Skip to content

Problem: deploy contract is broken #455

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Apr 5, 2024
Merged

Problem: deploy contract is broken #455

merged 2 commits into from
Apr 5, 2024

Conversation

@mmsqe
Copy link

@mmsqe mmsqe commented Apr 5, 2024

Closes: #XXX

Description

For contributor use:

  • Targeted PR against correct branch (see CONTRIBUTING.md)
  • Linked to Github issue with discussion and accepted design OR link to spec that describes this work.
  • Code follows the module structure standards.
  • Wrote unit and integration tests
  • Updated relevant documentation (docs/) or specification (x/<module>/spec/)
  • Added relevant godoc comments.
  • Added a relevant changelog entry to the Unreleased section in CHANGELOG.md
  • Re-reviewed Files changed in the Github PR explorer

For admin use:

  • Added appropriate labels to PR (ex. WIP, R4R, docs, etc)
  • Reviewers assigned
  • Squashed all commits, uses message "Merge pull request #XYZ: [title]" (coding standards)

@socket-security
Copy link

socket-security bot commented Apr 5, 2024

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@babel/[email protected] None 0 65.2 kB nicolo-ribaudo
npm/@babel/[email protected] None +1 63.7 kB nicolo-ribaudo
npm/@babel/[email protected] unsafe +1 235 kB nicolo-ribaudo
npm/@babel/[email protected] Transitive: environment +4 2.56 MB nicolo-ribaudo
npm/@babel/[email protected] None 0 11.7 kB nicolo-ribaudo
npm/@babel/[email protected] unsafe Transitive: environment, filesystem +30 8.89 MB nicolo-ribaudo
npm/@babel/[email protected] None +1 290 kB nicolo-ribaudo
npm/@ensdomains/[email protected] None +8 4.1 MB nickjohnson
npm/@graphql-tools/[email protected] Transitive: environment +4 2.72 MB ardatan
npm/@ljharb/[email protected] None 0 10.4 kB ljharb
npm/@ljharb/[email protected] None 0 31.7 kB ljharb
npm/@truffle/[email protected] None 0 39.4 kB haltman
npm/@truffle/[email protected] Transitive: environment, filesystem, network +31 7.07 MB haltman
npm/@truffle/[email protected] None 0 3.48 kB fainashalts
npm/@truffle/[email protected] filesystem Transitive: environment, eval, network, shell, unsafe +109 19.5 MB fainashalts
npm/@truffle/[email protected] environment Transitive: eval +42 15.6 MB sukanyaparashar
npm/@truffle/[email protected] None 0 62 kB haltman
npm/@truffle/[email protected] Transitive: environment +26 29.5 MB haltman
npm/@types/[email protected] None +3 29.3 kB types
npm/@types/[email protected] None 0 116 kB types
npm/@types/[email protected] None 0 2.03 MB types
npm/[email protected] network 0 94.6 kB molsson
npm/[email protected] network Transitive: environment, filesystem +59 12.4 MB apollo-bot
npm/[email protected] None 0 44.4 kB jprichardson
npm/[email protected] None +1 1.1 MB junderw
npm/[email protected] None +6 4.54 MB nitsujlangston
npm/[email protected] network Transitive: filesystem, unsafe +5 119 kB dougwilson
npm/[email protected] environment, filesystem Transitive: shell +4 128 kB ai
npm/[email protected] None 0 414 kB lpinca
npm/[email protected] None +2 48.7 kB ljharb
npm/[email protected] None 0 2.01 MB caniuse-lite
npm/[email protected] None +5 873 kB keithamus
npm/[email protected] environment, filesystem Transitive: shell +4 6.84 MB gustavohenke
npm/[email protected] None 0 10.5 kB dougwilson
npm/[email protected] network 0 75.1 kB lquixada
npm/[email protected] None +1 103 kB medikoo
npm/[email protected] None +1 102 kB ljharb
npm/[email protected] None +1 42.6 kB ljharb
npm/[email protected] None 0 10.7 kB ljharb
npm/[email protected] None +1 86.7 kB feedic
npm/[email protected] None 0 413 kB feedic
npm/[email protected] None +22 2.74 MB ljharb
npm/[email protected] None 0 12.3 kB ljharb
npm/[email protected] eval +5 588 kB medikoo
npm/[email protected] None +2 128 kB medikoo
npm/[email protected] environment, shell +3 30.2 kB sindresorhus
npm/[email protected] environment, filesystem, network Transitive: unsafe +24 576 kB wesleytodd
npm/[email protected] network 0 29.4 kB rubenverborgh
npm/[email protected] environment, filesystem, network +18 183 MB truffle-cicd
npm/[email protected] None 0 8.68 kB keithamus
npm/[email protected] eval 0 41.6 kB ljharb
npm/[email protected] filesystem 0 55.1 kB isaacs
npm/[email protected] None +1 22.7 kB ljharb
npm/[email protected] None 0 12 kB ljharb
npm/[email protected] None 0 17.6 kB ljharb
npm/[email protected] None 0 8.77 kB ljharb
npm/[email protected] None 0 18.7 kB ljharb
npm/[email protected] None 0 23.3 kB ljharb
npm/[email protected] None 0 639 kB pimterry
npm/[email protected] None +1 13.3 kB sindresorhus
npm/[email protected] None 0 55.9 kB jonschlinkert
npm/[email protected] None 0 529 kB npm-service-account-multiformats
npm/[email protected] None 0 429 kB kkoopa
npm/[email protected] None 0 24.4 kB ai
npm/[email protected] environment, filesystem 0 13.4 kB mafintosh
npm/[email protected] None +3 66.6 kB ljharb
npm/[email protected] Transitive: unsafe +1 71.4 kB ljharb
npm/[email protected] environment, filesystem Transitive: eval, shell +8 1.09 MB ds300
npm/[email protected] filesystem, network +10 14.9 MB google-wombot
npm/[email protected] None 0 91.3 kB staltz
npm/[email protected] None +1 57.1 kB ljharb
npm/[email protected] network 0 4.64 kB szmarczak
npm/[email protected] environment, filesystem +2 185 kB ljharb
npm/[email protected] None 0 16.4 kB ljharb
npm/[email protected] None 0 23.2 kB ljharb
npm/[email protected] None +1 42.7 kB ljharb
npm/[email protected] None 0 52.8 kB typescript-bot
npm/[email protected] None 0 403 kB lpinca
npm/[email protected] environment 0 33.7 kB goto-bus-stop
npm/[email protected] Transitive: environment, filesystem, network, shell +42 2.56 MB jdevcs
npm/[email protected] None 0 60.5 kB jdevcs
npm/[email protected] None +2 122 kB jdevcs
npm/[email protected] None 0 6.78 kB jdevcs
npm/[email protected] Transitive: network +5 181 kB jdevcs
npm/[email protected] None 0 32.7 kB jdevcs
npm/[email protected] None +5 262 kB jdevcs
npm/[email protected] None 0 51 kB jdevcs
npm/[email protected] Transitive: environment +9 284 kB jdevcs
npm/[email protected] None 0 84.8 kB jdevcs
npm/[email protected] None +8 4.2 MB jdevcs
npm/[email protected] None 0 23.1 kB jdevcs
npm/[email protected] None 0 19.5 kB jdevcs
npm/[email protected] None +15 4.7 MB jdevcs
npm/[email protected] None 0 9.38 kB jdevcs
npm/[email protected] network +1 333 kB jdevcs
npm/[email protected] None 0 22.5 kB jdevcs
npm/[email protected] None 0 36.6 kB jdevcs
npm/[email protected] None 0 26.1 kB jdevcs
npm/[email protected] None 0 165 kB jdevcs
npm/[email protected] Transitive: environment, filesystem, network, shell +49 7.52 MB jdevcs
npm/[email protected] None +2 72 kB ljharb
npm/[email protected] network 0 122 kB lpinca
npm/[email protected] environment, filesystem +3 465 kB oss-bot

🚮 Removed packages: npm/[email protected], npm/@apollo/[email protected], npm/@apollographql/[email protected], npm/@ardatan/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@babel/[email protected], npm/@ensdomains/[email protected], npm/@ensdomains/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@ethersproject/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@graphql-tools/[email protected], npm/@gulp-sourcemaps/[email protected], npm/@nodelib/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@truffle/[email protected], npm/@trufflesuite/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected], npm/[email protected]

View full report↗︎

@socket-security
Copy link

socket-security bot commented Apr 5, 2024

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert Package Note
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: echo "Web3.js 4.x alpha has been released for early testing and feedback. Checkout doc at https://docs.web3js.org/ "
Install scripts npm/[email protected]
  • Install script: postinstall
  • Source: node -e "try{require('./_postinstall')}catch(e){}" || exit 0

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/[email protected] or ignore all packages with @SocketSecurity ignore-all

@mmsqe mmsqe marked this pull request as ready for review April 5, 2024 03:31
@mmsqe mmsqe requested a review from yihuang April 5, 2024 03:31
@mmsqe mmsqe merged commit 4b57117 into crypto-org-chain:develop Apr 5, 2024
@yihuang yihuang deleted the contract_ci branch April 5, 2024 03:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@yihuang yihuang yihuang approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mmsqe @yihuang