Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v10.9.1 #2957

Merged
merged 93 commits into from
Jan 24, 2025
Merged

v10.9.1 #2957

merged 93 commits into from
Jan 24, 2025

Conversation

ouziel-slama
Copy link
Contributor

@ouziel-slama ouziel-slama commented Jan 22, 2025
edited
Loading

  • Double-check the spelling and grammar of all strings, code comments, etc.
  • Double-check that all code is deterministic that needs to be
  • Add tests to cover any new or revised logic
  • Ensure that the test suite passes
  • Update the project release notes
  • Update the project documentation, as appropriate, with a corresponding Pull Request in the Documentation repository

Ouziel added 30 commits January 13, 2025 13:16
@Ouziel
split vector file
7fe6b46
@Ouziel
Move python tests from counterparty-rs to counterparty-core
17439b5
@Ouziel
introduce tools module
eb25e84
@Ouziel
Remove counterparty-wallet
34b2465
@Ouziel
continue to move files
fc7d0d1
@Ouziel
rename mpma_util to utils
0682954
@Ouziel
move address.py in messages.utils
d164bab
@Ouziel
move more files
cc27c6a
@Ouziel
move more files
91abaf2
@Ouziel
fix cli
f3f44c6
@Ouziel
Clean script.py; Move more files and functions
a2b4620
@Ouziel
Clean script.py; Move more files and functions; ruff
12ba3f1
@Ouziel
more cleaning
a7f92ef
@Ouziel
more cleaning; add utils module
d860824
@Ouziel
more cleaning
c23bd6f
@Ouziel
more cleaning
42272f9
@Ouziel
util.py almost clean
cf47698
@Ouziel
clean util.py
eea083b
@Ouziel
more cleaning
d75e8dc
@Ouziel
remove _ from files names
cbc0580
@Ouziel
clean api/util.py
57d2b67
@Ouziel
Merge branch 'develop' into cleaning
4303533
@Ouziel
Kill util.CURRENT_BLOCK_INDEX
71ccee8
@Ouziel
try to kill util.CURRENT_BACKEND_HEIGHT
0befea3
@Ouziel
fix tests; finish to kill CURRENT_BACKEND_HEIGHT
3546adb
@Ouziel
kill util.CURRENT_BLOCK_TIME; fixes
a3a2bdf
@Ouziel
fixe tests
c43fa92
@Ouziel
No more globals
c019679
@Ouziel
use yoyo migrations to initialize Ledger DB
1652446
@Ouziel
Remove globals BLOCK_LEDGER and BLOCK_JOURNAL
85eb071
github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 22, 2025
View reviewed changes
Copy link

@github-advanced-security github-advanced-security bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

pylint found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.

github-advanced-security[bot]
github-advanced-security bot found potential problems Jan 23, 2025
View reviewed changes
counterparty-core/counterpartycore/lib/ledger/balances.py
Comment on lines +18 to +19
query = f"""
SELECT * FROM balances

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/balances.py
Comment on lines +50 to +51
query = f"""
SELECT {field_name}, asset, quantity, utxo_address, MAX(rowid)

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/balances.py
Comment on lines +72 to +73
query = f"""
SELECT DISTINCT asset

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/balances.py
Comment on lines +90 to +91
query = f"""
SELECT COUNT(*) AS cnt FROM (

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/caches.py
set_data.append("block_index = :block_index")
bindings["block_index"] = CurrentState().current_block_index()
set_data = ", ".join(set_data)
sql = f"""UPDATE orders SET {set_data} WHERE tx_hash = :tx_hash""" # noqa S608

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/events.py
def insert_record(db, table_name, record, event, event_info={}): # noqa: B006
fields = list(record.keys())
placeholders = ", ".join(["?" for _ in fields])
query = f"INSERT INTO {table_name} ({', '.join(fields)}) VALUES ({placeholders})" # noqa: S608

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/events.py
cursor.execute("SELECT last_insert_rowid() AS rowid")
inserted_rowid = cursor.fetchone()["rowid"]
new_record = cursor.execute(
f"SELECT * FROM {table_name} WHERE rowid = ?", # noqa: S608

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
counterparty-core/counterpartycore/lib/ledger/supplies.py
Comment on lines +506 to +507
"SELECT asset, SUM(total) AS total FROM (" # noqa: S608
+ " UNION ALL ".join(queries)

Check warning

Code scanning / Bandit

Possible SQL injection vector through string-based query construction. Warning

Possible SQL injection vector through string-based query construction.
@ouziel-slama ouziel-slama merged commit c655347 into master Jan 24, 2025
19 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adamkrellenstein adamkrellenstein adamkrellenstein approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ouziel-slama @adamkrellenstein @Ouziel