certusone
/
cosmos-sdk
mirror of https://github.com/certusone/cosmos-sdk.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
cosmos-sdk/go.mod

68 lines
2.5 KiB
Modula-2
Raw Normal View History

replace testutil.NewTestCaseDir() with Go1.15's T.TempDir() (#7014) Override go's default version with go 1.15.
2020-09-18 04:08:24 -07:00
go 1.15
Merge PR #6475: Pruning Refactor
2020-06-22 13:31:33 -07:00
replace dep with go mod (#3907) Replace sha1sum with jack's gosum and get rid of vendor-deps. Also don't compute hash on vendor/ contents. Instead hash go.sum. Disable unconvert lint check. It does not work very well with go mod. Remove update_vendor_deps once and for all. Upgrade to go 1.12 Closes: #3919 #3630
2019-03-18 05:45:25 -07:00
module github.com/cosmos/cosmos-sdk
require (
Update 99designs/keyring to v1.1.6 for go 1.15 (#7397) The release contains a fix for https://github.com/dvsekhvalnov/jose2go/issues/26, which is needed for the file keyring backend to work with go 1.15.
2020-09-25 15:38:07 -07:00
github.com/99designs/keyring v1.1.6
build(deps): bump github.com/armon/go-metrics from 0.3.8 to 0.3.9 (#9518) Bumps [github.com/armon/go-metrics](https://github.com/armon/go-metrics) from 0.3.8 to 0.3.9. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/armon/go-metrics/releases">github.com/armon/go-metrics's releases</a>.</em></p> <blockquote> <h2>v0.3.9</h2> <p>Adds a new <code>Stream</code> method that provides a streaming HTTP 1.x handler that will return a news set of metrics every interval.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/armon/go-metrics/commit/f792dbc8f4b651df89dc7098fce61ca56a0a2bee"><code>f792dbc</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/armon/go-metrics/issues/125">#125</a> from dnephin/dnephin/stream-metrics</li> <li><a href="https://github.com/armon/go-metrics/commit/01db6876d8b120509a8d3bafc87bc361b600a94b"><code>01db687</code></a> inmem: reduce the interface to Stream</li> <li><a href="https://github.com/armon/go-metrics/commit/056fff3a320dba56e38d0f773519dbb137a3a111"><code>056fff3</code></a> inmem: add support for streaming metrics as intervals complete</li> <li><a href="https://github.com/armon/go-metrics/commit/96c40ac2d920cfbb050ae85f1a8e1e43db14cfab"><code>96c40ac</code></a> inmem: Inline a few functions into getInterval</li> <li>See full diff in <a href="https://github.com/armon/go-metrics/compare/v0.3.8...v0.3.9">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/armon/go-metrics&package-manager=go_modules&previous-version=0.3.8&new-version=0.3.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
2021-06-16 23:09:33 -07:00
github.com/armon/go-metrics v0.3.9
replace dep with go mod (#3907) Replace sha1sum with jack's gosum and get rid of vendor-deps. Also don't compute hash on vendor/ contents. Instead hash go.sum. Disable unconvert lint check. It does not work very well with go mod. Remove update_vendor_deps once and for all. Upgrade to go 1.12 Closes: #3919 #3630
2019-03-18 05:45:25 -07:00
github.com/bgentry/speakeasy v0.1.0
build(deps): bump github.com/btcsuite/btcd (#9483) Bumps [github.com/btcsuite/btcd](https://github.com/btcsuite/btcd) from 0.21.0-beta to 0.22.0-beta. - [Release notes](https://github.com/btcsuite/btcd/releases) - [Changelog](https://github.com/btcsuite/btcd/blob/master/CHANGES) - [Commits](https://github.com/btcsuite/btcd/compare/v0.21.0-beta...v0.22.0-beta) --- updated-dependencies: - dependency-name: github.com/btcsuite/btcd dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-06-09 09:27:02 -07:00
github.com/btcsuite/btcd v0.22.0-beta
github.com/btcsuite/btcutil v1.0.3-0.20201208143702-a53e38424cce
rosetta: upgrade to newest version (#9314) * feat: update rosetta sdk to v0.6.10 embed from v1.0.0 release branch of the library: https://github.com/tendermint/cosmos-rosetta-gateway/tree/release/v1.0.0 closes: https://github.com/cosmos/cosmos-sdk/issues/9300 Co-authored-by: Alessio Treglia <alessio@tendermint.com>
2021-05-14 15:18:59 -07:00
github.com/coinbase/rosetta-sdk-go v0.6.10
build(deps): bump github.com/confio/ics23/go from 0.6.3 to 0.6.6 (#9142) Bumps [github.com/confio/ics23/go](https://github.com/confio/ics23) from 0.6.3 to 0.6.6. - [Release notes](https://github.com/confio/ics23/releases) - [Commits](https://github.com/confio/ics23/compare/v0.6.3...go/v0.6.6) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-20 02:40:25 -07:00
github.com/confio/ics23/go v0.6.6
go.mod: update cosmos/go-bip39 to v1.0.0 (#8127) Updates cosmos/go-bip39 to version v1.0.0 which features performance upgrades that bring 12+ searches down from 24.3us to 1.4us (so 108.33ns per fetch) after PR https://github.com/cosmos/go-bip39/pull/2.
2020-12-10 01:04:17 -08:00
github.com/cosmos/go-bip39 v1.0.0
chore: bump IAVL version (backport #10040) (#10154) * chore: bump IAVL version (#10040) * chore: bump IAVL version * test master * update IAVL version * adding missing go.sum entry * adding missing entries * fix go.sum * clear go.sum * fixing go.sum Co-authored-by: marbar3778 <marbar3778@yahoo.com> (cherry picked from commit 693ffb130ec7f76b212bb4625e50db4ad8be4df3) * run go mod tidy * fix changelog * reset go.mod * fix go.mod * fix go.mod Co-authored-by: Robert Zaremba <robert@zaremba.ch> Co-authored-by: marbar3778 <marbar3778@yahoo.com>
2021-09-16 17:07:10 -07:00
github.com/cosmos/iavl v0.17.1
Bump github.com/cosmos/ledger-cosmos-go from 0.10.3 to 0.11.1 (#5226) Bumps [github.com/cosmos/ledger-cosmos-go](https://github.com/cosmos/ledger-cosmos-go) from 0.10.3 to 0.11.1. - [Release notes](https://github.com/cosmos/ledger-cosmos-go/releases) - [Commits](https://github.com/cosmos/ledger-cosmos-go/compare/v0.10.3...v0.11.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2019-10-21 02:46:16 -07:00
github.com/cosmos/ledger-cosmos-go v0.11.1
support multisig bech32 address decoding (#6237) * support multisig bech32 address parsing * Increase bech32 length limit to 250 * Increase max bech32 address size to 1023 (the max length that supports the checksum) * Update go.mod * Update go.mod to point to the updated enigmampc/btcutil
2020-07-23 09:53:47 -07:00
github.com/enigmampc/btcutil v1.0.3-0.20200723161021-e2fb6adb2a25
gRPC gateway init (#7019) * WIP: grpc server setup * add register grpc routes * updated go mod * updated grpc for all modules * added pb file for grpc gateway * udpated gw file * added a test for grpc route * fixed conflicts * added grpc server * grpc tests added * cleanup * Fix gateway forward issue * Add godoc * updated tests * fix lint * fix tests * fix tests * fix tests * fixed test * Add grpc headers * Fix error handling * Fix tests - hacky * Fix lint * remove debug logs * Fix review comments * move grpc tests into a separate file * Fix protobuf version * Update x/capability/module.go * Fix godoc * Fix review suggestions * Fix codec * Add query params test for gateway request * Fix gofmt Co-authored-by: anilCSE <anil@vitwit.com> Co-authored-by: Federico Kunze <31522760+fedekunze@users.noreply.github.com>
2020-08-25 08:44:13 -07:00
github.com/gogo/gateway v1.1.0
Update gogo proto deps with v1.3.2 security fixes (#8350) * Update gogo proto deps with v1.3.2 security fixes * Regenerate proto files
2021-01-15 11:45:34 -08:00
github.com/gogo/protobuf v1.3.3
build(deps): bump github.com/golang/mock from 1.5.0 to 1.6.0 (#9512) Bumps [github.com/golang/mock](https://github.com/golang/mock) from 1.5.0 to 1.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golang/mock/releases">github.com/golang/mock's releases</a>.</em></p> <blockquote> <h2>v1.6.0</h2> <h2>Changelog</h2> <p>317c030 Best effort guesses for output package path (<a href="https://github-redirect.dependabot.com/golang/mock/issues/547">#547</a>) c59ba11 add ARM to support apple M1 chip to releaser (<a href="https://github-redirect.dependabot.com/golang/mock/issues/562">#562</a>) 58935d8 add a basic CONTRIBUTING.md (<a href="https://github-redirect.dependabot.com/golang/mock/issues/535">#535</a>) a5582fc add docs on 1.16 install and adding to PATH (<a href="https://github-redirect.dependabot.com/golang/mock/issues/534">#534</a>) 0cd3aaf add flags documentation (<a href="https://github-redirect.dependabot.com/golang/mock/issues/539">#539</a>) 64b0b80 add notes and error helper for vendor+reflect error (<a href="https://github-redirect.dependabot.com/golang/mock/issues/567">#567</a>) e303461 add type information to error messages (<a href="https://github-redirect.dependabot.com/golang/mock/issues/559">#559</a>) 0cdccf5 feat add InAnyOrder matcher (<a href="https://github-redirect.dependabot.com/golang/mock/issues/546">#546</a>) 82ce4a7 feat validate Do &amp; DoReturn args (<a href="https://github-redirect.dependabot.com/golang/mock/issues/558">#558</a>) 93308c3 fix broken badge (<a href="https://github-redirect.dependabot.com/golang/mock/issues/525">#525</a>) 9336b7e fix error message in parse.go (<a href="https://github-redirect.dependabot.com/golang/mock/issues/540">#540</a>) ab03293 fix ill-formatted message with fmt-verbs like %s (<a href="https://github-redirect.dependabot.com/golang/mock/issues/564">#564</a>) bb5fd5e fix linter errors (<a href="https://github-redirect.dependabot.com/golang/mock/issues/552">#552</a>) aba2ff9 fix parse array with the external const correctly (<a href="https://github-redirect.dependabot.com/golang/mock/issues/569">#569</a>) 6ff1070 fix parse arrays with const length correctly (<a href="https://github-redirect.dependabot.com/golang/mock/issues/520">#520</a>) 7f5f64d fixup some docs and templates (<a href="https://github-redirect.dependabot.com/golang/mock/issues/524">#524</a>) 7078515 refactor go:generate lines so they are consistently placed (<a href="https://github-redirect.dependabot.com/golang/mock/issues/527">#527</a>) 7105dde refactor mockgen and cleanup (<a href="https://github-redirect.dependabot.com/golang/mock/issues/536">#536</a>) f36d14a test(sample/user_test.go): minor correction at t.Errorf (<a href="https://github-redirect.dependabot.com/golang/mock/issues/544">#544</a>) ef4ad87 update CI for 1.16 (<a href="https://github-redirect.dependabot.com/golang/mock/issues/526">#526</a>) ad820b0 update Finish docs for Go1.14+ (<a href="https://github-redirect.dependabot.com/golang/mock/issues/556">#556</a>) 2421472 update dependencies (<a href="https://github-redirect.dependabot.com/golang/mock/issues/528">#528</a>) 953a5bb update user mock to be in test package (<a href="https://github-redirect.dependabot.com/golang/mock/issues/566">#566</a>) d19a212 upgrade dependencies (<a href="https://github-redirect.dependabot.com/golang/mock/issues/557">#557</a>)</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/mock/commit/aba2ff9a6844d5e3289e8472d3217d5b3090f083"><code>aba2ff9</code></a> fix parse array with the external const correctly (<a href="https://github-redirect.dependabot.com/golang/mock/issues/569">#569</a>)</li> <li><a href="https://github.com/golang/mock/commit/bb196fcb041b9d9383ef9da0dac6b53b8a127642"><code>bb196fc</code></a> fix typo in README (<a href="https://github-redirect.dependabot.com/golang/mock/issues/568">#568</a>)</li> <li><a href="https://github.com/golang/mock/commit/64b0b80f458052cd8a56d8310258235f2237a214"><code>64b0b80</code></a> add notes and error helper for vendor+reflect error (<a href="https://github-redirect.dependabot.com/golang/mock/issues/567">#567</a>)</li> <li><a href="https://github.com/golang/mock/commit/953a5bb40e02a50d43d411521679c19a3843765f"><code>953a5bb</code></a> update user mock to be in test package (<a href="https://github-redirect.dependabot.com/golang/mock/issues/566">#566</a>)</li> <li><a href="https://github.com/golang/mock/commit/c59ba111f47eb7255408acd218b0c12f19377bc6"><code>c59ba11</code></a> add ARM to support apple M1 chip to releaser (<a href="https://github-redirect.dependabot.com/golang/mock/issues/562">#562</a>)</li> <li><a href="https://github.com/golang/mock/commit/ab032936af9e6e83aff6b6a86e90dec92530ec78"><code>ab03293</code></a> fix ill-formatted message with fmt-verbs like %s (<a href="https://github-redirect.dependabot.com/golang/mock/issues/564">#564</a>)</li> <li><a href="https://github.com/golang/mock/commit/0cdccf5f55d777b12c1ac5a93f607cdd1dbf5296"><code>0cdccf5</code></a> feat add InAnyOrder matcher (<a href="https://github-redirect.dependabot.com/golang/mock/issues/546">#546</a>)</li> <li><a href="https://github.com/golang/mock/commit/e3034614db1cb7f651faba8942085fbd81a38580"><code>e303461</code></a> add type information to error messages (<a href="https://github-redirect.dependabot.com/golang/mock/issues/559">#559</a>)</li> <li><a href="https://github.com/golang/mock/commit/82ce4a77a940bbed5cb83b18dda44488e4640213"><code>82ce4a7</code></a> feat validate Do &amp; DoReturn args (<a href="https://github-redirect.dependabot.com/golang/mock/issues/558">#558</a>)</li> <li><a href="https://github.com/golang/mock/commit/d19a21299ddc9ba3207d1f1d3d9428ca68be1093"><code>d19a212</code></a> upgrade dependencies (<a href="https://github-redirect.dependabot.com/golang/mock/issues/557">#557</a>)</li> <li>Additional commits viewable in <a href="https://github.com/golang/mock/compare/v1.5.0...v1.6.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/golang/mock&package-manager=go_modules&previous-version=1.5.0&new-version=1.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
2021-06-16 00:44:53 -07:00
github.com/golang/mock v1.6.0
build(deps): bump github.com/golang/protobuf from 1.5.1 to 1.5.2 (#9022) Bumps [github.com/golang/protobuf](https://github.com/golang/protobuf) from 1.5.1 to 1.5.2. - [Release notes](https://github.com/golang/protobuf/releases) - [Commits](https://github.com/golang/protobuf/compare/v1.5.1...v1.5.2) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Marko <marbar3778@yahoo.com>
2021-03-30 02:05:14 -07:00
github.com/golang/protobuf v1.5.2
Bump github.com/gorilla/handlers from 1.5.0 to 1.5.1 (#7296) Bumps [github.com/gorilla/handlers](https://github.com/gorilla/handlers) from 1.5.0 to 1.5.1. - [Release notes](https://github.com/gorilla/handlers/releases) - [Commits](https://github.com/gorilla/handlers/compare/v1.5.0...v1.5.1) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-09-13 23:51:08 -07:00
github.com/gorilla/handlers v1.5.1
Bump github.com/gorilla/mux from 1.7.4 to 1.8.0 (#7142) Bumps [github.com/gorilla/mux](https://github.com/gorilla/mux) from 1.7.4 to 1.8.0. - [Release notes](https://github.com/gorilla/mux/releases) - [Commits](https://github.com/gorilla/mux/compare/v1.7.4...v1.8.0) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
2020-08-24 03:47:40 -07:00
github.com/gorilla/mux v1.8.0
build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware (#9186) Bumps [github.com/grpc-ecosystem/go-grpc-middleware](https://github.com/grpc-ecosystem/go-grpc-middleware) from 1.2.2 to 1.3.0. - [Release notes](https://github.com/grpc-ecosystem/go-grpc-middleware/releases) - [Changelog](https://github.com/grpc-ecosystem/go-grpc-middleware/blob/master/CHANGELOG.md) - [Commits](https://github.com/grpc-ecosystem/go-grpc-middleware/compare/v1.2.2...v1.3.0) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-26 03:38:48 -07:00
github.com/grpc-ecosystem/go-grpc-middleware v1.3.0
Update dependencies to use gRPC v1.33.2 (#7925) * Updated gRCP version to v1.33.1 since v1.33.0 was deleted (see https://github.com/grpc/grpc-go/issues/3945) * Updated CHANGELOG * Updated CHANGELOG Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
2020-11-15 04:29:37 -08:00
github.com/grpc-ecosystem/grpc-gateway v1.16.0
Merge PR #5535: Bump github.com/hashicorp/golang-lru from 0.5.3 to 0.5.4 Bumps [github.com/hashicorp/golang-lru](https://github.com/hashicorp/golang-lru) from 0.5.3 to 0.5.4. - [Release notes](https://github.com/hashicorp/golang-lru/releases) - [Commits](https://github.com/hashicorp/golang-lru/compare/v0.5.3...v0.5.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-01-17 07:11:24 -08:00
github.com/hashicorp/golang-lru v0.5.4
update ed25519 (#8690) * update ed25519 * add changelog and doc.go * add comment * add note about tendermint
2021-02-26 02:09:05 -08:00
github.com/hdevalence/ed25519consensus v0.0.0-20210204194344-59a8610d2b87
fix(CI): add golangci-lint to dependencies (#10112) (#10172) * fix(CI): add golangci-lint to dependencies (#10112) * fix(CI): add golangci-lint to dependencies * update github workflow * tidy go.mod * add missing entries to go.mod * update deps * add missing run command * remove golint and use revive instead * fix workflow setup * lint only changed files * gofmt go tags * update comments * make lint-go Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com> * Update .golangci.yml * Update .golangci.yml * fix go.mod Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com>
2021-09-16 15:34:36 -07:00
github.com/improbable-eng/grpc-web v0.14.1
github.com/jhump/protoreflect v1.9.0
github.com/kr/text v0.2.0 // indirect
build(deps): bump github.com/tendermint/tendermint from 0.34.13 to 0.34.14 (backport #10357) (#10375) * build(deps): bump github.com/tendermint/tendermint from 0.34.13 to 0.34.14 (#10357) Bumps [github.com/tendermint/tendermint](https://github.com/tendermint/tendermint) from 0.34.13 to 0.34.14. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tendermint/tendermint/releases">github.com/tendermint/tendermint's releases</a>.</em></p> <blockquote> <h2>0.34.14 (WARNING: BETA SOFTWARE)</h2> <p><a href="https://github.com/tendermint/tendermint/blob/v0.34.14/CHANGELOG.md#v0.34.14">https://github.com/tendermint/tendermint/blob/v0.34.14/CHANGELOG.md#v0.34.14</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tendermint/tendermint/blob/master/CHANGELOG.md">github.com/tendermint/tendermint's changelog</a>.</em></p> <blockquote> <h2>v0.34.14</h2> <p>This release backports the <code>rollback</code> feature to allow recovery in the event of an incorrect app hash.</p> <h3>FEATURES</h3> <ul> <li><a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/6982">#6982</a> The tendermint binary now has built-in suppport for running the end-to-end test application (with state sync support) (<a href="https://github.com/cmwaters"><code>@​cmwaters</code></a>).</li> <li>[cli] <a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/7033">#7033</a> Add a <code>rollback</code> command to rollback to the previous tendermint state. This may be useful in the event of non-determinstic app hash or when reverting an upgrade. <a href="https://github.com/cmwaters"><code>@​cmwaters</code></a></li> </ul> <h3>IMPROVEMENTS</h3> <ul> <li><a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/7104">#7103</a> Remove IAVL dependency (backport of <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6550">#6550</a>) (<a href="https://github.com/cmwaters"><code>@​cmwaters</code></a>)</li> </ul> <h3>BUG FIXES</h3> <ul> <li><a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/7057">#7057</a> Import Postgres driver support for the psql indexer (<a href="https://github.com/creachadair"><code>@​creachadair</code></a>).</li> <li>[ABCI] <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7110">#7110</a> Revert &quot;change client to use multi-reader mutexes (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6873">#6873</a>)&quot; (<a href="https://github.com/tychoish"><code>@​tychoish</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tendermint/tendermint/commit/85870def7b628effad73af942e638bbddf2ba8fd"><code>85870de</code></a> release: prepare changelog for 0.34.14 (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7105">#7105</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/ff2758b32e637b50734ad5ff1d0b24403af0deb2"><code>ff2758b</code></a> dep: remove IAVL dependency (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6550">#6550</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7104">#7104</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/a82cb7dcda832b8c6475481bf404257a56aa2d18"><code>a82cb7d</code></a> Revert &quot;abci: change client to use multi-reader mutexes (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6306">#6306</a>)&quot; (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7">#7</a>...</li> <li><a href="https://github.com/tendermint/tendermint/commit/1dfb3451eaaa438067dadb6835e9aa948689f39e"><code>1dfb345</code></a> e2e: light nodes should use builtin abci app (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7095">#7095</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7096">#7096</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/9f13b9b083da0ec45a48e57d5a283afdf698ba5b"><code>9f13b9b</code></a> e2e: abci protocol should be consistent across networks (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7078">#7078</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7085">#7085</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/16ba782fa6549ea1e50a7fe7addb538ff15bf619"><code>16ba782</code></a> cli: allow node operator to rollback last state (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7033">#7033</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7080">#7080</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/474ed04273bade74df583c7bfdc63e6e1a70a919"><code>474ed04</code></a> Import Postgres driver support for the psql indexer (backport). (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7057">#7057</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/2d8287d0f70962cc1d7bda0250def18962abf282"><code>2d8287d</code></a> e2e: allow running of single node using the e2e app (backport) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7024">#7024</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/294a9695b4a768b4c8a9cb71c3562cdbff58e64c"><code>294a969</code></a> e2e: backport minor reliability improvements (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6967">#6967</a>)</li> <li>See full diff in <a href="https://github.com/tendermint/tendermint/compare/v0.34.13...v0.34.14">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/tendermint/tendermint&package-manager=go_modules&previous-version=0.34.13&new-version=0.34.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> (cherry picked from commit e85964683a0265f78a81861f37813febf15a3225) # Conflicts: # go.mod * fix conflict * changelog entry Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: marbar3778 <marbar3778@yahoo.com>
2021-10-15 09:21:37 -07:00
github.com/lib/pq v1.10.2 // indirect
build(deps): bump github.com/magiconair/properties from 1.8.4 to 1.8.5 (#8991) Bumps [github.com/magiconair/properties](https://github.com/magiconair/properties) from 1.8.4 to 1.8.5. - [Release notes](https://github.com/magiconair/properties/releases) - [Changelog](https://github.com/magiconair/properties/blob/master/CHANGELOG.md) - [Commits](https://github.com/magiconair/properties/compare/v1.8.4...v1.8.5) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Marko <marbar3778@yahoo.com>
2021-03-25 02:40:48 -07:00
github.com/magiconair/properties v1.8.5
fix(CI): add golangci-lint to dependencies (#10112) (#10172) * fix(CI): add golangci-lint to dependencies (#10112) * fix(CI): add golangci-lint to dependencies * update github workflow * tidy go.mod * add missing entries to go.mod * update deps * add missing run command * remove golint and use revive instead * fix workflow setup * lint only changed files * gofmt go tags * update comments * make lint-go Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com> * Update .golangci.yml * Update .golangci.yml * fix go.mod Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com>
2021-09-16 15:34:36 -07:00
github.com/mattn/go-isatty v0.0.14
github.com/onsi/ginkgo v1.16.4 // indirect
github.com/onsi/gomega v1.13.0 // indirect
build(deps): bump github.com/otiai10/copy from 1.5.1 to 1.6.0 (#9289) Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy) from 1.5.1 to 1.6.0. - [Release notes](https://github.com/otiai10/copy/releases) - [Commits](https://github.com/otiai10/copy/compare/v1.5.1...v1.6.0) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
2021-05-10 07:03:11 -07:00
github.com/otiai10/copy v1.6.0
Merge PR #5524: Bump github.com/pkg/errors from 0.9.0 to 0.9.1 Bumps [github.com/pkg/errors](https://github.com/pkg/errors) from 0.9.0 to 0.9.1. - [Release notes](https://github.com/pkg/errors/releases) - [Commits](https://github.com/pkg/errors/compare/v0.9.0...v0.9.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: Alexander Bezobchuk <alexanderbez@users.noreply.github.com>
2020-01-15 06:21:01 -08:00
github.com/pkg/errors v0.9.1
build(deps): bump github.com/prometheus/client_golang (#9474) Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.10.0 to 1.11.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/master/CHANGELOG.md) - [Commits](https://github.com/prometheus/client_golang/compare/v1.10.0...v1.11.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-06-08 03:13:36 -07:00
github.com/prometheus/client_golang v1.11.0
build(deps): bump github.com/prometheus/common from 0.28.0 to 0.29.0 (#9500) Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.28.0 to 0.29.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/prometheus/common/commit/8281fb2779ab057c7d90fec6b24ce8eb29edcc13"><code>8281fb2</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/prometheus/common/issues/308">#308</a> from austince/feat/with-idle-conn-timeout</li> <li><a href="https://github.com/prometheus/common/commit/5018d4d329438c8ca3886232bb5ab8577ab96aeb"><code>5018d4d</code></a> Add WithIdleConnTimeout HTTP client option</li> <li>See full diff in <a href="https://github.com/prometheus/common/compare/v0.28.0...v0.29.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/prometheus/common&package-manager=go_modules&previous-version=0.28.0&new-version=0.29.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
2021-06-14 08:11:19 -07:00
github.com/prometheus/common v0.29.0
Merge PR #5699: Bump github.com/rakyll/statik from 0.1.6 to 0.1.7 Bumps [github.com/rakyll/statik](https://github.com/rakyll/statik) from 0.1.6 to 0.1.7. - [Release notes](https://github.com/rakyll/statik/releases) - [Commits](https://github.com/rakyll/statik/compare/v0.1.6...v0.1.7) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2020-02-26 05:39:02 -08:00
github.com/rakyll/statik v0.1.7
Update gogo proto deps with v1.3.2 security fixes (#8350) * Update gogo proto deps with v1.3.2 security fixes * Regenerate proto files
2021-01-15 11:45:34 -08:00
github.com/regen-network/cosmos-proto v0.3.1
build(deps): bump github.com/rs/zerolog from 1.22.0 to 1.23.0 (#9515) Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.22.0 to 1.23.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rs/zerolog/commit/117cb53bc66413d9a810ebed32383e53416347e3"><code>117cb53</code></a> Fix copying stack setting in logger's Output method (<a href="https://github-redirect.dependabot.com/rs/zerolog/issues/325">#325</a>)</li> <li><a href="https://github.com/rs/zerolog/commit/e05605c21503a8e53fd6b24b8e2df82cda8db603"><code>e05605c</code></a> Use github.com/coreos/go-systemd/v22 (<a href="https://github-redirect.dependabot.com/rs/zerolog/issues/322">#322</a>)</li> <li><a href="https://github.com/rs/zerolog/commit/6ed1127758fabcfdd3c27f2c7b788f2dd9378d84"><code>6ed1127</code></a> Fix panic on disabled event with CallerSkipFrame</li> <li><a href="https://github.com/rs/zerolog/commit/47a03bc5ebbb4564ffd465aca92051d7261744ea"><code>47a03bc</code></a> Add ability to customize internal json marshaler (<a href="https://github-redirect.dependabot.com/rs/zerolog/issues/318">#318</a>)</li> <li><a href="https://github.com/rs/zerolog/commit/ffbd37b8d75fc1407f70aab005c35f8e2d9ecd45"><code>ffbd37b</code></a> Add Func log method (<a href="https://github-redirect.dependabot.com/rs/zerolog/issues/321">#321</a>)</li> <li>See full diff in <a href="https://github.com/rs/zerolog/compare/v1.22.0...v1.23.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/rs/zerolog&package-manager=go_modules&previous-version=1.22.0&new-version=1.23.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
2021-06-15 01:29:43 -07:00
github.com/rs/zerolog v1.23.0
build(deps): bump github.com/spf13/cast from 1.3.0 to 1.3.1 (#6605) Bumps [github.com/spf13/cast](https://github.com/spf13/cast) from 1.3.0 to 1.3.1. - [Release notes](https://github.com/spf13/cast/releases) - [Commits](https://github.com/spf13/cast/compare/v1.3.0...v1.3.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-07-06 01:18:35 -07:00
github.com/spf13/cast v1.3.1
fix(CI): add golangci-lint to dependencies (#10112) (#10172) * fix(CI): add golangci-lint to dependencies (#10112) * fix(CI): add golangci-lint to dependencies * update github workflow * tidy go.mod * add missing entries to go.mod * update deps * add missing run command * remove golint and use revive instead * fix workflow setup * lint only changed files * gofmt go tags * update comments * make lint-go Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com> * Update .golangci.yml * Update .golangci.yml * fix go.mod Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com>
2021-09-16 15:34:36 -07:00
github.com/spf13/cobra v1.2.1
Bump github.com/spf13/pflag from 1.0.3 to 1.0.5 (#5067) Bumps [github.com/spf13/pflag](https://github.com/spf13/pflag) from 1.0.3 to 1.0.5. - [Release notes](https://github.com/spf13/pflag/releases) - [Commits](https://github.com/spf13/pflag/compare/v1.0.3...v1.0.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
2019-09-19 06:46:29 -07:00
github.com/spf13/pflag v1.0.5
fix(CI): add golangci-lint to dependencies (#10112) (#10172) * fix(CI): add golangci-lint to dependencies (#10112) * fix(CI): add golangci-lint to dependencies * update github workflow * tidy go.mod * add missing entries to go.mod * update deps * add missing run command * remove golint and use revive instead * fix workflow setup * lint only changed files * gofmt go tags * update comments * make lint-go Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com> * Update .golangci.yml * Update .golangci.yml * fix go.mod Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com>
2021-09-16 15:34:36 -07:00
github.com/spf13/viper v1.8.1
build(deps): bump github.com/stretchr/testify from 1.6.1 to 1.7.0 (#8330) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.6.1 to 1.7.0. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.6.1...v1.7.0) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-01-14 03:41:03 -08:00
github.com/stretchr/testify v1.7.0
replace dep with go mod (#3907) Replace sha1sum with jack's gosum and get rid of vendor-deps. Also don't compute hash on vendor/ contents. Instead hash go.sum. Disable unconvert lint check. It does not work very well with go mod. Remove update_vendor_deps once and for all. Upgrade to go 1.12 Closes: #3919 #3630
2019-03-18 05:45:25 -07:00
github.com/tendermint/btcd v0.1.1
Merge PR #5234: update tendermint crypto
2019-10-23 06:35:12 -07:00
github.com/tendermint/crypto v0.0.0-20191022145703-50d29ede1e15
Bump github.com/tendermint/go-amino from 0.15.1 to 0.16.0 (#7295) Bumps [github.com/tendermint/go-amino](https://github.com/tendermint/go-amino) from 0.15.1 to 0.16.0. - [Release notes](https://github.com/tendermint/go-amino/releases) - [Changelog](https://github.com/tendermint/go-amino/blob/v0.16.0/CHANGELOG.md) - [Commits](https://github.com/tendermint/go-amino/compare/v0.15.1...v0.16.0) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
2020-09-14 02:29:41 -07:00
github.com/tendermint/go-amino v0.16.0
build(deps): bump github.com/tendermint/tendermint from 0.34.13 to 0.34.14 (backport #10357) (#10375) * build(deps): bump github.com/tendermint/tendermint from 0.34.13 to 0.34.14 (#10357) Bumps [github.com/tendermint/tendermint](https://github.com/tendermint/tendermint) from 0.34.13 to 0.34.14. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tendermint/tendermint/releases">github.com/tendermint/tendermint's releases</a>.</em></p> <blockquote> <h2>0.34.14 (WARNING: BETA SOFTWARE)</h2> <p><a href="https://github.com/tendermint/tendermint/blob/v0.34.14/CHANGELOG.md#v0.34.14">https://github.com/tendermint/tendermint/blob/v0.34.14/CHANGELOG.md#v0.34.14</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tendermint/tendermint/blob/master/CHANGELOG.md">github.com/tendermint/tendermint's changelog</a>.</em></p> <blockquote> <h2>v0.34.14</h2> <p>This release backports the <code>rollback</code> feature to allow recovery in the event of an incorrect app hash.</p> <h3>FEATURES</h3> <ul> <li><a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/6982">#6982</a> The tendermint binary now has built-in suppport for running the end-to-end test application (with state sync support) (<a href="https://github.com/cmwaters"><code>@​cmwaters</code></a>).</li> <li>[cli] <a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/7033">#7033</a> Add a <code>rollback</code> command to rollback to the previous tendermint state. This may be useful in the event of non-determinstic app hash or when reverting an upgrade. <a href="https://github.com/cmwaters"><code>@​cmwaters</code></a></li> </ul> <h3>IMPROVEMENTS</h3> <ul> <li><a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/7104">#7103</a> Remove IAVL dependency (backport of <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6550">#6550</a>) (<a href="https://github.com/cmwaters"><code>@​cmwaters</code></a>)</li> </ul> <h3>BUG FIXES</h3> <ul> <li><a href="https://github-redirect.dependabot.com/tendermint/tendermint/pull/7057">#7057</a> Import Postgres driver support for the psql indexer (<a href="https://github.com/creachadair"><code>@​creachadair</code></a>).</li> <li>[ABCI] <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7110">#7110</a> Revert &quot;change client to use multi-reader mutexes (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6873">#6873</a>)&quot; (<a href="https://github.com/tychoish"><code>@​tychoish</code></a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tendermint/tendermint/commit/85870def7b628effad73af942e638bbddf2ba8fd"><code>85870de</code></a> release: prepare changelog for 0.34.14 (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7105">#7105</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/ff2758b32e637b50734ad5ff1d0b24403af0deb2"><code>ff2758b</code></a> dep: remove IAVL dependency (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6550">#6550</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7104">#7104</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/a82cb7dcda832b8c6475481bf404257a56aa2d18"><code>a82cb7d</code></a> Revert &quot;abci: change client to use multi-reader mutexes (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6306">#6306</a>)&quot; (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7">#7</a>...</li> <li><a href="https://github.com/tendermint/tendermint/commit/1dfb3451eaaa438067dadb6835e9aa948689f39e"><code>1dfb345</code></a> e2e: light nodes should use builtin abci app (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7095">#7095</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7096">#7096</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/9f13b9b083da0ec45a48e57d5a283afdf698ba5b"><code>9f13b9b</code></a> e2e: abci protocol should be consistent across networks (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7078">#7078</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7085">#7085</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/16ba782fa6549ea1e50a7fe7addb538ff15bf619"><code>16ba782</code></a> cli: allow node operator to rollback last state (backport <a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7033">#7033</a>) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7080">#7080</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/474ed04273bade74df583c7bfdc63e6e1a70a919"><code>474ed04</code></a> Import Postgres driver support for the psql indexer (backport). (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7057">#7057</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/2d8287d0f70962cc1d7bda0250def18962abf282"><code>2d8287d</code></a> e2e: allow running of single node using the e2e app (backport) (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/7024">#7024</a>)</li> <li><a href="https://github.com/tendermint/tendermint/commit/294a9695b4a768b4c8a9cb71c3562cdbff58e64c"><code>294a969</code></a> e2e: backport minor reliability improvements (<a href="https://github-redirect.dependabot.com/tendermint/tendermint/issues/6967">#6967</a>)</li> <li>See full diff in <a href="https://github.com/tendermint/tendermint/compare/v0.34.13...v0.34.14">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/tendermint/tendermint&package-manager=go_modules&previous-version=0.34.13&new-version=0.34.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> (cherry picked from commit e85964683a0265f78a81861f37813febf15a3225) # Conflicts: # go.mod * fix conflict * changelog entry Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: marbar3778 <marbar3778@yahoo.com>
2021-10-15 09:21:37 -07:00
github.com/tendermint/tendermint v0.34.14
build(deps): bump github.com/tendermint/tm-db from 0.6.3 to 0.6.4 (#8555) Bumps [github.com/tendermint/tm-db](https://github.com/tendermint/tm-db) from 0.6.3 to 0.6.4. - [Release notes](https://github.com/tendermint/tm-db/releases) - [Changelog](https://github.com/tendermint/tm-db/blob/master/CHANGELOG.md) - [Commits](https://github.com/tendermint/tm-db/compare/v0.6.3...v0.6.4) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-02-10 00:29:06 -08:00
github.com/tendermint/tm-db v0.6.4
fix(CI): add golangci-lint to dependencies (#10112) (#10172) * fix(CI): add golangci-lint to dependencies (#10112) * fix(CI): add golangci-lint to dependencies * update github workflow * tidy go.mod * add missing entries to go.mod * update deps * add missing run command * remove golint and use revive instead * fix workflow setup * lint only changed files * gofmt go tags * update comments * make lint-go Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com> * Update .golangci.yml * Update .golangci.yml * fix go.mod Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com>
2021-09-16 15:34:36 -07:00
golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a
build(deps): bump github.com/spf13/viper from 1.7.1 to 1.8.0 (#9524) Bumps [github.com/spf13/viper](https://github.com/spf13/viper) from 1.7.1 to 1.8.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/spf13/viper/releases">github.com/spf13/viper's releases</a>.</em></p> <blockquote> <h2>v1.8.0</h2> <p>This is a maintenance release primarily containing fixes and improvements. The most prominent change is the etcd update to <a href="https://github.com/etcd-io/etcd/releases/tag/v3.5.0">3.5.0</a>. Thanks to proper Go modules support, the dependency graph became much smaller.</p> <p>## Changes</p> <h3>Added</h3> <ul> <li>Allow BindEnv to register multiple environment variables</li> <li>Support for accessing slices</li> <li>Experimental WASM support: Viper compiles on WASM</li> <li>INI load options</li> </ul> <h3>Changed</h3> <ul> <li>Ensure <code>BindPFlag</code> detects a nil flag parameter</li> </ul> <h3>Fixed</h3> <ul> <li>Merging a key into a nil target</li> <li>Panics during saving INI files</li> </ul> <h3>Security</h3> <ul> <li>Updated etcd to 3.5 which should make a lot of false positive vulnerability reports disappear</li> </ul> <hr /> <p>In addition to the above changes, this release comes with tons of minor improvements, documentation changes an dependency updates. Find more details in the <a href="https://github.com/spf13/viper/milestone/4?closed=1">1.8.0</a> milestone.</p> <p><strong>Many thanks to everyone who contributed to this release!</strong></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/spf13/viper/commit/faa8ba0c53e004728577632c8d1eb540e6676369"><code>faa8ba0</code></a> chore: update gotestsum</li> <li><a href="https://github.com/spf13/viper/commit/65ee98690cc32b2019383929119eb782d71842a5"><code>65ee986</code></a> chore(lint): fix gofumpt</li> <li><a href="https://github.com/spf13/viper/commit/04ef5fa07d430a580ae736335f9c36e580de974c"><code>04ef5fa</code></a> chore: update golangci-lint</li> <li><a href="https://github.com/spf13/viper/commit/acd965b54e98b963351818a2afc705135ec32199"><code>acd965b</code></a> Add ini load options argument</li> <li><a href="https://github.com/spf13/viper/commit/5f4d053c3e42f4ddc95945254b45378f3f950593"><code>5f4d053</code></a> chore(deps): update dependencies</li> <li><a href="https://github.com/spf13/viper/commit/dd57ae6279084b4fe70bd4b4aa1aaffe6b8fd9eb"><code>dd57ae6</code></a> chore(deps): update etcd</li> <li><a href="https://github.com/spf13/viper/commit/cdb5e5976f9bb9e9ede7da170187742fc4bd7e9f"><code>cdb5e59</code></a> Fix merging a key into a nil target</li> <li><a href="https://github.com/spf13/viper/commit/36be6bf91f8c02e8fd53f87205ad230706a3eea9"><code>36be6bf</code></a> feat: make sure Viper compiles on WASM</li> <li><a href="https://github.com/spf13/viper/commit/727a41c38a24844f5090d1442867b0e7226e22f4"><code>727a41c</code></a> doc: add a note about concurent Get/Set to godoc</li> <li><a href="https://github.com/spf13/viper/commit/cb41ae0ab887b6544ac9df75c5703f3442f56dc2"><code>cb41ae0</code></a> doc: discuss concurrency in README</li> <li>Additional commits viewable in <a href="https://github.com/spf13/viper/compare/v1.7.1...v1.8.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/spf13/viper&package-manager=go_modules&previous-version=1.7.1&new-version=1.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
2021-06-16 23:33:29 -07:00
google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c
fix(CI): add golangci-lint to dependencies (#10112) (#10172) * fix(CI): add golangci-lint to dependencies (#10112) * fix(CI): add golangci-lint to dependencies * update github workflow * tidy go.mod * add missing entries to go.mod * update deps * add missing run command * remove golint and use revive instead * fix workflow setup * lint only changed files * gofmt go tags * update comments * make lint-go Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com> * Update .golangci.yml * Update .golangci.yml * fix go.mod Co-authored-by: Marko <marbar3778@yahoo.com> Co-authored-by: Federico Kunze Küllmer <31522760+fedekunze@users.noreply.github.com>
