Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release v9 #263

Merged
merged 1 commit into from
Jun 12, 2023
Merged

Release v9 #263

merged 1 commit into from
Jun 12, 2023

Conversation

Matehoo
Copy link
Contributor

@Matehoo Matehoo commented Jun 12, 2023
edited
Loading

Thank you for your contribution to the KodaDot Indexer.
👇 _ Let's make a quick check before the contribution.

PR type

  • Bugfix
  • Feature
  • Refactoring

What's new?

Before submitting Pull Request, please make sure:

  • My contribution builds clean without any errors or warnings
  • I've merged recent default branch -- main and I've no conflicts
  • I've tried to respect high code quality standards
  • I've didn't break any original functionality
  • I've posted a screenshot of demonstrated change in this PR

Had issue bounty label?

  • Fill up your KSM address: Payout

Optional

  • I've run the indexer and it hasn't failed
  • I've changed schema and performed a migration
  • I found edge cases

Screenshot

  • My contribution is a resolver so I have pic from playground

@Matehoo Matehoo changed the base branch from release-008 to main June 12, 2023 11:44
@Matehoo
Copy link
Contributor Author

Matehoo commented Jun 12, 2023

@vikiival pls review

@socket-security
Copy link

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Issue Package Version Note Source
Network access figlet 1.5.2 package-lock.json via @subsquid/[email protected]
Network access node-fetch-native 1.0.2 package-lock.json via @kodadot1/[email protected]
Network access ofetch 1.0.1 package-lock.json via @kodadot1/[email protected]
Network access @subsquid/util-internal-http-client 0.1.0 package-lock.json via @kodadot1/[email protected], @subsquid/[email protected], @subsquid/[email protected], @subsquid/[email protected]
Network access neo-blessed 0.2.0 package-lock.json via @subsquid/[email protected]
Network access reblessed 0.2.1 package-lock.json via @subsquid/[email protected]

Next steps

What is network access?

This module accesses the network.

Packages should remove all network access that isn't functionally unnecessary. Consumers should audit network access to ensure legitimate use.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore [email protected] bar@* or ignore all packages with @SocketSecurity ignore-all

@socket-security
Copy link

New and updated dependency changes detected. Learn more about Socket for GitHub ↗︎

Packages Version New capabilities Transitives1 Size Publisher
@kodadot1/minipfs 🆕 0.3.0-rc.0 network, environment +4 734 kB vikiival
eslint-config-unjs 🆕 0.1.0 None +123 60.3 MB pi0
@kodadot1/metasquid 🆕 0.1.6-rc.0 None +42 71.5 MB vikiival
eslint 🆕 8.38.0 eval, filesystem, environment +42 8.69 MB eslintbot
prettier 🆕 2.8.7 eval, filesystem, environment +0 11.2 MB prettier-bot
@subsquid/graphql-server ⬆️ 3.3.0...3.3.2 None +68/-60 85.5 MB subsquid
@subsquid/cli ⬆️ 2.1.0...2.2.2 None +48/-16 22.8 MB subsquid
@subsquid/typeorm-migration ⬆️ 0.1.4...0.1.6 None +15/-17 61 MB subsquid
@subsquid/typeorm-store ⬆️ 0.2.0...0.2.2 None +14/-14 61 MB subsquid
@subsquid/substrate-metadata-explorer ⬆️ 1.0.9...1.1.2 None +17/-13 8.15 MB subsquid
@subsquid/ss58 ⬆️ 0.1.3...0.1.4 None +2/-2 117 kB subsquid
@subsquid/archive-registry ⬆️ 2.1.2...2.1.12 None +2/-2 223 kB subsquid
@subsquid/typeorm-codegen ⬆️ 0.3.1...0.3.3 None +55/-47 12.3 MB subsquid
@subsquid/substrate-typegen ⬆️ 2.1.0...2.2.1 None +23/-19 9.84 MB subsquid
@subsquid/substrate-processor ⬆️ 2.2.0...2.4.1 None +37/-30 71.4 MB subsquid
typescript ⬆️ 4.8.4...5.0.4 None +0/-0 39.2 MB typescript-bot
@kodadot1/minimark ⬆️ 0.0.1-rc.10...0.1.9-rc.0 None +48/-47 59.7 MB vikiival
pg ⬆️ 8.8.0...8.10.0 None +2/-2 328 kB brianc
@types/pg ⬆️ 8.6.5...8.6.6 None +1/-1 200 kB types
typeorm ⬆️ 0.3.10...0.3.15 None +10/-10 60.9 MB pleerock

🚮 Removed packages: @polkadot/[email protected], @types/[email protected], @types/[email protected], @types/[email protected], [email protected], [email protected], [email protected], [email protected]

Footnotes

  1. https://docs.socket.dev

@vikiival vikiival changed the base branch from main to release-squid June 12, 2023 13:44
@vikiival vikiival merged commit 6cf9746 into kodadot:release-squid Jun 12, 2023
@vikiival
Copy link
Member

@yangwao can we neble bot so in other repos?

@vikiival
Copy link
Member

vikiival commented Jul 3, 2023

cc @yangwao

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vikiival vikiival vikiival approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Release Rubick v9
2 participants
@Matehoo @vikiival