Skip to content

Bump semver, @truffle/contract, ganache-core and @truffle/hdwallet-provider#6

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-18a5b98952
Open

Bump semver, @truffle/contract, ganache-core and @truffle/hdwallet-provider#6
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/multi-18a5b98952

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 5, 2026

Bumps semver to 5.7.2 and updates ancestor dependencies semver, @truffle/contract, ganache-core and @truffle/hdwallet-provider. These dependencies need to be updated together.

Updates semver from 5.7.1 to 5.7.2

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

5.7

  • Add minVersion method

5.6

  • Move boolean loose param to an options object, with backwards-compatibility protection.
  • Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

  • Add version coercion capabilities

5.4

  • Add intersection checking

5.3

  • Add minSatisfying method

5.2

  • Add prerelease(v) that returns prerelease components

5.1

  • Add Backus-Naur for ranges
  • Remove excessively cute inspection methods

5.0

  • Remove AMD/Browserified build artifacts
  • Fix ltr and gtr when using the * range
  • Fix for range * with a prerelease identifier
Commits
Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.


Updates semver from 6.3.0 to 6.3.1

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

5.7

  • Add minVersion method

5.6

  • Move boolean loose param to an options object, with backwards-compatibility protection.
  • Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

  • Add version coercion capabilities

5.4

  • Add intersection checking

5.3

  • Add minSatisfying method

5.2

  • Add prerelease(v) that returns prerelease components

5.1

  • Add Backus-Naur for ranges
  • Remove excessively cute inspection methods

5.0

  • Remove AMD/Browserified build artifacts
  • Fix ltr and gtr when using the * range
  • Fix for range * with a prerelease identifier
Commits
Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.


Updates semver from 5.7.0 to 5.7.0

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

5.7

  • Add minVersion method

5.6

  • Move boolean loose param to an options object, with backwards-compatibility protection.
  • Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

  • Add version coercion capabilities

5.4

  • Add intersection checking

5.3

  • Add minSatisfying method

5.2

  • Add prerelease(v) that returns prerelease components

5.1

  • Add Backus-Naur for ranges
  • Remove excessively cute inspection methods

5.0

  • Remove AMD/Browserified build artifacts
  • Fix ltr and gtr when using the * range
  • Fix for range * with a prerelease identifier
Commits
Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.


Updates semver from 7.1.2 to 7.7.3

Release notes

Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

Changelog

Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

5.7

  • Add minVersion method

5.6

  • Move boolean loose param to an options object, with backwards-compatibility protection.
  • Add ability to opt out of special prerelease version handling with the includePrerelease option flag.

5.5

  • Add version coercion capabilities

5.4

  • Add intersection checking

5.3

  • Add minSatisfying method

5.2

  • Add prerelease(v) that returns prerelease components

5.1

  • Add Backus-Naur for ranges
  • Remove excessively cute inspection methods

5.0

  • Remove AMD/Browserified build artifacts
  • Fix ltr and gtr when using the * range
  • Fix for range * with a prerelease identifier
Commits
Maintainer changes

This version was pushed to npm by lukekarrys, a new releaser for semver since your current version.


Updates @truffle/contract from 4.1.7 to 4.6.31

Commits

Updates ganache-core from 2.10.1 to 2.13.2

Release notes

Sourced from ganache-core's releases.

v2.13.2 – Taco Tuesday 🌮

We're moving to a betalatest release pipeline, where all non-hotfix changes are first released in a beta before being promoted to a stable release.

We'd love it if you'd start using the latest betas and let us know early and often if you find any bugs or regressions!

Highlights

v2.13.2 – Taco Tuesday 🌮

It's Tuesday. And you know what that means, don't you? Tacos! And tacos are delicious. And do you know what else is delicious? This release! It's got a couple of new bug fixes you'll want to check out, especially if you use the forking feature.

Bon appetit!

How to Upgrade

Upgrade to the latest version of ganache-core by running:

npm

npm uninstall ganache-core
npm install ganache-core@latest

yarn

yarn remove ganache-core
yarn add ganache-core@latest

Changelog

... (truncated)

Commits
  • ff312f6 2.13.2
  • a0d3354 chore: update eth-sig-util to v3.0.0 (#711)
  • 210c832 fix: handle failure to retrieve net_version when forking (#676)
  • 2de990f fix: storage value encoding in forked trie. (#658)
  • 1177fe8 Add removed field to Log JSON (#651)
  • 685b1d9 2.13.1
  • a74efce don't bundle web3-provider-engine
  • ce5d4d3 2.13.1-beta.1
  • d918080 update shrinkwrap after npm v7 update
  • 413bfc8 chore: ensure the shrinkwrap includes the right eth-sig-util version
  • Additional commits viewable in compare view

Updates @truffle/hdwallet-provider from 1.0.30 to 1.7.0

Commits
  • 4ee88a3 Publish
  • dee370e Merge pull request #4400 from trufflesuite/hdwallet-constructor
  • 14f7213 Update tests to use url instead of providerOrUrl
  • b788e58 Publish
  • 45e3dbe Update options parsing and some tests
  • 9fe5bc3 Adjust some tests and add a new one
  • fb18c0b Update types, a provider validation method, and accept 2 more constructor arg...
  • 72b2760 Add url and provider as constructor args for hdwallet
  • 2b07ec5 Merge pull request #4276 from XWJACK/hdwallet-provider-eip1559
  • 39ba9ba Bumpe @​trufflesuite/web3-provider-engine to 15.0.14
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump semver, @truffle/contract, ganache-core and @truffle/hdwallet-pr…
986d473 
…ovider

Bumps [semver](https://github.com/npm/node-semver) to 5.7.2 and updates ancestor dependencies [semver](https://github.com/npm/node-semver), [@truffle/contract](https://github.com/trufflesuite/truffle/tree/HEAD/packages/contract), [ganache-core](https://github.com/trufflesuite/ganache-core) and [@truffle/hdwallet-provider](https://github.com/trufflesuite/truffle/tree/HEAD/packages/hdwallet-provider). These dependencies need to be updated together.


Updates `semver` from 5.7.1 to 5.7.2
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.2)

Updates `semver` from 6.3.0 to 6.3.1
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.2)

Updates `semver` from 5.7.0 to 5.7.0
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.2)

Updates `semver` from 7.1.2 to 7.7.3
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.2)

Updates `@truffle/contract` from 4.1.7 to 4.6.31
- [Release notes](https://github.com/trufflesuite/truffle/releases)
- [Commits](https://github.com/trufflesuite/truffle/commits/@truffle/contract@4.6.31/packages/contract)

Updates `ganache-core` from 2.10.1 to 2.13.2
- [Release notes](https://github.com/trufflesuite/ganache-core/releases)
- [Commits](ConsenSys-archive/ganache@v2.10.1...v2.13.2)

Updates `@truffle/hdwallet-provider` from 1.0.30 to 1.7.0
- [Release notes](https://github.com/trufflesuite/truffle/releases)
- [Commits](https://github.com/trufflesuite/truffle/commits/@truffle/hdwallet-provider@1.7.0/packages/hdwallet-provider)

---
updated-dependencies:
- dependency-name: semver
  dependency-version: 5.7.2
  dependency-type: indirect
- dependency-name: semver
  dependency-version: 6.3.1
  dependency-type: indirect
- dependency-name: semver
  dependency-version: 5.7.0
  dependency-type: indirect
- dependency-name: semver
  dependency-version: 7.7.3
  dependency-type: indirect
- dependency-name: "@truffle/contract"
  dependency-version: 4.6.31
  dependency-type: indirect
- dependency-name: ganache-core
  dependency-version: 2.13.2
  dependency-type: indirect
- dependency-name: "@truffle/hdwallet-provider"
  dependency-version: 1.7.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 5, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants