Release v0.8.0 #2055

fredcarle · 2023-11-15T04:51:57Z

Release branch as of b6f7a10

Release tasks completed:

ran go mod tidy
regenerated in-repo docs (CLI and manpages)
bump BSL license parameters
update changelog

Only need to review the last commit :)

## Relevant issue(s) N/A ## Description This PR fixes a bug that causes documents to not be correctly refreshed when they are created using alias fields. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? `make test:changes` Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) Resolves #1436 ## Description This PR allows the change detector to run in parallel with other tests. There are also a few other improvements to the change detector: - change detector logic is moved to a new `tests/change_detector` package - change detector specific logic in `tests/integration` is now more obvious - change detector now operates on distinct `source` and `target` branches - this enables you to test branches outside of the currently checked out branch - change detector manages its own environment variables. - running `go test ./tests/change_detector/...` will work without env variables - change detector temp directories are now all cleaned up after running Todo before merging: - [x] update default branch and repository - [x] document change detector data format changes ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? `make test:changes` Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) N/A ## Description This PR fixes an issue where the change detector was not installing dependencies when using a local target branch. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? CI Specify the platform(s) on which this was tested: - MacOS

✅ This PR was created by the Combine PRs action by combining the following PRs: #1893 bot: Bump graphiql from 3.0.5 to 3.0.6 in /playground #1892 bot: Bump github.com/tidwall/btree from 1.6.0 to 1.7.0 #1891 bot: Bump google.golang.org/grpc from 1.58.0 to 1.58.1 ⚠️ The following PRs were left out due to merge conflicts: #1889 bot: Bump golang.org/x/net from 0.14.0 to 0.15.0 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

## Relevant issue(s) Resolves #1894 ## Description This PR adds an HTTP handler that enables DefraDB to act as an off-chain data oracle for smart contracts. Here is an end-to-end example of how this feature works: https://github.com/sourcenetwork/defradb-example-ccip ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? Unit tests Specify the platform(s) on which this was tested: - MacOS

Bumps [graphql](https://github.com/graphql/graphql-js) from 16.8.0 to 16.8.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/graphql/graphql-js/releases">graphql's releases</a>.</em></p> <blockquote> <h2>v16.8.1 (2023-09-19)</h2> <h4>Bug Fix 🐞</h4> <ul> <li><a href="https://redirect.github.com/graphql/graphql-js/pull/3967">#3967</a> OverlappingFieldsCanBeMergedRule: Fix performance degradation (<a href="https://github.com/AaronMoat"><code>@AaronMoat</code></a>)</li> </ul> <h4>Committers: 1</h4> <ul> <li>Aaron Moat(<a href="https://github.com/AaronMoat"><code>@AaronMoat</code></a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/graphql/graphql-js/commit/8a95335f545024c09abfa0f07cc326f73a0e466f"><code>8a95335</code></a> 16.8.1</li> <li><a href="https://github.com/graphql/graphql-js/commit/8f4c64eb6a7112a929ffeef00caa67529b3f2fcf"><code>8f4c64e</code></a> OverlappingFieldsCanBeMergedRule: Fix performance degradation (<a href="https://redirect.github.com/graphql/graphql-js/issues/3967">#3967</a>)</li> <li>See full diff in <a href="https://github.com/graphql/graphql-js/compare/v16.8.0...v16.8.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=graphql&package-manager=npm_and_yarn&previous-version=16.8.0&new-version=16.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sourcenetwork/defradb/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

## Relevant issue(s) Resolves #1884 ## Description Allows setting of default schema version, allowing rapid switching between (application) api/database versions. It also allows them to define and apply schema updates eagerly, and then make the switch at a later date.

## Relevant issue(s) Resolves #1879 ## Description This PR attempts to fix a flaky filter test. The normalization logic has been refactored to a recursive / functional approach that (hopefully) makes it a little easier to understand. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? Ran normalize tests in a loop for 200k+ iterations. Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) Resolves #1914 ## Description Fixes an a bug where an infinite loop may be created when updating a self-referencing one-one relation from the secondary side.

## Relevant issue(s) Resolves #1083 ## Description Removes collection name from schema ID generation. It is a schema ID, not a collection ID, including the collection name makes no sense and is likely a historical artefact.

## Relevant issue(s) Closes #1472 Closes #1507 Closes #1860 ## Description This is a follow up to #1776 This PR adds a CLI implementation that implements the client.DB interface and runs through the existing integration test suite. - [x] Merge existing server config code - [x] Refactor CLI to use new HTTP client - [x] Remove `net/api` package - [x] Remove `api/http` package - [x] Lens tests are timing out in CI: fixed #1862 - [x] Code coverage is incorrectly reporting: fixed #1861 - [x] Flaky test causing failures: fixed #1912 Renamed Commands: - `peerid` to `client peer info` - `client p2pcollection` to `client p2p collection` - `client replicator` to `client p2p replicator` - `client schema list` to `client collection describe` Removed Commands: - `block get` - `ping` - `rpc` Added Commands: - `client collection create` - `client collection delete` - `client collection get` - `client collection keys` - `client collection update` - `client tx create` - `client tx discard` - `client tx commit` - `client schema migration up` - `client schema migration down` - `client schema migration reload` **Notes for reviewers**: - `.github` changes are merged from #1871 - `Makefile` most of these changes are also from #1871 - `docs/cli` ignore these changes, it will be updated next release - sorry for all of the merge commits, I am working on learning rebase flow ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? `make test` Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) Resolves #1921 ## Description - Fix workflow badge to the new workflow name - Fix the omitted pull_request trigger

## Relevant issue(s) Resolves #1887 ## Description Updates the fetcher mock.

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.14.0 to 0.15.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/net/commit/2a0da8be5a758b33fa896384d689071e832b4aa2"><code>2a0da8b</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/97384c11dd0db63357820b2cfcb44c40fbc3116a"><code>97384c1</code></a> quic: remove streams from the conn when done</li> <li><a href="https://github.com/golang/net/commit/03d5e623398478fa929c8ba4b8f15de74017d82a"><code>03d5e62</code></a> http2: remove unused ClientConn.tconnClosed</li> <li><a href="https://github.com/golang/net/commit/b82f062c4bc1abcfe993e3750d64c4bdd4a14f87"><code>b82f062</code></a> quic: include ignored frames in test log output</li> <li><a href="https://github.com/golang/net/commit/7374d342a2c3de79d7b96f3aacdb13498c3fc3b5"><code>7374d34</code></a> quic: don't block when closing read-only streams</li> <li><a href="https://github.com/golang/net/commit/b4d09be75101024ceed6b173b49a5630084174e6"><code>b4d09be</code></a> dns/dnsmessage: compress all names while appending to a buffer</li> <li><a href="https://github.com/golang/net/commit/8b010a5243b670aca8d2277a3c989d1b6a198a08"><code>8b010a5</code></a> quic: fix race condition in runAsync test helper</li> <li><a href="https://github.com/golang/net/commit/fe2abcb6e15f7a34d285220b437d421da4c76775"><code>fe2abcb</code></a> quic: validate stream limits in transport params</li> <li><a href="https://github.com/golang/net/commit/d1b0a97d84e0fa88851b5a065e23262afed10400"><code>d1b0a97</code></a> quic: avoid sending 1-RTT frames in initial/handshake packets</li> <li><a href="https://github.com/golang/net/commit/4332436fd1223b60e3127494d5ff771fba2c0adf"><code>4332436</code></a> quic: send more transport parameters</li> <li>Additional commits viewable in <a href="https://github.com/golang/net/compare/v0.14.0...v0.15.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/net&package-manager=go_modules&previous-version=0.14.0&new-version=0.15.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

✅ This PR was created by the Combine PRs action by combining the following PRs: #1930 bot: Bump postcss from 8.4.27 to 8.4.31 in /playground #1919 bot: Bump react-hook-form from 7.46.1 to 7.47.0 in /playground #1918 bot: Bump @typescript-eslint/parser from 6.7.0 to 6.7.3 in /playground #1917 bot: Bump @types/react from 18.2.21 to 18.2.24 in /playground #1910 bot: Bump github.com/libp2p/go-libp2p-kad-dht from 0.23.0 to 0.25.1 #1909 bot: Bump github.com/evanphx/json-patch/v5 from 5.6.0 to 5.7.0 #1908 bot: Bump github.com/go-errors/errors from 1.5.0 to 1.5.1 #1906 bot: Bump eslint from 8.49.0 to 8.50.0 in /playground ⚠️ The following PRs were left out due to merge conflicts: #1904 bot: Bump @vitejs/plugin-react-swc from 3.3.2 to 3.4.0 in /playground --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…#1904) Bumps [@vitejs/plugin-react-swc](https://github.com/vitejs/vite-plugin-react-swc) from 3.3.2 to 3.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite-plugin-react-swc/releases"><code>@vitejs/plugin-react-swc</code>'s releases</a>.</em></p> <blockquote> <h2>v3.4.0</h2> <ul> <li>Add <code>devTarget</code> option (fixes <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/141">#141</a>)</li> <li>Disable Fast Refresh based on <code>config.server.hmr === false</code> instead of <code>process.env.TEST</code></li> <li>Warn when plugin is in WebContainers (see <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/118">#118</a>)</li> <li>Better invalidation message when an export is added & fix HMR for export of nullish values (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/143">#143</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite-plugin-react-swc/blob/main/CHANGELOG.md"><code>@vitejs/plugin-react-swc</code>'s changelog</a>.</em></p> <blockquote> <h2>3.4.0</h2> <ul> <li>Add <code>devTarget</code> option (fixes <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/141">#141</a>)</li> <li>Disable Fast Refresh based on <code>config.server.hmr === false</code> instead of <code>process.env.TEST</code></li> <li>Warn when plugin is in WebContainers (see <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/118">#118</a>)</li> <li>Better invalidation message when an export is added & fix HMR for export of nullish values (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/143">#143</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/39ed814c2f9d82a6f537f66e923e0a1c2c2f8383"><code>39ed814</code></a> release: v3.4.0</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/bc2bf2f26b251091e29ef0ae4b7fba44b15f0824"><code>bc2bf2f</code></a> feat: add devTarget option (fixes <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/141">#141</a>) (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/149">#149</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/de5993ea3707e98fc9d0f2c40d6ef8f5a033b6f1"><code>de5993e</code></a> chore(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/150">#150</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/27e3854ede2bb250a41797939175d0f7dbee410d"><code>27e3854</code></a> fix(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/146">#146</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/5a9bdca2f79b9f2740b59a9cab8df46341d976dc"><code>5a9bdca</code></a> chore(deps): update actions/checkout action to v4 (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/147">#147</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/3297b1c22aad0111a27f5c7c4e8975942ae11dac"><code>3297b1c</code></a> fix(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/144">#144</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/733010c9692687192659861818f61da4e3ce0595"><code>733010c</code></a> fix: better invalidation message when an export is added & fix HMR for export...</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/684c3c0ed14b5a2f4c2e86c45befe58fd904c77a"><code>684c3c0</code></a> Fix tsc error display</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/179c561f39529613da44de7912163eefd937f28a"><code>179c561</code></a> fix(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/142">#142</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/2982aaa0fd8617dc73f228c415a4a01dcddd6c00"><code>2982aaa</code></a> chore(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/139">#139</a>)</li> <li>Additional commits viewable in <a href="https://github.com/vitejs/vite-plugin-react-swc/compare/v3.3.2...v3.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@vitejs/plugin-react-swc&package-manager=npm_and_yarn&previous-version=3.3.2&new-version=3.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

#1933) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 6.7.3 to 6.7.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases"><code>@typescript-eslint/parser</code>'s releases</a>.</em></p> <blockquote> <h2>v6.7.4</h2> <h2><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.7.3...v6.7.4">6.7.4</a> (2023-10-02)</h2> <p><strong>Note:</strong> Version bump only for package <code>@typescript-eslint/typescript-eslint</code></p> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md"><code>@typescript-eslint/parser</code>'s changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.7.3...v6.7.4">6.7.4</a> (2023-10-02)</h2> <p><strong>Note:</strong> Version bump only for package <code>@typescript-eslint/parser</code></p> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/d948dc4a21ad8e15eec152c0cf2fdda819ea4a3a"><code>d948dc4</code></a> chore: publish v6.7.4</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v6.7.4/packages/parser">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=6.7.3&new-version=6.7.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [@types/react](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react) from 18.2.24 to 18.2.25. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/react&package-manager=npm_and_yarn&previous-version=18.2.24&new-version=18.2.25)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

✅ This PR was created by the Combine PRs action by combining the following PRs: #1949 bot: Bump google.golang.org/grpc from 1.58.1 to 1.58.2 #1948 bot: Bump github.com/bits-and-blooms/bitset from 1.8.0 to 1.9.0 #1946 bot: Bump golang.org/x/crypto from 0.13.0 to 0.14.0 #1945 bot: Bump go.opentelemetry.io/otel/sdk/metric from 0.40.0 to 1.19.0 #1944 bot: Bump vite from 4.4.9 to 4.4.11 in /playground #1943 bot: Bump @types/react-dom from 18.2.7 to 18.2.11 in /playground #1942 bot: Bump @tanstack/react-query from 4.35.3 to 4.36.1 in /playground #1941 bot: Bump eslint from 8.50.0 to 8.51.0 in /playground ⚠️ The following PRs were merged/resolved manually as they had conflicts: #1947 bot: Bump golang.org/x/net from 0.15.0 to 0.16.0 #1940 bot: Bump @typescript-eslint/eslint-plugin from 6.7.0 to 6.7.4 in /playground --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

…ayground (#1953) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 6.7.4 to 6.7.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases"><code>@typescript-eslint/eslint-plugin</code>'s releases</a>.</em></p> <blockquote> <h2>v6.7.5</h2> <h2><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.7.4...v6.7.5">6.7.5</a> (2023-10-09)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [prefer-string-starts-ends-with] only report slice/substring with correct range (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7712">#7712</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/db40a0a83abf14237a7a9b3f75d869da26512292">db40a0a</a>)</li> </ul> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md"><code>@typescript-eslint/eslint-plugin</code>'s changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.7.4...v6.7.5">6.7.5</a> (2023-10-09)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [prefer-string-starts-ends-with] only report slice/substring with correct range (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7712">#7712</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/db40a0a83abf14237a7a9b3f75d869da26512292">db40a0a</a>)</li> </ul> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/36aecb6a836eb01307c35b42ca60f5a78496c339"><code>36aecb6</code></a> chore: publish v6.7.5</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/db40a0a83abf14237a7a9b3f75d869da26512292"><code>db40a0a</code></a> fix(eslint-plugin): [prefer-string-starts-ends-with] only report slice/substr...</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/8f4d9391b76786790e13cb9ca3b6a0da04014636"><code>8f4d939</code></a> docs: fix prefer-optional-chain example for the unsafe fixes option (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/7711">#7711</a>)</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v6.7.5/packages/eslint-plugin">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=6.7.4&new-version=6.7.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

) Bumps [@types/react-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-dom) from 18.2.11 to 18.2.12. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-dom">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/react-dom&package-manager=npm_and_yarn&previous-version=18.2.11&new-version=18.2.12)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

## Relevant issue(s) N/A ## Description This PR adds an option to set the p2p host private key. When no key is set, a new one will be generated. This fixes various tests that had to manually set a data directory even in memory only mode. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? `make test` Manually ran in both badger and memory mode to test key generation. Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) N/A ## Description This PR removes the GRPC API from the net package. The HTTP and CLI interfaces now include this functionality. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? `make test` Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) Resolves #1555 ## Description With this change the the secondary indexes are utilised during querying data. A dedicated `Indexer` fetcher is implemented to perform fetching of values of indexed fields. Now there is a separate `filter` package that houses a lot of methods for working with filters. A new metric `indexesFetched` is introduced into `@explain` to provide information about how many indexes has been fetched. It also includes an update to the testing framework to allow adding custom asserters. The new ExplainResultsAsserter is used with this new feature.

## Relevant issue(s) Resolves #1955 ## Description Deprecate CollectionDescription.Schema. Schema is not a sub-property of collection. Removes as many references to CollectionDescription.Schema as possible without making any breaking changes. Breaking changes will be made in a later PR. An exception has been made to the http API, which does have a breaking change in this PR.

## Relevant issue(s) Resolves #1883 ## Description Blocked by #1927 This PR moves the `client.P2P` implementation from `client.DB` to `net.Node`. This fixes the problems mentioned in the issue above and should increase test coverage of the HTTP and CLI clients. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? `make test` Specify the platform(s) on which this was tested: - MacOS

## Relevant issue(s) Resolves #1956 ## Description Removes collectionDescription from patch schema. PatchSchema now only uses collectionDescription internally to update it if requested (bool param). This now means that the only place remaining (minus a util func that got missed) that refs collectionDescription.Schema should be the serialization. This will be sorted out in a later PR, before removal of the property completely.

✅ This PR was created by the Combine PRs action by combining the following PRs: #1973 bot: Bump @types/react-dom from 18.2.12 to 18.2.13 in /playground #1971 bot: Bump @typescript-eslint/parser from 6.7.4 to 6.7.5 in /playground #1970 bot: Bump github.com/spf13/viper from 1.16.0 to 1.17.0 #1969 bot: Bump go.uber.org/zap from 1.25.0 to 1.26.0 #1968 bot: Bump github.com/multiformats/go-multiaddr from 0.11.0 to 0.12.0 #1967 bot: Bump github.com/bits-and-blooms/bitset from 1.9.0 to 1.10.0 #1966 bot: Bump google.golang.org/grpc from 1.58.2 to 1.58.3 ⚠️ The following PRs were left out due to merge conflicts: #1972 bot: Bump @types/react from 18.2.25 to 18.2.28 in /playground --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

## Relevant issue(s) Resolves #1958 ## Description Removes CollectionDescription.Schema. Also splits the storage of schema out from within collection. The storage of schema has been broken out to a new sub-package of db, at the moment it is a very simple file, but collection will be moved there in #1964. I was planning on doing that in this PR (in part, to provide context for reviewers, as atm it is basically a single-file package), but it proved to be non-trivial due to some existing messiness in that space and was broken out to two more tasks. I also wish for stuff in that directory to eventually follow a repository-like pattern, where stuff is cached (within a context/txn's context) instead of fetching from store on each call. Moving this stuff out to a new directory instead of preserving it in the (already very large) db directory should make both db and the new sub-package a fair bit more cohesive and easier to read.

## Relevant issue(s) Resolves #1983 ## Description This PR enables the embedded playground in the DefraDB Docker builds. ## Tasks - [x] I made sure the code is well commented, particularly hard-to-understand areas. - [x] I made sure the repository-held documentation is changed accordingly. - [x] I made sure the pull request title adheres to the conventional commit style (the subset used in the project can be found in [tools/configs/chglog/config.yml](tools/configs/chglog/config.yml)). - [x] I made sure to discuss its limitations such as threats to validity, vulnerability to mistake and misuse, robustness to invalidation of assumptions, resource requirements, ... ## How has this been tested? Built and pushed image to `docker.io/sourcenetwork/defradb:develop` Specify the platform(s) on which this was tested: - MacOS

✅ This PR was created by the Combine PRs action by combining the following PRs: #1992 bot: Bump @types/react from 18.2.25 to 18.2.31 in /playground #1991 bot: Bump eslint from 8.51.0 to 8.52.0 in /playground #1990 bot: Bump @typescript-eslint/eslint-plugin from 6.7.5 to 6.8.0 in /playground ⚠️ The following PRs had merge conflicts which were resolved manually and are included in this PR: #1989 bot: Bump @types/react-dom from 18.2.13 to 18.2.14 in /playground #1977 bot: Bump @typescript-eslint/parser from 6.7.5 to 6.8.0 in /playground --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

## Relevant issue(s) Resolves #2002 ## Description Fixing a few typos

## Relevant issue(s) Resolves #1964 #1913 ## Description Reorganises collection description storage so that it actually makes sense. The existing key/value setup has been replaced with the following keys: ``` [Collection.ID] => json // Json should be stored against an immutable index, i.e. not against `Name` [Collection.Name] => [Collection.ID] // This means collection names must be unique ``` We also need the following for the short-term, before Collection.GlobalID gets added, as otherwise if a collection is updated to a new schema version, we lose track of what collection it could be. The locations that use this have been linked to #1085 ``` [Collection.SchemaVersionId]/[Collection.ID] => nil ``` With this change the storage setup should fully support multiple collections from a single schema, however this is blocked off by `setDefaultSchemaVersion` (it doesn't allow users to explicitly specify a collection, so atm there is no way to try and do this). Later when we introduce `patchCollection` we will need to be mindful of this and block off user's ability to do this (if done before #1085).

## Relevant issue(s) Resolves #2004 ## Description Renames Schema.SchemaID to Schema.Root. A `Schema` doesn't really exist outside of its version, and this name change will hopefully help clarify that.

## Relevant issue(s) Resolves #1993 ## Description Adds means to fetch schema. Adds a bunch of funcs to the clients to allow fetching of schema(versions) defined in the system. When the set-default stuff got merged, users were no longer guaranteed (at least on init) to be able to view the schema ids they have created, this change allows them to view them when ever they like.

✅ This PR was created by the Combine PRs action by combining the following PRs: #2013 bot: Bump @types/react from 18.2.31 to 18.2.33 in /playground #2012 bot: Bump vite from 4.4.11 to 4.5.0 in /playground #2011 bot: Bump swagger-ui-react from 5.9.0 to 5.9.1 in /playground #2010 bot: Bump eslint-plugin-react-refresh from 0.4.3 to 0.4.4 in /playground #2009 bot: Bump google.golang.org/grpc from 1.58.3 to 1.59.0 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

## Relevant issue(s) Resolves #1066 ## Description This PR change the CRDT merge direction. Originally, when an update arrived over the P2P network, each block was added to the DAG store and merged into the datastore in the order that they were received (newest to oldest block). With this update, we start my receiving all blocks up to the version that we currently have (or until we reach the root) and then we apply the merge from oldest to newest block. This will enable more CRDT types to be added.

## Relevant issue(s) Resolves #2036 ## Description Fix module relying on closed memory leak. It only half fixes this, it will be solved properly in lens-vm/lens#62

✅ This PR was created by the Combine PRs action by combining the following PRs: #2025 bot: Bump graphiql from 3.0.6 to 3.0.9 in /playground #2023 bot: Bump eslint from 8.52.0 to 8.53.0 in /playground #2021 bot: Bump @typescript-eslint/eslint-plugin from 6.9.0 to 6.9.1 in /playground ⚠️ The following PRs were left out due to merge conflicts: #2022 bot: Bump @vitejs/plugin-react-swc from 3.4.0 to 3.4.1 in /playground --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…#2022) Bumps [@vitejs/plugin-react-swc](https://github.com/vitejs/vite-plugin-react-swc) from 3.4.0 to 3.4.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite-plugin-react-swc/releases"><code>@vitejs/plugin-react-swc</code>'s releases</a>.</em></p> <blockquote> <h2>v3.4.1</h2> <h3>Add support for <code>.mts</code> (fixes <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/161">#161</a>)</h3> <p>Using CJS in source code will not work in Vite (and will never be supported), so this is better to only use <code>.ts</code>.</p> <p>But to better align with <a href="https://vitejs.dev/config/shared-options.html#resolve-extensions">Vite core defaults</a>, <code>.mts</code> extension will now be processed like <code>.ts</code>. This maybe reverted in a future major.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/vitejs/vite-plugin-react-swc/blob/main/CHANGELOG.md"><code>@vitejs/plugin-react-swc</code>'s changelog</a>.</em></p> <blockquote> <h2>3.4.1</h2> <h3>Add support for <code>.mts</code> (fixes <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/161">#161</a>)</h3> <p>Using CJS in source code will not work in Vite (and will never be supported), so this is better to only use <code>.ts</code>.</p> <p>But to better align with <a href="https://vitejs.dev/config/shared-options.html#resolve-extensions">Vite core defaults</a>, <code>.mts</code> extension will now be processed like <code>.ts</code>. This maybe reverted in a future major.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/33c5fc6842c364de8bdcf3e21c5f3cbe6c56ed53"><code>33c5fc6</code></a> release: v3.4.1</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/c0b50071497125ddd5531e4922d83c389b05b729"><code>c0b5007</code></a> feat: add support for <code>.mts</code> (fixes <a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/161">#161</a>) (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/166">#166</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/1194562f00c7d1c38bb66d66408fddd134aabdf5"><code>1194562</code></a> fix(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/164">#164</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/95129304b3ead45275cb4d1f8954d3b7f68f3f97"><code>9512930</code></a> chore(deps): update actions/setup-node action to v4 (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/165">#165</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/2a68d846886db351246746dd5d62485f582e3d69"><code>2a68d84</code></a> fix(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/159">#159</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/9b8a0d21dba33c2e9aaed6c0bba9cbce28bd67da"><code>9b8a0d2</code></a> chore(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/158">#158</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/25b959124425126dcd75a226f5c85a19ac859679"><code>25b9591</code></a> chore(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/157">#157</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/789fd1226b2d8702ddcb1d41d5aef9b208d2b443"><code>789fd12</code></a> fix(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/155">#155</a>)</li> <li><a href="https://github.com/vitejs/vite-plugin-react-swc/commit/5acba94591f6b0b63ed659832a77beb460d4313a"><code>5acba94</code></a> chore(deps): update all non-major dependencies (<a href="https://redirect.github.com/vitejs/vite-plugin-react-swc/issues/151">#151</a>)</li> <li>See full diff in <a href="https://github.com/vitejs/vite-plugin-react-swc/compare/v3.4.0...v3.4.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@vitejs/plugin-react-swc&package-manager=npm_and_yarn&previous-version=3.4.0&new-version=3.4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

…layground (#2042) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 6.9.1 to 6.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases"><code>@typescript-eslint/eslint-plugin</code>'s releases</a>.</em></p> <blockquote> <h2>v6.10.0</h2> <h1><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.9.1...v6.10.0">6.10.0</a> (2023-11-06)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [no-unused-vars] handle logical assignment (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7854">#7854</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/11e57c5937cc2ad2e6b035f8d3fb25a918490960">11e57c5</a>)</li> <li><strong>eslint-plugin:</strong> [require-await] add support for "await using" (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7866">#7866</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/855abea2d7ba0235e61430f9481117af5f8f1bf7">855abea</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>eslint-plugin:</strong> [ban-ts-comments] suggest ts-expect-error over ts-ignore (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7849">#7849</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/5e73a4810add09470426129bc6b267cfaa42c378">5e73a48</a>)</li> </ul> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md"><code>@typescript-eslint/eslint-plugin</code>'s changelog</a>.</em></p> <blockquote> <h1><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.9.1...v6.10.0">6.10.0</a> (2023-11-06)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [no-unused-vars] handle logical assignment (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7854">#7854</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/11e57c5937cc2ad2e6b035f8d3fb25a918490960">11e57c5</a>)</li> <li><strong>eslint-plugin:</strong> [require-await] add support for "await using" (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7866">#7866</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/855abea2d7ba0235e61430f9481117af5f8f1bf7">855abea</a>)</li> </ul> <h3>Features</h3> <ul> <li><strong>eslint-plugin:</strong> [ban-ts-comments] suggest ts-expect-error over ts-ignore (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7849">#7849</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/5e73a4810add09470426129bc6b267cfaa42c378">5e73a48</a>)</li> </ul> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/75c128856b1ce05a4fec799bfa6de03b3dab03d0"><code>75c1288</code></a> chore: publish v6.10.0</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/29c2e688afa7d9b8873d97c3961b65805d87cf2a"><code>29c2e68</code></a> docs: flip the flag of skipCompoundAssignments in the example (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/7868">#7868</a>)</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/855abea2d7ba0235e61430f9481117af5f8f1bf7"><code>855abea</code></a> fix(eslint-plugin): [require-await] add support for "await using" (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/7866">#7866</a>)</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/11e57c5937cc2ad2e6b035f8d3fb25a918490960"><code>11e57c5</code></a> fix(eslint-plugin): [no-unused-vars] handle logical assignment (<a href="https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin/issues/7854">#7854</a>)</li> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/5e73a4810add09470426129bc6b267cfaa42c378"><code>5e73a48</code></a> feat(eslint-plugin): [ban-ts-comments] suggest ts-expect-error over ts-ignore...</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v6.10.0/packages/eslint-plugin">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=6.9.1&new-version=6.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [axios](https://github.com/axios/axios) from 1.5.1 to 1.6.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/releases">axios's releases</a>.</em></p> <blockquote> <h2>Release v1.6.1</h2> <h2>Release notes:</h2> <h3>Bug Fixes</h3> <ul> <li><strong>formdata:</strong> fixed content-type header normalization for non-standard browser environments; (<a href="https://redirect.github.com/axios/axios/issues/6056">#6056</a>) (<a href="https://github.com/axios/axios/commit/dd465ab22bbfa262c6567be6574bf46a057d5288">dd465ab</a>)</li> <li><strong>platform:</strong> fixed emulated browser detection in node.js environment; (<a href="https://redirect.github.com/axios/axios/issues/6055">#6055</a>) (<a href="https://github.com/axios/axios/commit/3dc8369e505e32a4e12c22f154c55fd63ac67fbb">3dc8369</a>)</li> </ul> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/DigitalBrainJS" title="+432/-65 ([#6059](axios/axios#6059) [#6056](axios/axios#6056) [#6055](axios/axios#6055) )">Dmitriy Mozgovoy</a></li> <li> <a href="https://github.com/meyfa" title="+5/-2 ([#5835](axios/axios#5835) )">Fabian Meyer</a></li> </ul> <h2>Release v1.6.0</h2> <h2>Release notes:</h2> <h3>Bug Fixes</h3> <ul> <li><strong>CSRF:</strong> fixed CSRF vulnerability CVE-2023-45857 (<a href="https://redirect.github.com/axios/axios/issues/6028">#6028</a>) (<a href="https://github.com/axios/axios/commit/96ee232bd3ee4de2e657333d4d2191cd389e14d0">96ee232</a>)</li> <li><strong>dns:</strong> fixed lookup function decorator to work properly in node v20; (<a href="https://redirect.github.com/axios/axios/issues/6011">#6011</a>) (<a href="https://github.com/axios/axios/commit/5aaff532a6b820bb9ab6a8cd0f77131b47e2adb8">5aaff53</a>)</li> <li><strong>types:</strong> fix AxiosHeaders types; (<a href="https://redirect.github.com/axios/axios/issues/5931">#5931</a>) (<a href="https://github.com/axios/axios/commit/a1c8ad008b3c13d53e135bbd0862587fb9d3fc09">a1c8ad0</a>)</li> </ul> <h3>PRs</h3> <ul> <li>CVE 2023 45857 ( <a href="https://api.github.com/repos/axios/axios/pulls/6028">#6028</a> )</li> </ul> <pre><code> ⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459 </code></pre> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/DigitalBrainJS" title="+449/-114 ([#6032](axios/axios#6032) [#6021](axios/axios#6021) [#6011](axios/axios#6011) [#5932](axios/axios#5932) [#5931](axios/axios#5931) )">Dmitriy Mozgovoy</a></li> <li> <a href="https://github.com/valentin-panov" title="+4/-4 ([#6028](axios/axios#6028) )">Valentin Panov</a></li> <li> <a href="https://github.com/therealrinku" title="+1/-1 ([#5889](axios/axios#5889) )">Rinku Chaudhari</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/blob/v1.x/CHANGELOG.md">axios's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/axios/axios/compare/v1.6.0...v1.6.1">1.6.1</a> (2023-11-08)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>formdata:</strong> fixed content-type header normalization for non-standard browser environments; (<a href="https://redirect.github.com/axios/axios/issues/6056">#6056</a>) (<a href="https://github.com/axios/axios/commit/dd465ab22bbfa262c6567be6574bf46a057d5288">dd465ab</a>)</li> <li><strong>platform:</strong> fixed emulated browser detection in node.js environment; (<a href="https://redirect.github.com/axios/axios/issues/6055">#6055</a>) (<a href="https://github.com/axios/axios/commit/3dc8369e505e32a4e12c22f154c55fd63ac67fbb">3dc8369</a>)</li> </ul> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/DigitalBrainJS" title="+432/-65 ([#6059](axios/axios#6059) [#6056](axios/axios#6056) [#6055](axios/axios#6055) )">Dmitriy Mozgovoy</a></li> <li> <a href="https://github.com/meyfa" title="+5/-2 ([#5835](axios/axios#5835) )">Fabian Meyer</a></li> </ul> <h1><a href="https://github.com/axios/axios/compare/v1.5.1...v1.6.0">1.6.0</a> (2023-10-26)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>CSRF:</strong> fixed CSRF vulnerability CVE-2023-45857 (<a href="https://redirect.github.com/axios/axios/issues/6028">#6028</a>) (<a href="https://github.com/axios/axios/commit/96ee232bd3ee4de2e657333d4d2191cd389e14d0">96ee232</a>)</li> <li><strong>dns:</strong> fixed lookup function decorator to work properly in node v20; (<a href="https://redirect.github.com/axios/axios/issues/6011">#6011</a>) (<a href="https://github.com/axios/axios/commit/5aaff532a6b820bb9ab6a8cd0f77131b47e2adb8">5aaff53</a>)</li> <li><strong>types:</strong> fix AxiosHeaders types; (<a href="https://redirect.github.com/axios/axios/issues/5931">#5931</a>) (<a href="https://github.com/axios/axios/commit/a1c8ad008b3c13d53e135bbd0862587fb9d3fc09">a1c8ad0</a>)</li> </ul> <h3>PRs</h3> <ul> <li>CVE 2023 45857 ( <a href="https://api.github.com/repos/axios/axios/pulls/6028">#6028</a> )</li> </ul> <pre><code> ⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459 </code></pre> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/DigitalBrainJS" title="+449/-114 ([#6032](axios/axios#6032) [#6021](axios/axios#6021) [#6011](axios/axios#6011) [#5932](axios/axios#5932) [#5931](axios/axios#5931) )">Dmitriy Mozgovoy</a></li> <li> <a href="https://github.com/valentin-panov" title="+4/-4 ([#6028](axios/axios#6028) )">Valentin Panov</a></li> <li> <a href="https://github.com/therealrinku" title="+1/-1 ([#5889](axios/axios#5889) )">Rinku Chaudhari</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/axios/axios/commit/f6d2cf9763bfa124f15c2dc6a5d5d5d9d3e26169"><code>f6d2cf9</code></a> chore(ci): fix publish action content permission; (<a href="https://redirect.github.com/axios/axios/issues/6061">#6061</a>)</li> <li><a href="https://github.com/axios/axios/commit/a22f4b918a71a4d4caa57ff23d8247eac93765de"><code>a22f4b9</code></a> chore(release): v1.6.1 (<a href="https://redirect.github.com/axios/axios/issues/6060">#6060</a>)</li> <li><a href="https://github.com/axios/axios/commit/cb8bb2beb215a94a29f19b0d66ab05d32b390230"><code>cb8bb2b</code></a> chore(ci): Publish to NPM with provenance (<a href="https://redirect.github.com/axios/axios/issues/5835">#5835</a>)</li> <li><a href="https://github.com/axios/axios/commit/37cbf9214a1140d25c2c1a5ff097666c96721d6a"><code>37cbf92</code></a> chore(ci): added labeling and notification for published PRs; (<a href="https://redirect.github.com/axios/axios/issues/6059">#6059</a>)</li> <li><a href="https://github.com/axios/axios/commit/dd465ab22bbfa262c6567be6574bf46a057d5288"><code>dd465ab</code></a> fix(formdata): fixed content-type header normalization for non-standard brows...</li> <li><a href="https://github.com/axios/axios/commit/3dc8369e505e32a4e12c22f154c55fd63ac67fbb"><code>3dc8369</code></a> fix(platform): fixed emulated browser detection in node.js environment; (<a href="https://redirect.github.com/axios/axios/issues/6055">#6055</a>)</li> <li><a href="https://github.com/axios/axios/commit/f7adacdbaa569281253c8cfc623ad3f4dc909c60"><code>f7adacd</code></a> chore(release): v1.6.0 (<a href="https://redirect.github.com/axios/axios/issues/6031">#6031</a>)</li> <li><a href="https://github.com/axios/axios/commit/9917e67cbb6c157382863bad8c741de58e3f3c2b"><code>9917e67</code></a> chore(ci): fix release-it arg; (<a href="https://redirect.github.com/axios/axios/issues/6032">#6032</a>)</li> <li><a href="https://github.com/axios/axios/commit/96ee232bd3ee4de2e657333d4d2191cd389e14d0"><code>96ee232</code></a> fix(CSRF): fixed CSRF vulnerability CVE-2023-45857 (<a href="https://redirect.github.com/axios/axios/issues/6028">#6028</a>)</li> <li><a href="https://github.com/axios/axios/commit/7d45ab2e2ad6e59f5475e39afd4b286b1f393fc0"><code>7d45ab2</code></a> chore(tests): fixed tests to pass in node v19 and v20 with <code>keep-alive</code> enabl...</li> <li>Additional commits viewable in <a href="https://github.com/axios/axios/compare/v1.5.1...v1.6.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios&package-manager=npm_and_yarn&previous-version=1.5.1&new-version=1.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/sourcenetwork/defradb/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

## Relevant issue(s) Resolves #2034 ## Description Adds a mac (latest) test run to our test matrix. This only use the lightest of configurations we have, I think this will catch any/99% issues that we would otherwise miss. Windows has been broken out to a different ticket, as quite a lot of tests fail on windows and it will take more effort to get working: #2033

✅ This PR was created by the Combine PRs action by combining the following PRs: #2050 bot: Bump @typescript-eslint/parser from 6.9.0 to 6.10.0 in /playground #2049 bot: Bump @types/react from 18.2.33 to 18.2.37 in /playground #2048 bot: Bump swagger-ui-react from 5.9.1 to 5.9.4 in /playground ⚠️ The following PRs were manually merged and resolved do to merge conflicts. #2047 bot: Bump @types/react-dom from 18.2.14 to 18.2.15 in /playground --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com> Co-authored-by: Shahzad Lone <shahzadlone@gmail.com>

## Relevant issue(s) Resolves #2043 ## Description This PR updates go dependencies that couldn't be done by dependabot for different reasons. One of which is the result of deprecating `libpeer.ID.Pretty` from `libp2p`. An [update](libp2p/go-libp2p#2560) to `libp2p` also made it no longer valid to connect to a peer on `0.0.0.0`. We now need to use `127.0.0.1` for our tests.

