Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump github.com/cometbft/cometbft from 0.37.2 to 0.38.5 #11921

Closed
wants to merge 1 commit into from
Closed

Bump github.com/cometbft/cometbft from 0.37.2 to 0.38.5 #11921

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 1, 2024
edited
Loading

Bumps github.com/cometbft/cometbft from 0.37.2 to 0.38.5.

Release notes

Sourced from github.com/cometbft/cometbft's releases.

v0.38.5

See the CHANGELOG for this release.

v0.38.4

See the CHANGELOG for this release.

v0.38.3

See the CHANGELOG for this release.

v0.38.2

See the CHANGELOG for this release.

v0.38.1

See the CHANGELOG for this release.

v0.38.0

See the CHANGELOG for this release.

v0.38.0-rc3

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-rc2

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-rc1

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-alpha.2

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-alpha.1

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.37.4

See the CHANGELOG for this release.

v0.37.3

See the CHANGELOG for this release.

Changelog

Sourced from github.com/cometbft/cometbft's changelog.

v0.38.5

January 24, 2024

This release fixes a problem introduced in v0.38.3: if an application updates the value of ConsensusParam VoteExtensionsEnableHeight to the same value (actually a "noop" update) this is accepted in v0.38.2 but rejected under some conditions in v0.38.3 and v0.38.4. Even if rejecting a useless update would make sense in general, in a point release we should not reject a set of inputs to a function that was previuosly accepted (unless there is a good reason for it). The goal of this release is to accept again all "noop" updates, like v0.38.2 did.

IMPROVEMENTS

  • [consensus] Add chain_size_bytes metric for measuring the size of the blockchain in bytes (#2093)

v0.38.4

January 22, 2024

This release is aimed at those projects that have a dependency on CometBFT, release line v0.38.x, and make use of function SaveBlockStoreState in package github.com/cometbft/cometbft/store. This function changed its signature in v0.38.3. This new release reverts the signature change so that upgrading to the latest release of CometBFT on v0.38.x does not require any change in the code depending on CometBFT.

IMPROVEMENTS

  • [e2e] Add manifest option VoteExtensionsUpdateHeight to test vote extension activation via InitChain and FinalizeBlock. Also, extend the manifest generator to produce different values of this new option (#2065)

v0.38.3

January 17, 2024

This release addresses a high impact security issue reported in advisory (ASA-2024-001). There are other non-security bugs fixes that have been addressed since v0.38.2 was released, as well as some improvements. Please check the list below for further details.

BUG FIXES

  • [consensus] Fix for "Validation of VoteExtensionsEnableHeight can cause chain halt" (ASA-2024-001)
  • [mempool] Fix data races in CListMempool by making atomic the types of height, txsBytes, and

... (truncated)

Commits

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot requested a review from a team as a code owner February 1, 2024 19:44
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 1, 2024
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from df466de to b403dba Compare February 2, 2024 18:48
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from b403dba to 49f21c4 Compare February 7, 2024 22:54
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 49f21c4 to 7beb6a5 Compare February 9, 2024 01:56
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 7beb6a5 to 2773480 Compare February 9, 2024 14:58
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 2773480 to b005f99 Compare February 9, 2024 15:58
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from b005f99 to 90f2f95 Compare February 9, 2024 18:21
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 90f2f95 to a67e4df Compare February 12, 2024 17:21
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from a67e4df to c3540ce Compare February 13, 2024 18:31
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from c3540ce to be37c24 Compare February 14, 2024 21:08
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from be37c24 to c49fdca Compare February 14, 2024 23:42
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from c49fdca to 5d28e88 Compare February 15, 2024 14:30
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 5d28e88 to 6cc3f50 Compare February 15, 2024 14:31
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 6cc3f50 to 8147f92 Compare February 15, 2024 20:50
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from f58c2b3 to 3b9b40b Compare February 19, 2024 16:25
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 3b9b40b to 08588d9 Compare February 20, 2024 13:43
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 08588d9 to f3c0b5e Compare February 20, 2024 17:09
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from f3c0b5e to c0f018a Compare February 20, 2024 21:39
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from c0f018a to 88bf525 Compare February 21, 2024 17:14
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 88bf525 to f2ea13c Compare February 22, 2024 17:57
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from f2ea13c to 9a6921c Compare February 22, 2024 18:50
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 9a6921c to 85b56da Compare February 27, 2024 20:20
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from 85b56da to bf2315b Compare February 27, 2024 21:25
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from bf2315b to e2445ca Compare February 28, 2024 18:12
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from e2445ca to e2b5f1b Compare February 28, 2024 18:13
@dependabot
Bump github.com/cometbft/cometbft from 0.37.2 to 0.38.5
7d383f1 
Bumps [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) from 0.37.2 to 0.38.5.
- [Release notes](https://github.com/cometbft/cometbft/releases)
- [Changelog](https://github.com/cometbft/cometbft/blob/v0.38.5/CHANGELOG.md)
- [Commits](cometbft/cometbft@v0.37.2...v0.38.5)

---
updated-dependencies:
- dependency-name: github.com/cometbft/cometbft
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch from e2b5f1b to 7d383f1 Compare February 29, 2024 19:23
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented May 5, 2024

This PR is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 7 days.

@github-actions github-actions bot added the Stale label May 5, 2024
@github-actions github-actions bot closed this May 12, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 12, 2024

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/go_modules/github.com/cometbft/cometbft-0.38.5 branch May 12, 2024 00:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code Stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants