[Snyk] Upgrade web3 from 4.4.0 to 4.8.0

[chaitanyapotti]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade web3 from 4.4.0 to 4.8.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 68 versions ahead of your current version.

• The recommended version was released on a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Prototype Pollution SNYK-JS-WEB3UTILS-6229337	482	Proof of Concept

Release notes

Package name: web3

• 4.8.0 - 2024-04-18
  

  [4.8.0]

  Changed

  web3-eth-abi

  • Dependencies updated

  web3-eth-accounts

  • Dependencies updated

  Fixed

  web3-eth-contract

  • Fix an issue with smart contract function overloading (#6922)

  web3-utils

  • fixed toHex incorrectly hexing Uint8Arrays and Buffer (#6957)
  • fixed isUint8Array not returning true for Buffer (#6957)

  Added

  web3-eth-contract

  • Added a console warning in case of an ambiguous call to a solidity method with parameter overloading (#6942)
  • Added contract.deploy(...).decodeData(...) and contract.decodeMethodData(...) that decode data based on the ABI (#6950)

  web3-eth

  • method getBlock now includes properties of eip 4844, 4895, 4788 when returning block (#6933)
  • update type withdrawalsSchema, blockSchema and blockHeaderSchema schemas to include properties of eip 4844, 4895, 4788 (#6933)

  web3-types

  • Added signature to type AbiFunctionFragment (#6922)
  • update type Withdrawals, block and BlockHeaderOutput to include properties of eip 4844, 4895, 4788 (#6933)

  New Contributors

  • @ ymonye made their first contribution in #6937
• 4.7.1-dev.ce59737.0 - 2024-04-07
• 4.7.1-dev.bfb4f6f.0 - 2024-04-08
• 4.7.1-dev.a173a8f.0 - 2024-03-26
• 4.7.1-dev.67d8a74.0 - 2024-04-04
• 4.7.1-dev.5a579fa.0 - 2024-04-05
• 4.7.1-dev.578ebb6.0 - 2024-04-15
• 4.7.1-dev.5341c3a.0 - 2024-03-29
• 4.7.1-dev.526c6f5.0 - 2024-03-27
• 4.7.1-dev.1c03666.0 - 2024-04-15
• 4.7.0 - 2024-03-26
  

  [4.7.0]

  added

  web3-eth-contract

  • Types ContractDeploySend, ContractMethodSend, Web3PromiEvent was exported (#6883)

  web3-eth-ens

  • Added function getText and getName in ENS and resolver classes (#6914)

  fixed

  web3-validator

  • Multi-dimensional arrays(with a fix length) are now handled properly when parsing ABIs (#6798)

  web3-utils

  • fixed erroneous parsing of big numbers in the toNumber(...) function (#6880)

  Contributors

  Thank you to the community who have contributed to this release 😄:
  @ sgerodes #6882
  @ EtlesL #6836
  @ Jouzep #6853
  @ sarthak1dev #6867
  @ edison1105 #6885
  @ gucovip #6886
  @ testwill #6889
  @ pengqiseven #6878

• 4.6.1-dev.f943944.0 - 2024-03-20
• 4.6.1-dev.e383ae3.0 - 2024-03-08
• 4.6.1-dev.d254316.0 - 2024-03-11
• 4.6.1-dev.c4e039a.0 - 2024-03-25
• 4.6.1-dev.a83e9d5.0 - 2024-03-25
• 4.6.1-dev.a1f9dc4.0 - 2024-03-12
• 4.6.1-dev.9657b86.0 - 2024-03-12
• 4.6.1-dev.6d0a0ae.0 - 2024-03-12
• 4.6.1-dev.6187f30.0 - 2024-03-12
• 4.6.1-dev.43e70c1.0 - 2024-03-12
• 4.6.1-dev.383af39.0 - 2024-03-12
• 4.6.1-dev.2373e94.0 - 2024-03-15
• 4.6.1-dev.1f81ff0.0 - 2024-03-20
• 4.6.1-dev.16a2c27.0 - 2024-03-14
• 4.6.0 - 2024-03-08
  

  [4.6.0]

  Added

  web3

  • Added EIP-6963 utility function requestEIP6963Providers for multi provider discovery

  web3-eth

  • Added eth.getMaxPriorityFeePerGas method (#6748)

  web3-eth-ens

  • Added function setAddress in ENS and Resolver classes (#5956)

  web3-rpc-methods

  • Added getMaxPriorityFeePerGas method (#6748)

  web3-types

  • Type FeeData to be filled by await web3.eth.calculateFeeData() to be used with EIP-1559 transactions (#6795)

  Fixed

  web3-utils

  • replaced our eventEmitter to EventEmitter3 to support react native builds (#6253)

  New Contributors

  Thanks for contributions in web3.js lib:

  • @ Deepak2030 made their first contribution in #6804
  • @ bobeu made their first contribution in #6806
  • @ 0xthorazine made their first contribution in #6818
  • @ destinyae made their first contribution in #6838
  • @ teslaedison made their first contribution in #6863
• 4.5.1-dev.f696e47.0 - 2024-02-15
• 4.5.1-dev.edf3164.0 - 2024-03-07
• 4.5.1-dev.ec65468.0 - 2024-02-16
• 4.5.1-dev.e774646.0 - 2024-02-14
• 4.5.1-dev.cf60f71.0 - 2024-03-07
• 4.5.1-dev.cf4b93f.0 - 2024-02-27
• 4.5.1-dev.ca31f6a.0 - 2024-03-05
• 4.5.1-dev.c5cecaf.0 - 2024-02-19
• 4.5.1-dev.bd6cc71.0 - 2024-03-01
• 4.5.1-dev.b4c92e1.0 - 2024-02-27
• 4.5.1-dev.b25b883.0 - 2024-02-28
• 4.5.1-dev.afece40.0 - 2024-02-27
• 4.5.1-dev.ab1b250.0 - 2024-02-28
• 4.5.1-dev.a2d9cb4.0 - 2024-02-19
• 4.5.1-dev.a0d4d2e.0 - 2024-02-12
• 4.5.1-dev.9d65c38.0 - 2024-02-12
• 4.5.1-dev.95807a6.0 - 2024-02-19
• 4.5.1-dev.8ed041c.0 - 2024-03-05
• 4.5.1-dev.86447cd.0 - 2024-02-27
• 4.5.1-dev.35cb1b8.0 - 2024-02-28
• 4.5.1-dev.0e59f28.0 - 2024-02-29
• 4.5.1-dev.040d3a3.0 - 2024-03-06
• 4.5.1-dev.9023511.0 - 2024-02-12
• 4.5.0 - 2024-02-12
  

  [4.5.0]

  Added

  web3-utils

  • Adds missing exported type AbiItem from 1.x to v4 for compatabiltiy (#6678)

  web3-types

  • Adds missing exported type AbiItem from 1.x to v4 for compatabiltiy (#6678)

  Changed

  web3

  • Dependencies updated

  New Contributors

  Thanks for contributions in web3.js lib:

  • @ vuittont60 made their first contribution in #6704
  • @ jasonaw98 made their first contribution in #6783
• 4.4.1-dev.ed1460c.0 - 2024-02-06
• 4.4.1-dev.e5673ca.0 - 2024-02-05
• 4.4.1-dev.d8b64a8.0 - 2024-02-09
• 4.4.1-dev.b49094b.0 - 2024-01-23
• 4.4.1-dev.aac2420.0 - 2024-01-24
• 4.4.1-dev.a72e99a.0 - 2024-01-29
• 4.4.1-dev.a6b685e.0 - 2024-02-05
• 4.4.1-dev.9f31612.0 - 2024-02-08
• 4.4.1-dev.998954f.0 - 2024-02-07
• 4.4.1-dev.95b37d8.0 - 2024-02-01
• 4.4.1-dev.7d7a9ea.0 - 2024-01-29
• 4.4.1-dev.7b97011.0 - 2024-01-17
• 4.4.1-dev.727c9fc.0 - 2024-01-23
• 4.4.1-dev.6da7379.0 - 2024-02-09
• 4.4.1-dev.42ec398.0 - 2024-02-01
• 4.4.1-dev.0a8f9e4.0 - 2024-02-08
• 4.4.1-dev.0881fe1.0 - 2024-02-08
• 4.4.1-dev.028dc20.0 - 2024-01-23
• 4.4.0 - 2024-01-17
  

  [4.4.0]

  Added

  web3-eth

  • Catch TransactionPollingTimeoutError was added to send transaction events (#6623)

  Changed

  web3-eth-abi

  • Use AbiError instead of Error for errors at web3-eth-abi (#6641).

  web3-eth-contract

  • Allow the deploy function to accept parameters, even when no ABI was provided to the Contract(#6635)

  web3

  • Dependencies updated

  Fixed

  web3-eth-abi

  • Fixed an issue with detecting Uint8Array (#6486)

  web3-eth-accounts

  • Send Transaction config used to be ignored if the passed common did not have a copy() and the chainId was not provided (#6663)
  • Fixed an issue with detecting Uint8Array (#6486)

  web3-eth-contract

  • Fix and error that happen when trying to get past events by calling contract.getPastEvents or contract.events.allEvents(), if there is no matching events. (#6647)
  • Fixed: The Contract is not using the context wallet passed if context was passed at constructor. (#6661)

  web3-utils

  • Fixed an issue with detecting Uint8Array (#6486)

  web3-validator

  • Fixed an issue with detecting Uint8Array (#6486)

from web3 GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs