Skip to content

v1.4.2
Compare
Choose a tag to compare
@github-actions github-actions released this 27 May 15:25
· 92 commits to main since this release
v1.4.2
f325f5f
This commit was signed with the committer’s verified signature.
ankurdotb Ankur Banerjee
GPG key ID: 1209F5EC3A672141
Learn about vigilant mode.

Release Notes for cheqd-node v1.4.2

This release is a security update to remediate the "Huckleberry" vulnerability in ibc-go. Please see our security advisory notice for further details.

This is a non-state breaking release and does not require a coordinated upgrade. Node operators are suggested to update their nodes regardless to remediate the vulnerability. You can use the interactive installer to carry this out, or by manually replacing the cheqd-noded binary wherever it is on your system.

What's Changed

  • ci: Update cleanup cache by @ankurdotb in #579
  • chore(deps-dev): Bump semantic-release from 21.0.0 to 21.0.1 by @dependabot in #583
  • chore(deps): Bump github.com/onsi/gomega from 1.27.5 to 1.27.6 by @dependabot in #580
  • chore(deps): Bump bufbuild/buf-setup-action from 1.15.1 to 1.16.0 by @dependabot in #582
  • chore(deps): Bump bufbuild/buf-setup-action from 1.16.0 to 1.17.0 by @dependabot in #585
  • chore(deps): Bump github.com/spf13/cobra from 1.6.1 to 1.7.0 by @dependabot in #584
  • chore(deps): Bump github/super-linter from 4 to 5 by @dependabot in #586
  • chore(deps-dev): Bump semantic-release from 21.0.1 to 21.0.2 by @dependabot in #589
  • chore(deps): Bump github.com/cosmos/gogoproto from 1.4.7 to 1.4.9 by @dependabot in #590
  • chore(deps): Bump bufbuild/buf-setup-action from 1.17.0 to 1.18.0 by @dependabot in #592
  • chore(deps): Bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.4 by @dependabot in #591
  • security(no-release): Security upgrade alpine from 3.17 to 3 [Snyk] by @snyk-bot in #593
  • chore(deps): Bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5 by @dependabot in #595
  • chore(deps): Bump github.com/spf13/cast from 1.5.0 to 1.5.1 by @dependabot in #594
  • ci(deps): Bump bufbuild/buf-setup-action from 1.18.0 to 1.19.0 by @dependabot in #596
  • chore(deps): Bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by @dependabot in #598
  • chore(deps): Bump github.com/onsi/gomega from 1.27.6 to 1.27.7 by @dependabot in #597
  • security: ibc-go "Huckleberry" patch [DEV-2690] by @ankurdotb in #600
  • ci(release): Fix release workflow guard for GoReleaser by @ankurdotb in #601
  • ci(release): Add better release guard in CI workflow by @ankurdotb in #602

Full Changelog: v1.4.0...v1.4.2

Contributors

ankurdotb, snyk-bot, and dependabot
Assets 7
Loading