Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: Bump up liquidity widget 1.0.6 #11041

Merged
merged 7 commits into from
Jan 14, 2025
Merged

chore: Bump up liquidity widget 1.0.6 #11041

merged 7 commits into from
Jan 14, 2025

Conversation

memoyil
Copy link
Collaborator

@memoyil memoyil commented Dec 11, 2024
edited by pr-codex bot
Loading

PR-Codex overview

This PR updates several package versions in the package.json and pnpm-lock.yaml files, particularly upgrading @kyberswap/pancake-liquidity-widgets from 1.0.2 to 1.0.6, and other dependencies, ensuring compatibility and access to the latest features and fixes.

Detailed summary

  • Updated @kyberswap/pancake-liquidity-widgets from 1.0.2 to 1.0.6.
  • Updated ethereum-cryptography from 2.1.2 to 2.2.1.
  • Updated tslib from 2.6.2 to 2.7.0.
  • Updated semver from 7.5.4 to 7.6.3.
  • Updated various dependencies in pnpm-lock.yaml to ensure compatibility.

✨ Ask PR-Codex anything about this PR by commenting with /codex {your question}

@vercel Vercel
Copy link

vercel bot commented Dec 11, 2024
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
aptos-web ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am
blog ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am
bridge ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am
games ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am
gamification ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am
uikit ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am
web ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 9:02am

@changeset-bot changeset-bot
Copy link

changeset-bot bot commented Dec 11, 2024
edited
Loading

⚠️ No Changeset found

Latest commit: 94f0761

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@socket-security Socket Security
Copy link

socket-security bot commented Dec 11, 2024
edited
Loading

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@kyberswap/[email protected] network +6 3.57 MB viet-nv
npm/[email protected] eval +4 1.47 MB esp
npm/[email protected] None 0 17 kB esp
npm/[email protected] None 0 1.41 MB bnjmnt4n
npm/[email protected] network +3 493 kB node-fetch-bot
npm/[email protected] None 0 14.8 kB alexreardon
npm/[email protected] None 0 116 kB ctavan

🚮 Removed packages: npm/@kyberswap/[email protected], npm/@sentry/[email protected], npm/@snapshot-labs/[email protected], npm/@solana/[email protected], npm/@solana/[email protected], npm/@solana/[email protected], npm/@storybook/[email protected], npm/@storybook/[email protected], npm/@storybook/[email protected], npm/@storybook/[email protected], npm/@storybook/[email protected], npm/@storybook/[email protected], npm/@storybook/[email protected], npm/@styled-system/[email protected], npm/@stylelint/[email protected], npm/@tanstack/[email protected], npm/@testing-library/[email protected], npm/@testing-library/[email protected], npm/@testing-library/[email protected], npm/@testing-library/[email protected], npm/@tronweb3/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected]

View full report↗︎

@socket-security Socket Security
Copy link

socket-security bot commented Dec 11, 2024
edited
Loading

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring: npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

Next steps

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@memoyil memoyil marked this pull request as draft December 11, 2024 18:28
@memoyil memoyil force-pushed the feature/chore_bump_up_liquidity_widget_1_0_3 branch from 6302c81 to 4db1516 Compare December 19, 2024 14:11
@vercel vercel bot temporarily deployed to Preview – ton December 19, 2024 14:12 Inactive
@pull-request-size pull-request-size bot added size/L and removed size/S labels Dec 19, 2024
@memoyil memoyil changed the title chore: Bump up liquidity widget 1.0.3 chore: Bump up liquidity widget 1.0.4 Dec 19, 2024
chef-ryan
chef-ryan previously approved these changes Jan 9, 2025
View reviewed changes
@memoyil memoyil force-pushed the feature/chore_bump_up_liquidity_widget_1_0_3 branch from f868678 to b44f68f Compare January 9, 2025 07:05
@pull-request-size pull-request-size bot added size/L and removed size/S labels Jan 10, 2025
@memoyil memoyil changed the title chore: Bump up liquidity widget 1.0.4 chore: Bump up liquidity widget 1.0.6 Jan 10, 2025
@memoyil memoyil marked this pull request as ready for review January 10, 2025 08:42
@memoyil memoyil requested a review from chef-ryan January 10, 2025 08:43
@memoyil
Copy link
Collaborator Author

memoyil commented Jan 10, 2025 

@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]
@SocketSecurity ignore npm/[email protected]

@chef-ryan chef-ryan merged commit b9d7bf0 into develop Jan 14, 2025
19 checks passed
@chef-ryan chef-ryan deleted the feature/chore_bump_up_liquidity_widget_1_0_3 branch January 14, 2025 08:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chefjackson chefjackson chefjackson approved these changes

@ChefMomota ChefMomota Awaiting requested review from ChefMomota ChefMomota is a code owner

@Chef-Yogi Chef-Yogi Awaiting requested review from Chef-Yogi Chef-Yogi is a code owner

@ChefJerry ChefJerry Awaiting requested review from ChefJerry ChefJerry is a code owner

@thechefpenguin thechefpenguin Awaiting requested review from thechefpenguin thechefpenguin is a code owner

@chef-eric chef-eric Awaiting requested review from chef-eric chef-eric is a code owner

@chef-ryan chef-ryan Awaiting requested review from chef-ryan chef-ryan is a code owner

Assignees
No one assigned
Labels
size/L
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@memoyil @chefjackson @chef-ryan