2021-09-16 15:34:36 -07:00
google.golang.org/grpc v1.40.0
google.golang.org/protobuf v1.27.1
build(deps): bump gopkg.in/yaml.v2 from 2.3.0 to 2.4.0 (#8159) * build(deps): bump gopkg.in/yaml.v2 from 2.3.0 to 2.4.0 Bumps [gopkg.in/yaml.v2](https://github.com/go-yaml/yaml) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/go-yaml/yaml/releases) - [Commits](https://github.com/go-yaml/yaml/compare/v2.3.0...v2.4.0) Signed-off-by: dependabot[bot] <support@github.com> * go.sum Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Federico Kunze <federico.kunze94@gmail.com>
2020-12-16 07:06:53 -08:00
gopkg.in/yaml.v2 v2.4.0
replace dep with go mod (#3907) Replace sha1sum with jack's gosum and get rid of vendor-deps. Also don't compute hash on vendor/ contents. Instead hash go.sum. Disable unconvert lint check. It does not work very well with go mod. Remove update_vendor_deps once and for all. Upgrade to go 1.12 Closes: #3919 #3630
2019-03-18 05:45:25 -07:00
)
Merge PR #4989: Go 1.13 Upgrade
2019-09-04 07:58:29 -07:00
update to tendermint v0.34.3 (#8388) * update to tendermint v0.34.3 * go.mod replace with grpc v1.33.2 Co-authored-by: Amaury Martiny <amaury.martiny@protonmail.com>
2021-01-19 08:49:38 -08:00
replace google.golang.org/grpc => google.golang.org/grpc v1.33.2
Update gogo proto deps with v1.3.2 security fixes (#8350) * Update gogo proto deps with v1.3.2 security fixes * Regenerate proto files
2021-01-15 11:45:34 -08:00
replace github.com/gogo/protobuf => github.com/regen-network/protobuf v1.3.3-alpha.regen.1
fix(keyring): update keyring for kwallet fix (#9563) ## Description Closes: #9562 --- ### Author Checklist *All items are required. Please add a note to the item if the item is not applicable and please add links to any relevant follow up issues.* I have... - [x] included the correct [type prefix](https://github.com/commitizen/conventional-commit-types/blob/v3.0.0/index.json) in the PR title - [x] added `!` to the type prefix if API or client breaking change - [x] targeted the correct branch (see [PR Targeting](https://github.com/cosmos/cosmos-sdk/blob/master/CONTRIBUTING.md#pr-targeting)) - [x] provided a link to the relevant issue or specification - [x] followed the guidelines for [building modules](https://github.com/cosmos/cosmos-sdk/blob/master/docs/building-modules) - [x] included the necessary unit and integration [tests](https://github.com/cosmos/cosmos-sdk/blob/master/CONTRIBUTING.md#testing) - [ ] added a changelog entry to `CHANGELOG.md` - [ ] included comments for [documenting Go code](https://blog.golang.org/godoc) - [ ] updated the relevant documentation or specification - [ ] reviewed "Files changed" and left comments if necessary - [ ] confirmed all CI checks have passed ### Reviewers Checklist *All items are required. Please add a note if the item is not applicable and please add your handle next to the items reviewed if you only reviewed selected items.* I have... - [x] confirmed the correct [type prefix](https://github.com/commitizen/conventional-commit-types/blob/v3.0.0/index.json) in the PR title - [x] confirmed `!` in the type prefix if API or client breaking change - [ ] confirmed all author checklist items have been addressed - [ ] reviewed state machine logic - [ ] reviewed API design and naming - [ ] reviewed documentation is accurate - [ ] reviewed tests and test coverage - [ ] manually tested (if applicable)
2021-06-24 03:07:16 -07:00
replace github.com/99designs/keyring => github.com/cosmos/keyring v1.1.7-0.20210622111912-ef00f8ac3d76
build: Update gin-gonic/gin to v1.7.0 (backport #10401) (#10410) * build: Update gin-gonic/gin to v1.7.0 (#10401) <!-- The default pull request template is for types feat, fix, or refactor. For other templates, add one of the following parameters to the url: - template=docs.md - template=other.md --> ## Description Ref: https://github.com/advisories/GHSA-h395-qcrw-5vmq <!-- Add a description of the changes that this PR introduces and the files that are the most critical to review. --> --- ### Author Checklist *All items are required. Please add a note to the item if the item is not applicable and please add links to any relevant follow up issues.* I have... - [ ] included the correct [type prefix](https://github.com/commitizen/conventional-commit-types/blob/v3.0.0/index.json) in the PR title - [ ] added `!` to the type prefix if API or client breaking change - [ ] targeted the correct branch (see [PR Targeting](https://github.com/cosmos/cosmos-sdk/blob/master/CONTRIBUTING.md#pr-targeting)) - [ ] provided a link to the relevant issue or specification - [ ] followed the guidelines for [building modules](https://github.com/cosmos/cosmos-sdk/blob/master/docs/building-modules) - [ ] included the necessary unit and integration [tests](https://github.com/cosmos/cosmos-sdk/blob/master/CONTRIBUTING.md#testing) - [ ] added a changelog entry to `CHANGELOG.md` - [ ] included comments for [documenting Go code](https://blog.golang.org/godoc) - [ ] updated the relevant documentation or specification - [ ] reviewed "Files changed" and left comments if necessary - [ ] confirmed all CI checks have passed ### Reviewers Checklist *All items are required. Please add a note if the item is not applicable and please add your handle next to the items reviewed if you only reviewed selected items.* I have... - [ ] confirmed the correct [type prefix](https://github.com/commitizen/conventional-commit-types/blob/v3.0.0/index.json) in the PR title - [ ] confirmed `!` in the type prefix if API or client breaking change - [ ] confirmed all author checklist items have been addressed - [ ] reviewed state machine logic - [ ] reviewed API design and naming - [ ] reviewed documentation is accurate - [ ] reviewed tests and test coverage - [ ] manually tested (if applicable) (cherry picked from commit 053e827a47b102d8573ae638679d98e8ee2045cc) # Conflicts: # go.mod * Fix conflicts Co-authored-by: SaReN <sahithnarahari@gmail.com> Co-authored-by: Amaury M <1293565+amaurym@users.noreply.github.com>
2021-10-21 01:51:20 -07:00
// Fix upstream GHSA-h395-qcrw-5vmq vulnerability.
// TODO Remove it: https://github.com/cosmos/cosmos-sdk/issues/10409
replace github.com/gin-gonic/gin => github.com/gin-gonic/gin v1.7.0