[Snyk] Fix for 1 vulnerabilities

[PinkDiamond1]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • src/chains/filecoin/filecoin/package.json
  • src/chains/filecoin/filecoin/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	579/1000 Why? Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-JUSTSAFESET-1920917	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ipfs

The new version differs by 250 commits.

• 38e78cc chore: release master (#4099)
• 919b27a chore: update deps
• 4e93dd5 fix: update to latest libp2p interfaces (#4111)
• 7165bf7 docs: add upgrade guide for ESM release (#4098)
• 74aee8b feat: update to libp2p 0.37.x (#4092)
• 361dab6 chore: release master (How can I impersonate an address for testing purposes? trufflesuite/ganache#4078)
• 8f7ce23 fix: upgrade dep of ipfs-utils ^9.0.2->^9.0.6 (#4086)
• c367840 fix: update car dependency for CARv2 read support (#4085)
• e90b8f1 fix: BWOptions.interval accepts number|string (#4061)
• 6c3cb73 fix: exclude fs from bundle (#4076)
• 1a73160 fix(rmlink): fix rmlink to match docs (ci: cache npm dependencies trufflesuite/ganache#4073)
• c51b160 chore: release master (#4057)
• df1bd1b fix: add deps used in ipfs-core-types (#4058)
• 125d42b fix: missing files on publish (fix: handle eth_gasEstimate reverts correctly to prevent potential process crash trufflesuite/ganache#4056)
• 1082fce chore: fix links to config defaults (#4049)
• e7f8531 chore: release master (v7.7.0 trufflesuite/ganache#4041)
• 709831f fix: override hashing algorithm when importing files (#4042)
• 383dc07 chore: fix broken links and help text (got this error on aztec testnet https://aztec-connect-testnet.zk.money/ trufflesuite/ganache#4043)
• 3a74c11 docs: fixed link to examples (#4037)
• 596b1f4 fix(dag): replace custom dag walk with multiformats/traversal (#3950)
• 2c8ec08 chore: re-enable examples (docs: complete macOS node-gyp troubleshooting steps in CONTRIBUTING.md trufflesuite/ganache#4036)
• 8d26021 chore: re-enable build
• b01b06b chore: release master (Ganache Docker doesn't have a readme trufflesuite/ganache#4034)
• cca6e32 chore: override last release

See the full diff

Package name: ipfs-http-server

The new version differs by 250 commits.

• 38e78cc chore: release master (#4099)
• 919b27a chore: update deps
• 4e93dd5 fix: update to latest libp2p interfaces (#4111)
• 7165bf7 docs: add upgrade guide for ESM release (#4098)
• 74aee8b feat: update to libp2p 0.37.x (#4092)
• 361dab6 chore: release master (How can I impersonate an address for testing purposes? trufflesuite/ganache#4078)
• 8f7ce23 fix: upgrade dep of ipfs-utils ^9.0.2->^9.0.6 (#4086)
• c367840 fix: update car dependency for CARv2 read support (#4085)
• e90b8f1 fix: BWOptions.interval accepts number|string (#4061)
• 6c3cb73 fix: exclude fs from bundle (#4076)
• 1a73160 fix(rmlink): fix rmlink to match docs (ci: cache npm dependencies trufflesuite/ganache#4073)
• c51b160 chore: release master (#4057)
• df1bd1b fix: add deps used in ipfs-core-types (#4058)
• 125d42b fix: missing files on publish (fix: handle eth_gasEstimate reverts correctly to prevent potential process crash trufflesuite/ganache#4056)
• 1082fce chore: fix links to config defaults (#4049)
• e7f8531 chore: release master (v7.7.0 trufflesuite/ganache#4041)
• 709831f fix: override hashing algorithm when importing files (#4042)
• 383dc07 chore: fix broken links and help text (got this error on aztec testnet https://aztec-connect-testnet.zk.money/ trufflesuite/ganache#4043)
• 3a74c11 docs: fixed link to examples (#4037)
• 596b1f4 fix(dag): replace custom dag walk with multiformats/traversal (#3950)
• 2c8ec08 chore: re-enable examples (docs: complete macOS node-gyp troubleshooting steps in CONTRIBUTING.md trufflesuite/ganache#4036)
• 8d26021 chore: re-enable build
• b01b06b chore: release master (Ganache Docker doesn't have a readme trufflesuite/ganache#4034)
• cca6e32 chore: override last release

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution

[socket-security]

New dependencies detected. Learn more about Socket for GitHub ↗︎

Packages	Version	New capabilities	Transitives	Size	Publisher
ipfs-http-server	0.12.0	eval, environment	+126	33.8 MB	achingbrain
ipfs	0.63.0	environment	+420	89.6 MB	achingbrain
ts-node	10.9.1	environment	+11	1.59 MB	cspotcode
leveldown	6.1.1	None	+4	5.96 MB	vweevers
levelup	5.1.1	None	+9	577 kB	vweevers
level-js	4.0.2	None	+2	83.2 kB	vweevers
encoding-down	7.1.0	None	+6	354 kB	vweevers
abstract-leveldown	7.2.0	None	+3	283 kB	vweevers