[Snyk] Upgrade web3 from 4.8.0 to 4.9.0 #777

aashutoshrathi · 2024-06-15T05:20:01Z

This PR was automatically created by Snyk using the credentials of a real user.

![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade web3 from 4.8.0 to 4.9.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 30 versions ahead of your current version.
The recommended version was released on 23 days ago.

Release notes

Package name: web3

4.9.0 - 2024-05-23
What's Changed
- Release/4.8.0 by @ luu-alex in #6982
- web3 middleware by @ jdevcs in #6951
- Add default return format to the context by @ avkos in #6947
- Events guide 6741 by @ SantiagoDevRel in #6983
- Fix towei scientific notation by @ luu-alex in #6908
- fix(validator): generate abi name if not provided by @ MaxMustermann2 in #6981
- Plugin guide 6840 draft by @ SantiagoDevRel in #6941
- Compare package size (wihtout image) by @ SantiagoDevRel in #6994
- fixed broken links by @ SantiagoDevRel in #7005
- Added plugin videos to guide by @ SantiagoDevRel in #7004
- Utils guide by @ SantiagoDevRel in #7008
- Add the missing types to the ”accounts“ by @ jdevcs in #7011
- Add extra changes to make possibility add eip4844 type as a plugin by @ avkos in #7000
- add drips funding by @ GregTheGreek in #7023
- Tests & ESLint Improvements by @ avkos in #7012
- Added troubleshooting example by @ SantiagoDevRel in #7009
- Implement a way to know which response corresponds to which request in the middleware by @ avkos in #7028
- Add type checking to unit tests by @ avkos in #7027
- fix(glossary): links by @ danforbes in #7034
- Add interactive code editor for tutorials by @ avkos in #7036
- fix: web3-validator browser target removed by @ PeKne in #7016
- catching promise - legacy provider error by @ luu-alex in #7022
- web3modal documentation by @ luu-alex in #7041
- add gas conditional if simple transaction by @ luu-alex in #7043
- fix(#7044): toWei trim strings with more than 20 decimal places by @ gordon-to in #7045
- allow fromwei and toWei to accept numbers as units by @ luu-alex in #7052
- use bigint power by @ luu-alex in #7054
- Fix format schema with list of objects by @ avkos in #7040
- 6801 Fill gas price when baseFeePerGas==='0x0' by @ avkos in #7050
New Contributors
- @ MaxMustermann2 made their first contribution in #6981
- @ danforbes made their first contribution in #7034
- @ PeKne made their first contribution in #7016
- @ gordon-to made their first contribution in #7045
Full Changelog: v4.8.0...v4.9.0
4.8.1-dev.f4e55bd.0 - 2024-05-22
4.8.1-dev.f44dc5b.0 - 2024-05-09
4.8.1-dev.f216540.0 - 2024-05-06
4.8.1-dev.ed2781f.0 - 2024-04-25
4.8.1-dev.ebbbf1e.0 - 2024-04-30
4.8.1-dev.e29deea.0 - 2024-04-18
4.8.1-dev.e0fc158.0 - 2024-05-22
4.8.1-dev.de3e8f8.0 - 2024-04-26
4.8.1-dev.dd172c7.0 - 2024-04-18
4.8.1-dev.d4e937d.0 - 2024-04-19
4.8.1-dev.c62ef79.0 - 2024-05-06
4.8.1-dev.b413ebd.0 - 2024-05-02
4.8.1-dev.ac2e180.0 - 2024-05-22
4.8.1-dev.93296c2.0 - 2024-04-18
4.8.1-dev.88b7e2e.0 - 2024-05-02
4.8.1-dev.866469d.0 - 2024-05-14
4.8.1-dev.7be0060.0 - 2024-04-23
4.8.1-dev.7a470c9.0 - 2024-05-01
4.8.1-dev.5fd9dbb.0 - 2024-04-23
4.8.1-dev.5d2f2aa.0 - 2024-05-06
4.8.1-dev.553f270.0 - 2024-05-21
4.8.1-dev.53e2466.0 - 2024-04-22
4.8.1-dev.419c8d3.0 - 2024-04-25
4.8.1-dev.3904a46.0 - 2024-05-22
4.8.1-dev.32b6b29.0 - 2024-05-21
4.8.1-dev.2f73aa5.0 - 2024-05-16
4.8.1-dev.1ab7a6b.0 - 2024-04-18
4.8.1-dev.12c2515.0 - 2024-05-13
4.8.1-dev.408125.0 - 2024-05-13
4.8.0 - 2024-04-18
[4.8.0]

Changed

web3-eth-abi
- Dependencies updated
web3-eth-accounts
- Dependencies updated
Fixed

web3-eth-contract
- Fix an issue with smart contract function overloading (#6922)
web3-utils
- fixed toHex incorrectly hexing Uint8Arrays and Buffer (#6957)
- fixed isUint8Array not returning true for Buffer (#6957)
Added

web3-eth-contract
- Added a console warning in case of an ambiguous call to a solidity method with parameter overloading (#6942)
- Added contract.deploy(...).decodeData(...) and contract.decodeMethodData(...) that decode data based on the ABI (#6950)
web3-eth
- method getBlock now includes properties of eip 4844, 4895, 4788 when returning block (#6933)
- update type withdrawalsSchema, blockSchema and blockHeaderSchema schemas to include properties of eip 4844, 4895, 4788 (#6933)
web3-types
- Added signature to type AbiFunctionFragment (#6922)
- update type Withdrawals, block and BlockHeaderOutput to include properties of eip 4844, 4895, 4788 (#6933)
New Contributors
- @ ymonye made their first contribution in #6937

from web3 GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade web3 from 4.8.0 to 4.9.0. See this package in npm: web3 See this project in Snyk: https://app.snyk.io/org/aashutoshrathi/project/215a56fb-437a-4154-bf9f-452661d73de4?utm_source=github&utm_medium=referral&page=upgrade-pr

socket-security · 2024-06-19T14:49:45Z

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@apollo/[email protected]	None	`0`	1.02 MB	apollo-bot
npm/@apollo/[email protected]	None	`0`	5.85 kB	apollo-bot
npm/@apollo/[email protected]	None	`+1`	100 kB	apollo-bot
npm/@apollo/[email protected]	None	`0`	7.6 kB	apollo-bot
npm/@apollo/[email protected]	None	`0`	6.43 kB	apollo-bot
npm/@apollo/[email protected]	None	`0`	4.99 kB	apollo-bot
npm/@apollo/[email protected]	None	`0`	8.61 kB	apollo-bot
npm/@apollo/[email protected]	None	`0`	8.97 kB	apollo-bot
npm/@apollo/[email protected]	None	`0`	26.9 kB	apollo-bot
npm/@apollographql/[email protected]	None	`0`	56.9 kB	apollo-bot
npm/@apollographql/[email protected]	None	`0`	28.4 kB	apollo-bot
npm/@babel/[email protected]	None	`0`	244 kB	nicolo-ribaudo
npm/@ensdomains/[email protected]	None	`0`	2.21 MB	makoto_inoue
npm/@ensdomains/[email protected]	None	`0`	3.96 MB	makoto_inoue
npm/@ensdomains/[email protected]	None	`+2`	10.8 MB	nickjohnson
npm/@ensdomains/[email protected]	None	`0`	5.02 MB	nickjohnson
npm/@ethereumjs/[email protected]	None	`0`	2.49 MB	holgerd77
npm/@ethereumjs/[email protected]	None	`0`	384 kB	holgerd77
npm/@ethersproject/[email protected]	None	`0`	498 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	61 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	82.2 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	33.1 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	11.3 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	30.1 kB	ricmoo
npm/@ethersproject/[email protected]	None	`+1`	242 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	80.9 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	18.7 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	250 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	257 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	80.7 kB	ricmoo
npm/@ethersproject/[email protected]	None	`+1`	351 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	6.09 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	69.5 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	47.5 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	17.4 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	31 kB	ricmoo
npm/@ethersproject/[email protected]	network	`+1`	1.32 MB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	17.3 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	29.6 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	21.7 kB	ricmoo
npm/@ethersproject/[email protected]	None	`+2`	458 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	23.2 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	119 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	89.6 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	20.2 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	55.2 kB	ricmoo
npm/@ethersproject/[email protected]	network	`0`	128 kB	ricmoo
npm/@ethersproject/[email protected]	None	`0`	390 kB	ricmoo
npm/@graphql-tools/[email protected]	None	`0`	34 kB	ardatan
npm/@graphql-tools/[email protected]	None	`0`	139 kB	ardatan
npm/@graphql-tools/[email protected]	None	`0`	94.4 kB	ardatan
npm/@graphql-tools/[email protected]	environment	`+5`	823 kB	ardatan
npm/@graphql-tools/[email protected]	None	`0`	64.8 kB	ardatan
npm/@graphql-tools/[email protected]	None	`0`	416 kB	ardatan
npm/@graphql-typed-document-node/[email protected]	None	`0`	2.96 kB	dotansimha
npm/@josephg/[email protected]	None	`0`	3.21 kB	josephg
npm/@protobufjs/[email protected]	None	`0`	9.05 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	9.22 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	9.14 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	7.75 kB	dcode
npm/@protobufjs/[email protected]	network	`0`	8.76 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	27 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	4.29 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	7.77 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	6.25 kB	dcode
npm/@protobufjs/[email protected]	None	`0`	23.5 kB	dcode
npm/@redux-saga/[email protected]	environment	`+1`	611 kB	redux-saga-release-bot
npm/@redux-saga/[email protected]	None	`0`	3.87 kB	redux-saga-release-bot
npm/@redux-saga/[email protected]	environment	`0`	4.48 kB	redux-saga-release-bot
npm/@redux-saga/[email protected]	None	`0`	7.8 kB	redux-saga-release-bot
npm/@redux-saga/[email protected]	None	`0`	4.68 kB	redux-saga-release-bot
npm/@redux-saga/[email protected]	None	`0`	13.6 kB	redux-saga-release-bot
npm/@truffle/[email protected]	None	`+1`	259 kB	haltman
npm/@truffle/[email protected]	None	`0`	39.4 kB	haltman
npm/@truffle/[email protected]	Transitive: environment	`+2`	28.1 MB	haltman
npm/@truffle/[email protected]	None	`0`	39.9 kB	haltman
npm/@truffle/[email protected]	None	`0`	69.8 kB	haltman
npm/@truffle/[email protected]	Transitive: network	`+1`	180 kB	haltman
npm/@truffle/[email protected]	None	`0`	12.2 kB	haltman
npm/@truffle/[email protected]	None	`0`	3.53 kB	haltman
npm/@truffle/[email protected]	filesystem	`+3`	13.2 MB	haltman
npm/@truffle/[email protected]	environment Transitive: filesystem, network, shell	`+50`	9.15 MB	haltman
npm/@truffle/[email protected]	None	`0`	2.77 kB	haltman
npm/@truffle/[email protected]	None	`0`	51.5 kB	haltman
npm/@truffle/[email protected]	Transitive: network	`+7`	3.23 MB	haltman
npm/@truffle/[email protected]	None	`0`	11.5 kB	haltman
npm/@truffle/[email protected]	None	`0`	19.3 kB	haltman
npm/@truffle/[email protected]	None	`0`	20 kB	haltman
npm/@truffle/[email protected]	None	`0`	19.4 kB	haltman
npm/@trufflesuite/[email protected]	environment	`0`	52 kB	benjamincburns
npm/@types/[email protected]	None	`0`	7.12 kB	types
npm/@types/[email protected]	None	`0`	14.1 kB	types
npm/@types/[email protected]	None	`0`	9.28 kB	types
npm/@types/[email protected]	None	`0`	6.21 kB	types
npm/@types/[email protected]	None	`0`	6.35 kB	types
npm/@types/[email protected]	None	`0`	45.7 kB	types
npm/@types/[email protected]	None	`0`	8.24 kB	types
npm/@types/[email protected]	None	`0`	9.55 kB	types
npm/@types/[email protected]	None	`0`	6.72 kB	types
npm/@types/[email protected]	None	`0`	6.12 kB	types
npm/@types/[email protected]	None	`0`	13.3 kB	types
npm/@types/[email protected]	None	`0`	611 kB	types
npm/@types/[email protected]	None	`0`	3.59 kB	types
npm/@types/[email protected]	None	`0`	7.07 kB	types
npm/@types/[email protected]	None	`0`	3.62 kB	types
npm/@types/[email protected]	None	`0`	8.05 kB	types
npm/@types/[email protected]	None	`0`	10.2 kB	types
npm/@types/[email protected]	None	`0`	8.15 kB	types
npm/[email protected]	None	`0`	76.3 kB	mysticatea
npm/[email protected]	network	`0`	94.6 kB	molsson
npm/[email protected]	None	`+2`	341 kB	vweevers
npm/[email protected]	eval	`+1`	942 kB	esp
npm/[email protected]	environment	`0`	24.4 kB	jonschlinkert
npm/[email protected]	None	`0`	17 kB	sindresorhus
npm/[email protected]	None	`0`	9.65 kB	phated
npm/[email protected]	None	`0`	3.15 kB	apollo-bot
npm/[email protected]	Transitive: environment, filesystem, network	`+1`	3.42 MB	apollo-bot
npm/[email protected]	environment, network	`0`	962 kB	apollo-bot
npm/[email protected]	None	`0`	17.3 kB	apollo-bot
npm/[email protected]	None	`0`	29.7 kB	apollo-bot
npm/[email protected]	None	`+1`	72.2 kB	apollo-bot
npm/[email protected]	None	`0`	14 kB	apollo-bot
npm/[email protected]	None	`0`	25.4 kB	apollo-bot
npm/[email protected]	network	`0`	26.6 kB	apollo-bot
npm/[email protected]	unsafe	`0`	14.1 kB	pnidem
npm/[email protected]	environment, filesystem	`0`	172 kB	vitaly
npm/[email protected]	None	`0`	3.69 kB	cwmma
npm/[email protected]	None	`0`	4.42 kB	blakeembrey
npm/[email protected]	None	`0`	6.9 kB	strml
npm/[email protected]	None	`0`	5.21 kB	leerobinson
npm/[email protected]	filesystem	`0`	93.3 kB	fabiospampinato
npm/[email protected]	None	`0`	14.1 kB	ljharb
npm/[email protected]	network Transitive: filesystem	`+1`	1.8 MB	jasonsaayman
npm/[email protected]	None	`0`	6.94 kB	juliangruber
npm/[email protected]	None	`0`	9.35 kB	junderw
npm/[email protected]	None	`0`	9.18 kB	feross
npm/[email protected]	None	`0`	9.98 kB	junderw
npm/[email protected]	None	`0`	164 kB	peterolson
npm/[email protected]	None	`0`	58.6 kB	mikemcl
npm/[email protected]	None	`0`	351 kB	mikemcl
npm/[email protected]	environment, filesystem	`0`	11.2 kB	tootallnate
npm/[email protected]	None	`0`	38.9 kB	rvagg
npm/[email protected]	None	`0`	156 kB	dcposch
npm/[email protected]	environment, eval, unsafe	`0`	636 kB	esailija
npm/[email protected]	network	`0`	56.4 kB	dougwilson
npm/[email protected]	None	`0`	2.3 kB	kumavis
npm/[email protected]	None	`0`	4.58 kB	null_radix
npm/[email protected]	None	`0`	4.79 kB	dcousens
npm/[email protected]	None	`0`	5.05 kB	linusu
npm/[email protected]	None	`0`	81.3 kB	feross
npm/[email protected]	None	`0`	409 kB	lpinca
npm/[email protected]	None	`0`	11 kB	dougwilson
npm/[email protected]	network	`0`	24.9 kB	szmarczak
npm/[email protected]	None	`0`	14.7 kB	ljharb
npm/[email protected]	None	`0`	2.99 kB	blakeembrey
npm/[email protected]	None	`0`	3.9 kB	sindresorhus
npm/[email protected]	None	`0`	5 kB	vweevers
npm/[email protected]	None	`0`	89.4 kB	hildjj
npm/[email protected]	None	`0`	35 kB	sindresorhus
npm/[email protected]	None	`0`	20.3 kB	blakeembrey
npm/[email protected]	None	`+2`	2.3 MB	vmx
npm/[email protected]	None	`0`	4.37 kB	sindresorhus
npm/[email protected]	None	`+2`	20.2 kB	bcoe
npm/[email protected]	None	`0`	4.28 kB	phated
npm/[email protected]	None	`0`	2.99 kB	sindresorhus
npm/[email protected]	None	`0`	27.2 kB	qix
npm/[email protected]	None	`0`	6.69 kB	dfcreative
npm/[email protected]	environment	`0`	39.5 kB	dabh
npm/[email protected]	None	`0`	11.5 kB	alexindigo
npm/[email protected]	filesystem, shell	`0`	62.4 kB	abetomo
npm/[email protected]	environment, filesystem	`0`	50 kB	sindresorhus
npm/[email protected]	None	`0`	2.58 kB	blakeembrey
npm/[email protected]	None	`0`	264 kB	pldespaigne
npm/[email protected]	network	`0`	75.1 kB	lquixada
npm/[email protected]	None	`+1`	557 kB	leeondamiky
npm/[email protected]	None	`0`	32 kB	leizongmin
npm/[email protected]	None	`0`	58.8 kB	leebyron
npm/[email protected]	None	`+1`	14.6 kB	sindresorhus
npm/[email protected]	None	`0`	2.94 kB	sindresorhus
npm/[email protected]	network	`0`	10.1 kB	szmarczak
npm/[email protected]	None	`+3`	279 kB	vweevers
npm/[email protected]	None	`0`	11.2 kB	sindresorhus
npm/[email protected]	None	`0`	38.6 kB	indutny
npm/[email protected]	None	`0`	369 kB	kpdecker
npm/[email protected]	None	`0`	3.75 kB	blakeembrey
npm/[email protected]	None	`0`	10.2 kB	sindresorhus
npm/[email protected]	None	`0`	24.4 kB	esailija
npm/[email protected]	None	`0`	119 kB	indutny
npm/[email protected]	None	`0`	20.3 kB	novemberborn
npm/[email protected]	None	`0`	48.3 kB	mathias
npm/[email protected]	None	`+1`	266 kB	vweevers
npm/[email protected]	None	`0`	6.23 kB	mafintosh
npm/[email protected]	None	`0`	3.29 kB	raynos
npm/[email protected]	None	`0`	10.2 kB	sindresorhus
npm/[email protected]	None	`0`	18.1 kB	ralphtheninja
npm/[email protected]	eval	`+1`	381 kB	medikoo
npm/[email protected]	None	`0`	315 kB	stefanpenner
npm/[email protected]	None	`0`	19.4 kB	medikoo
npm/[email protected]	None	`0`	3.79 kB	sindresorhus
npm/[email protected]	None	`0`	94.3 kB	maiavictor
npm/[email protected]	None	`0`	20.1 kB	joshstevens19
npm/[email protected]	None	`0`	845 kB	alcuadrado
npm/[email protected]	None	`0`	310 kB	holgerd77
npm/[email protected]	None	`0`	189 kB	mysticatea
npm/[email protected]	environment, filesystem, network Transitive: eval, unsafe	`+21`	865 kB	dougwilson
npm/[email protected]	None	`+1`	126 kB	medikoo
npm/[email protected]	None	`0`	799 kB	ndubien
npm/[email protected]	network	`0`	9.68 kB	valeriangalliat
npm/[email protected]	None	`+4`	20.6 kB	sindresorhus
npm/[email protected]	None	`0`	26.6 kB	timoxley
npm/[email protected]	None	`0`	8.73 kB	manuelstofer
npm/[email protected]	None	`0`	47 kB	octetstream
npm/[email protected]	filesystem	`0`	141 kB	ryanzim
npm/[email protected]	None	`0`	173 kB	pipobscure
npm/[email protected]	environment, filesystem, network	`+38`	188 MB	truffle-cicd
npm/[email protected]	None	`0`	2.48 kB	stefanpenner
npm/[email protected]	eval	`0`	37.1 kB	ljharb
npm/[email protected]	None	`0`	12.1 kB	phated
npm/[email protected]	filesystem	`0`	55.1 kB	isaacs
npm/[email protected]	environment, filesystem	`0`	27.6 kB	isaacs
npm/[email protected]	None	`0`	172 kB	apollo-bot
npm/[email protected]	environment	`0`	2.12 MB	i1g
npm/[email protected]	None	`0`	4.42 kB	sindresorhus
npm/[email protected]	None	`0`	20.6 kB	ljharb
npm/[email protected]	None	`0`	3.94 kB	blakeembrey
npm/[email protected]	None	`0`	25.8 kB	nlf
npm/[email protected]	None	`+1`	20.9 kB	dougwilson
npm/[email protected]	network	`0`	75.3 kB	szmarczak
npm/[email protected]	None	`0`	6.25 kB	feross
npm/[email protected]	None	`0`	21 kB	cwmma
npm/[email protected]	None	`0`	1.3 kB	sindresorhus
npm/[email protected]	None	`0`	28.9 kB	ljharb
npm/[email protected]	None	`0`	29.8 kB	ljharb
npm/[email protected]	None	`0`	4.25 kB	sindresorhus
npm/[email protected]	None	`0`	3.68 kB	blakeembrey
npm/[email protected]	None	`0`	2.82 kB	sindresorhus
npm/[email protected]	None	`0`	17.6 kB	ljharb
npm/[email protected]	None	`0`	3.54 kB	sindresorhus
npm/[email protected]	None	`0`	3.8 kB	blakeembrey
npm/[email protected]	None	`0`	4.34 kB	wayfind
npm/[email protected]	None	`0`	3.89 kB	heineiuo
npm/[email protected]	None	`0`	105 kB	emn178
npm/[email protected]	None	`0`	405 kB	vitaly
npm/[email protected]	None	`0`	100 kB	manuelstofer
npm/[email protected]	None	`0`	56.9 kB	jayrylan
npm/[email protected]	None	`0`	23.8 kB	ljharb
npm/[email protected]	None	`0`	19.4 kB	ljharb
npm/[email protected]	None	`0`	779 kB	fanatid
npm/[email protected]	None	`0`	4.54 kB	axic
npm/[email protected]	filesystem	`0`	12.6 kB	jprichardson
npm/[email protected]	None	`0`	6.43 kB	sindresorhus
npm/[email protected]	None	`0`	32.8 kB	vweevers
npm/[email protected]	None	`0`	12.6 kB	vweevers
npm/[email protected]	None	`0`	26.5 kB	vweevers
npm/[email protected]	None	`0`	66.5 kB	vweevers
npm/[email protected]	None	`0`	32.8 kB	vweevers
npm/[email protected]	None	`0`	3.42 kB	raynos
npm/[email protected]	None	`0`	51.3 kB	vweevers
npm/[email protected]	Transitive: environment, filesystem	`+1`	5.15 MB	vweevers
npm/[email protected]	None	`0`	108 kB	vweevers
npm/[email protected]	None	`0`	3.4 kB	sindresorhus
npm/[email protected]	None	`0`	3.87 kB	sindresorhus
npm/[email protected]	eval	`0`	636 kB	bnjmnt4n
npm/[email protected]	None	`0`	19.9 kB	jdalton
npm/[email protected]	None	`0`	4.58 kB	sindresorhus
npm/[email protected]	None	`0`	139 kB	pimterry
npm/[email protected]	None	`0`	177 kB	dcode
npm/[email protected]	None	`0`	4.01 kB	blakeembrey
npm/[email protected]	None	`0`	4.78 kB	blakeembrey
npm/[email protected]	None	`+1`	30.4 kB	isaacs
npm/[email protected]	None	`0`	17.5 kB	dominictarr
npm/[email protected]	None	`+2`	179 kB	vweevers
npm/[email protected]	None	`0`	23.2 kB	jsbizon
npm/[email protected]	None	`0`	191 kB	dougwilson
npm/[email protected]	None	`0`	16.1 kB	dougwilson
npm/[email protected]	None	`0`	34.9 kB	isaacs
npm/[email protected]	filesystem	`0`	7.53 kB	isaacs
npm/[email protected]	environment, eval, filesystem	`+17`	2.72 MB	juergba
npm/[email protected]	filesystem	`0`	96.5 kB	tschaub
npm/[email protected]	None	`0`	347 kB	hugomrdias
npm/[email protected]	None	`0`	338 kB	hacdias
npm/[email protected]	None	`0`	510 kB	hugomrdias
npm/[email protected]	None	`0`	417 kB	kkoopa
npm/[email protected]	None	`0`	5.84 kB	grayolson
npm/[email protected]	None	`0`	21.6 kB	ai
npm/[email protected]	None	`0`	30.8 kB	blakeembrey
npm/[email protected]	None	`0`	16.9 kB	ethan_arrowood
npm/[email protected]	environment, filesystem	`0`	13.2 kB	mafintosh
npm/[email protected]	None	`0`	82.1 kB	2pacalypse-
npm/[email protected]	None	`0`	26 kB	hildjj
npm/[email protected]	None	`+1`	90 kB	audrey.e
npm/[email protected]	None	`0`	18.1 kB	sindresorhus
npm/[email protected]	None	`0`	2.35 kB	sindresorhus
npm/[email protected]	None	`0`	93.6 kB	ljharb
npm/[email protected]	None	`0`	12.3 kB	dougwilson
npm/[email protected]	None	`0`	511 B	tcoulter
npm/[email protected]	environment, shell	`0`	5.47 kB	sindresorhus
npm/[email protected]	None	`0`	7.39 kB	sindresorhus
npm/[email protected]	None	`0`	5.05 kB	sindresorhus
npm/[email protected]	None	`0`	3.82 kB	blakeembrey
npm/[email protected]	None	`0`	13.1 kB	cwmma
npm/[email protected]	None	`0`	33.5 kB	sindresorhus
npm/[email protected]	None	`0`	4.16 kB	blakeembrey
npm/[email protected]	None	`0`	3.78 kB	blakeembrey
npm/[email protected]	filesystem	`0`	3.32 kB	sindresorhus
npm/[email protected]	None	`0`	3.54 kB	sindresorhus
npm/[email protected]	None	`0`	17.7 kB	blakeembrey
npm/[email protected]	None	`0`	85.2 kB	albaherreriasdev
npm/[email protected]	None	`0`	193 kB	albaherreriasdev
npm/[email protected]	None	`0`	13.9 kB	albaherreriasdev
npm/[email protected]	None	`0`	39.2 kB	albaherreriasdev
npm/[email protected]	None	`0`	26.5 kB	albaherreriasdev
npm/[email protected]	None	`0`	36.2 kB	albaherreriasdev
npm/[email protected]	None	`0`	17.9 kB	albaherreriasdev
npm/[email protected]	Transitive: environment	`+1`	69.3 kB	garethbowen
npm/[email protected]	None	`0`	21.7 kB	albaherreriasdev
npm/[email protected]	network	`+1`	167 kB	albaherreriasdev
npm/[email protected]	None	`0`	197 kB	albaherreriasdev
npm/[email protected]	None	`0`	14.1 kB	albaherreriasdev
npm/[email protected]	None	`0`	18.4 kB	albaherreriasdev
npm/[email protected]	None	`0`	17.8 kB	albaherreriasdev
npm/[email protected]	None	`0`	38.4 kB	albaherreriasdev
npm/[email protected]	None	`0`	53.1 kB	albaherreriasdev
npm/[email protected]	eval	`+1`	211 kB	albaherreriasdev
npm/[email protected]	filesystem, network, unsafe Transitive: environment	`+3`	4.01 MB	albaherreriasdev
npm/[email protected]	None	`0`	2.98 kB	sindresorhus
npm/[email protected]	None	`0`	3.17 kB	cwmma
npm/[email protected]	None	`0`	3.44 kB	shtylman
npm/[email protected]	environment	`0`	29.5 kB	rob-w
npm/[email protected]	None	`0`	10.1 kB	rvagg
npm/[email protected]	None	`0`	431 kB	lupomontero
npm/[email protected]	None	`0`	27.8 kB	cwmma
npm/[email protected]	filesystem	`0`	7.78 kB	mafintosh
npm/[email protected]	None	`0`	32.4 kB	mathias
npm/[email protected]	None	`0`	66.1 kB	ndubien
npm/[email protected]	None	`0`	143 kB	ljharb
npm/[email protected]	None	`0`	12.7 kB	sindresorhus
npm/[email protected]	None	`0`	8.64 kB	sindresorhus
npm/[email protected]	None	`0`	6.36 kB	cwmma
npm/[email protected]	None	`0`	6.84 kB	cwmma
npm/[email protected]	None	`0`	4.75 kB	frozeman
npm/[email protected]	None	`0`	8.46 kB	dougwilson
npm/[email protected]	network	`0`	22.7 kB	dougwilson
npm/[email protected]	None	`0`	22.3 kB	mohitkyadav
npm/[email protected]	Transitive: filesystem	`+2`	11.9 kB	sindresorhus
npm/[email protected]	None	`0`	4.42 kB	sindresorhus
npm/[email protected]	environment	`0`	88 kB	matteo.collina
npm/[email protected]	filesystem	`0`	20.5 kB	paulmillr
npm/[email protected]	None	`0`	118 kB	andarist
npm/[email protected]	environment	`0`	136 kB	timdorr
npm/[email protected]	None	`0`	27.8 kB	benjamn
npm/[email protected]	environment, filesystem, network	`+1`	333 kB	mikeal
npm/[email protected]	filesystem	`0`	12.1 kB	troygoode
npm/[email protected]	unsafe	`0`	3.42 kB	floatdrop
npm/[email protected]	None	`0`	4.14 kB	bcoe
npm/[email protected]	Transitive: environment	`+1`	81 kB	haltman
npm/[email protected]	None	`0`	175 kB	acemarke
npm/[email protected]	network	`0`	4.64 kB	szmarczak
npm/[email protected]	environment, filesystem	`0`	145 kB	ljharb
npm/[email protected]	None	`0`	4.63 kB	lukechilds
npm/[email protected]	None	`0`	2.82 kB	sindresorhus
npm/[email protected]	None	`0`	18.9 kB	tim-kos
npm/[email protected]	filesystem	`0`	15.5 kB	isaacs
npm/[email protected]	None	`0`	38.9 kB	zone117x
npm/[email protected]	None	`0`	9.79 kB	dcousens
npm/[email protected]	None	`0`	62.9 kB	ralxz
npm/[email protected]	None	`0`	31.9 kB	feross
npm/[email protected]	None	`0`	42.3 kB	chalker
npm/[email protected]	None	`0`	225 kB	ricmoo
npm/[email protected]	None	`0`	15.6 kB	junderw
npm/[email protected]	Transitive: filesystem, shell	`+1`	85.8 kB	cscott
npm/[email protected]	None	`0`	93.4 kB	npm-cli-ops
npm/[email protected]	None	`0`	4.29 kB	blakeembrey
npm/[email protected]	None	`0`	16.8 kB	okuryu

