Skip to content

Bump solhint from 5.2.0 to 6.0.0 #557

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 28, 2025
Merged

Bump solhint from 5.2.0 to 6.0.0 #557

merged 1 commit into from
Jul 28, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 7, 2025

Bumps solhint from 5.2.0 to 6.0.0.

Release notes

Sourced from solhint's releases.

v6.0.0

[6.0.0] - 2025-07-04

BREAKING CHANGE

Some rules were removed from the recommended ruleset and other were promoted. See below: Rules revision - #692

🟥 DEMOTED

  • payable-fallback: Outdated due to the introduction of receive(); rarely needed in modern Solidity.

✅ PROMOTED

  • interface-starts-with-i: Promotes clarity by clearly distinguishing interfaces from contracts.
  • gas-calldata-parameters: Encourages optimal memory usage for external functions.
  • gas-increment-by-one: Suggests using ++i style for gas-efficient increments.
  • gas-indexed-events: Improves event indexing for off-chain systems and reduces gas usage.
  • gas-small-strings: Recommends cheaper encoding using bytes32 for short strings.
  • gas-strict-inequalities: Helps avoid subtle off-by-one bugs in range conditions.
  • gas-struct-packing: Maximizes storage efficiency by suggesting tight struct packing.
  • duplicated-imports: Prevents redundant imports that bloat the AST and confuse code structure.
  • import-path-check: Ensures all imported files exist and resolve correctly, avoiding runtime errors.
  • function-max-lines: Encourages smaller, more readable and maintainable functions.
  • constructor-syntax: Enforces modern constructor syntax for consistency and clarity.
  • use-natspec: Promotes proper documentation with NatSpec for better audits and readability.

Fixed

  • gas-struct-packing false positives - #690
  • gas-increment-by-one backward expression - #691
  • Typo (thanks to @MarkFizz77)

Added

  • use-natspec: Promote the use of natspec and make several checks to enforce it - #689
Changelog

Sourced from solhint's changelog.

[6.0.0] - 2025-07-04

BREAKING CHANGE

Some rules were removed from the recommended ruleset and other were promoted. See below: Rules revision - #692

🟥 DEMOTED

  • payable-fallback: Outdated due to the introduction of receive(); rarely needed in modern Solidity.

✅ PROMOTED

  • interface-starts-with-i: Promotes clarity by clearly distinguishing interfaces from contracts.
  • gas-calldata-parameters: Encourages optimal memory usage for external functions.
  • gas-increment-by-one: Suggests using ++i style for gas-efficient increments.
  • gas-indexed-events: Improves event indexing for off-chain systems and reduces gas usage.
  • gas-small-strings: Recommends cheaper encoding using bytes32 for short strings.
  • gas-strict-inequalities: Helps avoid subtle off-by-one bugs in range conditions.
  • gas-struct-packing: Maximizes storage efficiency by suggesting tight struct packing.
  • duplicated-imports: Prevents redundant imports that bloat the AST and confuse code structure.
  • import-path-check: Ensures all imported files exist and resolve correctly, avoiding runtime errors.
  • function-max-lines: Encourages smaller, more readable and maintainable functions.
  • constructor-syntax: Enforces modern constructor syntax for consistency and clarity.
  • use-natspec: Promotes proper documentation with NatSpec for better audits and readability.

Fixed

  • gas-struct-packing false positives - #690
  • gas-increment-by-one backward expression - #691
  • Typo (thanks to @MarkFizz77)

Added

  • use-natspec: Promote the use of natspec and make several checks to enforce it - #689

Commits
  • 85d66ef Merge pull request #693 from protofire/600-pre-release
  • 03d75d1 pre release 6.0.0
  • 48a866d Merge pull request #692 from protofire/fix-rules-revision
  • cef4e31 rules revision
  • e7c1a17 Merge pull request #691 from protofire/fix-gas-incrementBy1-rule
  • bb2913c fix rule to support backward expression
  • df1f436 fix rule to support backward expression
  • ec78e8b Merge pull request #689 from protofire/feature-use-natspec
  • 14e4c88 Merge branch 'develop' into feature-use-natspec
  • 24a4235 Merge pull request #690 from protofire/fix-gas-struct-packing
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump solhint from 5.2.0 to 6.0.0
9fd6c54 
Bumps [solhint](https://github.com/protofire/solhint) from 5.2.0 to 6.0.0.
- [Release notes](https://github.com/protofire/solhint/releases)
- [Changelog](https://github.com/protofire/solhint/blob/develop/CHANGELOG.md)
- [Commits](protofire/solhint@v5.2.0...v6.0.0)

---
updated-dependencies:
- dependency-name: solhint
  dependency-version: 6.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jul 7, 2025
github-actions[bot]
github-actions bot approved these changes Jul 7, 2025
View reviewed changes
Copy link

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Auto approved automated PR

@coveralls
Copy link

Pull Request Test Coverage Report for Build 16106077125

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • No unchanged relevant lines lost coverage.
  • Overall coverage remained the same at 99.456%
Totals Coverage Status
Change from base Build 16043051621: 0.0%
Covered Lines: 2301
Relevant Lines: 2301
💛 - Coveralls

@zajck zajck merged commit 86c2bc3 into main Jul 28, 2025
7 checks passed
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/solhint-6.0.0 branch July 28, 2025 07:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@zajck zajck zajck approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@coveralls @zajck