Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: Update constants-v2 to 1.1.0 #507

Merged
merged 1 commit into from
May 30, 2024
Merged

chore: Update constants-v2 to 1.1.0 #507

merged 1 commit into from
May 30, 2024

Conversation

nicholaspai
Copy link
Member

This constants version deprecates _USDC in favor of USDC

@nicholaspai
chore: Update constants-v2 to 1.1.0
65ca2b2 
This constants version deprecates _USDC in favor of USDC
@socket-security Socket Security
Copy link

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@across-protocol/[email protected] None 0 0 B
npm/@babel/[email protected] None +1 198 kB nicolo-ribaudo
npm/@consensys/[email protected] Transitive: environment, eval, filesystem, network, shell +12 35.7 MB victorien-gauch
npm/@defi-wonderland/[email protected] Transitive: environment, eval, filesystem, network +25 10.4 MB 0xgorilla
npm/@ensdomains/[email protected] Transitive: filesystem, network, unsafe +6 13 MB makoto_inoue
npm/@ensdomains/[email protected] None 0 5.02 MB nickjohnson
npm/@eth-optimism/[email protected] None 0 1.97 MB optibot
npm/@eth-optimism/[email protected] None +1 211 kB karlfloersch
npm/@ethereumjs/[email protected] None +1 2.55 MB ralxz
npm/@ethereumjs/[email protected] None 0 421 kB holgerd77
npm/@ethersproject/[email protected] None 0 498 kB ricmoo
npm/@ethersproject/[email protected] None 0 61 kB ricmoo
npm/@ethersproject/[email protected] None 0 82.2 kB ricmoo
npm/@ethersproject/[email protected] None 0 33.1 kB ricmoo
npm/@ethersproject/[email protected] None 0 11.3 kB ricmoo
npm/@ethersproject/[email protected] None 0 30.1 kB ricmoo
npm/@ethersproject/[email protected] None 0 143 kB ricmoo
npm/@ethersproject/[email protected] None 0 80.9 kB ricmoo
npm/@ethersproject/[email protected] None 0 18.7 kB ricmoo
npm/@ethersproject/[email protected] None 0 250 kB ricmoo
npm/@ethersproject/[email protected] Transitive: environment, filesystem, shell +14 10.6 MB ricmoo
npm/@ethersproject/[email protected] None 0 257 kB ricmoo
npm/@ethersproject/[email protected] None 0 81 kB ricmoo
npm/@ethersproject/[email protected] None 0 125 kB ricmoo
npm/@ethersproject/[email protected] None 0 6.09 kB ricmoo
npm/@ethersproject/[email protected] None 0 47.5 kB ricmoo
npm/@ethersproject/[email protected] None 0 17.4 kB ricmoo
npm/@ethersproject/[email protected] None 0 31 kB ricmoo
npm/@ethersproject/[email protected] network 0 1.2 MB ricmoo
npm/@ethersproject/[email protected] None 0 17.3 kB ricmoo
npm/@ethersproject/[email protected] None 0 29.6 kB ricmoo
npm/@ethersproject/[email protected] None 0 21.7 kB ricmoo
npm/@ethersproject/[email protected] None 0 244 kB ricmoo
npm/@ethersproject/[email protected] None 0 23.2 kB ricmoo
npm/@ethersproject/[email protected] None 0 119 kB ricmoo
npm/@ethersproject/[email protected] None 0 89.6 kB ricmoo
npm/@ethersproject/[email protected] None 0 55.5 kB ricmoo
npm/@ethersproject/[email protected] network 0 128 kB ricmoo
npm/@ethersproject/[email protected] None 0 390 kB ricmoo
npm/@ledgerhq/[email protected] None 0 117 kB gre
npm/@ledgerhq/[email protected] None 0 78 kB gre
npm/@ledgerhq/[email protected] None 0 96.7 kB gre
npm/@ledgerhq/[email protected] None 0 27.4 kB gre
npm/@matterlabs/[email protected] filesystem 0 52.5 kB npm-matterlabs
npm/@matterlabs/[email protected] filesystem, shell Transitive: environment, network, unsafe +67 45.6 MB npm-matterlabs
npm/@matterlabs/[email protected] filesystem Transitive: environment, network, shell +20 3.18 MB npm-matterlabs
npm/@matterlabs/[email protected] Transitive: environment, filesystem, network, shell +12 901 kB npm-matterlabs
npm/@matterlabs/[email protected] None +2 3.69 MB vladbochok
npm/@nomicfoundation/[email protected] environment, eval Transitive: filesystem, network +9 2.78 MB fvictorio
npm/@nomicfoundation/[email protected] None +5 363 kB fvictorio
npm/@nomicfoundation/[email protected] environment +5 398 kB fvictorio
npm/@nomiclabs/[email protected] None 0 80.9 kB fvictorio
npm/@nomiclabs/[email protected] None +5 418 kB alcuadrado
npm/@openzeppelin/[email protected] None 0 2.11 MB amxx
npm/@openzeppelin/[email protected] None 0 2.02 MB frangio
npm/@openzeppelin/[email protected] filesystem Transitive: environment +3 483 kB ericglau
npm/@openzeppelin/[email protected] environment, filesystem +2 4.07 MB ericglau
npm/@pinata/[email protected] Transitive: environment, network +3 7.55 MB polluterofminds
npm/@scroll-tech/[email protected] None 0 198 kB turupawn
npm/@truffle/[email protected] None 0 2.71 kB eggplantzzz
npm/@truffle/[email protected] Transitive: filesystem, network, shell +23 6.92 MB eggplantzzz
npm/@trufflesuite/[email protected] None +2 118 kB cruzmolina
npm/@typechain/[email protected] filesystem Transitive: environment +6 1.13 MB ethereum-ts-bot
npm/@typechain/[email protected] filesystem Transitive: environment, network +21 52.6 MB ethereum-ts-bot
npm/@types/[email protected] None 0 13.9 kB types
npm/@types/[email protected] None 0 77.2 kB types
npm/@types/[email protected] None 0 96.1 kB types
npm/@types/[email protected] None 0 758 kB types
npm/@typescript-eslint/[email protected] Transitive: environment, filesystem +11 4.93 MB jameshenry
npm/@typescript-eslint/[email protected] Transitive: environment, filesystem +7 1.75 MB jameshenry
npm/@uma/[email protected] environment, filesystem Transitive: network, shell +96 151 MB mrice32
npm/@uma/[email protected] None 0 69 MB mrice32
npm/@uma/[email protected] filesystem +1 156 MB mrice32
npm/[email protected] None 0 484 kB vweevers
npm/[email protected] None 0 738 kB ricmoo
npm/[email protected] None +1 36.6 kB sindresorhus
npm/[email protected] None +1 25.7 MB fredlacs
npm/[email protected] None +2 24.2 MB fredlacs
npm/[email protected] None 0 19.2 kB ahultgren
npm/[email protected] network Transitive: filesystem +2 1.87 MB jasonsaayman
npm/[email protected] None 0 402 kB mikemcl
npm/[email protected] None 0 29.8 kB cwmma
npm/[email protected] None 0 4.57 kB dcousens
npm/[email protected] None +1 206 kB hildjj
npm/[email protected] None 0 752 kB chai
npm/[email protected] environment, filesystem 0 90.1 kB paulmillr
npm/[email protected] environment 0 39.5 kB dabh
npm/[email protected] None 0 55.2 kB omichelsen
npm/[email protected] None 0 19.7 kB dougwilson
npm/[email protected] None 0 5.21 kB cwmma
npm/[email protected] None 0 5.81 kB cwmma
npm/[email protected] None 0 369 kB kpdecker
npm/[email protected] None 0 118 kB indutny
npm/[email protected] None 0 18.1 kB lydell
npm/[email protected] None 0 16.4 kB linusu
npm/[email protected] filesystem, unsafe 0 1.04 MB ljharb
npm/[email protected] filesystem +2 652 kB mysticatea
npm/[email protected] None 0 42.5 kB xjamundx
npm/[email protected] filesystem +6 3.72 MB eslintbot
npm/[email protected] None 0 254 kB danfinlay
npm/[email protected] None 0 51.8 kB gudahtt
npm/[email protected] None +1 807 kB paulmillr
npm/[email protected] None 0 20.3 kB ethworks
npm/[email protected] None 0 68.4 kB holgerd77
npm/[email protected] None +5 492 kB holgerd77
npm/[email protected] None +5 348 kB ralxz
npm/[email protected] None 0 10.7 MB ricmoo
npm/[email protected] None 0 225 kB silentcicero
npm/[email protected] None 0 4.8 kB sindresorhus
npm/[email protected] network 0 29.4 kB rubenverborgh
npm/[email protected] None 0 2 MB gcanti
npm/[email protected] None 0 59.5 kB ryanzim
npm/[email protected] environment, network +1 96.2 kB google-wombot
npm/[email protected] filesystem Transitive: environment +2 71.9 kB isaacs
npm/[email protected] environment, filesystem, shell 0 492 kB google-wombot
npm/[email protected] environment, filesystem 0 31.6 kB isaacs
npm/[email protected] environment, filesystem +3 12.4 MB wighawag
npm/[email protected] filesystem 0 73.1 kB cgewecke
npm/[email protected] environment, filesystem, network, shell Transitive: eval, unsafe +68 44.9 MB fvictorio
npm/[email protected] None 0 41.7 kB indutny
npm/[email protected] environment, filesystem, shell +1 66.4 kB typicode
npm/[email protected] None 0 7.64 kB zertosh
npm/[email protected] None +1 1.2 MB fanatid
npm/[email protected] None 0 18 kB dougwilson
npm/[email protected] filesystem 0 7.53 kB isaacs
npm/[email protected] environment, eval, filesystem +3 2.11 MB juergba
npm/[email protected] None 0 13.8 kB cwmma
npm/[email protected] None 0 696 kB janther
npm/[email protected] environment, eval, filesystem, unsafe 0 21 MB sosukesuzuki
npm/[email protected] filesystem Transitive: environment +2 77.3 kB azz
npm/[email protected] None 0 29.9 kB hugomrdias
npm/[email protected] None 0 216 kB ljharb
npm/[email protected] environment +1 132 kB matteo.collina
npm/[email protected] filesystem 0 105 kB ljharb
npm/[email protected] filesystem 0 15.5 kB isaacs
npm/[email protected] None 0 9.79 kB dcousens
npm/[email protected] None 0 62.9 kB ralxz
npm/[email protected] None +1 2.69 MB fanatid
npm/[email protected] None 0 88.2 kB isaacs
npm/[email protected] filesystem Transitive: environment +2 236 kB fvictorio
npm/[email protected] None 0 238 kB frangio
npm/[email protected] filesystem Transitive: environment +3 189 kB cgewecke
npm/[email protected] filesystem 0 85.2 kB linusu
npm/[email protected] filesystem 0 9.61 kB bushong1
npm/[email protected] None +1 6.96 kB sindresorhus
npm/[email protected] None 0 335 kB gajus-table
npm/[email protected] filesystem 0 27.7 kB mafintosh
npm/[email protected] filesystem 0 26.8 kB mafintosh
npm/[email protected] environment, filesystem, unsafe 0 591 kB cspotcode
npm/[email protected] filesystem Transitive: environment +5 1.04 MB ethereum-ts-bot
npm/[email protected] None 0 64.7 MB typescript-bot
npm/[email protected] environment, network, unsafe 0 1.08 MB matteo.collina
npm/[email protected] Transitive: filesystem, network, shell +3 467 kB jdevcs
npm/[email protected] None 0 60.4 kB jdevcs
npm/[email protected] None +4 1.16 MB jdevcs
npm/[email protected] None 0 6.77 kB jdevcs
npm/[email protected] None 0 42.2 kB jdevcs
npm/[email protected] None 0 32.4 kB jdevcs
npm/[email protected] None 0 24 kB jdevcs
npm/[email protected] None 0 50.8 kB jdevcs
npm/[email protected] None 0 66.1 kB jdevcs
npm/[email protected] None +5 1.18 MB jdevcs
npm/[email protected] None +5 1.5 MB jdevcs
npm/[email protected] None +4 1.11 MB jdevcs
npm/[email protected] None 0 19.4 kB jdevcs
npm/[email protected] None +2 146 kB jdevcs
npm/[email protected] None 0 9.26 kB jdevcs
npm/[email protected] None 0 26 kB jdevcs
npm/[email protected] None +4 1.25 MB jdevcs
npm/[email protected] None 0 5.72 MB spacesailor
npm/[email protected] filesystem, network 0 268 kB dabh
npm/[email protected] network 0 113 kB lpinca
npm/[email protected] environment, filesystem 0 175 kB bcoe
npm/[email protected] environment 0 876 kB stanislavbezkor

