From 9f387e3458bb4685cf0f5d0c3664a9561dbbe780 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Mon, 9 Jun 2025 03:27:45 +0700 Subject: [PATCH 01/31] Add .circleci/config.yml --- .circleci/config.yml | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 .circleci/config.yml diff --git a/.circleci/config.yml b/.circleci/config.yml new file mode 100644 index 000000000000..62291703e26a --- /dev/null +++ b/.circleci/config.yml @@ -0,0 +1,31 @@ +# Use the latest 2.1 version of CircleCI pipeline process engine. +# See: https://circleci.com/docs/configuration-reference +version: 2.1 + +# Define a job to be invoked later in a workflow. +# See: https://circleci.com/docs/jobs-steps/#jobs-overview & https://circleci.com/docs/configuration-reference/#jobs +jobs: + say-hello: + # Specify the execution environment. You can specify an image from Docker Hub or use one of our convenience images from CircleCI's Developer Hub. + # See: https://circleci.com/docs/executor-intro/ & https://circleci.com/docs/configuration-reference/#executor-job + docker: + # Specify the version you desire here + # See: https://circleci.com/developer/images/image/cimg/base + - image: cimg/base:current + + # Add steps to the job + # See: https://circleci.com/docs/jobs-steps/#steps-overview & https://circleci.com/docs/configuration-reference/#steps + steps: + # Checkout the code as the first step. + - checkout + - run: + name: "Say hello" + command: "echo Hello, World!" + +# Orchestrate jobs using workflows +# See: https://circleci.com/docs/workflows/ & https://circleci.com/docs/configuration-reference/#workflows +workflows: + say-hello-workflow: # This is the name of the workflow, feel free to change it to better match your workflow. + # Inside the workflow, you define the jobs you want to run. + jobs: + - say-hello \ No newline at end of file From dca4dca3608994bbe289a151fa2f88b7624a0a61 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Thu, 3 Jul 2025 15:59:25 +0700 Subject: [PATCH 02/31] Create google.yml (#1) Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/google.yml | 116 +++++++++++++++++++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 .github/workflows/google.yml diff --git a/.github/workflows/google.yml b/.github/workflows/google.yml new file mode 100644 index 000000000000..0b5c7d12f258 --- /dev/null +++ b/.github/workflows/google.yml @@ -0,0 +1,116 @@ +# This workflow will build a docker container, publish it to Google Container +# Registry, and deploy it to GKE when there is a push to the "main" +# branch. +# +# To configure this workflow: +# +# 1. Enable the following Google Cloud APIs: +# +# - Artifact Registry (artifactregistry.googleapis.com) +# - Google Kubernetes Engine (container.googleapis.com) +# - IAM Credentials API (iamcredentials.googleapis.com) +# +# You can learn more about enabling APIs at +# https://support.google.com/googleapi/answer/6158841. +# +# 2. Ensure that your repository contains the necessary configuration for your +# Google Kubernetes Engine cluster, including deployment.yml, +# kustomization.yml, service.yml, etc. +# +# 3. Create and configure a Workload Identity Provider for GitHub: +# https://github.com/google-github-actions/auth#preferred-direct-workload-identity-federation. +# +# Depending on how you authenticate, you will need to grant an IAM principal +# permissions on Google Cloud: +# +# - Artifact Registry Administrator (roles/artifactregistry.admin) +# - Kubernetes Engine Developer (roles/container.developer) +# +# You can learn more about setting IAM permissions at +# https://cloud.google.com/iam/docs/manage-access-other-resources +# +# 5. Change the values in the "env" block to match your values. + +name: 'Build and Deploy to GKE' + +on: + push: + branches: + - '"main"' + +env: + PROJECT_ID: 'my-project' # TODO: update to your Google Cloud project ID + GAR_LOCATION: 'us-central1' # TODO: update to your region + GKE_CLUSTER: 'cluster-1' # TODO: update to your cluster name + GKE_ZONE: 'us-central1-c' # TODO: update to your cluster zone + DEPLOYMENT_NAME: 'gke-test' # TODO: update to your deployment name + REPOSITORY: 'samples' # TODO: update to your Artifact Registry docker repository name + IMAGE: 'static-site' + WORKLOAD_IDENTITY_PROVIDER: 'projects/123456789/locations/global/workloadIdentityPools/my-pool/providers/my-provider' # TODO: update to your workload identity provider + +jobs: + setup-build-publish-deploy: + name: 'Setup, Build, Publish, and Deploy' + runs-on: 'ubuntu-latest' + environment: 'production' + + permissions: + contents: 'read' + id-token: 'write' + + steps: + - name: 'Checkout' + uses: 'actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332' # actions/checkout@v4 + + # Configure Workload Identity Federation and generate an access token. + # + # See https://github.com/google-github-actions/auth for more options, + # including authenticating via a JSON