[Snyk] Upgrade bitcore-lib from 8.1.1 to 8.25.47

[X-oss-byte]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade bitcore-lib from 8.1.1 to 8.25.47.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 71 versions ahead of your current version.
• The recommended version was released 5 months ago, on 2023-02-17.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-LODASH-608086	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-450202	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: bitcore-lib

• 8.25.47 - 2023-02-17
  

  v8.25.47

• 8.25.46 - 2023-02-03
• 8.25.40 - 2022-10-11
• 8.25.38 - 2022-09-14
• 8.25.36 - 2022-08-02
• 8.25.35 - 2022-08-01
• 8.25.34 - 2022-07-28
  

  v8.25.34

• 8.25.31 - 2022-07-12
  

  v8.25.31

• 8.25.30 - 2022-06-07
  

  v8.25.30

• 8.25.28 - 2022-04-29
• 8.25.25 - 2021-12-06
• 8.25.10 - 2021-05-13
• 8.25.9 - 2021-05-11
• 8.25.8 - 2021-04-12
• 8.25.7 - 2021-03-05
• 8.25.4 - 2021-03-03
• 8.25.3 - 2021-03-01
• 8.25.2 - 2021-02-25
• 8.25.1 - 2021-02-25
• 8.25.0 - 2021-02-19
• 8.24.2 - 2021-01-27
• 8.24.1 - 2020-12-31
• 8.24.0 - 2020-12-30
• 8.23.1 - 2020-11-03
• 8.23.0 - 2020-10-26
• 8.22.2 - 2020-08-31
• 8.22.1 - 2020-08-31
• 8.22.0 - 2020-08-05
• 8.21.0 - 2020-07-22
• 8.20.5 - 2020-06-30
• 8.20.4 - 2020-06-03
• 8.20.3 - 2020-05-16
• 8.20.2 - 2020-05-14
• 8.20.1 - 2020-05-07
• 8.20.0 - 2020-05-06
• 8.17.1 - 2020-04-15
• 8.17.0 - 2020-04-09
• 8.16.2 - 2020-03-19
• 8.16.1 - 2020-03-19
• 8.16.0 - 2020-02-10
• 8.15.0 - 2020-02-04
• 8.14.4 - 2020-01-09
• 8.14.3 - 2020-01-09
• 8.14.1 - 2020-01-08
• 8.14.0 - 2020-01-07
• 8.13.2 - 2019-12-10
• 8.13.1 - 2019-12-10
• 8.13.0 - 2019-12-06
• 8.12.0 - 2019-11-21
• 8.11.1 - 2019-11-17
• 8.11.0 - 2019-11-15
• 8.10.1 - 2019-11-12
• 8.10.0 - 2019-11-11
• 8.9.0 - 2019-10-08
• 8.8.4 - 2019-09-30
• 8.8.3 - 2019-09-30
• 8.8.2 - 2019-09-27
• 8.8.1 - 2019-09-24
• 8.8.0 - 2019-09-20
• 8.7.4 - 2019-09-17
• 8.7.3 - 2019-09-16
• 8.7.2 - 2019-09-16
• 8.7.1 - 2019-09-12
• 8.7.0 - 2019-09-11
• 8.6.0 - 2019-08-07
• 8.5.1 - 2019-07-26
• 8.5.0 - 2019-07-23
• 8.3.4 - 2019-06-12
• 8.3.3 - 2019-05-24
• 8.3.0 - 2019-04-22
• 8.2.0 - 2019-04-12
• 8.1.1 - 2019-03-21

from bitcore-lib GitHub release notes

Commit messages

Package name: bitcore-lib

• f3f087a v8.25.47
• 03bca4c Merge branch 'feature/snd-123' of github.com:leolambo/bitcore
• d144c63 clean up MultiSend gas estimation
• 13a001a Merge branch 'fix-serialization-checks-link' of github.com:lateminer/bitcore
• 66ed524 cleanup code
• 1327636 generate correct ERC20 multisend transaction data
• 368e88c Fix broken link to the serialization checks description
• 02502c3 Fix broken link to the `Input` module
• 17c02f1 v8.25.46
• 09c81a2 Merge branch 'fix/tokens-import' of github.com:gabrielbazan7/bitcore
• ce5a972 [REF] erc20 tokens search
• 2bf4bab Merge branch 'bch-introspection' of github.com:msalcala11/bitcore
• 930215f [FIX] serverAssistedImport: add wallet info correctly for all key accounts
• e28bb0a implement safeSub and safeMul BN methods
• f0c4ef7 add missing f64BitIntegers argument to isOpcodeDisabled
• 9136641 [FIX] serverAssistedImport: tokens credentials
• e73f53b Merge branch 'feat/import-key-optimization' of github.com:gabrielbazan7/bitcore
• 93a3636 [REF] utilize batch calls on key import
• f174325 add selected
• 5aeaa42 Merge branch 'master' of github.com:bitpay/bitcore into fix-selected-tx
• 80e7d54 add input selected pill
• 6f724d4 Merge branch 'eth-sync-updates' of github.com:escottalexander/bitcore
• 343000a lint
• ad918d0 show progress as percentage since blocks are descending

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[socket-security]

Updated dependencies detected. Learn more about Socket for GitHub ↗︎

Packages	Version	New capabilities	Transitives	Size	Publisher
bitcore-lib	8.1.1...8.25.47	None	+0/-0	4.27 MB	nitsujlangston