[Snyk] Security upgrade ipfs from 0.52.3 to 0.57.0

[paradisebee]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • src/chains/filecoin/filecoin/package.json
  • src/chains/filecoin/filecoin/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Open Redirect SNYK-JS-NODEFORGE-2330875	No	Proof of Concept
	529/1000 Why? Has a fix available, CVSS 6.3	Prototype Pollution SNYK-JS-NODEFORGE-2331908	No	No Known Exploit
	494/1000 Why? Has a fix available, CVSS 5.6	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430337	No	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430339	No	No Known Exploit
	494/1000 Why? Has a fix available, CVSS 5.6	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430341	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ipfs

The new version differs by 154 commits.

• 7f24131 chore: publish
• 93b81f9 chore: update contributors
• 33fa734 feat: ed25519 keys by default (Upgrade of Ethereum JS to v6 has introduced technical debt trufflesuite/ganache#3693)
• 2886134 chore: upgrade go-ipfs to 0.9.x (0 should be a supported port trufflesuite/ganache#3805)
• 2f3df7a fix: return rate in/out as number (#3798)
• 4f532a5 fix: do not write blocks we already have (docs: fix typos trufflesuite/ganache#3801)
• db302d0 chore: revert "chore(deps-dev): bump go-ipfs from 0.8.0 to 0.9.1" (#3803)
• 4c7ac57 chore(deps-dev): bump go-ipfs from 0.8.0 to 0.9.1 (Move truffle's hdwallet package to ganache and update our wallet to use it. trufflesuite/ganache#3765)
• 746a54c fix: fix up examples (#3799)
• b7fc9e8 docs: update files.rm example (Where's the flavor? trufflesuite/ganache#3797)
• 1ad6001 feat: make ipfs.get output tarballs (#3785)
• 79f661e fix: typescript errors (#3781)
• 7fdba64 docs: update remote pinning docs (System Error when running Ganache 2.5.4 on win32 trufflesuite/ganache#3786)
• fdc03ab chore: updated example dependencies
• dde3d28 chore: publish
• 8178225 chore: update contributors
• 1bf35f8 fix: typo in 'multiformats' type defs (refactor: remove ts-ignores and fix types trufflesuite/ganache#3778)
• 8380d71 fix: restore default level-js options (Can Ganesh be used as a commercial project? trufflesuite/ganache#3779)
• bf23e48 docs: update ipld/multiformats docs (build(deps): bump parse-url and lerna trufflesuite/ganache#3771)
• 349cbd0 chore: use multiformats sha3 impl (v7.4.4 trufflesuite/ganache#3772)
• bb6113a chore: only run example tests if code has changed (consider updating persistent cache to get blocks from fork network by tag trufflesuite/ganache#3773)
• d4090e0 chore: restore git and eth graph traversal examples (Add a section to our release notes generator about how to update/install ganache trufflesuite/ganache#3770)
• 4b79dcb chore: updated example dependencies
• ef41f92 chore: publish

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Open Redirect
🦉 Prototype Pollution