-
-
Notifications
You must be signed in to change notification settings - Fork 620
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
G115 is reporting false positives (a summary) #1212
Comments
At least these use cases are less frequent than the previous ones. |
I'd say that people will hit the first one pretty frequently, and it also seems to me it's the most difficult to tackle without bringing in any false negatives. |
@Victoremepunto you're getting that warning because golangci-lint has not released a new version with the changes from #1194 yet. The code you have there looks sound so once we have a new golangci-lint release, it should work. @ccoVeille do you know and can share at least approximately when we can expect it? |
I'm just a random gopher. I'm pretty active, but I'm not part of golangci-lint release. @ldez might be a better candidate to reply that question |
I have no precise release date for now but soon, mainly because of G115 false positives. |
I'm not sure if I should open a separate issue for this, but another false positive is casting the index produced by iterating over a range to an unsigned int. We do this a lot in our codebase. E.g.: myArr := []string{"hello", "world"}
for i := range len(myArr) {
_ = uint64(i) // shouldn't error but does with G115
}
for i, _ := range myArr {
_ = uint64(i) // shouldn't error but does with G115
} Ideally it'd be able to look at bounds in for loops as well, but I get that's more complicated: for i := 0; i < 10; i++ {
_ = uint64(i) // shouldn't error but does with G115
}
for i := randIntMightBeNegativeEven(); i >= 0; i-- {
_ = uint64(i) // shouldn't error but does with G115
} |
Quick follow up, golangci-lint 1.61.0 was shipped with gosec 2.21.2 💪 So everything that was made in gosec to improve G115 detection are now released 🎉 |
@PlasmaPower You are correct, this seems like another issue. I'll get back to it a bit later and update my summary. |
Hi! unfortunately, using golangci-lint 1.60.1 the problem is still there - might worth trying to get a simpler reproducer and add it to this issue? |
Maybe it's because the fix is inside golangci-lint v1.61.0 and not v1.60.1 😉 |
lol, I'm sorry the version I used was v1.61.0, I just mistyped it. Here's an excerpt of the GHA logs:
|
In order to keep this thread a useful source of truth, let me fill in some details. @Victoremepunto's issue was that accessing a struct field is considered a different value every time in SSA. This is because without deeper analysis (than SSA), you can't rule out a concurrent routine modifying that value between accesses. Therefore, the issue could have been resolved without any changes to if results.Managed < math.MinInt32 || results.Managed > math.MaxInt32 {
return crd.FrontendDeployments{}, "", errors.NewClowderError("value out of range for int32")
}
deploymentStats.ManagedDeployments = int32(results.Managed) to managed := results.Managed
if managed < math.MinInt32 || managed > math.MaxInt32 {
return crd.FrontendDeployments{}, "", errors.NewClowderError("value out of range for int32")
}
deploymentStats.ManagedDeployments = int32(managed) However, since struct field access is a common use case and modifying the value at the same time as reading it is a race condition (which is usually considered a bug), #1221 treats field accesses as not being modified between time-of-check and time-of-use (TOCTOU). And yes, TOCTOU is its own type of potential security vulnerability. Maybe a future linter can better look for this. |
Thanks @ben-krieger for the explanation. I purposefully decided to ignore TOCTOU in that PR. The proposal of a separate lint rule for it is a very good idea since a different lint message would explain the issue better. |
Exclude G115 from the gosec linter to address the issue with securego/gosec#1212.
* chore: Update golangci-lint to version 1.61.0 * chore: Exclude G115 from gosec linter Exclude G115 from the gosec linter to address the issue with securego/gosec#1212. * chore: Remove unused variable assignments Remove unused variable assignments in node/node.go and utils/pipeline/pipeline_test.go files. * chore: Remove unused nolint directives Remove unused nolint directives in the starknet client.go and handlers.go files.
Contributing a real world example of false positive with min: p1.R = uint8(min(255, uint16(p1.R)+uint16(p2.R))) |
On this, I think we need to start the Obfuscated Go Integer Overflow Contest. 😄 |
Another one I stumbled upon after updating golangci-lint to 1.61.0 func foo(hash string) (uint32, error) {
decodedHash, err := base64.RawStdEncoding.DecodeString(hash)
if err != nil {
return 0, err
}
if hashLen := len(decodedHash); hashLen > math.MaxUint32 {
return 0, fmt.Errorf("invalid decoded hash length %d, exceeds max value for uint32", hashLen)
}
return uint32(len(decodedHash)), nil
} It works if I change it to: func foo(hash string) (uint32, error) {
decodedHash, err := base64.RawStdEncoding.DecodeString(hash)
if err != nil {
return 0, err
}
hashLen := len(decodedHash)
if hashLen > math.MaxUint32 {
return 0, fmt.Errorf("invalid decoded hash length %d, exceeds max value for uint32", hashLen)
}
return uint32(hashLen), nil
} But since the slice was created inside of the function and is not changed in any way, I would still say that this is a false positive. |
Another false positive (similar to binary truncation with '&', but using bit shifting): var (
u32 uint32
u8 uint8
)
u8 = uint8(u32 >> 24) |
commit 8ca930797e6d76acb92c7ca99e8283733c1cff67 Author: wojciechos <[email protected]> Date: Thu Oct 24 14:19:52 2024 +0200 Fix spec version for 0_7 endpoint (#2238) commit 00ac988d3f5febdd91ed2f5a11884da1a5deefc9 Author: Kirill <[email protected]> Date: Tue Oct 22 18:11:24 2024 +0400 Remove v0.6 endpoints, added v0.8 endpoints (#2229) commit 731099040a8fdd4b966f201b7637a814834291fb Author: Mario Apra <[email protected]> Date: Mon Oct 21 15:31:04 2024 +0100 chore: Update instructions on how to build Juno Signed-off-by: Mario Apra <[email protected]> commit 0ab532f25325f75e4eba3d5389c4f29ce4eb4988 Author: Kirill <[email protected]> Date: Mon Oct 21 15:45:15 2024 +0400 Pass required libbz2 to linker to fix compilation error on macOS (#2228) commit bdc598982e86bf950bbbe19ce88f4a9b701ff09c Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:15:33 2024 +0000 Bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.4 to 1.20.5. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.4...v1.20.5) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit bf38adb53cae5eec67fd32e4a0dd9ec5607be0df Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:15:38 2024 +0000 Bump go.uber.org/mock from 0.4.0 to 0.5.0 Bumps [go.uber.org/mock](https://github.com/uber/mock) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/uber/mock/releases) - [Changelog](https://github.com/uber-go/mock/blob/main/CHANGELOG.md) - [Commits](https://github.com/uber/mock/compare/v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: go.uber.org/mock dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit b9d987eb11401b2ddb8b6a128c564938e315b2db Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:18:58 2024 +0000 Bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.27.0 to 0.28.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/5681af892cd0f4997658e2bacc62bd0a894cf564...915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit c67b458aa039c50b1855cca177f00edf114a1bb0 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:19:05 2024 +0000 Update github/codeql-action requirement to 5618c9fc1e675841ca52c1c6b1304f5255a905a0 Updates the requirements on [github/codeql-action](https://github.com/github/codeql-action) to permit the latest version. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/commits/5618c9fc1e675841ca52c1c6b1304f5255a905a0) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> commit 8bdff962b22b3dcedff96350271df6ec140e3be0 Author: yevh <[email protected]> Date: Mon Oct 21 11:12:37 2024 +0200 Create trivy.yml (#2226) Signed-off-by: yevh <[email protected]> Co-authored-by: Mario Apra <[email protected]> commit 0d02f9e75e449f047bef59fb0bbfcad0d03e68f5 Author: wojciechos <[email protected]> Date: Fri Oct 18 12:57:02 2024 +0200 Update starknet.go, starknet-js and starknet-rs tests (#2217) commit 3833c0095d171404fd9474a50684663be0525749 Author: Mario Apra <[email protected]> Date: Fri Oct 18 10:44:26 2024 +0100 Remove UPX from macOS build process Updated the GitHub Actions workflow to exclude UPX installation and usage on macOS. This change addresses compatibility issues with UPX on macOS, ensuring smoother build processes for macOS environments. More info: https://github.com/upx/upx/issues/612 commit eb19859609fd496feee39fafa0c9504141ee6b04 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 11:30:13 2024 +0000 Bump actions/setup-go from 4 to 5 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> commit 7faba7c05c0de7cc9d972432b11416eccbac7d9c Author: Kirill <[email protected]> Date: Thu Oct 17 18:05:36 2024 +0400 Add missing execution resources to fetched traces (#2222) commit f4d9d698792fd8ec711b9bf2cfc6405a098a7874 Author: Kirill <[email protected]> Date: Thu Oct 17 15:56:02 2024 +0400 Add missing gomock.Controller.Finish() calls in plugin tests (#2225) commit f5dc02caac7c59d36015845cf9d5b3355d312da4 Author: Kirill <[email protected]> Date: Thu Oct 17 11:15:15 2024 +0400 Small restructure of plugin logic (#2221) commit b43c46f48189926713c58a9760168ef2496c3bff Author: Rian Hughes <[email protected]> Date: Wed Oct 16 15:42:07 2024 +0300 Support plugins (#2051) Co-authored-by: rian <[email protected]> Co-authored-by: LordGhostX <[email protected]> commit ca006de578cfbc5a99dc13c2f751ed0cd03adcb7 Author: Kirill <[email protected]> Date: Wed Oct 16 16:14:16 2024 +0400 Replace UnmarshalJSON() with UnmarshalText() for transaction statuses (#2220) * Replace UnmarshalJSON() with UnmarshalText() for transaction statuses UnmarshalText avoids issues with forgetting quotes in JSON, making it simpler for parsing plain text values. commit 935b903f8dcd1fa435aa365d0735bc7a99502300 Author: Kirill <[email protected]> Date: Wed Oct 16 13:40:55 2024 +0400 Add db revert cmd (#2216) commit a1be2ebdec563c0e08189f4abc30dbbd07420b05 Author: Mario Apra <[email protected]> Date: Fri Oct 11 07:56:32 2024 +0100 chore: Fix how to send comments to github Added necessary permissions to the GitHub Actions workflow to allow writing comments on issues and pull requests. This enables automated feedback and notifications, improving workflow efficiency and communication. commit 6937def6ee72dfe40443f0798cb78fbd636ef2d0 Author: Mario Apra <[email protected]> Date: Wed Oct 9 13:00:52 2024 +0100 feat: Check for rust version in Makefile - Enhanced MSRV check in GitHub workflow to include Makefile updates. - Added a new target in Makefile to ensure Rust version compliance. - Updated dependencies and formatting targets to include Rust version check. - Fixed minor formatting issues in Makefile comments. commit f83a70e5190d5f76ed8239195ed4bf672208bc4e Author: Rian Hughes <[email protected]> Date: Tue Oct 15 17:22:32 2024 +0300 Fix traces (fees, state diff, events) (#2118) commit 384fe56ca7f20760122de8558181f11d24ee6abb Author: Ng Wei Han <[email protected]> Date: Tue Oct 15 18:48:39 2024 +0800 Fix core/state_test tests failure (#2198) commit 9ed2accb6ecc731c67727d48817e9957aede8dec Author: wojciechos <[email protected]> Date: Mon Oct 14 14:21:08 2024 +0200 Update starknet.go version to fix failing tests (#2215) commit 9c8370362a0d9eebf65b67651a2d037f7e99995f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 14 11:33:00 2024 +0000 Bump github.com/libp2p/go-libp2p-kad-dht from 0.26.1 to 0.27.0 Bumps [github.com/libp2p/go-libp2p-kad-dht](https://github.com/libp2p/go-libp2p-kad-dht) from 0.26.1 to 0.27.0. - [Release notes](https://github.com/libp2p/go-libp2p-kad-dht/releases) - [Commits](https://github.com/libp2p/go-libp2p-kad-dht/compare/v0.26.1...v0.27.0) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-kad-dht dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit c28429eebda04ed57f8b36e4d8e6a822ef3663c6 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 14 11:32:53 2024 +0000 Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 Bumps google.golang.org/protobuf from 1.34.2 to 1.35.1. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 584414117bb139c59d50b87ad203faa6d9b009d4 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri Oct 11 22:25:39 2024 +0000 Bump the npm_and_yarn group across 1 directory with 2 updates Bumps the npm_and_yarn group with 2 updates in the /docs directory: [cookie](https://github.com/jshttp/cookie) and [express](https://github.com/expressjs/express). Updates `cookie` from 0.6.0 to 0.7.1 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.1) Updates `express` from 4.21.0 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](https://github.com/expressjs/express/compare/4.21.0...4.21.1) --- updated-dependencies: - dependency-name: cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> commit 1786cb3874444c37429c281c4235e0fa08a0ef5f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 20:36:59 2024 +0400 Bump google.golang.org/grpc from 1.67.0 to 1.67.1 (#2202) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.67.0 to 1.67.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.67.0...v1.67.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Kirill <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kirill <[email protected]> commit 45ce05df1eb932ab19c04f5662506bb01fdf4e9f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 20:23:26 2024 +0400 Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#2201) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.27.0 to 0.28.0. - [Commits](https://github.com/golang/crypto/compare/v0.27.0...v0.28.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 73be13e913b1fa3a972a19647731c3eb5c0aafda Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 16:55:01 2024 +0400 Bump github.com/ethereum/go-ethereum from 1.14.10 to 1.14.11 (#2203) Bump github.com/ethereum/go-ethereum from 1.14.10 to 1.14.11 Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.10 to 1.14.11. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.10...v1.14.11) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit f20c3decbfd8292b703013ee7714be92cb3e5e11 Author: Kirill <[email protected]> Date: Mon Oct 7 14:37:19 2024 +0400 Change tx commitment calculation for tx with empty signature (#2196) commit c07eb9d4a057e17963023a3e54af17f21233fb88 Author: Kirill <[email protected]> Date: Mon Oct 7 14:20:12 2024 +0400 Update README.md: change header of a network commit 702f25b2296cc419d823d09b671431c14d5b2244 Author: Ng Wei Han <[email protected]> Date: Fri Oct 4 17:37:05 2024 +0800 Add metrics for gossipsub (#2163) commit 8fcbb938319ff17193849f24b3058ae136e7b62f Author: Kirill <[email protected]> Date: Fri Oct 4 11:33:04 2024 +0400 Remove p2p/starnket.StaticStream (#2195) commit 1b89289fefd69500fabde9e7b37d250b7a424887 Author: wojo <[email protected]> Date: Wed Sep 18 10:24:48 2024 +0200 Improve starknet-go-tests workflow flexibility and security - Make TEST_RPC_URL and TEST_ACCOUNT_PRIVATE_KEY secrets required - Add 'ref' input parameter to allow testing different branches/tags commit 3e1044dcaecd53125c789bba6940f8a80e0e6021 Author: wojo <[email protected]> Date: Fri Sep 13 19:09:42 2024 +0200 Add Starknet Go tests to CI/CD pipeline - Integrate starknet-go-tests workflow into development, staging, and production stages - Mirror the structure used for Rust and JavaScript tests - Use appropriate RPC URLs and account private keys for each environment - Ensure Go tests run after validation/promotion in each stage commit 7e9652c056e0ef507fe506c146cbf6f5a11cd870 Author: Ng Wei Han <[email protected]> Date: Thu Oct 3 17:48:24 2024 +0800 Move starknet/rust deps to separate package (#2148) Co-authored-by: Mario Apra <[email protected]> commit 262c51f7f2643ec08f2a476b0005a30e2c21c2f5 Author: Ng Wei Han <[email protected]> Date: Thu Oct 3 17:47:46 2024 +0800 Refactor transaction into batch and snapshot (#2182) commit 0c0700c1f47ebd892ea3afbaa85440621d95de18 Author: Daniil Ankushin <[email protected]> Date: Tue Oct 1 23:39:32 2024 +0300 Refactor commitment parallel processing (#2169) commit 6b683d8a5c73197d544ba4b0e1069743d0b5ed48 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:56:49 2024 +0000 Bump github.com/ethereum/go-ethereum from 1.14.9 to 1.14.10 (#2190) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.9 to 1.14.10. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.9...v1.14.10) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... commit 9d609b62086543a62febe84a929b3491e2a7759d Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:55:59 2024 +0000 Bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 (#2191) Bumps [go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs) from 1.5.3 to 1.6.0. - [Release notes](https://github.com/uber-go/automaxprocs/releases) - [Changelog](https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/automaxprocs/compare/v1.5.3...v1.6.0) --- updated-dependencies: - dependency-name: go.uber.org/automaxprocs dependency-type: direct:production update-type: version-update:semver-minor ... commit 546f62ded729489eda1400dbae3576af71afa2c2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:54:40 2024 +0000 Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#2192) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.66.2 to 1.67.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.66.2...v1.67.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 9a3f2638b77ff8f897f41ea77369b6b86a4e1bcc Author: yevh <[email protected]> Date: Mon Sep 30 09:28:59 2024 +0200 Update codeql-analysis.yml Signed-off-by: yevh <[email protected]> commit 201d12ee867eb99e737ef623b9bace22ad4f26d3 Author: Mario Apra <[email protected]> Date: Wed Sep 25 15:41:53 2024 +0100 chore: Switch to ORAS for artifact promotion Updated CI/CD pipeline to use ORAS instead of Docker for artifact promotion. Changed repository references to align with ORAS. Also, change from docker registry to OCI registry commit 48fb6c54711e7475b33cd04f5c04d63941274847 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 25 16:18:14 2024 +0300 Add fuzz tests for utils (#1982) commit b240aba4392b94b058ff4d1cf1e2c42538225e2a Author: Daniil Ankushin <[email protected]> Date: Wed Sep 25 11:51:01 2024 +0300 Refactor `syncService.start` method in p2p (#2174) commit 38638ca710f9ba63eeb7296fc7572c98651efbc0 Author: Ng Wei Han <[email protected]> Date: Tue Sep 24 20:29:02 2024 +0800 Refactor ProofNode to use interface (#2176) commit 67430decdec8c8218a0bbe00ecba89b0863ef10b Author: Daniil Ankushin <[email protected]> Date: Tue Sep 24 12:23:19 2024 +0300 feat: Update transactionCommitmentPoseidon function to handle different transaction types (#2153) * feat: Update transactionCommitmentPoseidon function to handle different transaction types The code changes in `transactionCommitmentPoseidon` function update the logic to handle different transaction types. With the changes, the function now checks the type of the transaction and updates the digest accordingly. For `DeployTransaction` and `L1HandlerTransaction`, the digest is updated with a zero value, while for other transaction types, the digest is updated with the transaction signature. * Added tests * Replace dynamic hashes with hardcoded value in test --------- Co-authored-by: Kirill <[email protected]> commit 72535cc41d7b8fc78429732751d331c83de6d35b Author: Kirill <[email protected]> Date: Tue Sep 24 11:58:05 2024 +0400 Add receipt commitment calculation in post07Hash function (#2133) commit aa241f1c07e5b0a31d779844cfa019d9d91a8395 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 17:37:06 2024 +0400 Bump github.com/ethereum/go-ethereum from 1.14.8 to 1.14.9 (#2170) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.8 to 1.14.9. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.8...v1.14.9) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 21d69294b6817a9c416e2be97523bfae404dfdae Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 13:23:29 2024 +0000 Bump github.com/bits-and-blooms/bitset from 1.14.2 to 1.14.3 (#2171) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.14.2 to 1.14.3. - [Release notes](https://github.com/bits-and-blooms/bitset/releases) - [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.14.2...v1.14.3) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bitset dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4e3d53a6d8c4122b60ac49d710bf0d81b1becf1e Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 17:13:02 2024 +0400 Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 (#2172) * Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.3 to 1.20.4. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.3...v1.20.4) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.3 to 1.20.4. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.3...v1.20.4) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kirill <[email protected]> commit 107876a16086ee6fe2251e37035848b827748dfe Author: Daniil Ankushin <[email protected]> Date: Mon Sep 23 14:23:58 2024 +0300 Improve receiptCommitment function with parallel processing (#2165) commit 37ed0958cf1713affc1a4f344edaf23491839053 Author: Kirill <[email protected]> Date: Thu Sep 19 17:50:46 2024 +0400 Fix p2p sync for 0.13.2 blocks (#2146) commit 4fb5d0f59b5132945ef9904303925f0940be26aa Author: Ng Wei Han <[email protected]> Date: Thu Sep 19 15:55:14 2024 +0800 Remove repeated close host call (#2147) commit f3c885fa02bef81f2ae140ee81d85145e3d2b7a7 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 18:03:02 2024 +0300 Enable nilness check in govet linter (#2161) commit 793edae5bcebc01a5d92432c4f4b7228b1d5a417 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 17:48:20 2024 +0300 Fix error handling in trie/node.go (#2159) chore: Fix error handling in trie/node.go commit 494f9cc12a054ae35ba51a47b16cd8b368e48001 Author: Mario Apra <[email protected]> Date: Mon Sep 16 11:15:42 2024 +0100 chore: Add minimum rust version into readme - Fix #2139 commit 3f34c50cff70adcb4c338380f70e3af7b3b3ddb6 Author: Mario Apra <[email protected]> Date: Fri Sep 13 21:24:25 2024 +0100 feat: Add GitHub Actions workflow to find the smallest supported Rust version commit d637844217b1aa97c864a026a6dfd838afee9b9b Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 17:47:48 2024 +0300 L1->L2 message hashes are 256 bit hashes (#2160) * refactor: Update Hash message to use Hash256 type * Regenerate spec * refactor: Update MsgHash to use Hash256 type in AdaptReceipt function commit 5c6ffd9c5203a9d7b4dc225635900eca593075a8 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 12:44:08 2024 +0300 Refactor randomPeer function to use local variable (#2158) commit 1ff5e2c049bdc9cdeaced7cc7edf135560960d31 Author: Daniil Ankushin <[email protected]> Date: Tue Sep 17 11:31:16 2024 +0300 chore: Update golangci-lint to version 1.61.0 (#2154) * chore: Update golangci-lint to version 1.61.0 * chore: Exclude G115 from gosec linter Exclude G115 from the gosec linter to address the issue with https://github.com/securego/gosec/issues/1212. * chore: Remove unused variable assignments Remove unused variable assignments in node/node.go and utils/pipeline/pipeline_test.go files. * chore: Remove unused nolint directives Remove unused nolint directives in the starknet client.go and handlers.go files. commit 6735ed5cfcf8db08276774768899a48bc5b45d11 Author: Daniil Ankushin <[email protected]> Date: Mon Sep 16 15:19:29 2024 +0300 Add a filter for nodes to exclude a host node (#2149) * Add a filter for nodes to exclude a host node * Update p2p/p2p.go Co-authored-by: Ng Wei Han <[email protected]> Signed-off-by: Daniil Ankushin <[email protected]> --------- Signed-off-by: Daniil Ankushin <[email protected]> Co-authored-by: Ng Wei Han <[email protected]> commit 175cff21a0c4f38e9abc6f8087a83b9fbd8327e6 Author: Paweł Nowosielski <[email protected]> Date: Fri Sep 13 13:36:33 2024 +0200 fix: iterface is not nil unless never assigned commit 6ce6441e104b0975a15a1dd5b4c435a609954eaf Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:57:32 2024 +0000 Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#2152) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.26.0 to 0.27.0. - [Commits](https://github.com/golang/crypto/compare/v0.26.0...v0.27.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 903ced6d810fd21cd7ddf27b1eba323c4fa20cd2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:21:28 2024 +0000 Bump google.golang.org/grpc from 1.66.0 to 1.66.2 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.66.0 to 1.66.2. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.66.0...v1.66.2) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit 471831b1f80e5ab37b702cde49f998c193057eab Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:21:34 2024 +0000 Bump github.com/consensys/gnark-crypto from 0.13.0 to 0.14.0 Bumps [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto) from 0.13.0 to 0.14.0. - [Release notes](https://github.com/consensys/gnark-crypto/releases) - [Changelog](https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md) - [Commits](https://github.com/consensys/gnark-crypto/compare/v0.13.0...v0.14.0) --- updated-dependencies: - dependency-name: github.com/consensys/gnark-crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 153e651f156fd579a9e4e6676fe3ca9b881b05c2 Author: Mario Apra <[email protected]> Date: Fri Sep 13 12:42:40 2024 +0100 chore: Update jFrog Docker credentials in CI/CD pipeline commit e6725072b9d80c4bbba81a9146a48a20129de848 Author: Mario Apra <[email protected]> Date: Fri Sep 13 11:52:48 2024 +0100 chore: update how to deploy dev and staging envs With the https://github.com/NethermindEth/argo/pull/1094 change, it will now always track the latest tag which can be overwriten everytime this workflow runs. It means that even performing roll-backs will work commit e3b6939b6fbb67dd317460301b7fe9a456dcb752 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu Sep 12 19:42:46 2024 +0200 Bump body-parser and express in /docs (#2135) Bumps [body-parser](https://github.com/expressjs/body-parser) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together. Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](https://github.com/expressjs/body-parser/compare/1.20.2...1.20.3) Updates `express` from 4.19.2 to 4.21.0 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md) - [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0) --- updated-dependencies: - dependency-name: body-parser dependency-type: indirect - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 94158fedd889b8c6db247d68299febe3c499724d Author: AnkushinDaniil <[email protected]> Date: Tue Sep 10 14:37:09 2024 +0300 Bump Go version to 1.23.1 commit b2f565e19e8430dca7e1cd2e879d412925ff015d Author: Kirill <[email protected]> Date: Wed Sep 11 11:07:43 2024 +0200 Fix p2p header adapters (#2127) commit 71c7ca2a75d29adac03d55387e4b9f9368303fcc Author: Daniil Ankushin <[email protected]> Date: Tue Sep 10 12:37:58 2024 +0300 Remove unused code in node.newL1Client() (#2128) commit b89e0786091a683049a62c7eac83588557934fe7 Author: Kanishka <[email protected]> Date: Mon Sep 9 18:57:43 2024 +0530 Add l1 metrics (#1678) Co-authored-by: Kirill <[email protected]> commit 8a96b78a679b39b8fce8e3c88d4c75831c2c82a7 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 12:57:25 2024 +0100 Bump github.com/go-playground/validator/v10 from 10.22.0 to 10.22.1 (#2124) * Bump github.com/go-playground/validator/v10 from 10.22.0 to 10.22.1 Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.22.0 to 10.22.1. - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](https://github.com/go-playground/validator/compare/v10.22.0...v10.22.1) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-type: direct:production update-type: version-update:semver-patch ... --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4456d93b21012cb0c6b55eb760a4f5d31e5ee8da Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 12:56:56 2024 +0100 Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 (#2125) * Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.2 to 1.20.3. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/v1.20.3/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.2...v1.20.3) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 990a5804d79e1b4f81cbade00e426f6472cdaa39 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 11:11:29 2024 +0000 Bump github.com/libp2p/go-libp2p-kad-dht from 0.25.2 to 0.26.1 Bumps [github.com/libp2p/go-libp2p-kad-dht](https://github.com/libp2p/go-libp2p-kad-dht) from 0.25.2 to 0.26.1. - [Release notes](https://github.com/libp2p/go-libp2p-kad-dht/releases) - [Commits](https://github.com/libp2p/go-libp2p-kad-dht/compare/v0.25.2...v0.26.1) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-kad-dht dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 238c43cb2d42e6b3c11be7d30d9c1b36bde207c6 Author: Onur Yuce <[email protected]> Date: Fri Sep 6 12:41:52 2024 +0300 merge and split proofs (#1984) * implement logic to support ordering, merging and splitting of proof nodes sent over P2P --------- Co-authored-by: Rian Hughes <[email protected]> commit dc91f9b3be9e9412ca352e1e74148bdde30459ca Author: Mario Apra <[email protected]> Date: Thu Sep 5 10:26:47 2024 +0100 Improve build binaries pipeline Changes made: - build macOS arm and x86 - rename architecture from amd64 to x86_64, which is much easier to distinct from arm - remove unnecessary step for self-hosted which is not being used anymore - create ARTIFACT_NAME env var, so it's much easier to read the code - remove unnecessary id - add trigger on PR that change the build binaries files - get architecture during runtime commit 4f3231ba53b15f180faf7b6104a900d58782b937 Author: Ömer Faruk Irmak <[email protected]> Date: Thu Sep 5 17:17:33 2024 +0300 Optimize reading felts from state (#1713) Co-authored-by: onuruci <[email protected]> commit c0008d7161a88e37f722322b2cbe69b64b0024ee Author: Mario Apra <[email protected]> Date: Tue Sep 3 13:16:49 2024 +0100 Update number of cores for ubuntu-arm64 in juno-test workflow commit 1862240f8ff8da6f94fb7c2e1a0f062bbe5780ba Author: Kirill <[email protected]> Date: Tue Sep 3 14:48:32 2024 +0200 Update blockifier to 0.8.0-rc.3 (#2116) commit cb350dffa9f7accddc64162b2341e73043f13a87 Author: Ng Wei Han <[email protected]> Date: Mon Sep 2 23:07:46 2024 +0800 Remove additional "kad" substring from p2p discovery protocol name (#2113) commit 52d16ab18ca9466c02f7f4d4e0d04d2682d72fd5 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 11:12:50 2024 +0000 Bump google.golang.org/grpc from 1.65.0 to 1.66.0 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.65.0 to 1.66.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.65.0...v1.66.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 552327aa74dcf4871eecde74901c7a63ea985780 Author: Kirill <[email protected]> Date: Mon Sep 2 15:23:49 2024 +0200 Rewrite semver usage with new methods .LessThanEqual() and .GreaterThanEqual() (#2112) commit 8f8d37a4b8f5b2d7e60790b4f8d01e10a4741b69 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 11:12:57 2024 +0000 Bump github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.0 Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) from 3.2.1 to 3.3.0. - [Release notes](https://github.com/Masterminds/semver/releases) - [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md) - [Commits](https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0) --- updated-dependencies: - dependency-name: github.com/Masterminds/semver/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit ef162c31edec97680027793d07c97cfe1b9165d7 Author: Kirill <[email protected]> Date: Mon Sep 2 14:19:06 2024 +0200 Rewrite func iterator to range loop in p2p/starknet.streamHandler (#2106) commit 77b0d60d3ccbb368c8ac290e834469fcf08735aa Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 12:04:14 2024 +0000 Bump github.com/rs/cors from 1.11.0 to 1.11.1 (#2108) Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.11.0 to 1.11.1. - [Commits](https://github.com/rs/cors/compare/v1.11.0...v1.11.1) --- updated-dependencies: - dependency-name: github.com/rs/cors dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 5e6e86c14442e82bd44cc17cc608e84115472e5f Author: Priyank Makwana <[email protected]> Date: Fri Aug 30 18:57:33 2024 +0530 Emit events on remote db (#2088) commit daf1cde54900ce59df45eba742285d4524197067 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri Aug 30 12:57:27 2024 +0200 Bump webpack from 5.91.0 to 5.94.0 in /docs (#2100) Bumps [webpack](https://github.com/webpack/webpack) from 5.91.0 to 5.94.0. - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](https://github.com/webpack/webpack/compare/v5.91.0...v5.94.0) --- updated-dependencies: - dependency-name: webpack dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit a4eac4cd0d484299669a7654a331d7af3751433b Author: Kirill <[email protected]> Date: Fri Aug 30 12:28:33 2024 +0200 Improve trace logging (#2101) Improve trace logging. 1. "DEBUG" prefix has been removed 2. Added color support 3. Fixed caller reference commit 90d04becbb85382caaea42130a34d755019bd915 Author: Onur Yuce <[email protected]> Date: Thu Aug 29 01:23:26 2024 +0300 Added /ready/sync endpoint (#2060) commit 54e20a6b6bf9854b723cc6ef462308aa52c5732f Author: Kirill <[email protected]> Date: Wed Aug 28 11:53:00 2024 +0200 Add output field to vm.ComputationResources (#2096) commit 0f2d88bbc4150b6e09f33ca0492f0fb343089852 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 09:28:58 2024 +0000 Bump micromatch from 4.0.7 to 4.0.8 in /docs (#2094) Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.7 to 4.0.8. - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/micromatch/compare/4.0.7...4.0.8) --- updated-dependencies: - dependency-name: micromatch dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit dd99bc16a3a53ebc58b7f86a092d1da2370d4314 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 11:14:24 2024 +0200 Bump github.com/bits-and-blooms/bitset from 1.13.0 to 1.14.2 (#2091) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.13.0 to 1.14.2. - [Release notes](https://github.com/bits-and-blooms/bitset/releases) - [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.2) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bitset dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit fe5add8deba59f91ba6dffd92d7314ea21486b92 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 10:59:24 2024 +0200 Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#2090) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.8.0 to 1.8.1. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.8.0...v1.8.1) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 7e2e13f3e34d4f2c05945f1a846177877d8c77ac Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 10:32:22 2024 +0200 Bump github.com/prometheus/client_golang from 1.20.0 to 1.20.2 (#2089) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.0 to 1.20.2. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.0...v1.20.2) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit acda2a222b74434fc9fe7ecd977dc9b3b7f4943f Author: Osakpolor Obaseki <[email protected]> Date: Fri Aug 23 10:28:14 2024 +0100 Add execution stepcount in header [X-Cairo-Steps] (#1989) Co-authored-by: Kirill <[email protected]> commit 692bd490dd508d7b5bfcdff0d31e2656b42fdc1f Author: Mario Apra <[email protected]> Date: Wed Aug 21 18:13:50 2024 +0100 chore: Remove concurrency settings in child workflow When the parent and the child workflow set the concurrency, it creates a deadlock. More info: https://github.com/github/vscode-github-actions/issues/135 commit eb2eb04fa95faec1c7f999c3ee19277dd6150905 Author: Daniil Ankushin <[email protected]> Date: Wed Aug 21 20:19:11 2024 +0300 Update `blockifier` to 0.8.0-rc.2 (#2081) * Update blockifier dependency to version 0.8.0-rc.2 * Update starknet_api and cairo-vm dependencies This commit updates the `starknet_api` dependency to version 0.13.0-rc.1 and the `cairo-vm` dependency to version 1.0.1 in the `Cargo.toml` file. * Update once_cell dependency to version 1.19.0 * Update dependencies in Cargo.toml * Update serde dependency to version 1.0.208 * Update serde_json dependency to version 1.0.125 * Update cairo-vm dependency to version 1.0.1 * Update dependencies in Cargo.toml commit 5c333255c71f9c19d56127a4537889fcb6a49f68 Author: Osakpolor Obaseki <[email protected]> Date: Wed Aug 21 10:49:18 2024 +0100 Make starknet_getTransactionReceipt and other function calls response conform to the 0.7.1 spec (#2078) Co-authored-by: Kirill <[email protected]> commit af674c3decc9cd6bd50b583d00a1012a8f0a8ddc Author: Kirill <[email protected]> Date: Wed Aug 21 11:39:44 2024 +0300 Replace custom code with maps package functions (#2073) commit c391201aba707d33fa7f7ae4315856a0ca3d26a0 Author: Mario Apra <[email protected]> Date: Tue Aug 20 14:45:54 2024 +0100 Replace nhooyr.io/websocket with github.com/coder/websocket (#2079) * Replace nhooyr.io/websocket with github.com/coder/websocket * format jsonrpc/websocket_test.go with gci fix lint errors --------- Co-authored-by: onuruci <[email protected]> commit 52c97ba1daf21ccc69d6cbea212d8f3c1fdafc12 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 20 11:28:02 2024 +0000 Bump github.com/ethereum/go-ethereum from 1.14.7 to 1.14.8 (#2075) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.7 to 1.14.8. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.7...v1.14.8) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4e99b580b1aabfe0d485ed39171793ae8c67d824 Author: Kirill <[email protected]> Date: Tue Aug 20 14:15:03 2024 +0300 Add adapter for starknet.TransactionStatus in rpc (#2072) commit 6f1d6d9b078088d794f7edb4cb1f032be3533b5d Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 20 09:48:42 2024 +0000 Bump github.com/libp2p/go-libp2p-pubsub from 0.11.0 to 0.12.0 (#2076) Bumps [github.com/libp2p/go-libp2p-pubsub](https://github.com/libp2p/go-libp2p-pubsub) from 0.11.0 to 0.12.0. - [Release notes](https://github.com/libp2p/go-libp2p-pubsub/releases) - [Commits](https://github.com/libp2p/go-libp2p-pubsub/compare/v0.11.0...v0.12.0) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-pubsub dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 946560bb3709b95067080b672971e665f88909d9 Author: wojciechos <[email protected]> Date: Mon Aug 19 21:54:45 2024 +0200 Add sepolia integration snapshot to docs (#2071) commit 5855946e378db12e53fe7aa988d4235c4e0c2de3 Author: Mario Apra <[email protected]> Date: Mon Aug 19 20:36:40 2024 +0100 chore: Ignore specific dependencies in dependabot.yml commit de9f20b4951e4d248db9e25764d327aed3b40c16 Author: Mario Apra <[email protected]> Date: Mon Aug 19 11:49:53 2024 +0100 ci: Update concurrency settings in GitHub workflows If there are two jobs running for the same branch, cancel the oldest one. This is useful when merging many PRs at the same time (for example the ones from dependabot), avoiding running the tests/deployment for every single commit commit 32ef2d6a117ed835e1a60fe8f1200fc51c2c85ba Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 18:08:17 2024 +0300 Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 (#2064) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 0ac7e8744fed40cfcf049dbb2863c48b1b8646a5 Author: Daniil Ankushin <[email protected]> Date: Mon Aug 19 17:36:00 2024 +0300 Rewrite iterator functions with new for loop statement (#1954) commit 50bc46d15cdb8649ac1d2e9a4bf438f7ace0e6ce Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 16:54:07 2024 +0300 Bump github.com/cockroachdb/pebble from 1.1.1 to 1.1.2 (#2063) Bumps [github.com/cockroachdb/pebble](https://github.com/cockroachdb/pebble) from 1.1.1 to 1.1.2. - [Release notes](https://github.com/cockroachdb/pebble/releases) - [Commits](https://github.com/cockroachdb/pebble/compare/v1.1.1...v1.1.2) --- updated-dependencies: - dependency-name: github.com/cockroachdb/pebble dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit efe0fc1eba6616a10d3d99b7d0c8348ced7455b3 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 16:18:50 2024 +0300 Bump github.com/bits-and-blooms/bloom/v3 from 3.6.0 to 3.7.0 (#2065) Bumps [github.com/bits-and-blooms/bloom/v3](https://github.com/bits-and-blooms/bloom) from 3.6.0 to 3.7.0. - [Release notes](https://github.com/bits-and-blooms/bloom/releases) - [Commits](https://github.com/bits-and-blooms/bloom/compare/v3.6.0...v3.7.0) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bloom/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Onur Yuce <[email protected]> commit d65d4b48da2fae522c24cc4dd955346dd9313011 Author: Mario Apra <[email protected]> Date: Mon Aug 19 12:37:18 2024 +0100 fix: Remove unnecessary go in matrix CI is getting the go version from go.mod, and there is no reference for matrix.go. Therefore we can conclude that this is not being used. The annoying part with this is when upgrading the go version, the job will be a different name, and someone needs to manually go to the protected rule for the main branch and update what's the name of the tests
commit 8ca930797e6d76acb92c7ca99e8283733c1cff67 Author: wojciechos <[email protected]> Date: Thu Oct 24 14:19:52 2024 +0200 Fix spec version for 0_7 endpoint (#2238) commit 00ac988d3f5febdd91ed2f5a11884da1a5deefc9 Author: Kirill <[email protected]> Date: Tue Oct 22 18:11:24 2024 +0400 Remove v0.6 endpoints, added v0.8 endpoints (#2229) commit 731099040a8fdd4b966f201b7637a814834291fb Author: Mario Apra <[email protected]> Date: Mon Oct 21 15:31:04 2024 +0100 chore: Update instructions on how to build Juno Signed-off-by: Mario Apra <[email protected]> commit 0ab532f25325f75e4eba3d5389c4f29ce4eb4988 Author: Kirill <[email protected]> Date: Mon Oct 21 15:45:15 2024 +0400 Pass required libbz2 to linker to fix compilation error on macOS (#2228) commit bdc598982e86bf950bbbe19ce88f4a9b701ff09c Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:15:33 2024 +0000 Bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.4 to 1.20.5. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.4...v1.20.5) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit bf38adb53cae5eec67fd32e4a0dd9ec5607be0df Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:15:38 2024 +0000 Bump go.uber.org/mock from 0.4.0 to 0.5.0 Bumps [go.uber.org/mock](https://github.com/uber/mock) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/uber/mock/releases) - [Changelog](https://github.com/uber-go/mock/blob/main/CHANGELOG.md) - [Commits](https://github.com/uber/mock/compare/v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: go.uber.org/mock dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit b9d987eb11401b2ddb8b6a128c564938e315b2db Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:18:58 2024 +0000 Bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.27.0 to 0.28.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/5681af892cd0f4997658e2bacc62bd0a894cf564...915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit c67b458aa039c50b1855cca177f00edf114a1bb0 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:19:05 2024 +0000 Update github/codeql-action requirement to 5618c9fc1e675841ca52c1c6b1304f5255a905a0 Updates the requirements on [github/codeql-action](https://github.com/github/codeql-action) to permit the latest version. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/commits/5618c9fc1e675841ca52c1c6b1304f5255a905a0) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> commit 8bdff962b22b3dcedff96350271df6ec140e3be0 Author: yevh <[email protected]> Date: Mon Oct 21 11:12:37 2024 +0200 Create trivy.yml (#2226) Signed-off-by: yevh <[email protected]> Co-authored-by: Mario Apra <[email protected]> commit 0d02f9e75e449f047bef59fb0bbfcad0d03e68f5 Author: wojciechos <[email protected]> Date: Fri Oct 18 12:57:02 2024 +0200 Update starknet.go, starknet-js and starknet-rs tests (#2217) commit 3833c0095d171404fd9474a50684663be0525749 Author: Mario Apra <[email protected]> Date: Fri Oct 18 10:44:26 2024 +0100 Remove UPX from macOS build process Updated the GitHub Actions workflow to exclude UPX installation and usage on macOS. This change addresses compatibility issues with UPX on macOS, ensuring smoother build processes for macOS environments. More info: https://github.com/upx/upx/issues/612 commit eb19859609fd496feee39fafa0c9504141ee6b04 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 11:30:13 2024 +0000 Bump actions/setup-go from 4 to 5 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> commit 7faba7c05c0de7cc9d972432b11416eccbac7d9c Author: Kirill <[email protected]> Date: Thu Oct 17 18:05:36 2024 +0400 Add missing execution resources to fetched traces (#2222) commit f4d9d698792fd8ec711b9bf2cfc6405a098a7874 Author: Kirill <[email protected]> Date: Thu Oct 17 15:56:02 2024 +0400 Add missing gomock.Controller.Finish() calls in plugin tests (#2225) commit f5dc02caac7c59d36015845cf9d5b3355d312da4 Author: Kirill <[email protected]> Date: Thu Oct 17 11:15:15 2024 +0400 Small restructure of plugin logic (#2221) commit b43c46f48189926713c58a9760168ef2496c3bff Author: Rian Hughes <[email protected]> Date: Wed Oct 16 15:42:07 2024 +0300 Support plugins (#2051) Co-authored-by: rian <[email protected]> Co-authored-by: LordGhostX <[email protected]> commit ca006de578cfbc5a99dc13c2f751ed0cd03adcb7 Author: Kirill <[email protected]> Date: Wed Oct 16 16:14:16 2024 +0400 Replace UnmarshalJSON() with UnmarshalText() for transaction statuses (#2220) * Replace UnmarshalJSON() with UnmarshalText() for transaction statuses UnmarshalText avoids issues with forgetting quotes in JSON, making it simpler for parsing plain text values. commit 935b903f8dcd1fa435aa365d0735bc7a99502300 Author: Kirill <[email protected]> Date: Wed Oct 16 13:40:55 2024 +0400 Add db revert cmd (#2216) commit a1be2ebdec563c0e08189f4abc30dbbd07420b05 Author: Mario Apra <[email protected]> Date: Fri Oct 11 07:56:32 2024 +0100 chore: Fix how to send comments to github Added necessary permissions to the GitHub Actions workflow to allow writing comments on issues and pull requests. This enables automated feedback and notifications, improving workflow efficiency and communication. commit 6937def6ee72dfe40443f0798cb78fbd636ef2d0 Author: Mario Apra <[email protected]> Date: Wed Oct 9 13:00:52 2024 +0100 feat: Check for rust version in Makefile - Enhanced MSRV check in GitHub workflow to include Makefile updates. - Added a new target in Makefile to ensure Rust version compliance. - Updated dependencies and formatting targets to include Rust version check. - Fixed minor formatting issues in Makefile comments. commit f83a70e5190d5f76ed8239195ed4bf672208bc4e Author: Rian Hughes <[email protected]> Date: Tue Oct 15 17:22:32 2024 +0300 Fix traces (fees, state diff, events) (#2118) commit 384fe56ca7f20760122de8558181f11d24ee6abb Author: Ng Wei Han <[email protected]> Date: Tue Oct 15 18:48:39 2024 +0800 Fix core/state_test tests failure (#2198) commit 9ed2accb6ecc731c67727d48817e9957aede8dec Author: wojciechos <[email protected]> Date: Mon Oct 14 14:21:08 2024 +0200 Update starknet.go version to fix failing tests (#2215) commit 9c8370362a0d9eebf65b67651a2d037f7e99995f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 14 11:33:00 2024 +0000 Bump github.com/libp2p/go-libp2p-kad-dht from 0.26.1 to 0.27.0 Bumps [github.com/libp2p/go-libp2p-kad-dht](https://github.com/libp2p/go-libp2p-kad-dht) from 0.26.1 to 0.27.0. - [Release notes](https://github.com/libp2p/go-libp2p-kad-dht/releases) - [Commits](https://github.com/libp2p/go-libp2p-kad-dht/compare/v0.26.1...v0.27.0) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-kad-dht dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit c28429eebda04ed57f8b36e4d8e6a822ef3663c6 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 14 11:32:53 2024 +0000 Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 Bumps google.golang.org/protobuf from 1.34.2 to 1.35.1. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 584414117bb139c59d50b87ad203faa6d9b009d4 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri Oct 11 22:25:39 2024 +0000 Bump the npm_and_yarn group across 1 directory with 2 updates Bumps the npm_and_yarn group with 2 updates in the /docs directory: [cookie](https://github.com/jshttp/cookie) and [express](https://github.com/expressjs/express). Updates `cookie` from 0.6.0 to 0.7.1 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.1) Updates `express` from 4.21.0 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](https://github.com/expressjs/express/compare/4.21.0...4.21.1) --- updated-dependencies: - dependency-name: cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> commit 1786cb3874444c37429c281c4235e0fa08a0ef5f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 20:36:59 2024 +0400 Bump google.golang.org/grpc from 1.67.0 to 1.67.1 (#2202) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.67.0 to 1.67.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.67.0...v1.67.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Kirill <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kirill <[email protected]> commit 45ce05df1eb932ab19c04f5662506bb01fdf4e9f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 20:23:26 2024 +0400 Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#2201) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.27.0 to 0.28.0. - [Commits](https://github.com/golang/crypto/compare/v0.27.0...v0.28.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 73be13e913b1fa3a972a19647731c3eb5c0aafda Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 16:55:01 2024 +0400 Bump github.com/ethereum/go-ethereum from 1.14.10 to 1.14.11 (#2203) Bump github.com/ethereum/go-ethereum from 1.14.10 to 1.14.11 Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.10 to 1.14.11. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.10...v1.14.11) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit f20c3decbfd8292b703013ee7714be92cb3e5e11 Author: Kirill <[email protected]> Date: Mon Oct 7 14:37:19 2024 +0400 Change tx commitment calculation for tx with empty signature (#2196) commit c07eb9d4a057e17963023a3e54af17f21233fb88 Author: Kirill <[email protected]> Date: Mon Oct 7 14:20:12 2024 +0400 Update README.md: change header of a network commit 702f25b2296cc419d823d09b671431c14d5b2244 Author: Ng Wei Han <[email protected]> Date: Fri Oct 4 17:37:05 2024 +0800 Add metrics for gossipsub (#2163) commit 8fcbb938319ff17193849f24b3058ae136e7b62f Author: Kirill <[email protected]> Date: Fri Oct 4 11:33:04 2024 +0400 Remove p2p/starnket.StaticStream (#2195) commit 1b89289fefd69500fabde9e7b37d250b7a424887 Author: wojo <[email protected]> Date: Wed Sep 18 10:24:48 2024 +0200 Improve starknet-go-tests workflow flexibility and security - Make TEST_RPC_URL and TEST_ACCOUNT_PRIVATE_KEY secrets required - Add 'ref' input parameter to allow testing different branches/tags commit 3e1044dcaecd53125c789bba6940f8a80e0e6021 Author: wojo <[email protected]> Date: Fri Sep 13 19:09:42 2024 +0200 Add Starknet Go tests to CI/CD pipeline - Integrate starknet-go-tests workflow into development, staging, and production stages - Mirror the structure used for Rust and JavaScript tests - Use appropriate RPC URLs and account private keys for each environment - Ensure Go tests run after validation/promotion in each stage commit 7e9652c056e0ef507fe506c146cbf6f5a11cd870 Author: Ng Wei Han <[email protected]> Date: Thu Oct 3 17:48:24 2024 +0800 Move starknet/rust deps to separate package (#2148) Co-authored-by: Mario Apra <[email protected]> commit 262c51f7f2643ec08f2a476b0005a30e2c21c2f5 Author: Ng Wei Han <[email protected]> Date: Thu Oct 3 17:47:46 2024 +0800 Refactor transaction into batch and snapshot (#2182) commit 0c0700c1f47ebd892ea3afbaa85440621d95de18 Author: Daniil Ankushin <[email protected]> Date: Tue Oct 1 23:39:32 2024 +0300 Refactor commitment parallel processing (#2169) commit 6b683d8a5c73197d544ba4b0e1069743d0b5ed48 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:56:49 2024 +0000 Bump github.com/ethereum/go-ethereum from 1.14.9 to 1.14.10 (#2190) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.9 to 1.14.10. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.9...v1.14.10) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... commit 9d609b62086543a62febe84a929b3491e2a7759d Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:55:59 2024 +0000 Bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 (#2191) Bumps [go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs) from 1.5.3 to 1.6.0. - [Release notes](https://github.com/uber-go/automaxprocs/releases) - [Changelog](https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/automaxprocs/compare/v1.5.3...v1.6.0) --- updated-dependencies: - dependency-name: go.uber.org/automaxprocs dependency-type: direct:production update-type: version-update:semver-minor ... commit 546f62ded729489eda1400dbae3576af71afa2c2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:54:40 2024 +0000 Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#2192) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.66.2 to 1.67.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.66.2...v1.67.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 9a3f2638b77ff8f897f41ea77369b6b86a4e1bcc Author: yevh <[email protected]> Date: Mon Sep 30 09:28:59 2024 +0200 Update codeql-analysis.yml Signed-off-by: yevh <[email protected]> commit 201d12ee867eb99e737ef623b9bace22ad4f26d3 Author: Mario Apra <[email protected]> Date: Wed Sep 25 15:41:53 2024 +0100 chore: Switch to ORAS for artifact promotion Updated CI/CD pipeline to use ORAS instead of Docker for artifact promotion. Changed repository references to align with ORAS. Also, change from docker registry to OCI registry commit 48fb6c54711e7475b33cd04f5c04d63941274847 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 25 16:18:14 2024 +0300 Add fuzz tests for utils (#1982) commit b240aba4392b94b058ff4d1cf1e2c42538225e2a Author: Daniil Ankushin <[email protected]> Date: Wed Sep 25 11:51:01 2024 +0300 Refactor `syncService.start` method in p2p (#2174) commit 38638ca710f9ba63eeb7296fc7572c98651efbc0 Author: Ng Wei Han <[email protected]> Date: Tue Sep 24 20:29:02 2024 +0800 Refactor ProofNode to use interface (#2176) commit 67430decdec8c8218a0bbe00ecba89b0863ef10b Author: Daniil Ankushin <[email protected]> Date: Tue Sep 24 12:23:19 2024 +0300 feat: Update transactionCommitmentPoseidon function to handle different transaction types (#2153) * feat: Update transactionCommitmentPoseidon function to handle different transaction types The code changes in `transactionCommitmentPoseidon` function update the logic to handle different transaction types. With the changes, the function now checks the type of the transaction and updates the digest accordingly. For `DeployTransaction` and `L1HandlerTransaction`, the digest is updated with a zero value, while for other transaction types, the digest is updated with the transaction signature. * Added tests * Replace dynamic hashes with hardcoded value in test --------- Co-authored-by: Kirill <[email protected]> commit 72535cc41d7b8fc78429732751d331c83de6d35b Author: Kirill <[email protected]> Date: Tue Sep 24 11:58:05 2024 +0400 Add receipt commitment calculation in post07Hash function (#2133) commit aa241f1c07e5b0a31d779844cfa019d9d91a8395 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 17:37:06 2024 +0400 Bump github.com/ethereum/go-ethereum from 1.14.8 to 1.14.9 (#2170) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.8 to 1.14.9. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.8...v1.14.9) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 21d69294b6817a9c416e2be97523bfae404dfdae Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 13:23:29 2024 +0000 Bump github.com/bits-and-blooms/bitset from 1.14.2 to 1.14.3 (#2171) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.14.2 to 1.14.3. - [Release notes](https://github.com/bits-and-blooms/bitset/releases) - [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.14.2...v1.14.3) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bitset dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4e3d53a6d8c4122b60ac49d710bf0d81b1becf1e Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 17:13:02 2024 +0400 Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 (#2172) * Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.3 to 1.20.4. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.3...v1.20.4) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.3 to 1.20.4. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.3...v1.20.4) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kirill <[email protected]> commit 107876a16086ee6fe2251e37035848b827748dfe Author: Daniil Ankushin <[email protected]> Date: Mon Sep 23 14:23:58 2024 +0300 Improve receiptCommitment function with parallel processing (#2165) commit 37ed0958cf1713affc1a4f344edaf23491839053 Author: Kirill <[email protected]> Date: Thu Sep 19 17:50:46 2024 +0400 Fix p2p sync for 0.13.2 blocks (#2146) commit 4fb5d0f59b5132945ef9904303925f0940be26aa Author: Ng Wei Han <[email protected]> Date: Thu Sep 19 15:55:14 2024 +0800 Remove repeated close host call (#2147) commit f3c885fa02bef81f2ae140ee81d85145e3d2b7a7 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 18:03:02 2024 +0300 Enable nilness check in govet linter (#2161) commit 793edae5bcebc01a5d92432c4f4b7228b1d5a417 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 17:48:20 2024 +0300 Fix error handling in trie/node.go (#2159) chore: Fix error handling in trie/node.go commit 494f9cc12a054ae35ba51a47b16cd8b368e48001 Author: Mario Apra <[email protected]> Date: Mon Sep 16 11:15:42 2024 +0100 chore: Add minimum rust version into readme - Fix #2139 commit 3f34c50cff70adcb4c338380f70e3af7b3b3ddb6 Author: Mario Apra <[email protected]> Date: Fri Sep 13 21:24:25 2024 +0100 feat: Add GitHub Actions workflow to find the smallest supported Rust version commit d637844217b1aa97c864a026a6dfd838afee9b9b Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 17:47:48 2024 +0300 L1->L2 message hashes are 256 bit hashes (#2160) * refactor: Update Hash message to use Hash256 type * Regenerate spec * refactor: Update MsgHash to use Hash256 type in AdaptReceipt function commit 5c6ffd9c5203a9d7b4dc225635900eca593075a8 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 12:44:08 2024 +0300 Refactor randomPeer function to use local variable (#2158) commit 1ff5e2c049bdc9cdeaced7cc7edf135560960d31 Author: Daniil Ankushin <[email protected]> Date: Tue Sep 17 11:31:16 2024 +0300 chore: Update golangci-lint to version 1.61.0 (#2154) * chore: Update golangci-lint to version 1.61.0 * chore: Exclude G115 from gosec linter Exclude G115 from the gosec linter to address the issue with https://github.com/securego/gosec/issues/1212. * chore: Remove unused variable assignments Remove unused variable assignments in node/node.go and utils/pipeline/pipeline_test.go files. * chore: Remove unused nolint directives Remove unused nolint directives in the starknet client.go and handlers.go files. commit 6735ed5cfcf8db08276774768899a48bc5b45d11 Author: Daniil Ankushin <[email protected]> Date: Mon Sep 16 15:19:29 2024 +0300 Add a filter for nodes to exclude a host node (#2149) * Add a filter for nodes to exclude a host node * Update p2p/p2p.go Co-authored-by: Ng Wei Han <[email protected]> Signed-off-by: Daniil Ankushin <[email protected]> --------- Signed-off-by: Daniil Ankushin <[email protected]> Co-authored-by: Ng Wei Han <[email protected]> commit 175cff21a0c4f38e9abc6f8087a83b9fbd8327e6 Author: Paweł Nowosielski <[email protected]> Date: Fri Sep 13 13:36:33 2024 +0200 fix: iterface is not nil unless never assigned commit 6ce6441e104b0975a15a1dd5b4c435a609954eaf Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:57:32 2024 +0000 Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#2152) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.26.0 to 0.27.0. - [Commits](https://github.com/golang/crypto/compare/v0.26.0...v0.27.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 903ced6d810fd21cd7ddf27b1eba323c4fa20cd2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:21:28 2024 +0000 Bump google.golang.org/grpc from 1.66.0 to 1.66.2 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.66.0 to 1.66.2. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.66.0...v1.66.2) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit 471831b1f80e5ab37b702cde49f998c193057eab Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:21:34 2024 +0000 Bump github.com/consensys/gnark-crypto from 0.13.0 to 0.14.0 Bumps [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto) from 0.13.0 to 0.14.0. - [Release notes](https://github.com/consensys/gnark-crypto/releases) - [Changelog](https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md) - [Commits](https://github.com/consensys/gnark-crypto/compare/v0.13.0...v0.14.0) --- updated-dependencies: - dependency-name: github.com/consensys/gnark-crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 153e651f156fd579a9e4e6676fe3ca9b881b05c2 Author: Mario Apra <[email protected]> Date: Fri Sep 13 12:42:40 2024 +0100 chore: Update jFrog Docker credentials in CI/CD pipeline commit e6725072b9d80c4bbba81a9146a48a20129de848 Author: Mario Apra <[email protected]> Date: Fri Sep 13 11:52:48 2024 +0100 chore: update how to deploy dev and staging envs With the https://github.com/NethermindEth/argo/pull/1094 change, it will now always track the latest tag which can be overwriten everytime this workflow runs. It means that even performing roll-backs will work commit e3b6939b6fbb67dd317460301b7fe9a456dcb752 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu Sep 12 19:42:46 2024 +0200 Bump body-parser and express in /docs (#2135) Bumps [body-parser](https://github.com/expressjs/body-parser) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together. Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](https://github.com/expressjs/body-parser/compare/1.20.2...1.20.3) Updates `express` from 4.19.2 to 4.21.0 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md) - [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0) --- updated-dependencies: - dependency-name: body-parser dependency-type: indirect - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 94158fedd889b8c6db247d68299febe3c499724d Author: AnkushinDaniil <[email protected]> Date: Tue Sep 10 14:37:09 2024 +0300 Bump Go version to 1.23.1 commit b2f565e19e8430dca7e1cd2e879d412925ff015d Author: Kirill <[email protected]> Date: Wed Sep 11 11:07:43 2024 +0200 Fix p2p header adapters (#2127) commit 71c7ca2a75d29adac03d55387e4b9f9368303fcc Author: Daniil Ankushin <[email protected]> Date: Tue Sep 10 12:37:58 2024 +0300 Remove unused code in node.newL1Client() (#2128) commit b89e0786091a683049a62c7eac83588557934fe7 Author: Kanishka <[email protected]> Date: Mon Sep 9 18:57:43 2024 +0530 Add l1 metrics (#1678) Co-authored-by: Kirill <[email protected]> commit 8a96b78a679b39b8fce8e3c88d4c75831c2c82a7 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 12:57:25 2024 +0100 Bump github.com/go-playground/validator/v10 from 10.22.0 to 10.22.1 (#2124) * Bump github.com/go-playground/validator/v10 from 10.22.0 to 10.22.1 Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.22.0 to 10.22.1. - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](https://github.com/go-playground/validator/compare/v10.22.0...v10.22.1) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-type: direct:production update-type: version-update:semver-patch ... --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4456d93b21012cb0c6b55eb760a4f5d31e5ee8da Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 12:56:56 2024 +0100 Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 (#2125) * Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.2 to 1.20.3. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/v1.20.3/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.2...v1.20.3) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 990a5804d79e1b4f81cbade00e426f6472cdaa39 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 11:11:29 2024 +0000 Bump github.com/libp2p/go-libp2p-kad-dht from 0.25.2 to 0.26.1 Bumps [github.com/libp2p/go-libp2p-kad-dht](https://github.com/libp2p/go-libp2p-kad-dht) from 0.25.2 to 0.26.1. - [Release notes](https://github.com/libp2p/go-libp2p-kad-dht/releases) - [Commits](https://github.com/libp2p/go-libp2p-kad-dht/compare/v0.25.2...v0.26.1) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-kad-dht dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 238c43cb2d42e6b3c11be7d30d9c1b36bde207c6 Author: Onur Yuce <[email protected]> Date: Fri Sep 6 12:41:52 2024 +0300 merge and split proofs (#1984) * implement logic to support ordering, merging and splitting of proof nodes sent over P2P --------- Co-authored-by: Rian Hughes <[email protected]> commit dc91f9b3be9e9412ca352e1e74148bdde30459ca Author: Mario Apra <[email protected]> Date: Thu Sep 5 10:26:47 2024 +0100 Improve build binaries pipeline Changes made: - build macOS arm and x86 - rename architecture from amd64 to x86_64, which is much easier to distinct from arm - remove unnecessary step for self-hosted which is not being used anymore - create ARTIFACT_NAME env var, so it's much easier to read the code - remove unnecessary id - add trigger on PR that change the build binaries files - get architecture during runtime commit 4f3231ba53b15f180faf7b6104a900d58782b937 Author: Ömer Faruk Irmak <[email protected]> Date: Thu Sep 5 17:17:33 2024 +0300 Optimize reading felts from state (#1713) Co-authored-by: onuruci <[email protected]> commit c0008d7161a88e37f722322b2cbe69b64b0024ee Author: Mario Apra <[email protected]> Date: Tue Sep 3 13:16:49 2024 +0100 Update number of cores for ubuntu-arm64 in juno-test workflow commit 1862240f8ff8da6f94fb7c2e1a0f062bbe5780ba Author: Kirill <[email protected]> Date: Tue Sep 3 14:48:32 2024 +0200 Update blockifier to 0.8.0-rc.3 (#2116) commit cb350dffa9f7accddc64162b2341e73043f13a87 Author: Ng Wei Han <[email protected]> Date: Mon Sep 2 23:07:46 2024 +0800 Remove additional "kad" substring from p2p discovery protocol name (#2113) commit 52d16ab18ca9466c02f7f4d4e0d04d2682d72fd5 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 11:12:50 2024 +0000 Bump google.golang.org/grpc from 1.65.0 to 1.66.0 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.65.0 to 1.66.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.65.0...v1.66.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 552327aa74dcf4871eecde74901c7a63ea985780 Author: Kirill <[email protected]> Date: Mon Sep 2 15:23:49 2024 +0200 Rewrite semver usage with new methods .LessThanEqual() and .GreaterThanEqual() (#2112) commit 8f8d37a4b8f5b2d7e60790b4f8d01e10a4741b69 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 11:12:57 2024 +0000 Bump github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.0 Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) from 3.2.1 to 3.3.0. - [Release notes](https://github.com/Masterminds/semver/releases) - [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md) - [Commits](https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0) --- updated-dependencies: - dependency-name: github.com/Masterminds/semver/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit ef162c31edec97680027793d07c97cfe1b9165d7 Author: Kirill <[email protected]> Date: Mon Sep 2 14:19:06 2024 +0200 Rewrite func iterator to range loop in p2p/starknet.streamHandler (#2106) commit 77b0d60d3ccbb368c8ac290e834469fcf08735aa Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 12:04:14 2024 +0000 Bump github.com/rs/cors from 1.11.0 to 1.11.1 (#2108) Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.11.0 to 1.11.1. - [Commits](https://github.com/rs/cors/compare/v1.11.0...v1.11.1) --- updated-dependencies: - dependency-name: github.com/rs/cors dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 5e6e86c14442e82bd44cc17cc608e84115472e5f Author: Priyank Makwana <[email protected]> Date: Fri Aug 30 18:57:33 2024 +0530 Emit events on remote db (#2088) commit daf1cde54900ce59df45eba742285d4524197067 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri Aug 30 12:57:27 2024 +0200 Bump webpack from 5.91.0 to 5.94.0 in /docs (#2100) Bumps [webpack](https://github.com/webpack/webpack) from 5.91.0 to 5.94.0. - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](https://github.com/webpack/webpack/compare/v5.91.0...v5.94.0) --- updated-dependencies: - dependency-name: webpack dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit a4eac4cd0d484299669a7654a331d7af3751433b Author: Kirill <[email protected]> Date: Fri Aug 30 12:28:33 2024 +0200 Improve trace logging (#2101) Improve trace logging. 1. "DEBUG" prefix has been removed 2. Added color support 3. Fixed caller reference commit 90d04becbb85382caaea42130a34d755019bd915 Author: Onur Yuce <[email protected]> Date: Thu Aug 29 01:23:26 2024 +0300 Added /ready/sync endpoint (#2060) commit 54e20a6b6bf9854b723cc6ef462308aa52c5732f Author: Kirill <[email protected]> Date: Wed Aug 28 11:53:00 2024 +0200 Add output field to vm.ComputationResources (#2096) commit 0f2d88bbc4150b6e09f33ca0492f0fb343089852 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 09:28:58 2024 +0000 Bump micromatch from 4.0.7 to 4.0.8 in /docs (#2094) Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.7 to 4.0.8. - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/micromatch/compare/4.0.7...4.0.8) --- updated-dependencies: - dependency-name: micromatch dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit dd99bc16a3a53ebc58b7f86a092d1da2370d4314 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 11:14:24 2024 +0200 Bump github.com/bits-and-blooms/bitset from 1.13.0 to 1.14.2 (#2091) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.13.0 to 1.14.2. - [Release notes](https://github.com/bits-and-blooms/bitset/releases) - [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.2) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bitset dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit fe5add8deba59f91ba6dffd92d7314ea21486b92 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 10:59:24 2024 +0200 Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#2090) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.8.0 to 1.8.1. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.8.0...v1.8.1) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 7e2e13f3e34d4f2c05945f1a846177877d8c77ac Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 10:32:22 2024 +0200 Bump github.com/prometheus/client_golang from 1.20.0 to 1.20.2 (#2089) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.0 to 1.20.2. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.0...v1.20.2) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit acda2a222b74434fc9fe7ecd977dc9b3b7f4943f Author: Osakpolor Obaseki <[email protected]> Date: Fri Aug 23 10:28:14 2024 +0100 Add execution stepcount in header [X-Cairo-Steps] (#1989) Co-authored-by: Kirill <[email protected]> commit 692bd490dd508d7b5bfcdff0d31e2656b42fdc1f Author: Mario Apra <[email protected]> Date: Wed Aug 21 18:13:50 2024 +0100 chore: Remove concurrency settings in child workflow When the parent and the child workflow set the concurrency, it creates a deadlock. More info: https://github.com/github/vscode-github-actions/issues/135 commit eb2eb04fa95faec1c7f999c3ee19277dd6150905 Author: Daniil Ankushin <[email protected]> Date: Wed Aug 21 20:19:11 2024 +0300 Update `blockifier` to 0.8.0-rc.2 (#2081) * Update blockifier dependency to version 0.8.0-rc.2 * Update starknet_api and cairo-vm dependencies This commit updates the `starknet_api` dependency to version 0.13.0-rc.1 and the `cairo-vm` dependency to version 1.0.1 in the `Cargo.toml` file. * Update once_cell dependency to version 1.19.0 * Update dependencies in Cargo.toml * Update serde dependency to version 1.0.208 * Update serde_json dependency to version 1.0.125 * Update cairo-vm dependency to version 1.0.1 * Update dependencies in Cargo.toml commit 5c333255c71f9c19d56127a4537889fcb6a49f68 Author: Osakpolor Obaseki <[email protected]> Date: Wed Aug 21 10:49:18 2024 +0100 Make starknet_getTransactionReceipt and other function calls response conform to the 0.7.1 spec (#2078) Co-authored-by: Kirill <[email protected]> commit af674c3decc9cd6bd50b583d00a1012a8f0a8ddc Author: Kirill <[email protected]> Date: Wed Aug 21 11:39:44 2024 +0300 Replace custom code with maps package functions (#2073) commit c391201aba707d33fa7f7ae4315856a0ca3d26a0 Author: Mario Apra <[email protected]> Date: Tue Aug 20 14:45:54 2024 +0100 Replace nhooyr.io/websocket with github.com/coder/websocket (#2079) * Replace nhooyr.io/websocket with github.com/coder/websocket * format jsonrpc/websocket_test.go with gci fix lint errors --------- Co-authored-by: onuruci <[email protected]> commit 52c97ba1daf21ccc69d6cbea212d8f3c1fdafc12 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 20 11:28:02 2024 +0000 Bump github.com/ethereum/go-ethereum from 1.14.7 to 1.14.8 (#2075) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.7 to 1.14.8. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.7...v1.14.8) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4e99b580b1aabfe0d485ed39171793ae8c67d824 Author: Kirill <[email protected]> Date: Tue Aug 20 14:15:03 2024 +0300 Add adapter for starknet.TransactionStatus in rpc (#2072) commit 6f1d6d9b078088d794f7edb4cb1f032be3533b5d Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 20 09:48:42 2024 +0000 Bump github.com/libp2p/go-libp2p-pubsub from 0.11.0 to 0.12.0 (#2076) Bumps [github.com/libp2p/go-libp2p-pubsub](https://github.com/libp2p/go-libp2p-pubsub) from 0.11.0 to 0.12.0. - [Release notes](https://github.com/libp2p/go-libp2p-pubsub/releases) - [Commits](https://github.com/libp2p/go-libp2p-pubsub/compare/v0.11.0...v0.12.0) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-pubsub dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 946560bb3709b95067080b672971e665f88909d9 Author: wojciechos <[email protected]> Date: Mon Aug 19 21:54:45 2024 +0200 Add sepolia integration snapshot to docs (#2071) commit 5855946e378db12e53fe7aa988d4235c4e0c2de3 Author: Mario Apra <[email protected]> Date: Mon Aug 19 20:36:40 2024 +0100 chore: Ignore specific dependencies in dependabot.yml commit de9f20b4951e4d248db9e25764d327aed3b40c16 Author: Mario Apra <[email protected]> Date: Mon Aug 19 11:49:53 2024 +0100 ci: Update concurrency settings in GitHub workflows If there are two jobs running for the same branch, cancel the oldest one. This is useful when merging many PRs at the same time (for example the ones from dependabot), avoiding running the tests/deployment for every single commit commit 32ef2d6a117ed835e1a60fe8f1200fc51c2c85ba Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 18:08:17 2024 +0300 Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 (#2064) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 0ac7e8744fed40cfcf049dbb2863c48b1b8646a5 Author: Daniil Ankushin <[email protected]> Date: Mon Aug 19 17:36:00 2024 +0300 Rewrite iterator functions with new for loop statement (#1954) commit 50bc46d15cdb8649ac1d2e9a4bf438f7ace0e6ce Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 16:54:07 2024 +0300 Bump github.com/cockroachdb/pebble from 1.1.1 to 1.1.2 (#2063) Bumps [github.com/cockroachdb/pebble](https://github.com/cockroachdb/pebble) from 1.1.1 to 1.1.2. - [Release notes](https://github.com/cockroachdb/pebble/releases) - [Commits](https://github.com/cockroachdb/pebble/compare/v1.1.1...v1.1.2) --- updated-dependencies: - dependency-name: github.com/cockroachdb/pebble dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit efe0fc1eba6616a10d3d99b7d0c8348ced7455b3 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 16:18:50 2024 +0300 Bump github.com/bits-and-blooms/bloom/v3 from 3.6.0 to 3.7.0 (#2065) Bumps [github.com/bits-and-blooms/bloom/v3](https://github.com/bits-and-blooms/bloom) from 3.6.0 to 3.7.0. - [Release notes](https://github.com/bits-and-blooms/bloom/releases) - [Commits](https://github.com/bits-and-blooms/bloom/compare/v3.6.0...v3.7.0) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bloom/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Onur Yuce <[email protected]> commit d65d4b48da2fae522c24cc4dd955346dd9313011 Author: Mario Apra <[email protected]> Date: Mon Aug 19 12:37:18 2024 +0100 fix: Remove unnecessary go in matrix CI is getting the go version from go.mod, and there is no reference for matrix.go. Therefore we can conclude that this is not being used. The annoying part with this is when upgrading the go version, the job will be a different name, and someone needs to manually go to the protected rule for the main branch and update what's the name of the tests
commit 8ca930797e6d76acb92c7ca99e8283733c1cff67 Author: wojciechos <[email protected]> Date: Thu Oct 24 14:19:52 2024 +0200 Fix spec version for 0_7 endpoint (#2238) commit 00ac988d3f5febdd91ed2f5a11884da1a5deefc9 Author: Kirill <[email protected]> Date: Tue Oct 22 18:11:24 2024 +0400 Remove v0.6 endpoints, added v0.8 endpoints (#2229) commit 731099040a8fdd4b966f201b7637a814834291fb Author: Mario Apra <[email protected]> Date: Mon Oct 21 15:31:04 2024 +0100 chore: Update instructions on how to build Juno Signed-off-by: Mario Apra <[email protected]> commit 0ab532f25325f75e4eba3d5389c4f29ce4eb4988 Author: Kirill <[email protected]> Date: Mon Oct 21 15:45:15 2024 +0400 Pass required libbz2 to linker to fix compilation error on macOS (#2228) commit bdc598982e86bf950bbbe19ce88f4a9b701ff09c Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:15:33 2024 +0000 Bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.4 to 1.20.5. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.4...v1.20.5) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit bf38adb53cae5eec67fd32e4a0dd9ec5607be0df Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:15:38 2024 +0000 Bump go.uber.org/mock from 0.4.0 to 0.5.0 Bumps [go.uber.org/mock](https://github.com/uber/mock) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/uber/mock/releases) - [Changelog](https://github.com/uber-go/mock/blob/main/CHANGELOG.md) - [Commits](https://github.com/uber/mock/compare/v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: go.uber.org/mock dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit b9d987eb11401b2ddb8b6a128c564938e315b2db Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:18:58 2024 +0000 Bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.27.0 to 0.28.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/5681af892cd0f4997658e2bacc62bd0a894cf564...915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit c67b458aa039c50b1855cca177f00edf114a1bb0 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 21 11:19:05 2024 +0000 Update github/codeql-action requirement to 5618c9fc1e675841ca52c1c6b1304f5255a905a0 Updates the requirements on [github/codeql-action](https://github.com/github/codeql-action) to permit the latest version. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/commits/5618c9fc1e675841ca52c1c6b1304f5255a905a0) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> commit 8bdff962b22b3dcedff96350271df6ec140e3be0 Author: yevh <[email protected]> Date: Mon Oct 21 11:12:37 2024 +0200 Create trivy.yml (#2226) Signed-off-by: yevh <[email protected]> Co-authored-by: Mario Apra <[email protected]> commit 0d02f9e75e449f047bef59fb0bbfcad0d03e68f5 Author: wojciechos <[email protected]> Date: Fri Oct 18 12:57:02 2024 +0200 Update starknet.go, starknet-js and starknet-rs tests (#2217) commit 3833c0095d171404fd9474a50684663be0525749 Author: Mario Apra <[email protected]> Date: Fri Oct 18 10:44:26 2024 +0100 Remove UPX from macOS build process Updated the GitHub Actions workflow to exclude UPX installation and usage on macOS. This change addresses compatibility issues with UPX on macOS, ensuring smoother build processes for macOS environments. More info: https://github.com/upx/upx/issues/612 commit eb19859609fd496feee39fafa0c9504141ee6b04 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 11:30:13 2024 +0000 Bump actions/setup-go from 4 to 5 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> commit 7faba7c05c0de7cc9d972432b11416eccbac7d9c Author: Kirill <[email protected]> Date: Thu Oct 17 18:05:36 2024 +0400 Add missing execution resources to fetched traces (#2222) commit f4d9d698792fd8ec711b9bf2cfc6405a098a7874 Author: Kirill <[email protected]> Date: Thu Oct 17 15:56:02 2024 +0400 Add missing gomock.Controller.Finish() calls in plugin tests (#2225) commit f5dc02caac7c59d36015845cf9d5b3355d312da4 Author: Kirill <[email protected]> Date: Thu Oct 17 11:15:15 2024 +0400 Small restructure of plugin logic (#2221) commit b43c46f48189926713c58a9760168ef2496c3bff Author: Rian Hughes <[email protected]> Date: Wed Oct 16 15:42:07 2024 +0300 Support plugins (#2051) Co-authored-by: rian <[email protected]> Co-authored-by: LordGhostX <[email protected]> commit ca006de578cfbc5a99dc13c2f751ed0cd03adcb7 Author: Kirill <[email protected]> Date: Wed Oct 16 16:14:16 2024 +0400 Replace UnmarshalJSON() with UnmarshalText() for transaction statuses (#2220) * Replace UnmarshalJSON() with UnmarshalText() for transaction statuses UnmarshalText avoids issues with forgetting quotes in JSON, making it simpler for parsing plain text values. commit 935b903f8dcd1fa435aa365d0735bc7a99502300 Author: Kirill <[email protected]> Date: Wed Oct 16 13:40:55 2024 +0400 Add db revert cmd (#2216) commit a1be2ebdec563c0e08189f4abc30dbbd07420b05 Author: Mario Apra <[email protected]> Date: Fri Oct 11 07:56:32 2024 +0100 chore: Fix how to send comments to github Added necessary permissions to the GitHub Actions workflow to allow writing comments on issues and pull requests. This enables automated feedback and notifications, improving workflow efficiency and communication. commit 6937def6ee72dfe40443f0798cb78fbd636ef2d0 Author: Mario Apra <[email protected]> Date: Wed Oct 9 13:00:52 2024 +0100 feat: Check for rust version in Makefile - Enhanced MSRV check in GitHub workflow to include Makefile updates. - Added a new target in Makefile to ensure Rust version compliance. - Updated dependencies and formatting targets to include Rust version check. - Fixed minor formatting issues in Makefile comments. commit f83a70e5190d5f76ed8239195ed4bf672208bc4e Author: Rian Hughes <[email protected]> Date: Tue Oct 15 17:22:32 2024 +0300 Fix traces (fees, state diff, events) (#2118) commit 384fe56ca7f20760122de8558181f11d24ee6abb Author: Ng Wei Han <[email protected]> Date: Tue Oct 15 18:48:39 2024 +0800 Fix core/state_test tests failure (#2198) commit 9ed2accb6ecc731c67727d48817e9957aede8dec Author: wojciechos <[email protected]> Date: Mon Oct 14 14:21:08 2024 +0200 Update starknet.go version to fix failing tests (#2215) commit 9c8370362a0d9eebf65b67651a2d037f7e99995f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 14 11:33:00 2024 +0000 Bump github.com/libp2p/go-libp2p-kad-dht from 0.26.1 to 0.27.0 Bumps [github.com/libp2p/go-libp2p-kad-dht](https://github.com/libp2p/go-libp2p-kad-dht) from 0.26.1 to 0.27.0. - [Release notes](https://github.com/libp2p/go-libp2p-kad-dht/releases) - [Commits](https://github.com/libp2p/go-libp2p-kad-dht/compare/v0.26.1...v0.27.0) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-kad-dht dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit c28429eebda04ed57f8b36e4d8e6a822ef3663c6 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 14 11:32:53 2024 +0000 Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 Bumps google.golang.org/protobuf from 1.34.2 to 1.35.1. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 584414117bb139c59d50b87ad203faa6d9b009d4 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri Oct 11 22:25:39 2024 +0000 Bump the npm_and_yarn group across 1 directory with 2 updates Bumps the npm_and_yarn group with 2 updates in the /docs directory: [cookie](https://github.com/jshttp/cookie) and [express](https://github.com/expressjs/express). Updates `cookie` from 0.6.0 to 0.7.1 - [Release notes](https://github.com/jshttp/cookie/releases) - [Commits](https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.1) Updates `express` from 4.21.0 to 4.21.1 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.1/History.md) - [Commits](https://github.com/expressjs/express/compare/4.21.0...4.21.1) --- updated-dependencies: - dependency-name: cookie dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]> commit 1786cb3874444c37429c281c4235e0fa08a0ef5f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 20:36:59 2024 +0400 Bump google.golang.org/grpc from 1.67.0 to 1.67.1 (#2202) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.67.0 to 1.67.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.67.0...v1.67.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Signed-off-by: Kirill <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kirill <[email protected]> commit 45ce05df1eb932ab19c04f5662506bb01fdf4e9f Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 20:23:26 2024 +0400 Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#2201) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.27.0 to 0.28.0. - [Commits](https://github.com/golang/crypto/compare/v0.27.0...v0.28.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 73be13e913b1fa3a972a19647731c3eb5c0aafda Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Oct 7 16:55:01 2024 +0400 Bump github.com/ethereum/go-ethereum from 1.14.10 to 1.14.11 (#2203) Bump github.com/ethereum/go-ethereum from 1.14.10 to 1.14.11 Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.10 to 1.14.11. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.10...v1.14.11) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit f20c3decbfd8292b703013ee7714be92cb3e5e11 Author: Kirill <[email protected]> Date: Mon Oct 7 14:37:19 2024 +0400 Change tx commitment calculation for tx with empty signature (#2196) commit c07eb9d4a057e17963023a3e54af17f21233fb88 Author: Kirill <[email protected]> Date: Mon Oct 7 14:20:12 2024 +0400 Update README.md: change header of a network commit 702f25b2296cc419d823d09b671431c14d5b2244 Author: Ng Wei Han <[email protected]> Date: Fri Oct 4 17:37:05 2024 +0800 Add metrics for gossipsub (#2163) commit 8fcbb938319ff17193849f24b3058ae136e7b62f Author: Kirill <[email protected]> Date: Fri Oct 4 11:33:04 2024 +0400 Remove p2p/starnket.StaticStream (#2195) commit 1b89289fefd69500fabde9e7b37d250b7a424887 Author: wojo <[email protected]> Date: Wed Sep 18 10:24:48 2024 +0200 Improve starknet-go-tests workflow flexibility and security - Make TEST_RPC_URL and TEST_ACCOUNT_PRIVATE_KEY secrets required - Add 'ref' input parameter to allow testing different branches/tags commit 3e1044dcaecd53125c789bba6940f8a80e0e6021 Author: wojo <[email protected]> Date: Fri Sep 13 19:09:42 2024 +0200 Add Starknet Go tests to CI/CD pipeline - Integrate starknet-go-tests workflow into development, staging, and production stages - Mirror the structure used for Rust and JavaScript tests - Use appropriate RPC URLs and account private keys for each environment - Ensure Go tests run after validation/promotion in each stage commit 7e9652c056e0ef507fe506c146cbf6f5a11cd870 Author: Ng Wei Han <[email protected]> Date: Thu Oct 3 17:48:24 2024 +0800 Move starknet/rust deps to separate package (#2148) Co-authored-by: Mario Apra <[email protected]> commit 262c51f7f2643ec08f2a476b0005a30e2c21c2f5 Author: Ng Wei Han <[email protected]> Date: Thu Oct 3 17:47:46 2024 +0800 Refactor transaction into batch and snapshot (#2182) commit 0c0700c1f47ebd892ea3afbaa85440621d95de18 Author: Daniil Ankushin <[email protected]> Date: Tue Oct 1 23:39:32 2024 +0300 Refactor commitment parallel processing (#2169) commit 6b683d8a5c73197d544ba4b0e1069743d0b5ed48 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:56:49 2024 +0000 Bump github.com/ethereum/go-ethereum from 1.14.9 to 1.14.10 (#2190) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.9 to 1.14.10. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.9...v1.14.10) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... commit 9d609b62086543a62febe84a929b3491e2a7759d Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:55:59 2024 +0000 Bump go.uber.org/automaxprocs from 1.5.3 to 1.6.0 (#2191) Bumps [go.uber.org/automaxprocs](https://github.com/uber-go/automaxprocs) from 1.5.3 to 1.6.0. - [Release notes](https://github.com/uber-go/automaxprocs/releases) - [Changelog](https://github.com/uber-go/automaxprocs/blob/master/CHANGELOG.md) - [Commits](https://github.com/uber-go/automaxprocs/compare/v1.5.3...v1.6.0) --- updated-dependencies: - dependency-name: go.uber.org/automaxprocs dependency-type: direct:production update-type: version-update:semver-minor ... commit 546f62ded729489eda1400dbae3576af71afa2c2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 30 17:54:40 2024 +0000 Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#2192) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.66.2 to 1.67.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.66.2...v1.67.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 9a3f2638b77ff8f897f41ea77369b6b86a4e1bcc Author: yevh <[email protected]> Date: Mon Sep 30 09:28:59 2024 +0200 Update codeql-analysis.yml Signed-off-by: yevh <[email protected]> commit 201d12ee867eb99e737ef623b9bace22ad4f26d3 Author: Mario Apra <[email protected]> Date: Wed Sep 25 15:41:53 2024 +0100 chore: Switch to ORAS for artifact promotion Updated CI/CD pipeline to use ORAS instead of Docker for artifact promotion. Changed repository references to align with ORAS. Also, change from docker registry to OCI registry commit 48fb6c54711e7475b33cd04f5c04d63941274847 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 25 16:18:14 2024 +0300 Add fuzz tests for utils (#1982) commit b240aba4392b94b058ff4d1cf1e2c42538225e2a Author: Daniil Ankushin <[email protected]> Date: Wed Sep 25 11:51:01 2024 +0300 Refactor `syncService.start` method in p2p (#2174) commit 38638ca710f9ba63eeb7296fc7572c98651efbc0 Author: Ng Wei Han <[email protected]> Date: Tue Sep 24 20:29:02 2024 +0800 Refactor ProofNode to use interface (#2176) commit 67430decdec8c8218a0bbe00ecba89b0863ef10b Author: Daniil Ankushin <[email protected]> Date: Tue Sep 24 12:23:19 2024 +0300 feat: Update transactionCommitmentPoseidon function to handle different transaction types (#2153) * feat: Update transactionCommitmentPoseidon function to handle different transaction types The code changes in `transactionCommitmentPoseidon` function update the logic to handle different transaction types. With the changes, the function now checks the type of the transaction and updates the digest accordingly. For `DeployTransaction` and `L1HandlerTransaction`, the digest is updated with a zero value, while for other transaction types, the digest is updated with the transaction signature. * Added tests * Replace dynamic hashes with hardcoded value in test --------- Co-authored-by: Kirill <[email protected]> commit 72535cc41d7b8fc78429732751d331c83de6d35b Author: Kirill <[email protected]> Date: Tue Sep 24 11:58:05 2024 +0400 Add receipt commitment calculation in post07Hash function (#2133) commit aa241f1c07e5b0a31d779844cfa019d9d91a8395 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 17:37:06 2024 +0400 Bump github.com/ethereum/go-ethereum from 1.14.8 to 1.14.9 (#2170) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.8 to 1.14.9. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.8...v1.14.9) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 21d69294b6817a9c416e2be97523bfae404dfdae Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 13:23:29 2024 +0000 Bump github.com/bits-and-blooms/bitset from 1.14.2 to 1.14.3 (#2171) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.14.2 to 1.14.3. - [Release notes](https://github.com/bits-and-blooms/bitset/releases) - [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.14.2...v1.14.3) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bitset dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4e3d53a6d8c4122b60ac49d710bf0d81b1becf1e Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 23 17:13:02 2024 +0400 Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 (#2172) * Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.3 to 1.20.4. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.3...v1.20.4) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> * Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.3 to 1.20.4. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.3...v1.20.4) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kirill <[email protected]> commit 107876a16086ee6fe2251e37035848b827748dfe Author: Daniil Ankushin <[email protected]> Date: Mon Sep 23 14:23:58 2024 +0300 Improve receiptCommitment function with parallel processing (#2165) commit 37ed0958cf1713affc1a4f344edaf23491839053 Author: Kirill <[email protected]> Date: Thu Sep 19 17:50:46 2024 +0400 Fix p2p sync for 0.13.2 blocks (#2146) commit 4fb5d0f59b5132945ef9904303925f0940be26aa Author: Ng Wei Han <[email protected]> Date: Thu Sep 19 15:55:14 2024 +0800 Remove repeated close host call (#2147) commit f3c885fa02bef81f2ae140ee81d85145e3d2b7a7 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 18:03:02 2024 +0300 Enable nilness check in govet linter (#2161) commit 793edae5bcebc01a5d92432c4f4b7228b1d5a417 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 17:48:20 2024 +0300 Fix error handling in trie/node.go (#2159) chore: Fix error handling in trie/node.go commit 494f9cc12a054ae35ba51a47b16cd8b368e48001 Author: Mario Apra <[email protected]> Date: Mon Sep 16 11:15:42 2024 +0100 chore: Add minimum rust version into readme - Fix #2139 commit 3f34c50cff70adcb4c338380f70e3af7b3b3ddb6 Author: Mario Apra <[email protected]> Date: Fri Sep 13 21:24:25 2024 +0100 feat: Add GitHub Actions workflow to find the smallest supported Rust version commit d637844217b1aa97c864a026a6dfd838afee9b9b Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 17:47:48 2024 +0300 L1->L2 message hashes are 256 bit hashes (#2160) * refactor: Update Hash message to use Hash256 type * Regenerate spec * refactor: Update MsgHash to use Hash256 type in AdaptReceipt function commit 5c6ffd9c5203a9d7b4dc225635900eca593075a8 Author: Daniil Ankushin <[email protected]> Date: Wed Sep 18 12:44:08 2024 +0300 Refactor randomPeer function to use local variable (#2158) commit 1ff5e2c049bdc9cdeaced7cc7edf135560960d31 Author: Daniil Ankushin <[email protected]> Date: Tue Sep 17 11:31:16 2024 +0300 chore: Update golangci-lint to version 1.61.0 (#2154) * chore: Update golangci-lint to version 1.61.0 * chore: Exclude G115 from gosec linter Exclude G115 from the gosec linter to address the issue with https://github.com/securego/gosec/issues/1212. * chore: Remove unused variable assignments Remove unused variable assignments in node/node.go and utils/pipeline/pipeline_test.go files. * chore: Remove unused nolint directives Remove unused nolint directives in the starknet client.go and handlers.go files. commit 6735ed5cfcf8db08276774768899a48bc5b45d11 Author: Daniil Ankushin <[email protected]> Date: Mon Sep 16 15:19:29 2024 +0300 Add a filter for nodes to exclude a host node (#2149) * Add a filter for nodes to exclude a host node * Update p2p/p2p.go Co-authored-by: Ng Wei Han <[email protected]> Signed-off-by: Daniil Ankushin <[email protected]> --------- Signed-off-by: Daniil Ankushin <[email protected]> Co-authored-by: Ng Wei Han <[email protected]> commit 175cff21a0c4f38e9abc6f8087a83b9fbd8327e6 Author: Paweł Nowosielski <[email protected]> Date: Fri Sep 13 13:36:33 2024 +0200 fix: iterface is not nil unless never assigned commit 6ce6441e104b0975a15a1dd5b4c435a609954eaf Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:57:32 2024 +0000 Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#2152) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.26.0 to 0.27.0. - [Commits](https://github.com/golang/crypto/compare/v0.26.0...v0.27.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 903ced6d810fd21cd7ddf27b1eba323c4fa20cd2 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:21:28 2024 +0000 Bump google.golang.org/grpc from 1.66.0 to 1.66.2 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.66.0 to 1.66.2. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.66.0...v1.66.2) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit 471831b1f80e5ab37b702cde49f998c193057eab Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 16 11:21:34 2024 +0000 Bump github.com/consensys/gnark-crypto from 0.13.0 to 0.14.0 Bumps [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto) from 0.13.0 to 0.14.0. - [Release notes](https://github.com/consensys/gnark-crypto/releases) - [Changelog](https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md) - [Commits](https://github.com/consensys/gnark-crypto/compare/v0.13.0...v0.14.0) --- updated-dependencies: - dependency-name: github.com/consensys/gnark-crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 153e651f156fd579a9e4e6676fe3ca9b881b05c2 Author: Mario Apra <[email protected]> Date: Fri Sep 13 12:42:40 2024 +0100 chore: Update jFrog Docker credentials in CI/CD pipeline commit e6725072b9d80c4bbba81a9146a48a20129de848 Author: Mario Apra <[email protected]> Date: Fri Sep 13 11:52:48 2024 +0100 chore: update how to deploy dev and staging envs With the https://github.com/NethermindEth/argo/pull/1094 change, it will now always track the latest tag which can be overwriten everytime this workflow runs. It means that even performing roll-backs will work commit e3b6939b6fbb67dd317460301b7fe9a456dcb752 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu Sep 12 19:42:46 2024 +0200 Bump body-parser and express in /docs (#2135) Bumps [body-parser](https://github.com/expressjs/body-parser) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together. Updates `body-parser` from 1.20.2 to 1.20.3 - [Release notes](https://github.com/expressjs/body-parser/releases) - [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md) - [Commits](https://github.com/expressjs/body-parser/compare/1.20.2...1.20.3) Updates `express` from 4.19.2 to 4.21.0 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md) - [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0) --- updated-dependencies: - dependency-name: body-parser dependency-type: indirect - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 94158fedd889b8c6db247d68299febe3c499724d Author: AnkushinDaniil <[email protected]> Date: Tue Sep 10 14:37:09 2024 +0300 Bump Go version to 1.23.1 commit b2f565e19e8430dca7e1cd2e879d412925ff015d Author: Kirill <[email protected]> Date: Wed Sep 11 11:07:43 2024 +0200 Fix p2p header adapters (#2127) commit 71c7ca2a75d29adac03d55387e4b9f9368303fcc Author: Daniil Ankushin <[email protected]> Date: Tue Sep 10 12:37:58 2024 +0300 Remove unused code in node.newL1Client() (#2128) commit b89e0786091a683049a62c7eac83588557934fe7 Author: Kanishka <[email protected]> Date: Mon Sep 9 18:57:43 2024 +0530 Add l1 metrics (#1678) Co-authored-by: Kirill <[email protected]> commit 8a96b78a679b39b8fce8e3c88d4c75831c2c82a7 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 12:57:25 2024 +0100 Bump github.com/go-playground/validator/v10 from 10.22.0 to 10.22.1 (#2124) * Bump github.com/go-playground/validator/v10 from 10.22.0 to 10.22.1 Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.22.0 to 10.22.1. - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](https://github.com/go-playground/validator/compare/v10.22.0...v10.22.1) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-type: direct:production update-type: version-update:semver-patch ... --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4456d93b21012cb0c6b55eb760a4f5d31e5ee8da Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 12:56:56 2024 +0100 Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 (#2125) * Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.2 to 1.20.3. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/v1.20.3/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.2...v1.20.3) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 990a5804d79e1b4f81cbade00e426f6472cdaa39 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 9 11:11:29 2024 +0000 Bump github.com/libp2p/go-libp2p-kad-dht from 0.25.2 to 0.26.1 Bumps [github.com/libp2p/go-libp2p-kad-dht](https://github.com/libp2p/go-libp2p-kad-dht) from 0.25.2 to 0.26.1. - [Release notes](https://github.com/libp2p/go-libp2p-kad-dht/releases) - [Commits](https://github.com/libp2p/go-libp2p-kad-dht/compare/v0.25.2...v0.26.1) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-kad-dht dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 238c43cb2d42e6b3c11be7d30d9c1b36bde207c6 Author: Onur Yuce <[email protected]> Date: Fri Sep 6 12:41:52 2024 +0300 merge and split proofs (#1984) * implement logic to support ordering, merging and splitting of proof nodes sent over P2P --------- Co-authored-by: Rian Hughes <[email protected]> commit dc91f9b3be9e9412ca352e1e74148bdde30459ca Author: Mario Apra <[email protected]> Date: Thu Sep 5 10:26:47 2024 +0100 Improve build binaries pipeline Changes made: - build macOS arm and x86 - rename architecture from amd64 to x86_64, which is much easier to distinct from arm - remove unnecessary step for self-hosted which is not being used anymore - create ARTIFACT_NAME env var, so it's much easier to read the code - remove unnecessary id - add trigger on PR that change the build binaries files - get architecture during runtime commit 4f3231ba53b15f180faf7b6104a900d58782b937 Author: Ömer Faruk Irmak <[email protected]> Date: Thu Sep 5 17:17:33 2024 +0300 Optimize reading felts from state (#1713) Co-authored-by: onuruci <[email protected]> commit c0008d7161a88e37f722322b2cbe69b64b0024ee Author: Mario Apra <[email protected]> Date: Tue Sep 3 13:16:49 2024 +0100 Update number of cores for ubuntu-arm64 in juno-test workflow commit 1862240f8ff8da6f94fb7c2e1a0f062bbe5780ba Author: Kirill <[email protected]> Date: Tue Sep 3 14:48:32 2024 +0200 Update blockifier to 0.8.0-rc.3 (#2116) commit cb350dffa9f7accddc64162b2341e73043f13a87 Author: Ng Wei Han <[email protected]> Date: Mon Sep 2 23:07:46 2024 +0800 Remove additional "kad" substring from p2p discovery protocol name (#2113) commit 52d16ab18ca9466c02f7f4d4e0d04d2682d72fd5 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 11:12:50 2024 +0000 Bump google.golang.org/grpc from 1.65.0 to 1.66.0 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.65.0 to 1.66.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.65.0...v1.66.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit 552327aa74dcf4871eecde74901c7a63ea985780 Author: Kirill <[email protected]> Date: Mon Sep 2 15:23:49 2024 +0200 Rewrite semver usage with new methods .LessThanEqual() and .GreaterThanEqual() (#2112) commit 8f8d37a4b8f5b2d7e60790b4f8d01e10a4741b69 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 11:12:57 2024 +0000 Bump github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.0 Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) from 3.2.1 to 3.3.0. - [Release notes](https://github.com/Masterminds/semver/releases) - [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md) - [Commits](https://github.com/Masterminds/semver/compare/v3.2.1...v3.3.0) --- updated-dependencies: - dependency-name: github.com/Masterminds/semver/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit ef162c31edec97680027793d07c97cfe1b9165d7 Author: Kirill <[email protected]> Date: Mon Sep 2 14:19:06 2024 +0200 Rewrite func iterator to range loop in p2p/starknet.streamHandler (#2106) commit 77b0d60d3ccbb368c8ac290e834469fcf08735aa Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Sep 2 12:04:14 2024 +0000 Bump github.com/rs/cors from 1.11.0 to 1.11.1 (#2108) Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.11.0 to 1.11.1. - [Commits](https://github.com/rs/cors/compare/v1.11.0...v1.11.1) --- updated-dependencies: - dependency-name: github.com/rs/cors dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 5e6e86c14442e82bd44cc17cc608e84115472e5f Author: Priyank Makwana <[email protected]> Date: Fri Aug 30 18:57:33 2024 +0530 Emit events on remote db (#2088) commit daf1cde54900ce59df45eba742285d4524197067 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri Aug 30 12:57:27 2024 +0200 Bump webpack from 5.91.0 to 5.94.0 in /docs (#2100) Bumps [webpack](https://github.com/webpack/webpack) from 5.91.0 to 5.94.0. - [Release notes](https://github.com/webpack/webpack/releases) - [Commits](https://github.com/webpack/webpack/compare/v5.91.0...v5.94.0) --- updated-dependencies: - dependency-name: webpack dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit a4eac4cd0d484299669a7654a331d7af3751433b Author: Kirill <[email protected]> Date: Fri Aug 30 12:28:33 2024 +0200 Improve trace logging (#2101) Improve trace logging. 1. "DEBUG" prefix has been removed 2. Added color support 3. Fixed caller reference commit 90d04becbb85382caaea42130a34d755019bd915 Author: Onur Yuce <[email protected]> Date: Thu Aug 29 01:23:26 2024 +0300 Added /ready/sync endpoint (#2060) commit 54e20a6b6bf9854b723cc6ef462308aa52c5732f Author: Kirill <[email protected]> Date: Wed Aug 28 11:53:00 2024 +0200 Add output field to vm.ComputationResources (#2096) commit 0f2d88bbc4150b6e09f33ca0492f0fb343089852 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 09:28:58 2024 +0000 Bump micromatch from 4.0.7 to 4.0.8 in /docs (#2094) Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.7 to 4.0.8. - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/micromatch/compare/4.0.7...4.0.8) --- updated-dependencies: - dependency-name: micromatch dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit dd99bc16a3a53ebc58b7f86a092d1da2370d4314 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 11:14:24 2024 +0200 Bump github.com/bits-and-blooms/bitset from 1.13.0 to 1.14.2 (#2091) Bumps [github.com/bits-and-blooms/bitset](https://github.com/bits-and-blooms/bitset) from 1.13.0 to 1.14.2. - [Release notes](https://github.com/bits-and-blooms/bitset/releases) - [Commits](https://github.com/bits-and-blooms/bitset/compare/v1.13.0...v1.14.2) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bitset dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit fe5add8deba59f91ba6dffd92d7314ea21486b92 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 10:59:24 2024 +0200 Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 (#2090) Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.8.0 to 1.8.1. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.8.0...v1.8.1) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 7e2e13f3e34d4f2c05945f1a846177877d8c77ac Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 27 10:32:22 2024 +0200 Bump github.com/prometheus/client_golang from 1.20.0 to 1.20.2 (#2089) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.0 to 1.20.2. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.20.0...v1.20.2) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit acda2a222b74434fc9fe7ecd977dc9b3b7f4943f Author: Osakpolor Obaseki <[email protected]> Date: Fri Aug 23 10:28:14 2024 +0100 Add execution stepcount in header [X-Cairo-Steps] (#1989) Co-authored-by: Kirill <[email protected]> commit 692bd490dd508d7b5bfcdff0d31e2656b42fdc1f Author: Mario Apra <[email protected]> Date: Wed Aug 21 18:13:50 2024 +0100 chore: Remove concurrency settings in child workflow When the parent and the child workflow set the concurrency, it creates a deadlock. More info: https://github.com/github/vscode-github-actions/issues/135 commit eb2eb04fa95faec1c7f999c3ee19277dd6150905 Author: Daniil Ankushin <[email protected]> Date: Wed Aug 21 20:19:11 2024 +0300 Update `blockifier` to 0.8.0-rc.2 (#2081) * Update blockifier dependency to version 0.8.0-rc.2 * Update starknet_api and cairo-vm dependencies This commit updates the `starknet_api` dependency to version 0.13.0-rc.1 and the `cairo-vm` dependency to version 1.0.1 in the `Cargo.toml` file. * Update once_cell dependency to version 1.19.0 * Update dependencies in Cargo.toml * Update serde dependency to version 1.0.208 * Update serde_json dependency to version 1.0.125 * Update cairo-vm dependency to version 1.0.1 * Update dependencies in Cargo.toml commit 5c333255c71f9c19d56127a4537889fcb6a49f68 Author: Osakpolor Obaseki <[email protected]> Date: Wed Aug 21 10:49:18 2024 +0100 Make starknet_getTransactionReceipt and other function calls response conform to the 0.7.1 spec (#2078) Co-authored-by: Kirill <[email protected]> commit af674c3decc9cd6bd50b583d00a1012a8f0a8ddc Author: Kirill <[email protected]> Date: Wed Aug 21 11:39:44 2024 +0300 Replace custom code with maps package functions (#2073) commit c391201aba707d33fa7f7ae4315856a0ca3d26a0 Author: Mario Apra <[email protected]> Date: Tue Aug 20 14:45:54 2024 +0100 Replace nhooyr.io/websocket with github.com/coder/websocket (#2079) * Replace nhooyr.io/websocket with github.com/coder/websocket * format jsonrpc/websocket_test.go with gci fix lint errors --------- Co-authored-by: onuruci <[email protected]> commit 52c97ba1daf21ccc69d6cbea212d8f3c1fdafc12 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 20 11:28:02 2024 +0000 Bump github.com/ethereum/go-ethereum from 1.14.7 to 1.14.8 (#2075) Bumps [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) from 1.14.7 to 1.14.8. - [Release notes](https://github.com/ethereum/go-ethereum/releases) - [Commits](https://github.com/ethereum/go-ethereum/compare/v1.14.7...v1.14.8) --- updated-dependencies: - dependency-name: github.com/ethereum/go-ethereum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 4e99b580b1aabfe0d485ed39171793ae8c67d824 Author: Kirill <[email protected]> Date: Tue Aug 20 14:15:03 2024 +0300 Add adapter for starknet.TransactionStatus in rpc (#2072) commit 6f1d6d9b078088d794f7edb4cb1f032be3533b5d Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Aug 20 09:48:42 2024 +0000 Bump github.com/libp2p/go-libp2p-pubsub from 0.11.0 to 0.12.0 (#2076) Bumps [github.com/libp2p/go-libp2p-pubsub](https://github.com/libp2p/go-libp2p-pubsub) from 0.11.0 to 0.12.0. - [Release notes](https://github.com/libp2p/go-libp2p-pubsub/releases) - [Commits](https://github.com/libp2p/go-libp2p-pubsub/compare/v0.11.0...v0.12.0) --- updated-dependencies: - dependency-name: github.com/libp2p/go-libp2p-pubsub dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 946560bb3709b95067080b672971e665f88909d9 Author: wojciechos <[email protected]> Date: Mon Aug 19 21:54:45 2024 +0200 Add sepolia integration snapshot to docs (#2071) commit 5855946e378db12e53fe7aa988d4235c4e0c2de3 Author: Mario Apra <[email protected]> Date: Mon Aug 19 20:36:40 2024 +0100 chore: Ignore specific dependencies in dependabot.yml commit de9f20b4951e4d248db9e25764d327aed3b40c16 Author: Mario Apra <[email protected]> Date: Mon Aug 19 11:49:53 2024 +0100 ci: Update concurrency settings in GitHub workflows If there are two jobs running for the same branch, cancel the oldest one. This is useful when merging many PRs at the same time (for example the ones from dependabot), avoiding running the tests/deployment for every single commit commit 32ef2d6a117ed835e1a60fe8f1200fc51c2c85ba Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 18:08:17 2024 +0300 Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 (#2064) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit 0ac7e8744fed40cfcf049dbb2863c48b1b8646a5 Author: Daniil Ankushin <[email protected]> Date: Mon Aug 19 17:36:00 2024 +0300 Rewrite iterator functions with new for loop statement (#1954) commit 50bc46d15cdb8649ac1d2e9a4bf438f7ace0e6ce Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 16:54:07 2024 +0300 Bump github.com/cockroachdb/pebble from 1.1.1 to 1.1.2 (#2063) Bumps [github.com/cockroachdb/pebble](https://github.com/cockroachdb/pebble) from 1.1.1 to 1.1.2. - [Release notes](https://github.com/cockroachdb/pebble/releases) - [Commits](https://github.com/cockroachdb/pebble/compare/v1.1.1...v1.1.2) --- updated-dependencies: - dependency-name: github.com/cockroachdb/pebble dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> commit efe0fc1eba6616a10d3d99b7d0c8348ced7455b3 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon Aug 19 16:18:50 2024 +0300 Bump github.com/bits-and-blooms/bloom/v3 from 3.6.0 to 3.7.0 (#2065) Bumps [github.com/bits-and-blooms/bloom/v3](https://github.com/bits-and-blooms/bloom) from 3.6.0 to 3.7.0. - [Release notes](https://github.com/bits-and-blooms/bloom/releases) - [Commits](https://github.com/bits-and-blooms/bloom/compare/v3.6.0...v3.7.0) --- updated-dependencies: - dependency-name: github.com/bits-and-blooms/bloom/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Onur Yuce <[email protected]> commit d65d4b48da2fae522c24cc4dd955346dd9313011 Author: Mario Apra <[email protected]> Date: Mon Aug 19 12:37:18 2024 +0100 fix: Remove unnecessary go in matrix CI is getting the go version from go.mod, and there is no reference for matrix.go. Therefore we can conclude that this is not being used. The annoying part with this is when upgrading the go version, the job will be a different name, and someone needs to manually go to the protected rule for the main branch and update what's the name of the tests
Also exclude G115 until the following issue is resolved. securego/gosec#1212
Also exclude G115 until the following issue is resolved. securego/gosec#1212
Also exclude G115 until the following issue is resolved. securego/gosec#1212
I ran into a false G115 positive just now, using func main() {
a := "13"
b, _ := strconv.ParseUint(a, 10, 8)
c := int(b)
fmt.Printf("%d\n", c)
} This fails with There's actually a unit test similar to this issue, except it casts to a |
I've issued #1254 to fix the |
Another false positive with func main() {
if len(os.Args) > 1 {
num, err := strconv.ParseInt(os.Args[1], 10, 64)
if err != nil { panic(err) }
var x uint32
if num >= 0 {
x = uint32(min(num, math.MaxUint32))
}
fmt.Printf("%v\n", x)
}
} Can only avoid the issue by changing the if num >= 0 && num <= math.MaxUint32 {
x = uint32(num)
} |
Summary
G115 is still reporting false positives even after #1189 and #1194.
Known false positives
I'm writing these down without much investigation whether it is possible to implement fixes for them.
Notes:
I recommend opening multiple small PRs that fix one issue at a time.
The text was updated successfully, but these errors were encountered: