Skip to content
This repository was archived by the owner on Oct 16, 2025. It is now read-only.

chore: Update eth-json-rpc-provider #334

Merged
Gudahtt merged 2 commits into from
Sep 22, 2025
Merged

chore: Update eth-json-rpc-provider #334

Gudahtt merged 2 commits into from
Sep 22, 2025

Conversation

@Gudahtt
Copy link
Member

@Gudahtt Gudahtt commented Sep 22, 2025

Update the package @metamask/eth-json-rpc-provider from v4 to v5. The breaking change in this release was to remove the data event from the provider, which is not used by this package.

Changelog: https://github.com/MetaMask/core/blob/main/packages/eth-json-rpc-provider/CHANGELOG.md#500

@Gudahtt
chore: Update eth-json-rpc-provider
c85a21d 
Update the package `@metamask/eth-json-rpc-provider` from v4 to v5. The
breaking change in this release was to remove the `data` event from the
provider, which is not used by this package.

Changelog: https://github.com/MetaMask/core/blob/main/packages/eth-json-rpc-provider/CHANGELOG.md#500
@socket-security
Copy link

socket-security bot commented Sep 22, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Added@​types/​lodash@​4.17.201001008084100
Addedlodash@​4.17.211001008781100
Updated@​metamask/​utils@​11.4.0 ⏵ 11.8.09910094 +194 +3100
Updated@​metamask/​json-rpc-engine@​10.0.3 ⏵ 10.1.0100 +1100100100 +17100
Updated@​metamask/​eth-json-rpc-provider@​4.1.8 ⏵ 5.0.0100 +1100100 +28100 +17100

View full report

@socket-security
Copy link

socket-security bot commented Sep 22, 2025
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring alerts on:

  • lodash@4.17.21

View full report

@Gudahtt
Copy link
Member Author

Gudahtt commented Sep 22, 2025

@SocketSecurity ignore npm/lodash@4.17.21

This is a known risk in a module that we don't use (Lodash's template feature)

@Gudahtt Gudahtt marked this pull request as ready for review September 22, 2025 22:11
@Gudahtt Gudahtt requested a review from a team as a code owner September 22, 2025 22:11
cryptodev-2s
cryptodev-2s approved these changes Sep 22, 2025
View reviewed changes
Copy link
Contributor

@cryptodev-2s cryptodev-2s left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@Gudahtt Gudahtt merged commit 06eb987 into main Sep 22, 2025
10 checks passed
@Gudahtt Gudahtt deleted the update-eth-json-rpc-provider branch September 22, 2025 22:40
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@cryptodev-2s cryptodev-2s cryptodev-2s approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Gudahtt @cryptodev-2s