credentials file. + - id: 'auth' + name: 'Authenticate to Google Cloud' + uses: 'google-github-actions/auth@f112390a2df9932162083945e46d439060d66ec2' # google-github-actions/auth@v2 + with: + workload_identity_provider: '${{ env.WORKLOAD_IDENTITY_PROVIDER }}' + + # Authenticate Docker to Google Cloud Artifact Registry + - name: 'Docker Auth' + uses: 'docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567' # docker/login-action@v3 + with: + username: 'oauth2accesstoken' + password: '${{ steps.auth.outputs.auth_token }}' + registry: '${{ env.GAR_LOCATION }}-docker.pkg.dev' + + # Get the GKE credentials so we can deploy to the cluster + - name: 'Set up GKE credentials' + uses: 'google-github-actions/get-gke-credentials@6051de21ad50fbb1767bc93c11357a49082ad116' # google-github-actions/get-gke-credentials@v2 + with: + cluster_name: '${{ env.GKE_CLUSTER }}' + location: '${{ env.GKE_ZONE }}' + + # Build the Docker image + - name: 'Build and push Docker container' + run: |- + DOCKER_TAG="${GAR_LOCATION}-docker.pkg.dev/${PROJECT_ID}/${REPOSITORY}/${IMAGE}:${GITHUB_SHA}" + + docker build \ + --tag "${DOCKER_TAG}" \ + --build-arg GITHUB_SHA="${GITHUB_SHA}" \ + --build-arg GITHUB_REF="${GITHUB_REF}" \ + . + + docker push "${DOCKER_TAG}" + + # Set up kustomize + - name: 'Set up Kustomize' + run: |- + curl -sfLo kustomize https://github.com/kubernetes-sigs/kustomize/releases/download/kustomize%2Fv5.4.3/kustomize_v5.4.3_linux_amd64.tar.gz + chmod u+x ./kustomize + + # Deploy the Docker image to the GKE cluster + - name: 'Deploy to GKE' + run: |- + # replacing the image name in the k8s template + ./kustomize edit set image LOCATION-docker.pkg.dev/PROJECT_ID/REPOSITORY/IMAGE:TAG=$GAR_LOCATION-docker.pkg.dev/$PROJECT_ID/$REPOSITORY/$IMAGE:$GITHUB_SHA + ./kustomize build . | kubectl apply -f - + kubectl rollout status deployment/$DEPLOYMENT_NAME + kubectl get services -o wide From b2c33d143ad20410a66a9ffabe271c6f2fab7772 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Thu, 17 Jul 2025 04:55:55 +0700 Subject: [PATCH 03/31] Update config.yml (#3) Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .circleci/config.yml | 37 ++++++++++++++++--------------------- 1 file changed, 16 insertions(+), 21 deletions(-) diff --git a/.circleci/config.yml b/.circleci/config.yml index 62291703e26a..709c9a7474d0 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -1,31 +1,26 @@ # Use the latest 2.1 version of CircleCI pipeline process engine. # See: https://circleci.com/docs/configuration-reference -version: 2.1 -# Define a job to be invoked later in a workflow. -# See: https://circleci.com/docs/jobs-steps/#jobs-overview & https://circleci.com/docs/configuration-reference/#jobs -jobs: - say-hello: - # Specify the execution environment. You can specify an image from Docker Hub or use one of our convenience images from CircleCI's Developer Hub. - # See: https://circleci.com/docs/executor-intro/ & https://circleci.com/docs/configuration-reference/#executor-job +version: 2.1 +executors: + my-custom-executor: docker: - # Specify the version you desire here - # See: https://circleci.com/developer/images/image/cimg/base - - image: cimg/base:current + - image: cimg/base:stable + auth: + # ensure you have first added these secrets + # visit app.circleci.com/settings/project/github/Dargon789/hardhat-project/environment-variables + username: $DOCKER_HUB_USER + password: $DOCKER_HUB_PASSWORD +jobs: + web3-defi-game-project-: - # Add steps to the job - # See: https://circleci.com/docs/jobs-steps/#steps-overview & https://circleci.com/docs/configuration-reference/#steps + executor: my-custom-executor steps: - # Checkout the code as the first step. - checkout - - run: - name: "Say hello" - command: "echo Hello, World!" + - run: | + # echo Hello, World! -# Orchestrate jobs using workflows -# See: https://circleci.com/docs/workflows/ & https://circleci.com/docs/configuration-reference/#workflows workflows: - say-hello-workflow: # This is the name of the workflow, feel free to change it to better match your workflow. - # Inside the workflow, you define the jobs you want to run. + my-custom-workflow: jobs: - - say-hello \ No newline at end of file + - web3-defi-game-project- From 0837c22b666b2dcc7a524821a5bcb53465fad8a7 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Fri, 10 Oct 2025 14:53:08 +0000 Subject: [PATCH 04/31] feat: upgrade c8 from 9.1.0 to 10.1.3 Snyk has created this PR to upgrade c8 from 9.1.0 to 10.1.3. See this package in npm: c8 See this project in Snyk: https://app.snyk.io/org/dargon789/project/68a3328a-d2b6-4975-b7db-af96a29fc4ac?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr --- packages/google-cloud-modelarmor/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-modelarmor/samples/package.json b/packages/google-cloud-modelarmor/samples/package.json index 93db4fd6e3ae..00b5406139a7 100644 --- a/packages/google-cloud-modelarmor/samples/package.json +++ b/packages/google-cloud-modelarmor/samples/package.json @@ -17,7 +17,7 @@ "@google-cloud/modelarmor": "^0.4.0" }, "devDependencies": { - "c8": "^9.0.0", + "c8": "^10.1.3", "chai": "^4.2.0", "mocha": "^8.0.0" } From b37e491fecf64286496c18c2c180d431c2ebf885 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Fri, 10 Oct 2025 14:53:13 +0000 Subject: [PATCH 05/31] feat: upgrade c8 from 9.1.0 to 10.1.3 Snyk has created this PR to upgrade c8 from 9.1.0 to 10.1.3. See this package in npm: c8 See this project in Snyk: https://app.snyk.io/org/dargon789/project/e2757016-0d48-429d-8c99-bffba0039c3a?utm_source=github-cloud-app&utm_medium=referral&page=upgrade-pr --- packages/google-cloud-tpu/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-tpu/samples/package.json b/packages/google-cloud-tpu/samples/package.json index 7377259a7360..c5276db66979 100644 --- a/packages/google-cloud-tpu/samples/package.json +++ b/packages/google-cloud-tpu/samples/package.json @@ -16,7 +16,7 @@ "@google-cloud/tpu": "^4.1.0" }, "devDependencies": { - "c8": "^9.0.0", + "c8": "^10.1.3", "chai": "^4.2.0", "mocha": "^8.0.0" } From 3c8b46339b0bfa3b9a0ab3b49af9a5a1be5eab22 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Mon, 13 Oct 2025 05:05:45 +0000 Subject: [PATCH 06/31] Update google.yml (#11) Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/google.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/google.yml b/.github/workflows/google.yml index 0b5c7d12f258..9b417be005c5 100644 --- a/.github/workflows/google.yml +++ b/.github/workflows/google.yml @@ -37,7 +37,8 @@ on: push: branches: - '"main"' - + - '"master"' + - '"dev"' env: PROJECT_ID: 'my-project' # TODO: update to your Google Cloud project ID GAR_LOCATION: 'us-central1' # TODO: update to your region From 1736015fda94c5336e196b2b31662986bb83a502 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Thu, 20 Nov 2025 18:30:43 +0000 Subject: [PATCH 07/31] fix: packages/google-cloud-dialogflow-cx/samples/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 --- packages/google-cloud-dialogflow-cx/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-dialogflow-cx/samples/package.json b/packages/google-cloud-dialogflow-cx/samples/package.json index 7d0a6a36a095..411240a69f2c 100644 --- a/packages/google-cloud-dialogflow-cx/samples/package.json +++ b/packages/google-cloud-dialogflow-cx/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.1.1" + "mocha": "^10.6.0" } } \ No newline at end of file From f75fd03a477b0760664a9314b62dac5d73bc16f9 Mon Sep 17 00:00:00 2001 From: Dargon789 <64915515+Dargon789@users.noreply.github.com> Date: Sun, 23 Nov 2025 03:23:53 +0700 Subject: [PATCH 08/31] Create build-attested-image.yml (#217) * Create build-attested-image.yml CI: Introduce a build-attested-image workflow that builds and pushes a Docker image to GitHub Container Registry and generates build provenance attestations. Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> * Update .github/workflows/build-attested-image.yml Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> --------- Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> --- .github/workflows/build-attested-image.yml | 44 ++++++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 .github/workflows/build-attested-image.yml diff --git a/.github/workflows/build-attested-image.yml b/.github/workflows/build-attested-image.yml new file mode 100644 index 000000000000..bf8d47ffe628 --- /dev/null +++ b/.github/workflows/build-attested-image.yml @@ -0,0 +1,44 @@ +name: build-attested-image + +on: + push: + branches: [main] + +jobs: + build: + runs-on: ubuntu-latest + permissions: + id-token: write + packages: write + contents: read + attestations: write + env: + REGISTRY: ghcr.io + IMAGE_NAME: ${{ github.repository }} + + steps: + - name: Checkout + uses: actions/checkout@v4 + - name: Login to GitHub Container Registry + uses: docker/login-action@v3 + with: + registry: ${{ env.REGISTRY }} + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + - name: Build and push image + id: push + uses: docker/build-push-action@v5.0.0 + with: + context: . + push: true + tags: | + ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest + ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ github.sha }} + - name: Attest + uses: actions/attest-build-provenance@v1 + id: attest + with: + subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} + subject-digest: ${{ steps.push.outputs.digest }} + push-to-registry: true + From 68e0129825e12ba297fadb20096db53e09064221 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Sun, 23 Nov 2025 05:01:28 +0700 Subject: [PATCH 09/31] fix: packages/google-shopping-merchant-products/samples/package.json to reduce vulnerabilities (#214) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-shopping-merchant-products/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-shopping-merchant-products/samples/package.json b/packages/google-shopping-merchant-products/samples/package.json index 55c92a290630..2fa74d590fa3 100644 --- a/packages/google-shopping-merchant-products/samples/package.json +++ b/packages/google-shopping-merchant-products/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From 6a7b541d3d1fea2ef68577ee730c11716104fe89 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Sun, 23 Nov 2025 05:02:18 +0700 Subject: [PATCH 10/31] fix: packages/google-cloud-kms-inventory/samples/package.json to reduce vulnerabilities (#213) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-kms-inventory/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-kms-inventory/samples/package.json b/packages/google-cloud-kms-inventory/samples/package.json index 703a42b6fb1b..aa02c8d047cb 100644 --- a/packages/google-cloud-kms-inventory/samples/package.json +++ b/packages/google-cloud-kms-inventory/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^9.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From 2670c824872a01b050485b69e2145f1d6dbdfe02 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Sun, 23 Nov 2025 05:03:21 +0700 Subject: [PATCH 11/31] fix: packages/google-cloud-certificatemanager/samples/package.json to reduce vulnerabilities (#212) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-certificatemanager/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-certificatemanager/samples/package.json b/packages/google-cloud-certificatemanager/samples/package.json index 9849c15a5e72..9d1543439287 100644 --- a/packages/google-cloud-certificatemanager/samples/package.json +++ b/packages/google-cloud-certificatemanager/samples/package.json @@ -19,7 +19,7 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^9.0.0", + "mocha": "^10.6.0", "uuid": "^9.0.0" } } \ No newline at end of file From d8288008670252cdac4363c0979a3759c31d8831 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Sun, 23 Nov 2025 05:03:58 +0700 Subject: [PATCH 12/31] fix: packages/google-cloud-workstations/samples/package.json to reduce vulnerabilities (#211) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-workstations/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-workstations/samples/package.json b/packages/google-cloud-workstations/samples/package.json index 8b7762571d10..f35fb0889249 100644 --- a/packages/google-cloud-workstations/samples/package.json +++ b/packages/google-cloud-workstations/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From 587af2fd0161218f3ff276e89ac50f51617d53f1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 22 Nov 2025 21:59:13 +0000 Subject: [PATCH 13/31] chore(deps): bump the npm_and_yarn group across 1 directory with 2 updates Bumps the npm_and_yarn group with 2 updates in the / directory: [brace-expansion](https://github.com/juliangruber/brace-expansion) and [js-yaml](https://github.com/nodeca/js-yaml). Updates `brace-expansion` from 1.1.11 to 1.1.12 - [Release notes](https://github.com/juliangruber/brace-expansion/releases) - [Commits](https://github.com/juliangruber/brace-expansion/compare/1.1.11...v1.1.12) Updates `js-yaml` from 4.1.0 to 4.1.1 - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/4.1.0...4.1.1) --- updated-dependencies: - dependency-name: brace-expansion dependency-version: 1.1.12 dependency-type: indirect dependency-group: npm_and_yarn - dependency-name: js-yaml dependency-version: 4.1.1 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] --- pnpm-lock.yaml | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index 86d481864dca..4dd86e8b1a81 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -146,8 +146,8 @@ packages: balanced-match@1.0.2: resolution: {integrity: sha512-3oSeUO0TMV67hN1AmbXsK4yaqU7tjiHlbxRDZOpH0KW9+CeX4bRAaX0Anxt0tx2MrpRpWwQaPwIlISEJhYU5Pw==} - brace-expansion@1.1.11: - resolution: {integrity: sha512-iCuPHDFgrHX7H2vEI/5xpz07zSHB00TpugqhmYtVmMO6518mCuRMoOYFldEBl0g187ufozdaHgWKcYFb61qGiA==} + brace-expansion@1.1.12: + resolution: {integrity: sha512-9T9UjW3r0UW5c1Q7GTwllptXwhvYmEzFhzMfZ9H7FQWt+uZePjZPjBP/W1ZEyZ1twGWom5/56TF4lPcqjnDHcg==} builtins@5.1.0: resolution: {integrity: sha512-SW9lzGTLvWTP1AY8xeAMZimqDrIaSdLQUcVr9DMef51niJ022Ri87SwRRKYm4A6iHfkPaiVUu/Duw2Wc4J7kKg==} @@ -691,8 +691,8 @@ packages: js-tokens@4.0.0: resolution: {integrity: sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ==} - js-yaml@4.1.0: - resolution: {integrity: sha512-wpxZs9NoxZaJESJGIZTyDEaYpl0FKSA+FB9aJiyemKhMwkxQg63h4T1KJgUGHpTqPDNRcmmYLugrRjJlBtWvRA==} + js-yaml@4.1.1: + resolution: {integrity: sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==} hasBin: true json-buffer@3.0.1: @@ -1120,7 +1120,7 @@ snapshots: globals: 13.24.0 ignore: 5.3.2 import-fresh: 3.3.0 - js-yaml: 4.1.0 + js-yaml: 4.1.1 minimatch: 3.1.2 strip-json-comments: 3.1.1 transitivePeerDependencies: @@ -1251,7 +1251,7 @@ snapshots: balanced-match@1.0.2: {} - brace-expansion@1.1.11: + brace-expansion@1.1.12: dependencies: balanced-match: 1.0.2 concat-map: 0.0.1 @@ -1614,7 +1614,7 @@ snapshots: imurmurhash: 0.1.4 is-glob: 4.0.3 is-path-inside: 3.0.3 - js-yaml: 4.1.0 + js-yaml: 4.1.1 json-stable-stringify-without-jsonify: 1.0.1 levn: 0.4.1 lodash.merge: 4.6.2 @@ -1934,7 +1934,7 @@ snapshots: js-tokens@4.0.0: {} - js-yaml@4.1.0: + js-yaml@4.1.1: dependencies: argparse: 2.0.1 @@ -1993,7 +1993,7 @@ snapshots: minimatch@3.1.2: dependencies: - brace-expansion: 1.1.11 + brace-expansion: 1.1.12 minimist@1.2.8: {} From 448eaff64f4d00fea9a53f5b2e5beb50f42e1d01 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Thu, 20 Nov 2025 21:56:01 +0000 Subject: [PATCH 14/31] fix: packages/google-cloud-iap/samples/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 --- packages/google-cloud-iap/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-iap/samples/package.json b/packages/google-cloud-iap/samples/package.json index 10b346f83182..90ed7886a2e4 100644 --- a/packages/google-cloud-iap/samples/package.json +++ b/packages/google-cloud-iap/samples/package.json @@ -18,6 +18,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From ea678e93e3ee26df319389fd5bf80c9f756a57aa Mon Sep 17 00:00:00 2001 From: Dargon789 <64915515+Dargon789@users.noreply.github.com> Date: Mon, 24 Nov 2025 13:48:16 +0700 Subject: [PATCH 15/31] Create cargo.yml (#221) CI: Introduce a CircleCI job that runs cargo fmt and cargo test using a Rust Docker image with caching for dependencies and build artifacts. https://github.com/apps/gemini-code-assist Highlights New CircleCI Configuration: A new CircleCI configuration file, .circleci/cargo.yml, has been added to the repository. Rust Build and Test Workflow: The new configuration defines a build-and-test job specifically for Rust projects, utilizing the cimg/rust:1.88.0 Docker image. Automated Code Quality Checks: The workflow includes steps to automatically check code formatting using cargo fmt -- --check and run all tests with cargo test. Dependency Caching: Caching mechanisms for Cargo dependencies are implemented to speed up subsequent CI runs by restoring and saving ~/.cargo and target directories. Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> --- .circleci/cargo.yml | 32 ++++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+) create mode 100644 .circleci/cargo.yml diff --git a/.circleci/cargo.yml b/.circleci/cargo.yml new file mode 100644 index 000000000000..7293433a50f2 --- /dev/null +++ b/.circleci/cargo.yml @@ -0,0 +1,32 @@ +version: 2.1 + +jobs: + build-and-test: + docker: + - image: cimg/rust:1.88.0 + steps: + - checkout + - restore_cache: + keys: + - v1-cargo-{{ checksum "Cargo.lock" }} + - v1-cargo- + - run: + name: "Check formatting" + command: cargo fmt -- --check + - run: + name: "Run tests" + command: cargo test + - save_cache: + key: v1-cargo-{{ checksum "Cargo.lock" }} + paths: + - "~/.cargo/bin" + - "~/.cargo/registry/index" + - "~/.cargo/registry/cache" + - "~/.cargo/git/db" + - "target" + - run: + name: "Check formatting" + command: cargo fmt -- --check + - run: + name: "Run tests" + command: cargo test From 0f8bcfca6f08aec8393d22e7dc54bf96b3309c8f Mon Sep 17 00:00:00 2001 From: Dargon789 <64915515+Dargon789@users.noreply.github.com> Date: Mon, 24 Nov 2025 14:39:04 +0700 Subject: [PATCH 16/31] Create ci-foundry.yml (#224) CI: Introduce a CircleCI 2.1 configuration file defining a custom Docker executor and a minimal workflow that checks out the repository and runs a placeholder command. Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> --- .circleci/ci-foundry.yml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 .circleci/ci-foundry.yml diff --git a/.circleci/ci-foundry.yml b/.circleci/ci-foundry.yml new file mode 100644 index 000000000000..ad53a8e49820 --- /dev/null +++ b/.circleci/ci-foundry.yml @@ -0,0 +1,26 @@ +# Use the latest 2.1 version of CircleCI pipeline process engine. +# See: https://circleci.com/docs/configuration-reference + +version: 2.1 +executors: + my-custom-executor: + docker: + - image: cimg/base:stable + auth: + # ensure you have first added these secrets + # visit app.circleci.com/settings/project/github/Dargon789/foundry/environment-variables + username: $DOCKER_HUB_USER + password: $DOCKER_HUB_PASSWORD +jobs: + web3-defi-game-project-: + + executor: my-custom-executor + steps: + - checkout + - run: | + # echo Hello, World! + +workflows: + my-custom-workflow: + jobs: + - web3-defi-game-project- From affd9f0e636fe6ca2f8900ddccec7b38851d09cd Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 19:12:46 +0700 Subject: [PATCH 17/31] fix: packages/google-cloud-dataform/samples/package.json to reduce vulnerabilities (#209) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-dataform/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-dataform/samples/package.json b/packages/google-cloud-dataform/samples/package.json index 635175a5bdd6..9b27179c1ec0 100644 --- a/packages/google-cloud-dataform/samples/package.json +++ b/packages/google-cloud-dataform/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } From f7f6d58eb8b6ef6c43208170d9951e1eb9f33a35 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 19:14:24 +0700 Subject: [PATCH 18/31] fix: packages/google-devtools-cloudbuild/samples/package.json to reduce vulnerabilities (#208) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-devtools-cloudbuild/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-devtools-cloudbuild/samples/package.json b/packages/google-devtools-cloudbuild/samples/package.json index 2922afd4d046..a355b14eb747 100644 --- a/packages/google-devtools-cloudbuild/samples/package.json +++ b/packages/google-devtools-cloudbuild/samples/package.json @@ -20,6 +20,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From f5313e440dea394f70c28a48be4ec92ae8a426e7 Mon Sep 17 00:00:00 2001 From: Dargon789 <64915515+Dargon789@users.noreply.github.com> Date: Wed, 10 Dec 2025 22:18:38 +0700 Subject: [PATCH 19/31] Create jekyll-gh-pages.yml (#230) CI: Introduce a GitHub Actions workflow that builds the Jekyll site and deploys it to GitHub Pages using preinstalled dependencies. Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/jekyll-gh-pages.yml | 51 +++++++++++++++++++++++++++ 1 file changed, 51 insertions(+) create mode 100644 .github/workflows/jekyll-gh-pages.yml diff --git a/.github/workflows/jekyll-gh-pages.yml b/.github/workflows/jekyll-gh-pages.yml new file mode 100644 index 000000000000..e31d81c58643 --- /dev/null +++ b/.github/workflows/jekyll-gh-pages.yml @@ -0,0 +1,51 @@ +# Sample workflow for building and deploying a Jekyll site to GitHub Pages +name: Deploy Jekyll with GitHub Pages dependencies preinstalled + +on: + # Runs on pushes targeting the default branch + push: + branches: ["main"] + + # Allows you to run this workflow manually from the Actions tab + workflow_dispatch: + +# Sets permissions of the GITHUB_TOKEN to allow deployment to GitHub Pages +permissions: + contents: read + pages: write + id-token: write + +# Allow only one concurrent deployment, skipping runs queued between the run in-progress and latest queued. +# However, do NOT cancel in-progress runs as we want to allow these production deployments to complete. +concurrency: + group: "pages" + cancel-in-progress: false + +jobs: + # Build job + build: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v4 + - name: Setup Pages + uses: actions/configure-pages@v5 + - name: Build with Jekyll + uses: actions/jekyll-build-pages@v1 + with: + source: ./ + destination: ./_site + - name: Upload artifact + uses: actions/upload-pages-artifact@v3 + + # Deployment job + deploy: + environment: + name: github-pages + url: ${{ steps.deployment.outputs.page_url }} + runs-on: ubuntu-latest + needs: build + steps: + - name: Deploy to GitHub Pages + id: deployment + uses: actions/deploy-pages@v4 From 02520615b4978fc7584d281e1b26bdaad9fd1bc3 Mon Sep 17 00:00:00 2001 From: Dargon789 <64915515+Dargon789@users.noreply.github.com> Date: Wed, 10 Dec 2025 22:50:53 +0700 Subject: [PATCH 20/31] Update config.yml (#232) CI: Simplify CircleCI configuration to a single Docker job that checks out the repo and echoes a greeting, orchestrated by a basic workflow. Signed-off-by: Dargon789 <64915515+Dargon789@users.noreply.github.com> --- .circleci/config.yml | 37 +++++++++++++++++++++---------------- 1 file changed, 21 insertions(+), 16 deletions(-) diff --git a/.circleci/config.yml b/.circleci/config.yml index 709c9a7474d0..d5d401c51893 100644 --- a/.circleci/config.yml +++ b/.circleci/config.yml @@ -1,26 +1,31 @@ # Use the latest 2.1 version of CircleCI pipeline process engine. # See: https://circleci.com/docs/configuration-reference - version: 2.1 -executors: - my-custom-executor: - docker: - - image: cimg/base:stable - auth: - # ensure you have first added these secrets - # visit app.circleci.com/settings/project/github/Dargon789/hardhat-project/environment-variables - username: $DOCKER_HUB_USER - password: $DOCKER_HUB_PASSWORD + +# Define a job to be invoked later in a workflow. +# See: https://circleci.com/docs/jobs-steps/#jobs-overview & https://circleci.com/docs/configuration-reference/#jobs jobs: - web3-defi-game-project-: + say-hello: + # Specify the execution environment. You can specify an image from Docker Hub or use one of our convenience images from CircleCI's Developer Hub. + # See: https://circleci.com/docs/executor-intro/ & https://circleci.com/docs/configuration-reference/#executor-job + docker: + # Specify the version you desire here + # See: https://circleci.com/developer/images/image/cimg/base + - image: cimg/base:current - executor: my-custom-executor + # Add steps to the job + # See: https://circleci.com/docs/jobs-steps/#steps-overview & https://circleci.com/docs/configuration-reference/#steps steps: + # Checkout the code as the first step. - checkout - - run: | - # echo Hello, World! + - run: + name: "Say hello" + command: "echo Hello, World!" +# Orchestrate jobs using workflows +# See: https://circleci.com/docs/workflows/ & https://circleci.com/docs/configuration-reference/#workflows workflows: - my-custom-workflow: + say-hello-workflow: # This is the name of the workflow, feel free to change it to better match your workflow. + # Inside the workflow, you define the jobs you want to run. jobs: - - web3-defi-game-project- + - say-hello From bbd912589ab4d873d35d6a3d79a1fb0742c1024b Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 23:07:02 +0700 Subject: [PATCH 21/31] fix: packages/google-cloud-workflows-executions/samples/package.json to reduce vulnerabilities (#207) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-workflows-executions/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-workflows-executions/samples/package.json b/packages/google-cloud-workflows-executions/samples/package.json index 15de8e160637..668ca7cec15a 100644 --- a/packages/google-cloud-workflows-executions/samples/package.json +++ b/packages/google-cloud-workflows-executions/samples/package.json @@ -17,6 +17,6 @@ }, "devDependencies": { "c8": "^9.0.0", - "mocha": "^8.1.1" + "mocha": "^10.6.0" } } \ No newline at end of file From 5de7bf7e3dcb984b9a4bf2603ac8331dee32b629 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 23:08:41 +0700 Subject: [PATCH 22/31] fix: packages/google-shopping-merchant-promotions/samples/package.json to reduce vulnerabilities (#206) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- .../google-shopping-merchant-promotions/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-shopping-merchant-promotions/samples/package.json b/packages/google-shopping-merchant-promotions/samples/package.json index 4bc864149477..7644fe3d2317 100644 --- a/packages/google-shopping-merchant-promotions/samples/package.json +++ b/packages/google-shopping-merchant-promotions/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From 634a84dfaa66e2acd73f99410eb79ccfda09695c Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 23:09:27 +0700 Subject: [PATCH 23/31] fix: packages/google-shopping-merchant-reviews/samples/package.json to reduce vulnerabilities (#205) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-shopping-merchant-reviews/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-shopping-merchant-reviews/samples/package.json b/packages/google-shopping-merchant-reviews/samples/package.json index 8eea59283508..9311647135b3 100644 --- a/packages/google-shopping-merchant-reviews/samples/package.json +++ b/packages/google-shopping-merchant-reviews/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From 4686bfb9f48bfcfb29b620330f2a1fdbc9afbcbd Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 23:10:17 +0700 Subject: [PATCH 24/31] fix: packages/google-cloud-filestore/samples/package.json to reduce vulnerabilities (#203) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-filestore/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-filestore/samples/package.json b/packages/google-cloud-filestore/samples/package.json index 05cd2a52500e..6f130fb5aec9 100644 --- a/packages/google-cloud-filestore/samples/package.json +++ b/packages/google-cloud-filestore/samples/package.json @@ -17,6 +17,6 @@ }, "devDependencies": { "c8": "^9.0.0", - "mocha": "^9.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From cfe53c29baacb8437eb91d44d0c99a170133d4ae Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 23:31:11 +0700 Subject: [PATCH 25/31] fix: packages/google-shopping-merchant-datasources/samples/package.json to reduce vulnerabilities (#228) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MOCHA-2863123 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 - https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-6147607 - https://snyk.io/vuln/SNYK-JS-NANOID-2332193 - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 - https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818 - https://snyk.io/vuln/SNYK-JS-NANOID-8492085 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- .../google-shopping-merchant-datasources/samples/package.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/packages/google-shopping-merchant-datasources/samples/package.json b/packages/google-shopping-merchant-datasources/samples/package.json index 16967926cace..6cf483336871 100644 --- a/packages/google-shopping-merchant-datasources/samples/package.json +++ b/packages/google-shopping-merchant-datasources/samples/package.json @@ -17,8 +17,8 @@ "@google-shopping/datasources": "^0.10.0" }, "devDependencies": { - "c8": "^9.0.0", + "c8": "^10.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^11.0.1" } } \ No newline at end of file From 8d3448a208bcde6ce8f3d39c298eb72de88018dc Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Thu, 11 Dec 2025 01:39:49 +0700 Subject: [PATCH 26/31] fix: packages/google-cloud-asset/samples/package.json to reduce vulnerabilities (#36) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-asset/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-asset/samples/package.json b/packages/google-cloud-asset/samples/package.json index 726f074bd6b1..4f14705ea778 100644 --- a/packages/google-cloud-asset/samples/package.json +++ b/packages/google-cloud-asset/samples/package.json @@ -24,6 +24,6 @@ }, "devDependencies": { "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From e46b556c69e5efe54cec437cc2468316ea7e654b Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Thu, 11 Dec 2025 08:19:05 +0700 Subject: [PATCH 27/31] fix: packages/google-cloud-apihub/samples/package.json to reduce vulnerabilities (#227) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-MOCHA-2863123 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 - https://snyk.io/vuln/SNYK-JS-SERIALIZEJAVASCRIPT-6147607 - https://snyk.io/vuln/SNYK-JS-NANOID-2332193 - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 - https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818 - https://snyk.io/vuln/SNYK-JS-NANOID-8492085 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-apihub/samples/package.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/packages/google-cloud-apihub/samples/package.json b/packages/google-cloud-apihub/samples/package.json index e5fb85331106..a88d8c72ea80 100644 --- a/packages/google-cloud-apihub/samples/package.json +++ b/packages/google-cloud-apihub/samples/package.json @@ -17,8 +17,8 @@ "@google-cloud/apihub": "^0.5.1" }, "devDependencies": { - "c8": "^9.0.0", + "c8": "^10.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^11.0.1" } } \ No newline at end of file From 0ba47f7afd211e47c06a9ff91b4c2c674dc5e452 Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Thu, 11 Dec 2025 08:20:21 +0700 Subject: [PATCH 28/31] fix: packages/google-cloud-devicestreaming/samples/package.json to reduce vulnerabilities (#204) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-devicestreaming/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-devicestreaming/samples/package.json b/packages/google-cloud-devicestreaming/samples/package.json index 225d749b1ca9..26533613f90d 100644 --- a/packages/google-cloud-devicestreaming/samples/package.json +++ b/packages/google-cloud-devicestreaming/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } From 2c494ae7ec51827ae455ef08005e77155bd8e0cb Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Thu, 11 Dec 2025 08:21:19 +0700 Subject: [PATCH 29/31] fix: packages/google-cloud-chronicle/samples/package.json to reduce vulnerabilities (#202) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-chronicle/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-chronicle/samples/package.json b/packages/google-cloud-chronicle/samples/package.json index 956d27b8d258..a617d583f089 100644 --- a/packages/google-cloud-chronicle/samples/package.json +++ b/packages/google-cloud-chronicle/samples/package.json @@ -19,6 +19,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } From 1d9a57cfae9f7f9803f028b3e425915fa0e2d1fa Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Sat, 13 Dec 2025 02:51:22 +0700 Subject: [PATCH 30/31] fix: packages/google-cloud-osconfig/samples/package.json to reduce vulnerabilities (#200) The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-JSYAML-13961110 Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com> --- packages/google-cloud-osconfig/samples/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-cloud-osconfig/samples/package.json b/packages/google-cloud-osconfig/samples/package.json index 17875bbce512..1c5d6ecfad60 100644 --- a/packages/google-cloud-osconfig/samples/package.json +++ b/packages/google-cloud-osconfig/samples/package.json @@ -18,6 +18,6 @@ "devDependencies": { "c8": "^9.0.0", "chai": "^4.2.0", - "mocha": "^8.0.0" + "mocha": "^10.6.0" } } \ No newline at end of file From 36d1b914982bda2594e5ce40369501aa82460b0e Mon Sep 17 00:00:00 2001 From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com> Date: Mon, 2 Feb 2026 17:21:31 +0000 Subject: [PATCH 31/31] fix: packages/google-devtools-artifactregistry/package.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ESLINT-15102420 --- packages/google-devtools-artifactregistry/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/google-devtools-artifactregistry/package.json b/packages/google-devtools-artifactregistry/package.json index 4883a3e882ad..da8024ea445e 100644 --- a/packages/google-devtools-artifactregistry/package.json +++ b/packages/google-devtools-artifactregistry/package.json @@ -54,7 +54,7 @@ "@types/sinon": "^17.0.4", "c8": "^10.1.3", "gapic-tools": "^1.0.0", - "gts": "^6.0.2", + "gts": "^7.0.0", "jsdoc": "^4.0.4", "jsdoc-fresh": "^4.0.0", "jsdoc-region-tag": "^3.0.0",