🚮 Removed packages: npm/@babel/[email protected], npm/@babel/[email protected], npm/@jridgewell/[email protected], npm/@nodelib/[email protected], npm/@protobufjs/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

@socket-security Socket Security
Copy link

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert Package NoteSource
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "WARNING: the web3-shh and web3-bzz api will be deprecated in the next version"
Install scripts npm/[email protected]
  • Install script: install
  • Source: node husky install
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: opencollective-postinstall || exit 0
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "WARNING: the web3-bzz api will be deprecated in the next version"
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "WARNING: the web3-shh api will be deprecated in the next version"
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "Web3.js 4.x alpha has been released for early testing and feedback. Checkout doc at https://docs.web3js.org/ "
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "Web3.js 4.x alpha has been released for early testing and feedback. Checkout doc at https://docs.web3js.org/ "
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "WARNING: the web3-bzz api will be deprecated in the next version"
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "WARNING: the web3-shh api will be deprecated in the next version"
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: $npm_execpath run clean:build
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: $npm_execpath run clean:build

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@mrice32 mrice32 merged commit 6c8ecb4 into master May 30, 2024
6 of 7 checks passed
@mrice32 mrice32 deleted the npai/constants-1.1 branch May 30, 2024 21:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mrice32 mrice32 mrice32 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@nicholaspai @mrice32