.2-0.20240116140435-c67e07994f91
• github.com/google/btree from v1.1.2 to v1.1.3
• github.com/linxGnu/grocksdb from v1.8.14 to v1.9.3

However, it is recommended to verify the impact of these updates on the functionality of the module, as the changes in these dependencies could potentially affect the behavior depending on the nature of the updates.

Also applies to: 70-70, 81-82, 100-100, 132-132

simapp/v2/go.mod (7)

3-3: Go version update looks good!

Updating to Go 1.23.1 should provide bug fixes and performance improvements without introducing any breaking changes.

---

84-84: Dependency update looks good!

Updating github.com/cockroachdb/pebble from v1.1.1 to v1.1.2 should be backwards compatible and not introduce any breaking changes.

---

87-87: Dependency update looks good, but please verify compatibility.

Updating github.com/cometbft/cometbft-db from v0.14.0 to v0.15.0 is a minor version bump, which may introduce new features or improvements.

Please ensure that this update does not introduce any breaking changes or compatibility issues with the codebase.

---

103-103: Dependency update looks good!

Updating github.com/dgraph-io/badger/v4 from v4.2.0 to v4.3.0 should be backwards compatible and not introduce any breaking changes.

---

104-104: Please verify the stability and compatibility of the pre-release version.

Updating github.com/dgraph-io/ristretto from v0.1.1 to v0.1.2-0.20240116140435-c67e07994f91 is a pre-release version update.

Please ensure that this pre-release version is stable and does not introduce any compatibility issues with the codebase.

---

124-124: Dependency update looks good!

Updating github.com/google/btree from v1.1.2 to v1.1.3 is a patch version bump, which should include bug fixes and minor improvements while being fully backwards compatible.

---

160-160: Dependency update looks good, but please verify compatibility.

Updating github.com/linxGnu/grocksdb from v1.8.14 to v1.9.3 is a minor version bump, which may introduce new features or improvements.

Please ensure that this update does not introduce any breaking changes or compatibility issues with the codebase.

.github/workflows/test.yml (1)

17-17: LGTM, but verify compatibility with the codebase.

The bump to RocksDB version 9.6.1 looks good.

However, please ensure that this new version is fully compatible with the codebase, especially in the store package where RocksDB is used. It's important to verify that there are no breaking changes or issues introduced by this version upgrade.

You can run the following script to check if the store package tests pass with the new RocksDB version:

If all the tests pass successfully, then the new RocksDB version should be compatible. If there are any failures or issues, further investigation and fixes may be necessary before merging this change.

[coderabbitai]

Tip

Codebase Verification

The update to github.com/dgraph-io/ristretto to commit c67e07994f91 does not appear necessary for functional reasons.

The commit only updates the CODEOWNERS file, which does not affect the functionality of the code. Consider reverting to a stable release version unless there is a specific reason for this update.

Analysis chain

Verify the reason for updating github.com/dgraph-io/ristretto to a specific commit.

Updating to the commit hash c67e07994f91 suggests a need for a specific version, potentially to fix a critical issue.

Ensure that there is a valid reason for this update and that it does not introduce any unintended side effects by running the following script:

Also, review the commit history and release notes to understand the reason for updating to this specific commit.

Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify the usage of `github.com/dgraph-io/ristretto` across the codebase.

# Test: Search for import statements. Expect: Only the updated version is used.  
rg --type go $'github.com/dgraph-io/ristretto'

Length of output: 45

---

Script:

#!/bin/bash
# Description: Check the commit history of the `ristretto` repository to understand the changes made in the specific commit.

# Clone the ristretto repository and check the commit message for the specific commit.
git clone https://github.com/dgraph-io/ristretto.git
cd ristretto
git show c67e07994f91 --pretty=fuller --no-patch

Length of output: 563