Bump the npm_and_yarn group across 1 directory with 26 updates #17

dependabot · 2025-05-15T00:20:04Z

Bumps the npm_and_yarn group with 11 updates in the / directory:

Package	From	To
async	`1.5.2`	`2.6.4`
@nomiclabs/hardhat-waffle	`2.0.3`	`2.0.6`
ethereum-waffle	`3.4.4`	`4.0.10`
flat	`4.1.1`	`5.0.2`
eth-gas-reporter	`0.2.25`	`0.2.27`
solidity-coverage	`0.8.2`	`0.8.16`
minimatch	`3.0.4`	`3.1.2`
get-func-name	`2.0.0`	`2.0.2`
nanoid	`3.3.3`	`removed`
mocha	`10.2.0`	`10.8.2`
undici	`5.14.0`	`5.29.0`

Updates async from 1.5.2 to 2.6.4

Release notes

Sourced from async's releases.

v2.3.0

Added support for ES2017 async functions. Wherever you can pass a Node-style/CPS function that uses a callback, you can also pass an async function. Previously, you had to wrap async functions with asyncify. The caveat is that it will only work if async functions are supported natively in your environment, transpiled implementations can't be detected. (#1386, #1390)

v2.2.0

Added groupBy, and the Series/Limit equivalents, analogous to _.groupBy (#1364)

Fixed transform bug when callback was not passed (#1381)

v2.1.5

Fix auto bug when function names collided with Array.prototype (#1358)

Improve some error messages (#1349)

Avoid stack overflow case in queue

Fixed an issue in some, every and find where processing would continue after the result was determined.

Cleanup implementations of some, every and find

v2.1.3

Make bundle size smaller

Create optimized hotpath for filter in array case.

v2.1.2

Fixed a stackoverflow bug with detect, some, every on large inputs (#1293).

v2.1.0

retry and retryable now support an optional errorFilter function that determines if the task should retry on the error (#1256, #1261)

Optimized array iteration in race, cargo, queue, and priorityQueue (#1253)

v2.0.0

Lots of changes here!

First and foremost, we have a slick new site for docs. Special thanks to @hargasinski for his work converting our old docs to jsdoc format and implementing the new website. Also huge ups to @ivanseidel for designing our new logo. It was a long process for both of these tasks, but I think these changes turned out extraordinary well.

The biggest feature is modularization. You can now require("async/series") to only require the series function. Every Async library function is available this way. You still can require("async") to require the entire library, like you could do before.

We also provide Async as a collection of ES2015 modules. You can now import {each} from 'async-es' or import waterfall from 'async-es/waterfall'. If you are using only a few Async functions, and are using a ES bundler such as Rollup, this can significantly lower your build size.

Major thanks to @Kikobeats, @aearly and @megawac for doing the majority of the modularization work, as well as @jdalton and @Rich-Harris for advisory work on the general modularization strategy.

Another one of the general themes of the 2.0 release is standardization of what an "async" function is. We are now more strictly following the node-style continuation passing style. That is, an async function is a function that:

Takes a variable number of arguments

The last argument is always a callback

The callback can accept any number of arguments

The first argument passed to the callback will be treated as an error result, if the argument is truthy

Any number of result arguments can be passed after the "error" argument

The callback is called once and exactly once, either on the same tick or later tick of the JavaScript event loop.

There were several cases where Async accepted some functions that did not strictly have these properties, most notably auto, every, some, and filter.

Another theme is performance. We have eliminated internal deferrals in all cases where they make sense. For example, in waterfall and auto, there was a setImmediate between each task -- these deferrals have been removed. A setImmediate call can add up to 1ms of delay. This might not seem like a lot, but it can add up if you are using many Async functions in the course of processing a HTTP request, for example. Nearly all asynchronous functions that do I/O already have some sort of deferral built in, so the extra deferral is unnecessary. The trade-off of this change is removing our built-in stack-overflow defense. Many synchronous callback calls in series can quickly overflow the JS call stack. If you do have a function that is sometimes synchronous (calling its callback on the same tick), and are running into stack overflows, wrap it with async.ensureAsync().

Another big performance win has been re-implementing queue, cargo, and priorityQueue with doubly linked lists instead of arrays. This has lead to queues being an order of magnitude faster on large sets of tasks.

... (truncated)

Changelog

Sourced from async's changelog.

v2.6.4

Fix potential prototype pollution exploit (#1828)

v2.6.3

Updated lodash to squelch a security warning (#1675)

v2.6.2

Updated lodash to squelch a security warning (#1620)

v2.6.1

Updated lodash to prevent npm audit warnings. (#1532, #1533)

Made async-es more optimized for webpack users (#1517)

Fixed a stack overflow with large collections and a synchronous iterator (#1514)

Various small fixes/chores (#1505, #1511, #1527, #1530)

v2.6.0

Added missing aliases for many methods. Previously, you could not (e.g.) require('async/find') or use async.anyLimit. (#1483)

Improved queue performance. (#1448, #1454)

Add missing sourcemap (#1452, #1453)

Various doc updates (#1448, #1471, #1483)

v2.5.0

Added concatLimit, the Limit equivalent of concat (#1426, #1430)

concat improvements: it now preserves order, handles falsy values and the iteratee callback takes a variable number of arguments (#1437, #1436)

Fixed an issue in queue where there was a size discrepancy between workersList().length and running() (#1428, #1429)

Various doc fixes (#1422, #1424)

v2.4.1

Fixed a bug preventing functions wrapped with timeout() from being re-used. (#1418, #1419)

v2.4.0

Added tryEach, for running async functions in parallel, where you only expect one to succeed. (#1365, #687)

Improved performance, most notably in parallel and waterfall (#1395)

Added queue.remove(), for removing items in a queue (#1397, #1391)

Fixed using eval, preventing Async from running in pages with Content Security Policy (#1404, #1403)

Fixed errors thrown in an asyncifyed function's callback being caught by the underlying Promise (#1408)

Fixed timing of queue.empty() (#1367)

Various doc fixes (#1314, #1394, #1412)

v2.3.0

Added support for ES2017 async functions. Wherever you can pass a Node-style/CPS function that uses a callback, you can also pass an async function. Previously, you had to wrap async functions with asyncify. The caveat is that it will only work if async functions are supported natively in your environment, transpiled implementations can't be detected. (#1386, #1390)

Small doc fix (#1392)

v2.2.0

Added groupBy, and the Series/Limit equivalents, analogous to _.groupBy (#1364)

Fixed transform bug when callback was not passed (#1381)

Added note about reflect to parallel docs (#1385)

v2.1.5

Fix auto bug when function names collided with Array.prototype (#1358)

... (truncated)

Commits

c6bdaca Version 2.6.4
8870da9 Update built files
4df6754 update changelog
8f7f903 Fix prototype pollution vulnerability (#1828)
f1d8383 Version 2.6.3
2b674c1 update changelog
eab740f fix: udpate lodash. closes #1675
eaf32be Version 2.6.2
684b42e Update built files
e1bd3da update changelog
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by hargasinski, a new releaser for async since your current version.

Updates @nomiclabs/hardhat-waffle from 2.0.3 to 2.0.6

Release notes

Sourced from @nomiclabs/hardhat-waffle's releases.

@nomiclabs/hardaht-waffle v2.0.5 released

This is the first version of the plugin published in collaboration with the TrueFi team, the maintainers of Waffle 🚀

We moved this plugin to its own repository, cleaned it up in the process, and implemented some small improvements.

Changes

c5b5c29: Introduce skipEstimateGas and injectCallHistory fields to hardhat config

Changelog

Sourced from @nomiclabs/hardhat-waffle's changelog.

2.0.6

Patch Changes

7926cc9: Support Waffle ^4.0.8

2.0.5

Patch Changes

36441d8: Add hardhat chai matchers incompatibility check

c5b5c29: Introduce skipEstimateGas and injectCallHistory fields to hardhat config

Commits

See full diff in compare view

Updates ethereum-waffle from 3.4.4 to 4.0.10

Release notes

Sourced from ethereum-waffle's releases.

ethereum-waffle@4.0.10

Patch Changes

Updated dependencies [4d83cde]

@ethereum-waffle/mock-contract@4.0.4

@ethereum-waffle/chai@4.0.10

@ethereum-waffle/compiler@4.0.3

ethereum-waffle@4.0.9

Patch Changes

Updated dependencies [216f1d8]

@ethereum-waffle/chai@4.0.9

@ethereum-waffle/compiler@4.0.3

@ethereum-waffle/mock-contract@4.0.3

ethereum-waffle@4.0.8

Patch Changes

f93abe9: Move call history injection logic to hardhat plugin

a0f721a: Move ethers to peer deps

Updated dependencies [da92375]

Updated dependencies [f93abe9]

Updated dependencies [46b954e]

Updated dependencies [9602243]

Updated dependencies [fb6863d]

Updated dependencies [b54c6b9]

Updated dependencies [64707ae]

Updated dependencies [1fa1312]

Updated dependencies [ee1d1b8]

Updated dependencies [702c6ab]

Updated dependencies [a0f721a]

Updated dependencies [f6d240e]

@ethereum-waffle/mock-contract@4.0.3

@ethereum-waffle/chai@4.0.8

@ethereum-waffle/provider@4.0.5

@ethereum-waffle/compiler@4.0.3

ethereum-waffle@4.0.7

Patch Changes

Updated dependencies [307f726]

@ethereum-waffle/chai@4.0.7

@ethereum-waffle/compiler@4.0.2

@ethereum-waffle/mock-contract@4.0.2

ethereum-waffle@4.0.6

Patch Changes

Updated dependencies [8e41d38]

... (truncated)

Commits

0915e72 🎉 Release new version (#823)
4d83cde ⭐️ Support events not defined in a contract (#822)
a1d89d0 🎉 Release new version (#821)
216f1d8 🌏 Switch hardhat errors priority (#820)
13d1af0 🎉 Release new version (#796)
5637cc5 🦉 Optimism tests use latest commit (#819)
1fa1312 🥑 Add mock contract typing (#818)
702c6ab 🗾 Extend matching of Hardhat revert reasons (#802)
46b954e 🖼 Mock contract chaining behaviour (#816)
fb6863d 🍶 Implement mocking receive function to revert (#807)
Additional commits viewable in compare view

Updates base-x from 3.0.8 to 3.0.9

Commits

4c10d33 3.0.9
c9dcddd Merge pull request #78 from cryptocoinjs/fix/space-alphabets
6c54632 Fix alphabets with space in them
69c09ed Merge pull request #73 from terrierscript/patch-1
1dd3795 Update README.md
See full diff in compare view

Updates braces from 2.3.2 to 3.0.2

Changelog

Sourced from braces's changelog.

Release history

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

Changelogs are for humans, not machines.

There should be an entry for every single version.

The same types of changes should be grouped.

Versions and sections should be linkable.

The latest version comes first.

The release date of each versions is displayed.

Mention whether you follow Semantic Versioning.

Changelog entries are classified using the following labels (from keep-a-changelog):

Added for new features.

Changed for changes in existing functionality.

Deprecated for soon-to-be removed features.

Removed for now removed features.

Fixed for any bug fixes.

Security in case of vulnerabilities.

[3.0.0] - 2018-04-08

v3.0 is a complete refactor, resulting in a faster, smaller codebase, with fewer deps, and a more accurate parser and compiler.

Breaking Changes

The undocumented .makeRe method was removed

Require Node.js >= 8.3

Non-breaking changes

Caching was removed

Commits

See full diff in compare view

Updates cookie from 0.4.0 to 0.4.1

Release notes

Sourced from cookie's releases.

0.4.1

Fix maxAge option to reject invalid values

Changelog

Sourced from cookie's changelog.

0.4.1 / 2020-04-21

Fix maxAge option to reject invalid values

Commits

b22458d 0.4.1
fa5fe95 build: fix typo in Travis CI directive
2436f3f build: use nyc for code coverage
08e98ee build: Node.js@13.13
80372a4 build: remove deprecated Travis CI directive
e248786 Fix maxAge option to reject invalid values
7e1398f build: Node.js@13.12
cb5746d build: Node.js@10.20
9b4abbd build: mocha@7.1.1
004b693 build: Node.js@13.10
Additional commits viewable in compare view

Updates elliptic from 6.5.3 to 6.5.4

Commits

43ac7f2 6.5.4
f4bc72b package: bump deps
441b742 ec: validate that a point before deriving keys
e71b2d9 lib: relint using eslint
8421a01 build(deps): bump elliptic from 6.4.1 to 6.5.3 (#231)
See full diff in compare view

Updates flat from 4.1.1 to 5.0.2

Commits

e5ffd66 Release 5.0.2
fdb79d5 Update dependencies, refresh lockfile, format with standard.
e52185d Test against node 14 in CI.
0189cb1 Avoid arrow function syntax.
f25d3a1 Release 5.0.1
54cc7ad use standard formatting
779816e drop dependencies
2eea6d3 Bump lodash from 4.17.15 to 4.17.19
a61a554 Bump acorn from 7.1.0 to 7.4.0
20ef0ef Fix prototype pollution on unflatten
Additional commits viewable in compare view

Updates eth-gas-reporter from 0.2.25 to 0.2.27

Release notes

Sourced from eth-gas-reporter's releases.

v0.2.27

What's Changed

Remove @ethersproject/abi, use ethers.utils by @cgewecke in cgewecke/eth-gas-reporter#301

Full Changelog: cgewecke/eth-gas-reporter@v0.2.26...v0.2.27

v0.2.26

What's Changed

Update Mocha to v10 by @frangio in cgewecke/eth-gas-reporter#295

Bump ethers version by @ChristopherDedominici in cgewecke/eth-gas-reporter#296

Remove unused request package by @ChristopherDedominici in cgewecke/eth-gas-reporter#297

Replace request-promise-native with axios by @cgewecke in cgewecke/eth-gas-reporter#299

New Contributors

@ChristopherDedominici made their first contribution in cgewecke/eth-gas-reporter#296

Full Changelog: cgewecke/eth-gas-reporter@v0.2.2...v0.2.26

Changelog

Sourced from eth-gas-reporter's changelog.

0.2.27 / 2023-09-30

Remove @ethersproject/abi, use ethers.utils instead (cgewecke/eth-gas-reporter#301)

0.2.26 / 2023-09-29

Replace request-promise-native with axios / avoid default price API calls (cgewecke/eth-gas-reporter#299)

Remove request package (cgewecke/eth-gas-reporter#297)

Bump ethers version (cgewecke/eth-gas-reporter#296)

Update Mocha to v10 (cgewecke/eth-gas-reporter#295)

0.2.23 / 2021-11-26

Add notes to README about missing price data & remote data fetching race condition

Add support for multiple gas price tokens (BNB, MATIC, AVAX, HR, MOVR) (cgewecke/eth-gas-reporter#251)

Make @codechecks/client peer dep optional (cgewecke/eth-gas-reporter#257)

Update @solidity-parser/parser to 0.14.0 (cgewecke/eth-gas-reporter#261)

0.2.22 / 2021-03-04

Update @solidity-parser/parser to ^0.12.0 (support Panic keyword in catch blocks) (cgewecke/eth-gas-reporter#243)

0.2.21 / 2021-02-16

Fix missing truffle migration deployments data (cgewecke/eth-gas-reporter#240)

Upgrade solidity-parser/parser to 0.11.1 (cgewecke/eth-gas-reporter#239)

0.2.20 / 2020-12-01

Add support for remote contracts data pre-loading (hardhat-gas-reporter feature)

0.2.19 / 2020-10-29

Delegate contract loading/parsing to artifactor & make optional (#227)

0.2.18 / 2020-10-13

Support multiple codechecks reports per CI run

Add CI error threshold options: maxMethodDiff, maxDeploymentDiff

Add async collection methods for BuidlerEVM

Update solidity-parser/parser to 0.8.0 (contribution: @vicnaum)

Update dev deps / use Node 12 in CI

0.2.17 / 2020-04-13

Use @solidity-parser/parser for better solc 0.6.x parsing

Upgrade Mocha to ^7.1.1 (to remove minimist vuln warning)

Stop crashing when parser or ABI Encoder fails

Update @ethersproject/abi to ^5.0.0-beta.146 (and unpin)

... (truncated)

Commits

See full diff in compare view

Updates solidity-coverage from 0.8.2 to 0.8.16

Release notes

Sourced from solidity-coverage's releases.

0.8.16

Support for custom storage layout syntax

This version updates the plugin's parser dependency to support the layout and at keywords introduced in Solidity v0.8.29

What's Changed

Update solidity-parser/parser to 0.20.1 by @cgewecke in sc-forks/solidity-coverage#905

Full Changelog: sc-forks/solidity-coverage@v0.8.15...v0.8.16

0.8.15

Speed up test runs when using viaIR

This release adds an irMinimum option which should improve execution speeds if you're generating coverage with solc's viaIR mode enabled. The plugin has handled viaIR for about a year but it runs more slowly in that setting because it has to search for execution traces across a wider range of opcodes. The performance hit is especially notable in solidity code that iterates hundreds of times in loops.

NOTE: Not all code will compile withirMinimum (you may get stack-too-deep errors unfortunately). But if yours does, this option should make things faster for you.

Usage
// .solcover.js
module.exports = {
  irMinimum: true,
}
What's Changed

docs: fixed dead link by @iamslown in sc-forks/solidity-coverage#904

Add irMinimum option by @cgewecke in sc-forks/solidity-coverage#907

New Contributors

@iamslown made their first contribution in sc-forks/solidity-coverage#904

Full Changelog: sc-forks/solidity-coverage@v0.8.14...v0.8.15

0.8.14

What's Changed

Update solidity-parser/parser dep to 0.19.0 for transient storage support by @cgewecke in sc-forks/solidity-coverage#898

fix: typos in documentation files by @leopardracer in sc-forks/solidity-coverage#896

New Contributors

@leopardracer made their first contribution in sc-forks/solidity-coverage#896

Full Changelog: sc-forks/solidity-coverage@v0.8.13...v0.8.14

v0.8.13

🐛 Bug Fixes

This release fixes a bug that caused the plugin to error when used with hardhat-viem in combination with a forked network.

What's Changed

... (truncated)

Changelog

Sourced from solidity-coverage's changelog.

