Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fixed vulnerable dependencies #3753

Merged
merged 3 commits into from
Oct 22, 2020
Merged

Fixed vulnerable dependencies #3753

merged 3 commits into from
Oct 22, 2020

Conversation

frankiebee
Copy link
Contributor

Description

This updates the package and package-lock to auto fix dependency vulnerabilities using npm audit fix

Type of change

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)

Checklist:

  • I have selected the correct base branch.
  • I have performed a self-review of my own code.
  • I have commented my code, particularly in hard-to-understand areas.
  • I have made corresponding changes to the documentation.
  • My changes generate no new warnings.
  • Any dependent changes have been merged and published in downstream modules.
  • I ran npm run dtslint with success and extended the tests and types if necessary.
  • I ran npm run test:unit with success.
  • I ran npm run test:cov and my test cases cover all the lines and branches of the added code.
  • I ran npm run build and tested dist/web3.min.js in a browser.
  • I have tested my code on the live network.
  • I have checked the Deploy Preview and it looks correct.
  • I have updated the CHANGELOG.md file in the root folder.

@frankiebee frankiebee linked an issue Oct 22, 2020 that may be closed by this pull request
"Signature Malleability"(CVE-2020-13822) On elliptic library #3729
Closed
@frankiebee
Copy link
Contributor Author

fixes #3729

@coveralls
Copy link

coveralls commented Oct 22, 2020
edited
Loading

Coverage Status

Coverage decreased (-2.3%) to 78.053% when pulling 5efb292 on fix/deps-audit-fix into 9a18453 on 1.x.

GregTheGreek
GregTheGreek previously approved these changes Oct 22, 2020
View reviewed changes
@frankiebee frankiebee merged commit 16320d2 into 1.x Oct 22, 2020
@frankiebee frankiebee deleted the fix/deps-audit-fix branch October 22, 2020 21:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@GregTheGreek GregTheGreek GregTheGreek approved these changes

@spacesailor24 spacesailor24 spacesailor24 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

"Signature Malleability"(CVE-2020-13822) On elliptic library
4 participants
@frankiebee @coveralls @GregTheGreek @spacesailor24