Sam Kleinman
7bf84d9d7f
config: seperate priv validator config into seperate section ( #6462 )
Addresses a beginning component of #6255
4 years ago
Callum Waters
89b3b10740
docs: hide security page (second attempt) ( #6511 )
4 years ago
Emmanuel T Odeke
1e0efb6758
libs/log: use fmt.Fprintf directly with *bytes.Buffer to avoid unnecessary allocations ( #6503 )
Noticed from profiling that the loggers are memory hungry and alas,
we were passing fmt.Sprintf strings to (*bytes.Buffer).WriteString
which defeats the purpose of using fmt.* This change fixes that and
instead directly invokes fmt.Fprintf.
The benchmarks show the improvement:
```shell
$ benchstat before.txt after.txt
name old time/op new time/op delta
TMLoggerSimple-8 1.67µs ± 4% 1.69µs ±13% ~ (p=0.118 n=20+19)
TMLoggerContextual-8 2.01µs ± 8% 1.94µs ± 1% -3.79% (p=0.000 n=18+20)
TMFmtLoggerSimple-8 1.20µs ± 3% 1.16µs ± 2% -3.39% (p=0.000 n=20+16)
TMFmtLoggerContextual-8 1.53µs ±19% 1.43µs ±13% -6.10% (p=0.001 n=20+20)
name old alloc/op new alloc/op delta
TMLoggerSimple-8 696B ± 0% 616B ± 0% -11.49% (p=0.000 n=20+20)
TMLoggerContextual-8 1.02kB ± 0% 0.94kB ± 0% -7.87% (p=0.000 n=20+20)
TMFmtLoggerSimple-8 240B ± 0% 160B ± 0% -33.33% (p=0.000 n=20+20)
TMFmtLoggerContextual-8 416B ± 0% 336B ± 0% -19.23% (p=0.000 n=20+20)
name old allocs/op new allocs/op delta
TMLoggerSimple-8 13.0 ± 0% 12.0 ± 0% -7.69% (p=0.000 n=20+20)
TMLoggerContextual-8 17.0 ± 0% 16.0 ± 0% -5.88% (p=0.000 n=20+20)
TMFmtLoggerSimple-8 6.00 ± 0% 5.00 ± 0% -16.67% (p=0.000 n=20+20)
TMFmtLoggerContextual-8 8.00 ± 0% 7.00 ± 0% -12.50% (p=0.000 n=20+20)
```
Fixes #6502
4 years ago
Marko
1709e49813
version: revert version through ldflag only ( #6494 )
## Description
Add version back to versions, but allow it to be overridden via a ldflag.
Reason:
Many users are not setting the ldflag causing issues with tooling that relies on it (cosmjs)
closes #6488
cc @webmaster128
4 years ago
dependabot[bot]
97202b06c3
build(deps): Bump github.com/lib/pq from 1.10.1 to 1.10.2 ( #6505 )
Bumps [github.com/lib/pq](https://github.com/lib/pq ) from 1.10.1 to 1.10.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/lib/pq/releases ">github.com/lib/pq's releases</a>.</em></p>
<blockquote>
<h2>v1.10.2</h2>
<ul>
<li>fix TimeTZ with second offsets</li>
<li>fix GOOS compilation</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="2da6713d67
"><code>2da6713</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/lib/pq/issues/1039 ">#1039</a> from otan-cockroach/timetz_fix</li>
<li><a href="ad47bab1aa
"><code>ad47bab</code></a> encode: fix TimeTZ with second offsets</li>
<li><a href="99af95f861
"><code>99af95f</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/lib/pq/issues/1041 ">#1041</a> from otan-cockroach/libpq</li>
<li><a href="62fa4b32ec
"><code>62fa4b3</code></a> .travis.yml: fix CI</li>
<li><a href="d2b13db12b
"><code>d2b13db</code></a> Delete test.yml</li>
<li><a href="a1b1a43f73
"><code>a1b1a43</code></a> Create test.yml</li>
<li><a href="b2cfb1abfd
"><code>b2cfb1a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/lib/pq/issues/1036 ">#1036</a> from bukforks/master</li>
<li><a href="6ed3b8ac03
"><code>6ed3b8a</code></a> rm unused imports</li>
<li><a href="feb727accb
"><code>feb727a</code></a> userCurrent for unsupported GOOS</li>
<li>See full diff in <a href="https://github.com/lib/pq/compare/v1.10.1...v1.10.2 ">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/lib/pq&package-manager=go_modules&previous-version=1.10.1&new-version=1.10.2 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
4 years ago
dependabot[bot]
6fcf718572
build(deps): Bump actions/cache from 2.1.5 to 2.1.6 ( #6504 )
Bumps [actions/cache](https://github.com/actions/cache ) from 2.1.5 to 2.1.6.
- [Release notes](https://github.com/actions/cache/releases )
- [Commits](https://github.com/actions/cache/compare/v2.1.5...v2.1.6 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
Marko
de5cf42ed5
docs: adr cleanup ( #6489 )
## Description
Cleanup ADR readme and update changelogs and status of ADRs
4 years ago
dependabot[bot]
3faae852a8
build(deps): Bump dns-packet from 1.3.1 to 1.3.4 in /docs ( #6500 )
Bumps [dns-packet](https://github.com/mafintosh/dns-packet ) from 1.3.1 to 1.3.4.
- [Release notes](https://github.com/mafintosh/dns-packet/releases )
- [Changelog](https://github.com/mafintosh/dns-packet/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mafintosh/dns-packet/compare/v1.3.1...v1.3.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
JayT106
711a718162
config/indexer: custom event indexing ( #6411 )
4 years ago
dependabot[bot]
76a773d24c
build(deps): Bump docker/build-push-action from 2.4.0 to 2.5.0 ( #6496 )
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v2.4.0...v2.5.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
Greg Morrison
692f23d589
events: Add block_id to NewBlockEvent ( #6478 )
Adds `block_id` to the `newblock` websocket event
Closes #6028
4 years ago
dependabot[bot]
11b5885894
build(deps): Bump google.golang.org/grpc from 1.37.1 to 1.38.0 ( #6483 )
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.37.1 to 1.38.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases ">google.golang.org/grpc's releases</a>.</em></p>
<blockquote>
<h2>Release 1.38.0</h2>
<h1>API Changes</h1>
<ul>
<li>reflection: accept interface instead of grpc.Server struct in Register() (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4340 ">#4340</a>)</li>
<li>resolver: add error return value from ClientConn.UpdateState (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4270 ">#4270</a>)</li>
</ul>
<h1>Behavior Changes</h1>
<ul>
<li>client: do not poll name resolver when errors or bad updates are reported (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4270 ">#4270</a>)</li>
<li>transport: InTapHandle may return RPC status errors; no longer RST_STREAMs (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4365 ">#4365</a>)</li>
</ul>
<h1>New Features</h1>
<ul>
<li>client: propagate connection error causes to RPC status (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4311 ">#4311</a>, <a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4316 ">#4316</a>)</li>
<li>xds: support inline RDS resource from LDS response (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4299 ">#4299</a>)</li>
<li>xds: server side support is now experimentally available</li>
<li>server: add ForceServerCodec() to set a custom encoding.Codec on the server (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4205 ">#4205</a>)
<ul>
<li>Special Thanks: <a href="https://github.com/ash2k "><code>@ash2k</code></a></li>
</ul>
</li>
</ul>
<h1>Performance Improvements</h1>
<ul>
<li>metadata: reduce memory footprint in FromOutgoingContext (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4360 ">#4360</a>)
<ul>
<li>Special Thanks: <a href="https://github.com/irfansharif "><code>@irfansharif</code></a></li>
</ul>
</li>
</ul>
<h1>Bug Fixes</h1>
<ul>
<li>xds/balancergroup: fix rare memory leak after closing ClientConn (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4308 ">#4308</a>)</li>
</ul>
<h1>Documentation</h1>
<ul>
<li>examples: update xds examples for PSM security (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4256 ">#4256</a>)</li>
<li>grpc: improve docs on StreamDesc (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4397 ">#4397</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="0257c86573
"><code>0257c86</code></a> Change version to 1.38.0 (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4418 ">#4418</a>)</li>
<li><a href="ce3e5ec0d8
"><code>ce3e5ec</code></a> v1.38.x: backport (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4453 ">#4453</a>)</li>
<li><a href="5f95ad6233
"><code>5f95ad6</code></a> xds: workaround to deflake xds e2e tests (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4413 ">#4413</a>)</li>
<li><a href="b1940e15f6
"><code>b1940e1</code></a> xds: register resources at the mgmt server before requesting them (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4406 ">#4406</a>)</li>
<li><a href="98c895f7e0
"><code>98c895f</code></a> cleanup: use testutils.MarshalAny in more places (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4404 ">#4404</a>)</li>
<li><a href="12a377b1e4
"><code>12a377b</code></a> xds: nack route configuration with regexes that don't compile (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4388 ">#4388</a>)</li>
<li><a href="c15291b0f5
"><code>c15291b</code></a> client: initialize safe config selector when creating ClientConn (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4398 ">#4398</a>)</li>
<li><a href="328b1d171a
"><code>328b1d1</code></a> transport: allow InTapHandle to return status errors (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4365 ">#4365</a>)</li>
<li><a href="aff517ba8a
"><code>aff517b</code></a> xds: make e2e tests use a single management server instance (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4399 ">#4399</a>)</li>
<li><a href="0439465fe2
"><code>0439465</code></a> xds_resolver: fix flaky Test/XDSResolverDelayedOnCommitted (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4393 ">#4393</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/grpc/grpc-go/compare/v1.37.1...v1.38.0 ">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=google.golang.org/grpc&package-manager=go_modules&previous-version=1.37.1&new-version=1.38.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
4 years ago
Sam Kleinman
e9928f6186
p2p: limit rate of dialing new peers ( #6485 )
4 years ago
Orkun Külçe
68f4a210d3
config: Add private peer id /net_info expose information in default config ( #6490 )
Should give a warning in config until this is below issue is resolved
Related to https://github.com/tendermint/tendermint/issues/3055
4 years ago
VIMAL SURESH
6b353df567
Readme Introduction Reframed for better clarity ( #6493 )
Read me Introduction reframed for improving clarity
4 years ago
dependabot[bot]
07a1b4d618
build(deps): Bump browserslist from 4.16.4 to 4.16.6 in /docs ( #6487 )
Bumps [browserslist](https://github.com/browserslist/browserslist ) from 4.16.4 to 4.16.6.
- [Release notes](https://github.com/browserslist/browserslist/releases )
- [Changelog](https://github.com/browserslist/browserslist/blob/main/CHANGELOG.md )
- [Commits](https://github.com/browserslist/browserslist/compare/4.16.4...4.16.6 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
Marko
719e028e00
libs: internalize some packages ( #6366 )
## Description
Internalize some libs. This reduces the amount ot public API tendermint is supporting. The moved libraries are mainly ones that are used within Tendermint-core.
4 years ago
Callum Waters
72ee5aab26
evidence: separate abci specific validation ( #6473 )
4 years ago
Callum Waters
09e0df8479
light: spec alignment on verify skipping ( #6474 )
4 years ago
Cuong Manh Le
2d0b3a300f
libs/clist: fix flaky tests ( #6453 )
To make sure finalizers run, we use channel for synchronization, and a
separate goroutine for trigger runtime.GC every 1 second. In practice,
just two consecutive runtime.GC calls can make all finalizers will run,
but using a separate goroutine make the code more robust and not depend
on garbage collector internal implementation.
Fixes #6452
4 years ago
Sam Kleinman
e2a26c732c
e2e: prevent non-viable testnets ( #6486 )
4 years ago
Sam Kleinman
d9134063e7
rpc: add chunked rpc interface ( #6445 )
4 years ago
Marko
7b5a732644
consensus: add test vector for hasvote ( #6469 )
## Description
adds a test vector for hasvote in order to extra sure https://github.com/tendermint/tendermint/pull/6287 isnt breaking
4 years ago
dependabot[bot]
527dbaaa66
build(deps-dev): Bump watchpack from 2.1.1 to 2.2.0 in /docs ( #6482 )
Bumps [watchpack](https://github.com/webpack/watchpack ) from 2.1.1 to 2.2.0.
- [Release notes](https://github.com/webpack/watchpack/releases )
- [Commits](https://github.com/webpack/watchpack/compare/v2.1.1...v2.2.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
a9e231b54d
build(deps): Bump actions/stale from 3.0.18 to 3.0.19 ( #6477 )
Bumps [actions/stale](https://github.com/actions/stale ) from 3.0.18 to 3.0.19.
- [Release notes](https://github.com/actions/stale/releases )
- [Commits](https://github.com/actions/stale/compare/v3.0.18...v3.0.19 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
Sam Kleinman
0781ca3f50
p2p/pex: cleanup to pex internals and peerManager interface ( #6476 )
4 years ago
Sam Kleinman
ee230cd0f6
p2p: revert change to routePeer ( #6475 )
4 years ago
Sam Kleinman
fa891c5a4b
node: cleanup pex initialization ( #6467 )
4 years ago
Aleksandr Bezobchuk
15a67b37d8
adr 067: updates ( #6465 )
* adr: updates
* fix link
4 years ago
Aleksandr Bezobchuk
f969614dc8
adr 067: mempool refactor ( #6368 )
4 years ago
dependabot[bot]
9cee35bb8c
build(deps): Bump google.golang.org/grpc from 1.37.0 to 1.37.1 ( #6461 )
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.37.0 to 1.37.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/grpc/grpc-go/releases ">google.golang.org/grpc's releases</a>.</em></p>
<blockquote>
<h2>Release 1.37.1</h2>
<ul>
<li>client: fix rare panic when shutting down client while receiving the first name resolver update (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4398 ">#4398</a>)</li>
<li>client: fix leaked addrConn struct when addresses are updated (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4347 ">#4347</a>)</li>
<li>xds/resolver: prevent panic when two LDS updates are receives without RDS in between (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4327 ">#4327</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="64031cbfcf
"><code>64031cb</code></a> Change version to 1.37.1 (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4415 ">#4415</a>)</li>
<li><a href="ef64e13978
"><code>ef64e13</code></a> v1.37.x: backport PRs (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4411 ">#4411</a>)</li>
<li><a href="43d7a9fbd8
"><code>43d7a9f</code></a> test: enable xDS CSDS test (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4359 ">#4359</a>)</li>
<li><a href="274d8cf1f6
"><code>274d8cf</code></a> Change version to 1.37.1-dev (<a href="https://github-redirect.dependabot.com/grpc/grpc-go/issues/4305 ">#4305</a>)</li>
<li>See full diff in <a href="https://github.com/grpc/grpc-go/compare/v1.37.0...v1.37.1 ">compare view</a></li>
</ul>
</details>
<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=google.golang.org/grpc&package-manager=go_modules&previous-version=1.37.0&new-version=1.37.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
4 years ago
Callum Waters
230abbe676
fix pex test to handle too many addresses ( #6451 )
4 years ago
dependabot[bot]
7648544f27
build(deps): Bump docker/login-action from 1 to 1.9.0 ( #6460 )
Bumps [docker/login-action](https://github.com/docker/login-action ) from 1 to 1.9.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v1...v1.9.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
6cd07682ae
build(deps): Bump actions/checkout from 2 to 2.3.4 ( #6456 )
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 2.3.4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v2.3.4 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
dependabot[bot]
dfa28b77c5
build(deps): Bump actions/stale from 3 to 3.0.18 ( #6455 )
Bumps [actions/stale](https://github.com/actions/stale ) from 3 to 3.0.18.
- [Release notes](https://github.com/actions/stale/releases )
- [Commits](https://github.com/actions/stale/compare/v3...v3.0.18 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Callum Waters <cmwaters19@gmail.com>
4 years ago
dependabot[bot]
c29aaf78d4
build(deps): Bump docker/build-push-action from 2 to 2.4.0 ( #6454 )
Bumps [docker/build-push-action](https://github.com/docker/build-push-action ) from 2 to 2.4.0.
- [Release notes](https://github.com/docker/build-push-action/releases )
- [Commits](https://github.com/docker/build-push-action/compare/v2...v2.4.0 )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
Callum Waters
c320eb1407
split out initializers into setup.go ( #6446 )
4 years ago
Cuong Manh Le
a9fc0c32b2
crypto/merkle: pre-allocate data slice in innherHash ( #6443 )
So we can reduce pressure on runtime for checking that slice has enough
capacity before appending.
4 years ago
Sam Kleinman
fdd506a126
rpc: clean up client global state in tests ( #6438 )
4 years ago
Callum Waters
811dbe439f
light: ensure trust level is strictly less than 1 ( #6447 )
4 years ago
dependabot[bot]
d1c9463bef
build(deps): Bump JamesIves/github-pages-deploy-action ( #6448 )
Bumps [JamesIves/github-pages-deploy-action](https://github.com/JamesIves/github-pages-deploy-action ) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/JamesIves/github-pages-deploy-action/releases )
- [Commits](https://github.com/JamesIves/github-pages-deploy-action/compare/4.1.1...fc8c70cff50fde90064206d16371f7b0fb936d7d )
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
4 years ago
Callum Waters
9e2af66a0a
types: fix verify commit light / trusting bug ( #6414 )
4 years ago
Alexandre Ardhuin
6abfa1d52f
Update DOCKER/README.md to make init succeed ( #6444 )
4 years ago
Callum Waters
64e7b5efea
p2p: add channel descriptors to open channel ( #6440 )
4 years ago
JayT106
e334555393
node/state: graceful shutdown in the consensus state ( #6370 )
4 years ago
Callum Waters
4dded9c852
pex: fix send requests too often test ( #6437 )
4 years ago
Callum Waters
a91680efee
test: create common functions for easily producing tm data structures ( #6435 )
4 years ago
Emmanuel T Odeke
6fdf665385
libs/os: avoid CopyFile truncating destination before checking if regular file ( #6428 )
This change fixes a potential exploitable vulnerability
that can cause the WAL to be consistently truncated by falsely
supplying the WAL path which would be any arbitrary dirrectory.
Fixes #6427
4 years ago
Sam Kleinman
0b0914b3df
rpc: remove global environment ( #6426 )
4 years ago
Callum Waters
0740d8626c
remove visibility of security page from tendermint docs ( #6420 )
4 years ago