Changelog

0.8.11 / 2024-03-07

Check all SWAP opcodes for inst. hashes when viaIR is true (sc-forks/solidity-coverage#873)

0.8.10 / 2024-02-29

Check all PUSH opcodes for instr. hashes when viaIR is true (sc-forks/solidity-coverage#871)

0.8.9 / 2024-02-27

Fix duplicate hash logic (sc-forks/solidity-coverage#868)

Improve organization of edge case code in collector (sc-forks/solidity-coverage#869)

0.8.8 / 2024-02-21

Coerce sources path to absolute path if necessary (sc-forks/solidity-coverage#866)

Only inject file-level instr. for first pragma in file (sc-forks/solidity-coverage#865)

0.8.7 / 2024-02-09

Documentation Cleanup & Improvements for 0.8.7 release (sc-forks/solidity-coverage#859)

Add tests for file-level function declarations (sc-forks/solidity-coverage#858)

Add try / catch unit tests (sc-forks/solidity-coverage#857)

Fix test project configs for viaIR detection in overrides (sc-forks/solidity-coverage#856)

Enable coverage when viaIR compiler flag is true (sc-forks/solidity-coverage#854)

Add missing onPreCompile hook (sc-forks/solidity-coverage#851)

Remove ganache-cli related code from API & tests (sc-forks/solidity-coverage#849)

Add command option to specify the source files to run the coverage on (sc-forks/solidity-coverage#838)

0.8.6 / 2024-01-28

Add test for multi-contract files with inheritance (sc-forks/solidity-coverage#836)

Add test for modifiers with post-conditions (sc-forks/solidity-coverage#835)

Document Istanbul check-coverage cli command (sc-forks/solidity-coverage#834)

Throw error when mocha parallel is set to true (sc-forks/solidity-coverage#833)

Fix instrumentation error for virtual modifiers (sc-forks/solidity-coverage#832)

Add test for file level using for statements

... (truncated)

Commits

c06fe7c Update solidity-parser/parser to 0.20.1 (#905)
5d5df74 Fix default irMinimum val in README.md
9feb914 0.8.15
993d7b8 Add irMinimum option (#907)
e2126e7 Fix link to fault localization academic paper in advanced.md (#904)
44f6607 Add OPRetro to FUNDING.json
0a9ac96 0.8.14
7c64eb6 Add transient storage support (#898)
de0452a Update matrix.md (#896)
97dadf8 0.8.13
Additional commits viewable in compare view

Updates follow-redirects from 1.13.2 to 1.15.9

Commits

e4e55c7 Release version 1.15.9 of the npm package.
31a1abf Attempt much more gentle detection.
d2aaa97 Fix url field.
62558f0 Release version 1.15.8 of the npm package.
a8d1cee Return subtlety.
458ca8e Fix native URL test for Node 20.
ca49e44 Handle KeepAlive connections in tests.
f3711d7 Test on Node 20 and 22.
fda0faf Fix typo.
760757f Release version 1.15.7 of the npm package.
Additional commits viewable in compare view

Updates qs from 6.5.2 to 6.5.3

Changelog

Sourced from qs's changelog.

6.5.3

[Fix] parse: ignore __proto__ keys (#428)

[Fix] utils.merge: avoid a crash with a null target and a truthy non-array source

[Fix] correctly parse nested arrays

[Fix] stringify: fix a crash with strictNullHandling and a custom filter/serializeDate (#279)

[Fix] utils: merge: fix crash when source is a truthy primitive & no options are provided

[Fix] when parseArrays is false, properly handle keys ending in []

[Fix] fix for an impossible situation: when the formatter is called with a non-string value

[Fix] utils.merge: avoid a crash with a null target and an array source

[Refactor] utils: reduce observable [[Get]]s

[Refactor] use cached Array.isArray

[Refactor] stringify: Avoid arr = arr.concat(...), push to the existing instance (#269)

[Refactor] parse: only need to reassign the var once

[Robustness] stringify: avoid relying on a global undefined (#427)

[readme] remove travis badge; add github actions/codecov badges; update URLs

[Docs] Clean up license text so it’s properly detected as BSD-3-Clause

[Docs] Clarify the need for "arrayLimit" option

[meta] fix README.md (#399)

[meta] add FUNDING.yml

[actions] backport actions from main

[Tests] always use String(x) over x.toString()

[Tests] remove nonexistent tape option

[Dev Deps] backport from main

Commits

298bfa5 v6.5.3
ed0f5dc [Fix] parse: ignore __proto__ keys (#428)
691e739 [Robustness] stringify: avoid relying on a global undefined (#427)
1072d57 [readme] remove travis badge; add github actions/codecov badges; update URLs
12ac1c4 [meta] fix README.md (#399)
0338716 [actions] backport actions from main
5639c20 Clean up license text so it’s properly detected as BSD-3-Clause
51b8a0b add FUNDING.yml
45f6759 [Fix] fix for an impossible situation: when the formatter is called with a no...
f814a7f [Dev Deps] backport from main
Additional commits viewable in compare view

Updates node-fetch from 1.7.3 to 2.7.0

Release notes

Sourced from node-fetch's releases.

v2.7.0

2.7.0 (2023-08-23)

