[Snyk] Upgrade hardhat from 2.9.3 to 2.20.0

[BitcoinOutput]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade hardhat from 2.9.3 to 2.20.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 63 versions ahead of your current version.
• The recommended version was released 21 days ago, on 2024-02-14.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ES5EXT-6095076	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ES5EXT-6095076	430/1000 Why? CVSS 8.6	Proof of Concept
	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	430/1000 Why? CVSS 8.6	No Known Exploit
	Information Exposure SNYK-JS-SIMPLEGET-2361683	430/1000 Why? CVSS 8.6	Proof of Concept
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NORMALIZEURL-1296539	430/1000 Why? CVSS 8.6	No Known Exploit
	Information Exposure SNYK-JS-OPENZEPPELINCONTRACTS-2958047	430/1000 Why? CVSS 8.6	No Known Exploit
	Information Exposure SNYK-JS-OPENZEPPELINCONTRACTS-2958050	430/1000 Why? CVSS 8.6	No Known Exploit
	Incorrect Calculation SNYK-JS-OPENZEPPELINCONTRACTS-2964946	430/1000 Why? CVSS 8.6	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-OPENZEPPELINCONTRACTS-2980279	430/1000 Why? CVSS 8.6	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	430/1000 Why? CVSS 8.6	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579147	430/1000 Why? CVSS 8.6	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579152	430/1000 Why? CVSS 8.6	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579155	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UNDICI-3323845	430/1000 Why? CVSS 8.6	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	430/1000 Why? CVSS 8.6	Proof of Concept
	Prototype Poisoning SNYK-JS-QS-3153490	430/1000 Why? CVSS 8.6	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GETFUNCNAME-5923417	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-2863123	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MOCHA-2863123	430/1000 Why? CVSS 8.6	No Known Exploit
	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	430/1000 Why? CVSS 8.6	No Known Exploit
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	430/1000 Why? CVSS 8.6	No Known Exploit
	Improper Certificate Validation SNYK-JS-UNDICI-2928996	430/1000 Why? CVSS 8.6	Proof of Concept
	CRLF Injection SNYK-JS-UNDICI-2953389	430/1000 Why? CVSS 8.6	Proof of Concept
	Improper Encoding or Escaping of Output SNYK-JS-OPENZEPPELINCONTRACTS-5838352	430/1000 Why? CVSS 8.6	No Known Exploit
	Out-of-bounds Read SNYK-JS-OPENZEPPELINCONTRACTS-6346765	430/1000 Why? CVSS 8.6	No Known Exploit
	Denial of Service (DoS) SNYK-JS-OPENZEPPELINCONTRACTS-2965798	430/1000 Why? CVSS 8.6	No Known Exploit
	Improper Input Validation SNYK-JS-OPENZEPPELINCONTRACTS-5425051	430/1000 Why? CVSS 8.6	No Known Exploit
	CRLF Injection SNYK-JS-UNDICI-2980276	430/1000 Why? CVSS 8.6	No Known Exploit
	Server-side Request Forgery (SSRF) SNYK-JS-UNDICI-2980286	430/1000 Why? CVSS 8.6	No Known Exploit
	CRLF Injection SNYK-JS-UNDICI-3323844	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HIGHLIGHTJS-1048676	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-HTTPCACHESEMANTICS-3248783	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COOKIEJAR-3149984	430/1000 Why? CVSS 8.6	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-COOKIEJAR-3149984	430/1000 Why? CVSS 8.6	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	430/1000 Why? CVSS 8.6	Proof of Concept
	Missing Authorization SNYK-JS-OPENZEPPELINCONTRACTS-5672116	430/1000 Why? CVSS 8.6	No Known Exploit
	Denial of Service (DoS) SNYK-JS-OPENZEPPELINCONTRACTS-5425827	430/1000 Why? CVSS 8.6	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	430/1000 Why? CVSS 8.6	No Known Exploit
	Information Exposure SNYK-JS-UNDICI-2957529	430/1000 Why? CVSS 8.6	Proof of Concept
	Information Exposure SNYK-JS-UNDICI-5962466	430/1000 Why? CVSS 8.6	No Known Exploit
	Permissive Cross-domain Policy with Untrusted Domains SNYK-JS-UNDICI-6252336	430/1000 Why? CVSS 8.6	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: hardhat

• 2.20.0 - 2024-02-14
  

  This release adds support for the upcoming cancun hardfork. This hardfork is not enabled by default; if you want to use it, then you have to enable it in your Hardhat config:

  module.exports = {
    networks: {
      hardhat: {
        hardfork: "cancun",
      },
    },
  }

  Keep in mind that blob transactions are not supported yet. If you need this, please upvote or comment on this issue.

  In addition, this release adds support for solc 0.8.24.

• 2.19.5 - 2024-01-30
• 2.19.4 - 2023-12-26
• 2.19.3 - 2023-12-19
• 2.19.2 - 2023-12-05
• 2.19.1 - 2023-11-15
• 2.19.0 - 2023-11-02
• 2.18.3 - 2023-10-24
• 2.18.2 - 2023-10-19
• 2.18.1 - 2023-10-11
• 2.18.0 - 2023-10-05
• 2.17.4 - 2023-09-27
• 2.17.3 - 2023-09-11
• 2.17.2 - 2023-08-28
• 2.17.1 - 2023-08-01
• 2.17.0 - 2023-07-14
• 2.16.1 - 2023-06-27
• 2.16.1-dev.0 - 2023-06-27
• 2.16.0 - 2023-06-22
• 2.16.0-dev.0 - 2023-06-21
• 2.15.0 - 2023-06-08
• 2.14.1 - 2023-05-31
• 2.14.0 - 2023-04-15
• 2.13.1 - 2023-04-10
• 2.13.0 - 2023-03-02
• 2.13.0-dev.4 - 2023-03-02
• 2.13.0-dev.3 - 2023-02-27
• 2.13.0-dev.2 - 2022-12-30
• 2.13.0-dev.1 - 2022-11-24
• 2.13.0-dev.0 - 2022-10-21
• 2.12.8-viair.0 - 2023-02-14
• 2.12.7 - 2023-02-09
• 2.12.6 - 2023-01-11
• 2.12.5 - 2022-12-29
• 2.12.4 - 2022-12-08
• 2.12.3 - 2022-11-30
• 2.12.2 - 2022-11-01
• 2.12.1 - 2022-10-27
• 2.12.1-unknown-txs.0 - 2022-10-24
• 2.12.1-ir.0 - 2022-10-12
• 2.12.0 - 2022-10-10
• 2.12.0-esm.1 - 2022-09-27
• 2.12.0-esm.0 - 2022-09-23
• 2.11.3-dev.0 - 2022-09-16
• 2.11.2 - 2022-09-14
• 2.11.1 - 2022-09-06
• 2.11.0 - 2022-09-02
• 2.11.0-rc.1 - 2022-09-02
• 2.11.0-rc.0 - 2022-08-31
• 2.11.0-dev.0 - 2022-08-23
• 2.10.2 - 2022-08-16
• 2.10.2-dev.0 - 2022-07-20
• 2.10.1 - 2022-07-13
• 2.10.0 - 2022-07-07
• 2.9.9 - 2022-06-08
• 2.9.8 - 2022-06-08
• 2.9.8-dev.0 - 2022-06-03
• 2.9.7 - 2022-05-30
• 2.9.6 - 2022-05-19
• 2.9.6-dev.1 - 2022-05-18
• 2.9.6-dev.0 - 2022-05-18
• 2.9.5 - 2022-05-12
• 2.9.4 - 2022-05-11
• 2.9.3 - 2022-04-05

from hardhat GitHub release notes

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs