Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[email protected]:Setland34/contracts.git #30

Open
wants to merge 24 commits into
base: main
Choose a base branch
from
Open

[email protected]:Setland34/contracts.git #30

wants to merge 24 commits into from

Conversation

Setland34
Copy link

@Setland34 Setland34 commented Nov 11, 2024
edited
Loading

forge test --fork-url https://sepolia.infura.io/v3/YOURKEY or forge test --fork-url https://eth-sepolia.g.alchemy.com/v2/YOURKEY
private_key: ${{ secrets.PRIVATE_KEY }}

Setland34
Setland34 commented Nov 11, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Setland34
Setland34 commented Nov 11, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Setland34:main

Setland34
Setland34 commented Nov 11, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Setland34:main

Setland34
Setland34 commented Nov 12, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Setland34
Setland34 commented Nov 12, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks Good

@Setland34 Setland34 marked this pull request as draft November 12, 2024 08:14
@Setland34 Setland34 marked this pull request as ready for review November 16, 2024 04:41
Setland34
Setland34 commented Dec 9, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LSGD

Setland34
Setland34 commented Dec 9, 2024
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed and Approved

Setland34 and others added 11 commits December 9, 2024 21:25
@Setland34
Update npm-publish.yml
539ad85 
Signed-off-by: Seth J Landry <[email protected]>
@dependabot
Bump the npm_and_yarn group across 1 directory with 13 updates
50c325a 
Bumps the npm_and_yarn group with 10 updates in the /lib/openzeppelin-contracts directory:

| Package | From | To |
| --- | --- | --- |
| [undici](https://github.com/nodejs/undici) | `5.22.1` | `5.28.4` |
| [body-parser](https://github.com/expressjs/body-parser) | `1.20.2` | `1.20.3` |
| [express](https://github.com/expressjs/express) | `4.18.2` | `4.21.2` |
| [braces](https://github.com/micromatch/braces) | `3.0.2` | `3.0.3` |
| [crypto-js](https://github.com/brix/crypto-js) | `3.3.0` | `4.2.0` |
| [merkletreejs](https://github.com/miguelmota/merkletreejs) | `0.2.32` | `0.4.0` |
| [flat](https://github.com/hughsk/flat) | `4.1.1` | `5.0.2` |
| [eth-gas-reporter](https://github.com/cgewecke/eth-gas-reporter) | `0.2.25` | `0.2.27` |
| [solidity-coverage](https://github.com/sc-forks/solidity-coverage) | `0.8.2` | `0.8.14` |
| [secp256k1](https://github.com/cryptocoinjs/secp256k1-node) | `4.0.3` | `4.0.4` |



Updates `undici` from 5.22.1 to 5.28.4
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v5.22.1...v5.28.4)

Updates `body-parser` from 1.20.2 to 1.20.3
- [Release notes](https://github.com/expressjs/body-parser/releases)
- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)
- [Commits](expressjs/body-parser@1.20.2...1.20.3)

Updates `express` from 4.18.2 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](expressjs/express@4.18.2...4.21.2)

Updates `braces` from 3.0.2 to 3.0.3
- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)
- [Commits](micromatch/braces@3.0.2...3.0.3)

Updates `crypto-js` from 3.3.0 to 4.2.0
- [Commits](brix/crypto-js@3.3.0...4.2.0)

Updates `merkletreejs` from 0.2.32 to 0.4.0
- [Commits](https://github.com/miguelmota/merkletreejs/commits)

Updates `flat` from 4.1.1 to 5.0.2
- [Release notes](https://github.com/hughsk/flat/releases)
- [Commits](hughsk/flat@4.1.1...5.0.2)

Updates `eth-gas-reporter` from 0.2.25 to 0.2.27
- [Release notes](https://github.com/cgewecke/eth-gas-reporter/releases)
- [Changelog](https://github.com/cgewecke/eth-gas-reporter/blob/master/CHANGELOG.md)
- [Commits](https://github.com/cgewecke/eth-gas-reporter/commits/v0.2.27)

Updates `solidity-coverage` from 0.8.2 to 0.8.14
- [Release notes](https://github.com/sc-forks/solidity-coverage/releases)
- [Changelog](https://github.com/sc-forks/solidity-coverage/blob/master/CHANGELOG.md)
- [Commits](sc-forks/solidity-coverage@v0.8.2...v0.8.14)

Updates `express` from 4.18.2 to 4.21.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/4.21.2/History.md)
- [Commits](expressjs/express@4.18.2...4.21.2)

Updates `follow-redirects` from 1.15.2 to 1.15.9
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.15.2...v1.15.9)

Updates `secp256k1` from 4.0.3 to 4.0.4
- [Release notes](https://github.com/cryptocoinjs/secp256k1-node/releases)
- [Commits](cryptocoinjs/secp256k1-node@v4.0.3...v4.0.4)

Updates `send` from 0.18.0 to 0.19.0
- [Release notes](https://github.com/pillarjs/send/releases)
- [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md)
- [Commits](pillarjs/send@0.18.0...0.19.0)

Updates `serve-static` from 1.15.0 to 1.16.2
- [Release notes](https://github.com/expressjs/serve-static/releases)
- [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md)
- [Commits](expressjs/serve-static@v1.15.0...v1.16.2)

---
updated-dependencies:
- dependency-name: undici
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: body-parser
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: express
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: braces
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: crypto-js
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: merkletreejs
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: flat
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: eth-gas-reporter
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: solidity-coverage
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: express
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: follow-redirects
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: secp256k1
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: send
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: serve-static
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <[email protected]>
@Setland34
Merge pull request #7 from Setland34/dependabot/npm_and_yarn/lib/open…
8278b8f 
…zeppelin-contracts/npm_and_yarn-e8f91a0896
@Setland34
"docs/token.md : Added example use case for staged failures
ca991cd
@Setland34
Create SECURITY.md
792a1dc 
docs: add security policy document

- Added security.md to outline the security policies and procedures.
- Included information on how to report security vulnerabilities.

Signed-off-by: Seth Landry <[email protected]>
@Setland34
Merge branch 'Setland34:main' into main
73082bf
@Setland34
Create generator-generic-ossf-slsa3-publish.yml
6805f1c 
Signed-off-by: Seth Landry <[email protected]>
@Setland34
Rename ReentrancyGuard.json to ReentrancyGuard.sol
4408031 
Changed ReentrancyGuard.json to ReentrancyGuard.sol
@Setland34
Merge pull request #10 from Setland34/patch-8
b25e907
@Setland34
Create npm-publish-github-packages.yml
f4feebc 
Signed-off-by: Seth Landry <[email protected]>
@Setland34
Create python-package-conda.yml
85d2069 
Signed-off-by: Seth Landry <[email protected]>
Setland34
Setland34 commented Jan 8, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Qualified

Setland34
Setland34 commented Jan 8, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Qualified

@Setland34
Create gem-push.yml
ae78b4d 
Signed-off-by: Seth Landry <[email protected]>
Setland34
Setland34 commented Jan 8, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Setland34
Setland34 commented Jan 8, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@Setland34
Update failures
0734aaa 
Signed-off-by: Seth Landry <[email protected]>
Setland34
Setland34 commented Jan 8, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated failures file

Setland34
Setland34 commented Jan 8, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"merkletreejs": "^0.4.0",

@Setland34
Merge pull request #9 from 3650-Real-Estate-Trust-2-LLC/main
ae866de 
Add SLSA Provenance Generator and Update Security Policy
Setland34
Setland34 commented Jan 10, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Setland34
Setland34 commented Jan 10, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is an example comment to be left on the pull request.

@Setland34
Copy link
Author

@reviewer_username Could you please review this pull request? Your approval is required to merge it. Thank you!

Setland34
Setland34 commented Jan 11, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Based on the changes identified in pull request #30, here are some example comments to review the changes:

  1. Positive Feedback:

    • "Great job on setting up the Ruby Gem workflow in .github/workflows/gem-push.yml. The use of actions/checkout@v4 and ruby/[email protected] looks well-configured."

  2. Suggestions for Improvement:

    • "In .github/workflows/npm-publish.yml, consider updating the node-version to the latest LTS version to ensure compatibility with the latest Node.js features and security updates."

  3. Code Readability and Best Practices:

    • "For the SECURITY.md file, it would be beneficial to add a dedicated section for external contributors outlining how they can report vulnerabilities. This will help streamline the security reporting process."

Feel free to use or modify these comments as needed when reviewing the changes in the pull request.

@Setland34
Update failures
63d7cc8 
Based on the context provided, here is an extended description for a change in the `cache/fuzz/failures` file in the `Setland34/contracts` repository:

---

### Extended Description for Change in `cache/fuzz/failures`

In this pull request, we are updating the `cache/fuzz/failures` file, which contains seeds for failure cases generated by property-based testing (proptest). This file is crucial as it ensures that specific failure cases are re-run before generating any novel cases, aiding in the identification and fixing of persistent issues.

**Original Code:**
```text
cc d14fc5025cb2d33a5b5d61ecf33657f8f679c3197bf86dcaa338007a95a43334 # shrinks to 0x7037b393000000000000000000000000000000000000000000000000000000000000007a0000000000000000000000003d9e6aa57f58768370b10a80da478b81186f3c00
cc e96264774c3f741dfdbba3cafffdbcc5936eb5d1e45f56c6fd15230a4c1e4105 # shrinks to 0x2820dd8c00000000000000000000000000000000000000000000000000000000f57c57d30000000000000000000000000000000000000000000000000000000000000e1600000000000000000000000000000000000000000000000000000000000027610000000000000000000000000000000000000000000000000000000000001d61
```

**Updated Code:**
```text
cc d14fc5025cb2d33a5b5d61ecf33657f8f679c3197bf86dcaa338007a95a43334 # shrinks to 0x7037b393000000000000000000000000000000000000000000000000000000000000007a0000000000000000000000003d9e6aa57f58768370b10a80da478b81186f3c00
cc e96264774c3f741dfdbba3cafffdbcc5936eb5d1e45f56c6fd15230a4c1e4105 # shrinks to 0x2820dd8c00000000000000000000000000000000000000000000000000000000f57c57d30000000000000000000000000000000000000000000000000000000000000e1600000000000000000000000000000000000000000000000000000000000027610000000000000000000000000000000000000000000000000000000000001d61
```

**Description of Changes:**
- The original single line entries have been retained but adjusted for clarity.
- Each entry now clearly indicates the specific failure case hash and its associated "shrink" value.
- This change enhances the readability and maintainability of the file, making it easier for developers to track and understand the failure cases.

**Impact:**
- By organizing the failure cases more clearly, this change ensures that the property-based testing framework can efficiently re-run known failure cases, thereby improving the reliability of the tests.
- This update helps all contributors to benefit from the saved cases, facilitating better collaboration and faster identification of recurring issues.

---

This extended description provides a detailed explanation of the changes, their purpose, and their impact, making it easier for reviewers to understand the context and significance of the updates.

Signed-off-by: Seth Landry <[email protected]>
Setland34
Setland34 commented Jan 11, 2025
View reviewed changes
cache/fuzz/failures Outdated Show resolved Hide resolved
Setland34
Setland34 commented Jan 11, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@Setland34
Update failures
038c91f 
Signed-off-by: Seth Landry <[email protected]>
Setland34
Setland34 commented Jan 11, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Updated Line 7-8

@Setland34
Update failures
081a110 
Repaired Lines  7-8

Signed-off-by: Seth Landry <[email protected]>
Setland34
Setland34 commented Jan 11, 2025
View reviewed changes
Copy link
Author

@Setland34 Setland34 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Repaired

@Setland34
Copy link
Author

Replace 'YOUR_INFURA_KEY' and 'YOUR_ALCHEMY_KEY' with your actual API keys

forge test --fork-url https://sepolia.infura.io/v3/YOUR_INFURA_KEY
forge test --fork-url https://eth-sepolia.g.alchemy.com/v2/YOUR_ALCHEMY_KEY

#!/bin/bash

Define your keys

INFURA_KEY="your_actual_infura_key"
ALCHEMY_KEY="your_actual_alchemy_key"

Replace in the command

forge test --fork-url https://sepolia.infura.io/v3/$INFURA_KEY
forge test --fork-url https://eth-sepolia.g.alchemy.com/v2/$ALCHEMY_KEY

@Setland34
Update npm-publish.yml
cab6513 
            - name: Setup Java JDK
  uses: actions/[email protected]
  with:
    # The Java version to set up. Takes a whole or semver Java version. See examples of supported syntax in README file
    java-version: # optional
    # The path to the `.java-version` file. See examples of supported syntax in README file
    java-version-file: # optional
    # Java distribution. See the list of supported distributions in README file
    distribution: 
    # The package type (jdk, jre, jdk+fx, jre+fx)
    java-package: # optional, default is jdk
    # The architecture of the package (defaults to the action runner's architecture)
    architecture: # optional
    # Path to where the compressed JDK is located
    jdkFile: # optional
    # Set this option if you want the action to check for the latest available version that satisfies the version spec
    check-latest: # optional
    # ID of the distributionManagement repository in the pom.xml file. Default is `github`
    server-id: # optional, default is github
    # Environment variable name for the username for authentication to the Apache Maven repository. Default is $GITHUB_ACTOR
    server-username: # optional, default is GITHUB_ACTOR
    # Environment variable name for password or token for authentication to the Apache Maven repository. Default is $GITHUB_TOKEN
    server-password: # optional, default is GITHUB_TOKEN
    # Path to where the settings.xml file will be written. Default is ~/.m2.
    settings-path: # optional
    # Overwrite the settings.xml file if it exists. Default is "true".
    overwrite-settings: # optional, default is true
    # GPG private key to import. Default is empty string.
    gpg-private-key: # optional
    # Environment variable name for the GPG private key passphrase. Default is $GPG_PASSPHRASE.
    gpg-passphrase: # optional
    # Name of the build platform to cache dependencies. It can be "maven", "gradle" or "sbt".
    cache: # optional
    # The path to a dependency file: pom.xml, build.gradle, build.sbt, etc. This option can be used with the `cache` option. If this option is omitted, the action searches for the dependency file in the entire repository. This option supports wildcards and a list of file names for caching multiple dependencies.
    cache-dependency-path: # optional
    # Workaround to pass job status to post job step. This variable is not intended for manual setting
    job-status: # optional, default is ${{ job.status }}
    # The token used to authenticate when fetching version manifests hosted on github.com, such as for the Microsoft Build of OpenJDK. When running this action on github.com, the default value is sufficient. When running on GHES, you can pass a personal access token for github.com if you are experiencing rate limiting.
    token: # optional, default is ${{ github.server_url == 'https://github.com' && github.token || '' }}
    # Name of Maven Toolchain ID if the default name of "${distribution}_${java-version}" is not wanted. See examples of supported syntax in Advanced Usage file
    mvn-toolchain-id: # optional
    # Name of Maven Toolchain Vendor if the default name of "${distribution}" is not wanted. See examples of supported syntax in Advanced Usage file
    mvn-toolchain-vendor: # optional
          

Signed-off-by: Seth Landry <[email protected]>
@Setland34
Create dependabot.yml
c087ef4 
Signed-off-by: Seth Landry <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Setland34