Bump jsrsasign and fabric-shim in /chaincode/ecom

[dependabot]

Bumps jsrsasign to 10.8.6 and updates ancestor dependency fabric-shim. These dependencies need to be updated together.

Updates jsrsasign from 8.0.12 to 10.8.6

Release notes

Sourced from jsrsasign's releases.

X509.getExtSubjectDirectoryAttributes bugfix

• Changes from 10.8.4 to 10.8.5 (2023-Apr-26)
  • src/x509.js
    • bugfix X509.getExtSubjectDirectoryAttributes method

more SubjectDirectoryExtension support

• Changes from 10.8.3 to 10.8.4 (2023-Apr-26)
  • src/asn1x509.js
    • SubjectDirectoryAttributes class
      • add array of array support for arbitrary attribute value
  • src/x509.js
    • add X509.getExtSubjectDirectoryAttributes method for ExtSubjectDirectoryAttributes extension
    • update X509.getExtParam method
      • support SubjectDirectoryAttributes
      • parse unknown extension as ASN.1
  • src/base64x.js
    • bugfix foldnl function: when length of s is multiple of n, result has unnecessary new line in the end of string.
  • qunit-do-{asn1x509,x509-ext,base64x,x500-param}.html
    • update and add some test cases for above

CABF SMIMEBR OID support

• Changes from 10.8.2 to 10.8.3 (2023-Apr-20)
  • src/asn1x509.js
    • Add OIDs for CABR S/MIME BR policy OIDs and GN givenName attribute type

RSA OAEP encryption fix

• Changes from 10.8.1 to 10.8.2 (2023-Apr-15)
  • ext/rsa.js
    • fix RSAEncryptOAEP for RSA OAEP encryption #582 #583 In rare cases, it have been generated ciphertext that could not be decrpyted.

npm export missing fix

• Changes from 10.8.0 to 10.8.1 (2023-Apr-09)
  • npm/{package.json, lib/footer.js}

UserNotice of CertificatePolicies support and more

• Changes from 10.7.0 to 10.8.0 (2023-Apr-8)
  • x509.js
    • X509.getUserNotice supports NoticeReference
    • add asn1ToDisplayText method
  • base64x.js
    • add function msectozulu
    • add aryval for nested JSON value access
  • asn1.js
    • DERInteger refactoring
  • test/qunit-do-{asn1,asn1x509,base64x,x509-ext}.html
    • update and add some test cases for above

... (truncated)

Changelog

Sourced from jsrsasign's changelog.

ChangeLog for jsrsasign

X509.getExtSubjectDirectoryAttributes another bugfix

• Changes from 10.8.5 to 10.8.6 (2023-Apr-26)
  • src/x509.js
    • another bugfix X509.getExtSubjectDirectoryAttributes method

X509.getExtSubjectDirectoryAttributes bugfix

• Changes from 10.8.4 to 10.8.5 (2023-Apr-26)
  • src/x509.js
    • bugfix X509.getExtSubjectDirectoryAttributes method

more SubjectDirectoryExtension support

• Changes from 10.8.3 to 10.8.4 (2023-Apr-26)
  • src/asn1x509.js
    • SubjectDirectoryAttributes class
      • add array of array support for arbitrary attribute value
  • src/x509.js
    • add X509.getExtSubjectDirectoryAttributes method for ExtSubjectDirectoryAttributes extension
    • update X509.getExtParam method
      • support SubjectDirectoryAttributes
      • parse unknown extension as ASN.1
  • src/base64x.js
    • bugfix foldnl function: when length of s is multiple of n, result has unnecessary new line in the end of string.
  • qunit-do-{asn1x509,x509-ext,base64x,x500-param}.html
    • update and add some test cases for above

CABF SMIMEBR OID support

• Changes from 10.8.2 to 10.8.3 (2023-Apr-20)
  • src/asn1x509.js
    • Add OIDs for CABR S/MIME BR policy OIDs and GN givenName attribute type

RSA OAEP encryption fix

• Changes from 10.8.1 to 10.8.2 (2023-Apr-15)
  • ext/rsa.js
    • fix RSAEncryptOAEP for RSA OAEP encryption #582 #583 In rare cases, it have been generated ciphertext that could not be decrpyted.

npm export missing fix

• Changes from 10.8.0 to 10.8.1 (2023-Apr-09)
  • npm/{package.json, lib/footer.js}

UserNotice of CertificatePolicies support and more

• Changes from 10.7.0 to 10.8.0 (2023-Apr-08)
  • x509.js
    • X509.getUserNotice supports NoticeReference

... (truncated)

Commits

• 59920c4 10.8.6 release
• c195be8 10.8.5 release
• 04af7f5 10.8.4 release
• d679050 10.8.3 release
• 97921fb 10.8.2 release
• d332357 Merge pull request #583 from davedoesdev/master
• 1cfd939 Fix OAEP padding
• 9671f4b 10.8.1 release
• 19608d2 10.8.0 release
• 574e9ad 10.7.0 release
• Additional commits viewable in compare view

Updates fabric-shim from 2.0.0-snapshot.99 to 2.5.2

Release notes

Sourced from fabric-shim's releases.

v2.5.2 Node Chaincode

This is the LTS Release of of the v2.5 Fabric Chaincode Node. It replaces the previous v2.2 LTS.

New in the version 2.5.2

• Fixed the getHistory API returning a byte buffer rather than an JSON object
• Setting a state endorsement policy functions correctly

Other noteable 2.5 updates are

• the PurgePrivateData feature is exposed via a new PurgePrivateData API
• the grpc-js dependency has been locked to 1.8.1
• arm docker builds

Change Log

https://github.com/hyperledger/fabric-chaincode-node/blob/main/CHANGELOG.md#v2.5.2

v2.5.1 Node Chaincode

v2.5.1

Release Notes

This is the LTS Release of of the v2.5 Fabric Chaincode Node. It replaces the previous v2.2 LTS.

• the PurgePrivateData feature is exposed via a new PurgePrivateData API
• the grpc-js dependency has been locked to 1.8.1
• arm docker builds

v2.5.0 Node Chaincode

This is the LTS Release of the v2.5 Fabric Chaincode Node. It replaces the previous v2.2 LTS.

• the PurgePrivateData feature is exposed via a new PurgePrivateData API

v2.4.2 Node Chaincode

This release corrects the 2.4 nodeenv docker image to be Node 16, and removes the fabric-shim-crypto package.

Note that version of Node.js is updated to 16.4.0. See the COMPATIBILITY.md file in the main branch for information.

v2.2.3 Node Chaincode LTS

This release corrects the TypeScript type definitions for the ChaincodeStub interface

The v2.2.3 release is the LTS version of the fabric-chaincode-node

v2.4.1 Node Chaincde

This release is the same as v2.4.0 but with a pipeline fix to properly pushing the docker image.

Note that the 2.4 release uses Node16

... (truncated)

Changelog

Sourced from fabric-shim's changelog.

v2.5.2

Wed Jan 25 14:21:32 GMT 2023

• fe2946d3 Prepare release 2.5.2
• 653b7245 Fix the handling of the key endorsement policy (#377)
• 982eddab GetHistoryForKey to return correct data (#375)

v2.5.1

Wed Jan 11 11:31:22 GMT 2023

• 30125f68 Pin fabric-shim's dependency on grpc-js to 1.8.1 (#369)
• c6ff468b Get builds on release-2.5 branch (#360)

v2.5.0

Thu Dec 8 09:19:10 GMT 2022

• b8cb8d72 Update dependencies
• bbd5b6f6 Update MAINTAINERS.md (#352)
• d03fc721 Move inactive maintainers to emeritus status
• 37b4256b updated tutorial (#350)
• 78a02ada Add fv test chaincode deploy logging
• 341956d4 Enabled GHA with template workflow (#343)
• c02ca323 Add in short version docker tag (#342)
• ffa075ed added purgePrivateData function with tests
• 501af57a Bump version to 2.5.0 (#340)
• eee58335 Swap to using the published fabric-protos libraries (#320)
• ebf16ead Update README.md
• 838b02fd Bump version to 2.4.2 (#332)

v2.4.2

Wed 4 May 2022 11:30:35 BST

• 4467c458 Allow jsdoc push to fail (#331)
• 3f1dbffd Remove fabric-shim-crypto package
• d9cfc3d0 Correct 2.4 to be Node 16
• e1ae5b31 Fixing a command which is giving errors while copying and pasting (#322)
• 671a5442 Some updates to the latest tool versions
• 2d861535 Replace RocketChat with Discord
• f7288eba add missing bracket (#312)
• a53121f0 Fix Doc: Type of args in invokeChaincode() is string[] (#311)

v2.4.1

Mon Nov 29 10:39:51 GMT 2021

• 8acc32a CI Pipeline Fixes (#304)

2.4.0

Fri Nov 26 08:07:34 GMT 2021

Release 2.4.0

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by hyperledger-ghci, a new releaser for fabric-shim since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.