Features

AbortError (#1744) (9b9d458)

v2.6.13

2.6.13 (2023-08-18)

Bug Fixes

Remove the default connection close header (#1765) (65ae25a), closes #1735 #1473 #1736

v2.6.12

2.6.12 (2023-06-29)

Bug Fixes

socket variable testing for undefined (#1726) (8bc3a7c)

v2.6.11

2.6.11 (2023-05-09)

Reverts

Revert "fix: handle bom in text and json (#1739)" (#1741) (afb36f6), closes #1739 #1741

v2.6.10

2.6.10 (2023-05-08)

Bug Fixes

handle bom in text and json (#1739) (29909d7)

v2.6.9

2.6.9 (2023-01-30)

Bug Fixes

"global is not defined" (#1704) (70f592d)

v2.6.8

2.6.8 (2023-01-13)

... (truncated)

Commits

9b9d458 feat: AbortError (#1744)
65ae25a fix: Remove the default connection close header (#1765)
8bc3a7c fix: socket variable testing for undefined (#1726)
afb36f6 Revert "fix: handle bom in text and json (#1739)" (#1741)
29909d7 fix: handle bom in text and json (#1739)
70f592d fix: "global is not defined" (#1704)
0f1ebb0 Prevent error when response is null (#1699)
6e9464d ci(release): install dependencies
dd2a0ba ci(release): install dependencies
49bef02 ci(release): use latest Node LTS
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by node-fetch-bot, a new releaser for node-fetch since your current version.

Updates micromatch from 3.1.10 to 4.0.5

Release notes

Sourced from micromatch's releases.

4.0.4

fix: Update picomatch to fix regression #179 (8becb55)

4.0.3

Enforce newer version of picomatch with bugfixes

Changelog

Sourced from micromatch's changelog.

[4.0.1 - 4.0.5]

[4.0.0] - 2019-03-20

Added

Adds support for options.onMatch. See the readme for details

Adds support for options.onIgnore. See the readme for details

Adds support for options.onResult. See the readme for details

Breaking changes

Require Node.js >= 8.6

Removed support for passing an array of brace patterns to micromatch.braces().

To strictly enforce closing brackets (for {, [, and (), you must now use strictBrackets=true instead of strictErrors.

cache - caching and all related options and methods have been removed

options.unixify was renamed to options.windows

options.nodupes Was removed. Duplicates are always removed by default. You can override this with custom behavior by using the onMatch, onResult and onIgnore functions.

options.snapdragon was removed, as snapdragon is no longer used.

options.sourcemap was removed, as snapdragon is no longer used, which provided sourcemap support.

[3.0.0] - 2017-04-11

Complete overhaul, with 36,000+ new unit tests validated against actual output generated by Bash and minimatch. More specifically, 35,000+ of the tests:

micromatch results are directly compared to bash results

in rare cases, when micromatch and bash disagree, micromatch's results are compared to minimatch's results

micromatch is much more accurate than minimatch, so there were cases where I had to make assumptions. I'll try to document these.

This refactor introduces a parser and compiler that are supersets of more granular parsers and compilers from other sub-modules. Each of these sub-modules has a singular responsibility and focuses on a certain type of matching that aligns with a specific part of the Bash "expansion" API.

These sub-modules work like plugins to seamlessly create the micromatch parser/compiler, so that strings are parsed in one pass, an AST is created, then a new string is generated by the compiler.

Here are those sub-modules with links to related prs on those modules if you want to see how they contribute to this code:

nanomatch (new library) - glob expansion (*, **, ? and [...])) braces - brace expansion ({1..10}, {a,b,c}, etc) extglob - extended globs (!(a|b), @(!(foo|bar)), etc) expand-brackets - POSIX character classes [[:alpha:][:digit:]]

Added

source map support (optionally created when using parse or compile - I have no idea what the use case is yet, but they come for free) (note that source maps are not generated for brace expansion at present, since the braces compiler uses a different strategy. I'll update if/when this changes).

parser is exposed, so that implementors can customize or override specific micromatch parsers if necessary

compiler is exposed, so that implementors can customize or override specific micromatch compilers if necessary

Fixed

more accurate matching (passes 100% of Bash 4.3 of the brace expansion and extglob unit tests, as well as all Bash glob tests that are relevant to node.js usage, all minimatch tests, all brace-expansion tests, and also passes a couple of tests that bash fails)

even safer - micromatch has always generated optimized patterns so it's not subject to DoS exploits like minimatch (completely different than the regex DoS issue, minimatch and multi...
Description has been truncated

