Bump the server-dependencies group with 6 updates

[dependabot]

Bumps the server-dependencies group with 6 updates:

Package	From	To
mysql2	3.10.0	3.10.1
web3	4.9.0	4.10.0
web3-eth-ens	4.3.0	4.4.0
ws	8.17.0	8.17.1
c8	10.0.0	10.1.2
webpack	5.91.0	5.92.0

Updates mysql2 from 3.10.0 to 3.10.1

Release notes

Sourced from mysql2's releases.

v3.10.1

3.10.1 (2024-06-13)

Bug Fixes

• setMaxParserCache throws TypeError (#2757) (aa8604a)

Changelog

Sourced from mysql2's changelog.

3.10.1 (2024-06-13)

Bug Fixes

• setMaxParserCache throws TypeError (#2757) (aa8604a)

Commits

• 7de393f chore(master): release 3.10.1 (#2774)
• aa8604a fix: setMaxParserCache throws TypeError (#2757)
• b924c5a ci(coverage): disable Codecov patch (#2674)
• 91852e7 build(deps-dev): bump tsx from 4.15.2 to 4.15.4 in /website (#2773)
• 4578c11 build(deps): bump sass from 1.77.4 to 1.77.5 in /website (#2772)
• e97d934 build(deps-dev): bump poku from 1.15.0 to 1.15.1 in /website (#2771)
• bf68fda build(deps-dev): bump c8 from 10.1.1 to 10.1.2 (#2770)
• 07225b6 build(deps-dev): bump lint-staged from 15.2.6 to 15.2.7 (#2768)
• 26989c6 build(deps-dev): bump poku from 1.15.0 to 1.15.1 (#2769)
• 8187429 build(deps-dev): bump @​typescript-eslint/parser in /website (#2763)
• Additional commits viewable in compare view

Updates web3 from 4.9.0 to 4.10.0

Release notes

Sourced from web3's releases.

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Changed

• Update version to 1.0.0-alpha.1 for web3-providers-base
• Update version to 4.0.0-alpha.0 for web3-utils in web3-providers-base

[email protected]

Initial alpha release

Install with yarn add [email protected]

[email protected]

Initial alpha release

Install with yarn add [email protected]

Changelog

Sourced from web3's changelog.

[4.9.0]

Added

web3

• Updated type Web3EthInterface.accounts to includes privateKeyToAccount,privateKeyToAddress,and privateKeyToPublicKey (#6762)

web3-core

• defaultReturnFormat was added to the configuration options. (#6947)

web3-errors

• Added InvalidIntegerError error for fromWei and toWei (#7052)

web3-eth

• defaultReturnFormat was added to all methods that have ReturnType param. (#6947)
• getTransactionFromOrToAttr, waitForTransactionReceipt, trySendTransaction, SendTxHelper was exported (#7000)

web3-eth-contract

• defaultReturnFormat was added to all methods that have ReturnType param. (#6947)

web3-eth-ens

• defaultReturnFormat was added to all methods that have ReturnType param. (#6947)

web3-net

• defaultReturnFormat was added to all methods that have ReturnType param. (#6947)

web3-types

• Added signature to type AbiFunctionFragment (#6922)
• update type Withdrawals, block and BlockHeaderOutput to include properties of eip 4844, 4895, 4788 (#6933)

web3-utils

• toWei add warning when using large numbers or large decimals that may cause precision loss (#6908)
• toWei and fromWei now supports integers as a unit. (#7053)

Fixed

web3-eth

• Fixed issue with simple transactions, Within checkRevertBeforeSending if there is no data set in transaction, set gas to be 21000 (#7043)

web3-utils

... (truncated)

Commits

• d6d4c6d update changelog
• 27c790f change rpc-providers version to rc
• 968bac9 version bump and changelog updates
• 7a51c33 add test coverage to web3-core (#7091)
• 9547643 transaction middleware (#7088)
• b234c1c fix(docs): mastering-accounts (#7089)
• b552f62 Remove Provider Tutorials (#7085)
• b01d5f9 Simplify Contracts Tutorial by Removing Use of Hardhat Plugin (#7084)
• 7af8090 fix(docs): introduction (#7083)
• 94f4f82 Changes to Header Nav (#7082)
• Additional commits viewable in compare view

Updates web3-eth-ens from 4.3.0 to 4.4.0

Release notes

Sourced from web3-eth-ens's releases.

v4.4.0

[4.4.0]

Added

web3-eth

• Catch TransactionPollingTimeoutError was added to send transaction events (#6623)

Changed

web3-eth-abi

• Use AbiError instead of Error for errors at web3-eth-abi (#6641).

web3-eth-contract

• Allow the deploy function to accept parameters, even when no ABI was provided to the Contract(#6635)

web3

• Dependencies updated

Fixed

web3-eth-abi

• Fixed an issue with detecting Uint8Array (#6486)

web3-eth-accounts

• Send Transaction config used to be ignored if the passed common did not have a copy() and the chainId was not provided (#6663)
• Fixed an issue with detecting Uint8Array (#6486)

web3-eth-contract

• Fix and error that happen when trying to get past events by calling contract.getPastEvents or contract.events.allEvents(), if there is no matching events. (#6647)
• Fixed: The Contract is not using the context wallet passed if context was passed at constructor. (#6661)

web3-utils

• Fixed an issue with detecting Uint8Array (#6486)

web3-validator

• Fixed an issue with detecting Uint8Array (#6486)

Changelog

Sourced from web3-eth-ens's changelog.

[4.3.0]

Changed

web3-core

• Web3config contractDataInputFill has been defaulted to data, instead of input. (#6622)

web3-eth-contracts

• By default, contracts will fill data instead of input within method calls (#6622)

Added

web3-utils

• SocketProvider now contains public function getPendingRequestQueueSize, getSentRequestsQueueSize and clearQueues (#6479)
• Added safeDisconnect as a SocketProvider method to disconnect only when request queue size and send request queue size is 0 (#6479)
• Add isContractInitOptions method (#6555)

web3

• Added methods (privateKeyToAddress, parseAndValidatePrivateKey, and privateKeyToPublicKey) to web3.eth.accounts (#6620)

Fixed

web3-rpc-methods

• Fix web3-types import #6590 (#6589)

web3-utils

• Fix unnecessary array copy when pack encoding (#6553)

[4.4.0]

Added

web3-eth

• Catch TransactionPollingTimeoutError was added to send transaction events (#6623)

Changed

web3-eth-abi

• Use AbiError instead of Error for errors at web3-eth-abi (#6641).

web3-eth-contract

... (truncated)

Commits

• 1eb07d1 Update jest and ts-jest version (#6706)
• 3cfe56f fix: contract method types should allow any param if abi type not supplied (#...
• 762c298 ENS doc menu format (#6699)
• cc7ff1f Use the ethereum-blackhole (the 0x address) for the from address for tests ...
• 7c33cc0 fix small bugs. increase coverage (#6679)
• b188714 ENS Package tutorial (#6687)
• 2a40b66 Fix an issue with detecting Uint8Array (#6486)
• 65a9862 [Docs] Guides & Tutorials improvement (#6676)
• 23d69ba [Snyk] Upgrade @​docusaurus packages from 3.0.0 to 3.0.1 (#6670)
• df594c9 add section at migration guide for toHex (#6683)
• Additional commits viewable in compare view

Updates ws from 8.17.0 to 8.17.1

Release notes

Sourced from ws's releases.

8.17.1

Bug fixes

• Fixed a DoS vulnerability (#2231).

A request with a number of headers exceeding the[server.maxHeadersCount][] threshold could be used to crash a ws server.

const http = require('http');
const WebSocket = require('ws');
const server = http.createServer();
const wss = new WebSocket.Server({ server });
server.listen(function () {
const chars = "!#$%&'*+-.0123456789abcdefghijklmnopqrstuvwxyz^_`|~".split('');
const headers = {};
let count = 0;
for (let i = 0; i < chars.length; i++) {
if (count === 2000) break;
for (let j = 0; j &lt; chars.length; j++) {
  const key = chars[i] + chars[j];
  headers[key] = 'x';
if (++count === 2000) break;
}

}
headers.Connection = 'Upgrade';
headers.Upgrade = 'websocket';
headers['Sec-WebSocket-Key'] = 'dGhlIHNhbXBsZSBub25jZQ==';
headers['Sec-WebSocket-Version'] = '13';
const request = http.request({
headers: headers,
host: '127.0.0.1',
port: server.address().port
});
request.end();
});

The vulnerability was reported by Ryan LaPointe in websockets/ws#2230.

In vulnerable versions of ws, the issue can be mitigated in the following ways:

... (truncated)

Commits

• 3c56601 [dist] 8.17.1
• e55e510 [security] Fix crash when the Upgrade header cannot be read (#2231)
• 6a00029 [test] Increase code coverage
• ddfe4a8 [perf] Reduce the amount of crypto.randomFillSync() calls
• See full diff in compare view

Updates c8 from 10.0.0 to 10.1.2

Release notes

Sourced from c8's releases.

v10.1.2

10.1.2 (2024-06-13)

Bug Fixes

• deps: make monocart-coverage-reports an optional with meta defined (3b91fda)

v10.1.1

10.1.1 (2024-06-11)

Bug Fixes

• stop installing monocart-coverage-reports (#535) (13979a7)

v10.1.0

10.1.0 (2024-06-11)

Features

• add experimental monocart reports (#521) (2e5e297)

Changelog

Sourced from c8's changelog.

10.1.2 (2024-06-13)

Bug Fixes

• deps: make monocart-coverage-reports an optional with meta defined (3b91fda)

10.1.1 (2024-06-11)

Bug Fixes

• stop installing monocart-coverage-reports (#535) (13979a7)

10.1.0 (2024-06-11)

Features

• add experimental monocart reports (#521) (2e5e297)

Commits

• ff146b4 chore(main): release 10.1.2 (#538)
• 3b91fda fix(deps): make monocart-coverage-reports an optional with meta defined
• e3560e1 chore(main): release 10.1.1 (#536)
• 13979a7 fix: stop installing monocart-coverage-reports (#535)
• 15ac690 chore(main): release 10.1.0 (#533)
• 96e869f build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#534)
• 2e5e297 feat: add experimental monocart reports (#521)
• See full diff in compare view

Updates webpack from 5.91.0 to 5.92.0

Release notes

Sourced from webpack's releases.

v5.92.0

Bug Fixes

• Correct tidle range's comutation for module federation
• Consider runtime for pure expression dependency update hash
• Return value in the subtractRuntime function for runtime logic
• Fixed failed to resolve promise when eager import a dynamic cjs
• Avoid generation extra code for external modules when remapping is not required
• The css/global type now handles the exports name
• Avoid hashing for @keyframe and @property at-rules in css/global type
• Fixed mangle with destructuring for JSON modules
• The stats.hasWarnings() method now respects the ignoreWarnings option
• Fixed ArrayQueue iterator
• Correct behavior of __webpack_exports_info__.a.b.canMangle
• Changed to the correct plugin name for the CommonJsChunkFormatPlugin plugin
• Set the chunkLoading option to the import when environment is unknown and output is module
• Fixed when runtimeChunk has no exports when module chunkFormat used
• [CSS] Fixed parsing minimized CSS import
• [CSS] URLs in CSS files now have correct public path
• [CSS] The css module type should not allow parser to switch mode
• [Types] Improved context module types

New Features

• Added platform target properties to compiler
• Improved multi compiler cache location and validating it
• Support import attributes spec (with keyword)
• Support node: prefix for Node.js core modules in runtime code
• Support prefetch/preload for module chunk format
• Support "..." in the importsFields option for resolver
• Root module is less prone to be wrapped in IIFE
• Export InitFragment class for plugins
• Export compileBooleanMatcher util for plugins
• Export InputFileSystem and OutputFileSystem types
• [CSS] Support the esModule generator option for CSS modules
• [CSS] Support CSS when chunk format is module

Commits

• 34e2561 chore(release): 5.92.0
• 796bb6b chore(deps): update
• 65b3684 ci: fix
• 5da27ad ci: fix
• 09afe04 ci: fix
• 9d899d4 chore: small fixes
• de6d4b2 style: fix
• 1954237 chore: fix lint and types
• 7acd348 revert: changes in examples
• ab3e93b style: fix
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions