Upstream update #7
Open
+1,123,114
−129,738
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Repository owner
deleted a comment
Feb 2, 2024
Repository owner
deleted a comment from
katsavav
Feb 5, 2024
Repository owner
deleted a comment from
tobarbaro
Feb 10, 2024
Repository owner
deleted a comment from
BKB00001
Feb 21, 2024
Repository owner
deleted a comment from
muhammadmnorouzi
Feb 23, 2024
Repository owner
deleted a comment from
DrakoAI
Feb 23, 2024
Repository owner
deleted a comment from
Pappyskull1
Feb 23, 2024
Repository owner
deleted a comment from
smartevin
Feb 23, 2024
Repository owner
deleted a comment from
D-inspiration
Feb 23, 2024
Repository owner
deleted a comment
Feb 23, 2024
Repository owner
deleted a comment from
Nitesh639
Feb 26, 2024
Repository owner
deleted a comment from
1291945816
Mar 1, 2024
Repository owner
deleted a comment from
theHinneh
Mar 4, 2024
Repository owner
deleted a comment from
theHinneh
Mar 4, 2024
The process for this fix was to: 1. `yarn why -R dicer` 2. Then examine the output of that and see which dependencies are using dicer indirectly (transient dependencies) 3. `yarn up multer --exact` 4. `yarn up express-openapi-validator --exact` 5. Profit, e.g. running `yarn why -R dicer` at this point shows that dicer has been eliminated from the dependency tree completely. https://github.com/hyperledger/cacti/security/dependabot/176 Weaknesses CWE-248 CVE ID CVE-2022-24434 GHSA ID GHSA-wm7h-9275-46v2 Also sneaking in a test case hot-fix for besu/deploy-contract/private-deploy-contract-from-json-cactus.test.ts where the error message assertion broke down after a change in error handling of the contract deployment endpoint. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
- Rewrite fabric persistence plugin to match persistence ethereum plugin methods and behavior. - Change DB schema for persistence. - Add tests and sample data to the new plugin. Add them to project CI. Depends on #3298 Signed-off-by: Michal Bajer <michal.bajer@fujitsu.com>
Primary Changes ---------------- 1. Updated the condition in coverage_ts.yaml to run only when the CI run is successful Fixes #3371 Signed-off-by: aldousalvarez <aldousss.alvarez@gmail.com>
Bumps the cargo group with 1 update in the /packages/cacti-plugin-ledger-connector-stellar/src/test/rust/demo-contract directory: [curve25519-dalek](https://github.com/dalek-cryptography/curve25519-dalek). Updates `curve25519-dalek` from 4.1.1 to 4.1.2 - [Release notes](https://github.com/dalek-cryptography/curve25519-dalek/releases) - Commits: dalek-cryptography/curve25519-dalek@curve25519-4.1.1...curve25519-4.1.2 --- updated-dependencies: - dependency-name: curve25519-dalek dependency-type: indirect dependency-group: cargo ... Co-authored-by: Peter Somogyvari <peter.somogyvari@accenture.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
Reflected pending changes to the new docs folder. Updated com.jfrog.artifactory versions to fix missing dependency. Signed-off-by: VRamakrishna <vramakr2@in.ibm.com>
Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
- Rewrite fabric app using MUI components and new database schema.
- Improve `UITableListing` to support clickable tables.
- The new app supports the following views:
- Dashboard: Shows summary of blocks and transaction recorded in database.
- Block list: Full list of blocks
- Transaction list: Full list of transactions
- Transaction details: Page that shows full transaction information,
transaction actions (method calls) and endorsements.
Depends on #3308
Depends on #3279
Signed-off-by: Michal Bajer <michal.bajer@fujitsu.com>
1. Error-handling : Updates to the catch block of the Rest API endpoints of fabric package by importing the utility function `handleRestEndpointException` from cactus-core package that differentiates the user/developer errors. 2. Minor code changes in the endpoints like adding the functions and formulating the error messages. Co-authored-by: Peter Somogyvari <peter.somogyvari@accenture.com> Signed-off-by: ArchanaArige <49356222+ArchanaArige@users.noreply.github.com> Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
1. Also turned off tape test execution completely for the package in ci.yaml This would've been a no-op anyway just wasting resources since we have no tests left that need tape at all. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
1. Also two more test cases been migrated. 2. A bug has been fixed in the test tooling package where the keychain vault container helper class was not passing in the publish all ports configuration option correctly. This would normally deserve it's own commit but this bug has been caught in other similar classes at least 3 times in the recent weeks so it's not really worth the attention anymore so I'll just include it in this commit so that we save some time on reviewer attention and CI resource usage. Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
While fabric setup for weaver tests downloads images specified in makefile, when the network is brought up the latest versions are pulled. Primary Change: - pass fabric versions from Makefile to network.sh, ensuring they are used Secondary Changes: network.sh: - allow specifying fabric ca version - set exit on error bash flag to avoid continuing if script is in error - re-write unsupported version tests to not not generate error - add rm -f to not generate error if file does not exist Signed-off-by: Jennifer Bell <jenniferlianne@gmail.com>
Bumps the cargo group with 1 update in the /packages/cactus-core-api directory: [tokio](https://github.com/tokio-rs/tokio). Updates `tokio` from 1.34.0 to 1.39.1 - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.34.0...tokio-1.39.1) --- updated-dependencies: - dependency-name: tokio dependency-type: direct:production dependency-group: cargo ... Co-authored-by: Peter Somogyvari <peter.somogyvari@accenture.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
Primary Changes
----------------
1. Updated package.json file for packages to
include the new codegen script
2. Added a new dep, replace for string
manupulation in package.json
Fixes #393
Signed-off-by: jagpreetsinghsasan <jagpreet.singh.sasan@accenture.com>
closes #4029 Signed-off-by: André Augusto <andre.augusto@tecnico.ulisboa.pt>
allows permissions for dorny to create check run annotations Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Carlos Amaro <carlosrscamaro@tecnico.ulisboa.pt>
Missing update in #3919 Signed-off-by: André Augusto <andre.augusto@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
dependency vitejs/plugin-react breaks on SATP build Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Runs SATP-Hermes tests only when there are changes in the SATP codebase Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Rodolfo Carapau <rodolfo.carapau@gmail.com>
docs: update to freeze protoc-gen-go version v1.34.2 Signed-off-by: Sandeep Nishad <sandeep.nishad1@ibm.com>
Signed-off-by: Jorge Santos <jorge.m.santos@tecnico.ulisboa.pt>
Signed-off-by: Tomás Silva <tomas.v.silva@tecnico.ulisboa.pt>
Signed-off-by: findmyhappy <findhappy@sohu.com>
Signed-off-by: rocksload <rocksload@outlook.com>
Signed-off-by: Carlos Amaro <carlosrscamaro@tecnico.ulisboa.pt>
fix(satp-hermes): fixed validate bundle names err Signed-off-by: Rodolfo Carapau <rodolfo.carapau@gmail.com> Co-authored-by: Carlos Amaro <64661289+LordKubaya@users.noreply.github.com>
Primary change: Grant full permissions to owner only Fixes #2769 Signed-off-by: musicboy0322 <plusultra0322@gmail.com>
Signed-off-by: Jorge Santos <jorge.m.santos@tecnico.ulisboa.pt>
Signed-off-by: Tomás Silva <tomas.v.silva@tecnico.ulisboa.pt>
Signed-off-by: Rafael Belchior <rafael.belchior@tecnico.ulisboa.pt>
Signed-off-by: Sandeep Nishad <sandeep.nishad1@ibm.com>
Signed-off-by: Jorge Santos <jorge.m.santos@tecnico.ulisboa.pt>
Signed-off-by: Tomás Silva <tomas.v.silva@tecnico.ulisboa.pt>
Signed-off-by: Tomás Silva <tomas.v.silva@tecnico.ulisboa.pt>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
33 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.