Bumps the npm_and_yarn group with 11 updates in the / directory: | Package | From | To | | --- | --- | --- | | [async](https://github.com/caolan/async) | `1.5.2` | `2.6.4` | | [@nomiclabs/hardhat-waffle](https://github.com/NomicFoundation/hardhat-waffle) | `2.0.3` | `2.0.6` | | [ethereum-waffle](https://github.com/EthWorks/Waffle) | `3.4.4` | `4.0.10` | | [flat](https://github.com/hughsk/flat) | `4.1.1` | `5.0.2` | | [eth-gas-reporter](https://github.com/cgewecke/eth-gas-reporter) | `0.2.25` | `0.2.27` | | [solidity-coverage](https://github.com/sc-forks/solidity-coverage) | `0.8.2` | `0.8.16` | | [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.2` | | [get-func-name](https://github.com/chaijs/get-func-name) | `2.0.0` | `2.0.2` | | [nanoid](https://github.com/ai/nanoid) | `3.3.3` | `removed` | | [mocha](https://github.com/mochajs/mocha) | `10.2.0` | `10.8.2` | | [undici](https://github.com/nodejs/undici) | `5.14.0` | `5.29.0` | Updates `async` from 1.5.2 to 2.6.4 - [Release notes](https://github.com/caolan/async/releases) - [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md) - [Commits](caolan/async@v1.5.2...v2.6.4) Updates `@nomiclabs/hardhat-waffle` from 2.0.3 to 2.0.6 - [Release notes](https://github.com/NomicFoundation/hardhat-waffle/releases) - [Changelog](https://github.com/NomicFoundation/hardhat-waffle/blob/main/CHANGELOG.md) - [Commits](https://github.com/NomicFoundation/hardhat-waffle/commits) Updates `ethereum-waffle` from 3.4.4 to 4.0.10 - [Release notes](https://github.com/EthWorks/Waffle/releases) - [Commits](https://github.com/EthWorks/Waffle/compare/ethereum-waffle@3.4.4...ethereum-waffle@4.0.10) Updates `base-x` from 3.0.8 to 3.0.9 - [Commits](cryptocoinjs/base-x@v3.0.8...v3.0.9) Updates `braces` from 2.3.2 to 3.0.2 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/braces/commits/3.0.2) Updates `cookie` from 0.4.0 to 0.4.1 - [Release notes](https://github.com/jshttp/cookie/releases) - [Changelog](https://github.com/jshttp/cookie/blob/v0.4.1/HISTORY.md) - [Commits](jshttp/cookie@v0.4.0...v0.4.1) Updates `elliptic` from 6.5.3 to 6.5.4 - [Commits](indutny/elliptic@v6.5.3...v6.5.4) Updates `flat` from 4.1.1 to 5.0.2 - [Release notes](https://github.com/hughsk/flat/releases) - [Commits](hughsk/flat@4.1.1...5.0.2) Updates `eth-gas-reporter` from 0.2.25 to 0.2.27 - [Release notes](https://github.com/cgewecke/eth-gas-reporter/releases) - [Changelog](https://github.com/cgewecke/eth-gas-reporter/blob/master/CHANGELOG.md) - [Commits](https://github.com/cgewecke/eth-gas-reporter/commits/v0.2.27) Updates `solidity-coverage` from 0.8.2 to 0.8.16 - [Release notes](https://github.com/sc-forks/solidity-coverage/releases) - [Changelog](https://github.com/sc-forks/solidity-coverage/blob/master/CHANGELOG.md) - [Commits](sc-forks/solidity-coverage@v0.8.2...v0.8.16) Updates `follow-redirects` from 1.13.2 to 1.15.9 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.13.2...v1.15.9) Updates `qs` from 6.5.2 to 6.5.3 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.5.2...v6.5.3) Updates `node-fetch` from 1.7.3 to 2.7.0 - [Release notes](https://github.com/node-fetch/node-fetch/releases) - [Commits](node-fetch/node-fetch@1.7.3...v2.7.0) Updates `micromatch` from 3.1.10 to 4.0.5 - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@3.1.10...4.0.5) Updates `json-schema` from 0.2.3 to 0.4.0 - [Commits](kriszyp/json-schema@v0.2.3...v0.4.0) Updates `lodash` from 4.17.20 to 4.17.21 - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](lodash/lodash@4.17.20...4.17.21) Updates `minimatch` from 3.0.4 to 3.1.2 - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](isaacs/minimatch@v3.0.4...v3.1.2) Updates `minimist` from 1.2.5 to 1.2.7 - [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md) - [Commits](minimistjs/minimist@v1.2.5...v1.2.7) Updates `path-parse` from 1.0.6 to 1.0.7 - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) Updates `secp256k1` from 4.0.2 to 4.0.3 - [Release notes](https://github.com/cryptocoinjs/secp256k1-node/releases) - [Commits](cryptocoinjs/secp256k1-node@v4.0.2...v4.0.3) Updates `ws` from 3.3.3 to 7.4.6 - [Release notes](https://github.com/websockets/ws/releases) - [Commits](websockets/ws@3.3.3...7.4.6) Updates `get-func-name` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/chaijs/get-func-name/releases) - [Commits](https://github.com/chaijs/get-func-name/commits/v2.0.2) Removes `nanoid` Updates `mocha` from 10.2.0 to 10.8.2 - [Release notes](https://github.com/mochajs/mocha/releases) - [Changelog](https://github.com/mochajs/mocha/blob/main/CHANGELOG.md) - [Commits](mochajs/mocha@v10.2.0...v10.8.2) Updates `serialize-javascript` from 6.0.0 to 6.0.2 - [Release notes](https://github.com/yahoo/serialize-javascript/releases) - [Commits](yahoo/serialize-javascript@v6.0.0...v6.0.2) Updates `undici` from 5.14.0 to 5.29.0 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.14.0...v5.29.0) --- updated-dependencies: - dependency-name: async dependency-version: 2.6.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: "@nomiclabs/hardhat-waffle" dependency-version: 2.0.6 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: ethereum-waffle dependency-version: 4.0.10 dependency-type: direct:production dependency-group: npm_and_yarn - dependency-name: base-x dependency-version: 3.0.9 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: braces dependency-version: 3.0.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: cookie dependency-version: 0.4.1 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: elliptic dependency-version: 6.5.4 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: flat dependency-version: 5.0.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: eth-gas-reporter dependency-version: 0.2.27 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: solidity-coverage dependency-version: 0.8.16 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: follow-redirects dependency-version: 1.15.9 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: qs dependency-version: 6.5.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: node-fetch dependency-version: 2.7.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: micromatch dependency-version: 4.0.5 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: json-schema dependency-version: 0.4.0 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: lodash dependency-version: 4.17.21 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimatch dependency-version: 3.1.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: minimist dependency-version: 1.2.7 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: path-parse dependency-version: 1.0.7 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: secp256k1 dependency-version: 4.0.3 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: ws dependency-version: 7.4.6 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: get-func-name dependency-version: 2.0.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: nanoid dependency-version: dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: mocha dependency-version: 10.8.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: serialize-javascript dependency-version: 6.0.2 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: undici dependency-version: 5.29.0 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 15, 2025

This was referenced May 15, 2025

Bump base-x #10

Closed

Bump undici from 5.14.0 to 5.29.0 #11

Closed

Bump secp256k1 #12

Closed

Bump nanoid and mocha #13

Closed

Bump serialize-javascript and mocha #15

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the npm_and_yarn group across 1 directory with 26 updates #17

Bump the npm_and_yarn group across 1 directory with 26 updates #17

Uh oh!

dependabot bot commented on behalf of github May 15, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Bump the npm_and_yarn group across 1 directory with 26 updates #17

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 26 updates #17

Uh oh!

Conversation

dependabot bot commented on behalf of github May 15, 2025

v2.3.0

v2.2.0

v2.1.5

v2.1.3

v2.1.2

v2.1.0

v2.0.0

v2.6.4

v2.6.3

v2.6.2

v2.6.1

v2.6.0

v2.5.0

v2.4.1

v2.4.0

v2.3.0

v2.2.0

v2.1.5

@​nomiclabs/hardaht-waffle v2.0.5 released

Changes

2.0.6

Patch Changes

2.0.5

Patch Changes

ethereum-waffle@4.0.10

Patch Changes

ethereum-waffle@4.0.9

Patch Changes

ethereum-waffle@4.0.8

Patch Changes

ethereum-waffle@4.0.7

Patch Changes

ethereum-waffle@4.0.6

Patch Changes

Release history

[3.0.0] - 2018-04-08

0.4.1

0.4.1 / 2020-04-21

v0.2.27

What's Changed

v0.2.26

What's Changed

New Contributors

0.2.27 / 2023-09-30

0.2.26 / 2023-09-29

0.2.23 / 2021-11-26

0.2.22 / 2021-03-04

0.2.21 / 2021-02-16

0.2.20 / 2020-12-01

0.2.19 / 2020-10-29

0.2.18 / 2020-10-13

0.2.17 / 2020-04-13

0.8.16

Support for custom storage layout syntax

What's Changed

0.8.15

Speed up test runs when using viaIR

What's Changed

New Contributors

0.8.14

What's Changed

New Contributors

v0.8.13

🐛 Bug Fixes

What's Changed

Changelog

0.8.11 / 2024-03-07

0.8.10 / 2024-02-29

0.8.9 / 2024-02-27

0.8.8 / 2024-02-21

0.8.7 / 2024-02-09

0.8.6 / 2024-01-28

6.5.3

v2.7.0

`@nomiclabs/hardaht-waffle` v2.0.5 released

Speed up test runs when using `viaIR`