Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade openzeppelin-solidity from 2.2.0 to 2.5.1 #37

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

wschwab
Copy link

@wschwab wschwab commented Sep 6, 2022

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade openzeppelin-solidity from 2.2.0 to 2.5.1.

merge advice
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 12 versions ahead of your current version.
  • The recommended version was released 2 years ago, on 2020-04-27.
Release notes
Package name: openzeppelin-solidity
  • 2.5.1 - 2020-04-27

    This is a small bugfix release, addressing an issue that allowed for some internal functions in ERC777 to be called with the zero address as one of their arguments.

    This was reported in #2208 and fixed in #2212.

  • 2.5.0 - 2020-02-04

    We're very happy the announce the release of OpenZeppelin Contracts v2.5!

    This new release features:

    • EnumerableSet: similar to Solidity's mapping, but that lets you retrieve all the keys! Useful for dapps that need to display a set of accounts with some property, and cannot rely on events alone.
    • Create2: a simple library for using the CREATE2 opcode, allowing for deployment and pre-computation of addresses when using it.
      To learn more about all the cool things you can do with it, head to Getting the Most out of CREATE2
    • ERC721Metadata.baseURI: a neat extension for massive gas savings when the token URIs share a prefix, like https://my.cool.app/token/<id>

    There are also some minor improvements, such as gas optimizations for ReentrancyGuard and additional extensibility of ERC777, among others.

    For the complete list of changes, head to our changelog.

    To install the new release, run:

    $ npm install @ openzeppelin/contracts@latest

    New Documentation 📚

    We've also recently done some some improvements to our documentation website, including new detailed guides and documentation for our other tools, such as the Test Helpers, our blazing-fast Test Environment and the OpenZeppelin Command Line Interface. Check them out for a radically better development experience!

    Saying Goodbye to Solidity v0.5 👋

    December 2019 saw the release of Solidity v0.6. This new version of the language has major improvements, and we're already underway to release the next version of OpenZeppelin Contracts with support for Solidity v0.6.

    However, it also includes a lot of breaking changes, making it difficult to support both v0.5 and v0.6 code at the same time. For this reason, we've decided OpenZeppelin Contracts v2.5 will be the last version supporting Solidity v0.5.

    The exciting good news it that the next OpenZeppelin Contracts release will be v3.0, where we'll get to redesign some quirky bits of the library, improving ease of use and flexibility. Stay tuned!

  • 2.5.0-rc.0 - 2020-01-24

    2.5.0-rc.0

  • 2.4.0 - 2019-10-29

    In 2.4 we're releasing support for the Gas Station Network for user onboarding and metatransactions ⛽, new functions to safeguard your contracts against the Istanbul hard fork, and improvements to error messages.

    Read the full announcement in the OpenZeppelin Forum, and make sure to check out the details in the changelog!

    Enjoy!

  • 2.4.0-beta.2 - 2019-08-16

    2.4.0-beta.2

  • 2.4.0-beta.1 - 2019-08-16

    2.4.0-beta.1

  • 2.4.0-beta.0 - 2019-08-15
  • 2.3.0 - 2019-05-27
  • 2.3.0-rc.3 - 2019-05-16
  • 2.3.0-rc.2 - 2019-05-08
  • 2.3.0-rc.1 - 2019-04-24
  • 2.3.0-rc.0 - 2019-04-24
  • 2.2.0 - 2019-03-14
from openzeppelin-solidity GitHub release notes
Commit messages
Package name: openzeppelin-solidity
  • 8378289 2.5.1
  • 3843c9b Add changelog entry
  • c75b016 Add missing requirements to ERC777 (#2212)
  • 58a3368 2.5.0
  • 941d305 Update docs
  • 1b938e3 EnumerableSet improvements (#2077)
  • 0ac83ce Fix EnumerableSetMock for 2.5.rc1 (#2069)
  • d775e31 Update package homepage.
  • e4a8a55 2.5.0-rc.0
  • 88dc1ca Reorder functions to prevent shadowing warning
  • 1e0f077 Implementation of an address Enumerable Set (#2061)
  • 73abd54 Made private methods internal to allow for overriding (#2027)
  • 7d7cbca Fix/improve revert reason #1727 (#2018)
  • e493fb3 Add 'available since' notes. Fixes #2054
  • 8c40a5b Create2 feature pending tasks (#2013)
  • d6698c3 Copy docsite landing to readme (#2058)
  • b1e8114 Upgrade test-environment dependency
  • 06983a2 add note suggesting reentrancy post (#2059)
  • d037217 Update README (#2056)
  • 410e4f8 Fix link to GSN overview (#2053)
  • 54d2aec issue#1980 (#2038)
  • d006a75 Bump eslint-plugin-import from 2.18.2 to 2.20.0 (#2051)
  • 5376e5d Bump @ openzeppelin/gsn-helpers from 0.2.1 to 0.2.3 (#2052)
  • e5805c4 Bump openzeppelin-docs-utils from `dc7ce30` to `f6b5291` (#2050)

Compare


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants