Version Packages (alpha)

[github-actions]

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.

⚠️⚠️⚠️⚠️⚠️⚠️

main is currently in pre mode so this branch has prereleases rather than normal releases. If you want to exit prereleases, run changeset pre exit on main.

⚠️⚠️⚠️⚠️⚠️⚠️

Releases

viem@0.0.1-alpha.25

Patch Changes

• 6c902f8 Thanks @jxom! - Added decodeEventLog.

• #68 1be77b3 Thanks @jxom! - Breaking: Removed all public/wallet/test actions & utils from the viem entrypoint to their respective entrypoints:

  • viem = Clients & Transport exports
  • viem/chains = Chains exports
  • viem/contract = Contract Actions & Utils exports
  • viem/ens = ENS Actions & Utils exports
  • viem/public = Public Actions exports
  • viem/test = Test Actions exports
  • viem/utils = Utils exports
  • viem/wallet = Wallet Actions exports

• #66 f19fc32 Thanks @tmm! - Added ENS actions getEnsAddress and getEnsName.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated
viem-playground	✅ Ready (Inspect)	Visit Preview	💬 Add your feedback	Feb 11, 2023 at 10:55AM (UTC)
viem-site	✅ Ready (Inspect)	Visit Preview	💬 3 unresolved	Feb 11, 2023 at 10:55AM (UTC)

[socket-security]

Socket Security Pull Request Report

Dependency issues detected. If you merge this pull request, you will not be alerted to the instances of these issues again.

📜 Install scripts

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Package	Script field	Source
web3@1.8.2 (added)	postinstall	package.json
web3-bzz@1.8.2 (added)	postinstall	package.json via web3@1.8.2
keccak@3.0.3 (added)	install	package.json via web3@1.8.2
secp256k1@4.0.3 (added)	install	package.json via web3@1.8.2
web3-shh@1.8.2 (added)	postinstall	package.json via web3@1.8.2
rome@11.0.0 (added)	postinstall	package.json
esbuild@0.15.13 (added)	postinstall	package.json via @wagmi/cli@0.1.6
esbuild@0.15.18 (added)	postinstall	package.json via @vitest/coverage-c8@0.24.5, vite@3.2.5, vitest@0.25.8
esbuild@0.16.17 (added)	postinstall	package.json via @wagmi/cli@0.1.6, esbuild-register@3.4.2, site/package.json via vitepress@1.0.0-alpha.34
esbuild@0.17.7 (added)	postinstall	package.json via tsup@6.6.0
simple-git-hooks@2.8.1 (added)	postinstall	package.json
es5-ext@0.10.62 (added)	postinstall	package.json via web3@1.8.2

🧌 Protestware/Troll package

This package is a joke, parody, or includes undocumented or hidden behavior unrelated to its primary function.

Package	Note	Source
es5-ext@0.10.62 (added)	This package prints a protestware console message on install regarding Ukraine for users with Russian language locale	package.json via web3@1.8.2

Pull request report summary

Issue	Status
Install scripts	⚠️ 12 issues
Native code	✅ 0 issues
Bin script confusion	✅ 0 issues
Bin script shell injection	✅ 0 issues
Unresolved require	✅ 0 issues
Invalid package.json	✅ 0 issues
HTTP dependency	✅ 0 issues
Git dependency	✅ 0 issues
Potential typo squat	✅ 0 issues
Known Malware	✅ 0 issues
Telemetry	✅ 0 issues
Protestware/Troll package	⚠️ 1 issue

Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@2.4.2

• @SocketSecurity ignore web3@1.8.2
• @SocketSecurity ignore web3-bzz@1.8.2
• @SocketSecurity ignore keccak@3.0.3
• @SocketSecurity ignore secp256k1@4.0.3
• @SocketSecurity ignore web3-shh@1.8.2

Powered by socket.dev