-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Snyk] Security upgrade eslint from 8.22.0 to 8.26.0 #7039
base: 4.x
Are you sure you want to change the base?
Conversation
…ties The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-BRACES-6838727 - https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728
Bundle StatsHey there, this message comes from a GitHub action that helps you and reviewers to understand how these changes affect the size of this project's bundle. As this PR is updated, I'll keep you updated on how the bundle size is impacted. Total
Changeset No files were changed View detailed bundle breakdownAdded No assets were added Removed No assets were removed Bigger No assets were bigger Smaller No assets were smaller Unchanged
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Benchmark
Benchmark suite | Current: 0de13f7 | Previous: 12c2515 | Ratio |
---|---|---|---|
processingTx |
9022 ops/sec (±4.44% ) |
8600 ops/sec (±5.07% ) |
0.95 |
processingContractDeploy |
38875 ops/sec (±5.39% ) |
39651 ops/sec (±6.83% ) |
1.02 |
processingContractMethodSend |
19920 ops/sec (±4.27% ) |
18549 ops/sec (±7.08% ) |
0.93 |
processingContractMethodCall |
38446 ops/sec (±6.23% ) |
37262 ops/sec (±6.19% ) |
0.97 |
abiEncode |
43132 ops/sec (±7.26% ) |
41518 ops/sec (±7.12% ) |
0.96 |
abiDecode |
30734 ops/sec (±8.51% ) |
28553 ops/sec (±8.05% ) |
0.93 |
sign |
1579 ops/sec (±3.38% ) |
1538 ops/sec (±0.93% ) |
0.97 |
verify |
376 ops/sec (±0.47% ) |
362 ops/sec (±0.70% ) |
0.96 |
This comment was automatically generated by workflow using github-action-benchmark.
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## 4.x #7039 +/- ##
=======================================
Coverage 91.97% 91.97%
=======================================
Files 215 215
Lines 8287 8287
Branches 2277 2277
=======================================
Hits 7622 7622
Misses 665 665
Flags with carried forward coverage won't be shown. Click here to find out more.
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
we need to fix lint error after this change
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.
Changes included in this PR
Note for zero-installs users
If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the
.yarn/cache/
directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to runyarn
to update the contents of the./yarn/cache
directory.If you are not using zero-install you can ignore this as your flow should likely be unchanged.
Vulnerabilities that will be fixed
With an upgrade:
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-BRACES-6838727
Why? Recently disclosed, Has a fix available, CVSS 7.5
SNYK-JS-MICROMATCH-6838728
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Uncontrolled resource consumption