View full report↗︎

socket-security · 2024-06-19T14:49:48Z

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source	CI
Install scripts	npm/@apollo/[email protected]	Install script: postinstall Source: `node scripts/postinstall`	`package-lock.json`	🚫
Install scripts	npm/@apollo/[email protected]	Install script: postinstall Source: `node scripts/postinstall`	orphan: npm/@apollo/[email protected]	🚫
Install scripts	npm/[email protected]	Install script: postinstall Source: `echo "Web3.js 4.x alpha has been released for early testing and feedback. Checkout doc at https://docs.web3js.org/ "`	`package-lock.json`	🚫
Install scripts	npm/[email protected]	Install script: postinstall Source: `echo "WARNING: the web3-bzz api will be deprecated in the next version"`	`package-lock.json`	🚫
Install scripts	npm/[email protected]	Install script: postinstall Source: `echo "WARNING: the web3-shh api will be deprecated in the next version"`	`package-lock.json`	🚫
Install scripts	npm/[email protected]	Install script: postinstall Source: `node -e "try{require('./_postinstall')}catch(e){}"`	`client/package-lock.json`	🚫

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@SocketSecurity ignore npm/@apollo/[email protected]
@SocketSecurity ignore npm/@apollo/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]

aashutoshrathi closed this Sep 12, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade web3 from 4.8.0 to 4.9.0 #777

[Snyk] Upgrade web3 from 4.8.0 to 4.9.0 #777

aashutoshrathi commented Jun 15, 2024

What's Changed

New Contributors

[4.8.0]

Changed

web3-eth-abi

web3-eth-accounts

Fixed

web3-eth-contract

web3-utils

Added

web3-eth-contract

web3-eth

web3-types

New Contributors

socket-security bot commented Jun 19, 2024

socket-security bot commented Jun 19, 2024

[Snyk] Upgrade web3 from 4.8.0 to 4.9.0 #777

[Snyk] Upgrade web3 from 4.8.0 to 4.9.0 #777

Conversation

aashutoshrathi commented Jun 15, 2024

Snyk has created this PR to upgrade web3 from 4.8.0 to 4.9.0.

What's Changed

New Contributors

[4.8.0]

Changed

web3-eth-abi

web3-eth-accounts

Fixed

web3-eth-contract

web3-utils

Added

web3-eth-contract

web3-eth

web3-types

New Contributors

socket-security bot commented Jun 19, 2024

socket-security bot commented Jun 19, 2024

Next steps