…und (#2053) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 6.10.0 to 6.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/releases"><code>@typescript-eslint/parser</code>'s releases</a>.</em></p> <blockquote> <h2>v6.11.0</h2> <h1><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.10.0...v6.11.0">6.11.0</a> (2023-11-13)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>eslint-plugin:</strong> [explicit-function-return-type] support JSX attributes in <code>allowTypedFunctionExpressions</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7553">#7553</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/be2777c5338669836d786f9a7806f499fd566dcd">be2777c</a>)</li> <li><strong>eslint-plugin:</strong> [no-unnecessary-qualifier] handle nested namespace id (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7883">#7883</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/a668f5b10e7b1570c732312ad9ccab3431459c1b">a668f5b</a>)</li> </ul> <h3>Features</h3> <ul> <li>add <code>no-unsafe-unary-minus</code> rule (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7390">#7390</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/c4709c2861f8ea4e18c289218a75224d6bb76193">c4709c2</a>)</li> <li>add types for flat config files (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7273">#7273</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/66cd0c0535e5de1b46ba337919a9a92748d2b0a6">66cd0c0</a>)</li> <li>allow typescript <code>5.3.0-beta</code> as <code>devDependency</code> (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7821">#7821</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/b6c40b42b68d5567c7468030ee45b9b84bec4c4d">b6c40b4</a>)</li> <li><strong>eslint-plugin:</strong> no-unsafe-enum-comparison handles switch cases (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7898">#7898</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/72cb9e4ed397d35a8d8838d27dedbace6122179c">72cb9e4</a>)</li> <li><strong>typescript-estree:</strong> skip <code>isTTY</code> version check if user passes <code>loggerFn</code> on unsupported TypeScript version warning (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7739">#7739</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/9656e135e78d9346d326d0c78ba772a5596c1812">9656e13</a>)</li> <li><strong>utils:</strong> add ESLint <code>CodePath</code> selector types (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7551">#7551</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/99a026fe41b4b169914352fe66e7d5d687b300bf">99a026f</a>)</li> <li><strong>utils:</strong> update types to reflect <code>RuleContext</code> and <code>SourceCode</code> changes and deprecations (<a href="https://redirect.github.com/typescript-eslint/typescript-eslint/issues/7812">#7812</a>) (<a href="https://github.com/typescript-eslint/typescript-eslint/commit/b73d8b21dea9c6697a68039ffba848d21b04402c">b73d8b2</a>)</li> </ul> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md"><code>@typescript-eslint/parser</code>'s changelog</a>.</em></p> <blockquote> <h1><a href="https://github.com/typescript-eslint/typescript-eslint/compare/v6.10.0...v6.11.0">6.11.0</a> (2023-11-13)</h1> <p><strong>Note:</strong> Version bump only for package <code>@typescript-eslint/parser</code></p> <p>You can read about our <a href="https://main--typescript-eslint.netlify.app/users/versioning">versioning strategy</a> and <a href="https://main--typescript-eslint.netlify.app/users/releases">releases</a> on our website.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/typescript-eslint/typescript-eslint/commit/06496e206a3219c01b370f6b5f8c89d41a4b86b8"><code>06496e2</code></a> chore: publish v6.11.0</li> <li>See full diff in <a href="https://github.com/typescript-eslint/typescript-eslint/commits/v6.11.0/packages/parser">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=6.10.0&new-version=6.11.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

## Relevant issue(s) Resolves #2039 ## Description This PR adds a Goreleaser workflow to automate the publication of releases on Github and DockerHub. Note that the release header and the milestone name should be updated manually for every release.

jsimnz · 2023-11-15T04:52:55Z

merge against master not develop

jsimnz

LGTM. Remember to merge commit, not squash ;)

codecov · 2023-11-15T05:04:57Z

Codecov Report

Attention: 795 lines in your changes are missing coverage. Please review.

Comparison is base (3d1667d) 70.31% compared to head (9dc6cd2) 73.91%.

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #2055      +/-   ##
==========================================
+ Coverage   70.31%   73.91%   +3.60%     
==========================================
  Files         232      248      +16     
  Lines       24192    24801     +609     
==========================================
+ Hits        17010    18330    +1320     
+ Misses       6021     5212     -809     
- Partials     1161     1259      +98

Flag	Coverage Δ
all-tests	`73.91% <66.86%> (+3.60%)`	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files	Coverage Δ
cli/backup_export.go	`89.58% <100.00%> (+8.33%)`	⬆️
cli/backup_import.go	`100.00% <100.00%> (+30.00%)`	⬆️
cli/cli.go	`100.00% <100.00%> (+24.35%)`	⬆️
cli/p2p.go	`100.00% <100.00%> (ø)`
cli/p2p_collection.go	`100.00% <100.00%> (ø)`
cli/p2p_collection_add.go	`100.00% <100.00%> (+77.42%)`	⬆️
cli/p2p_collection_remove.go	`100.00% <100.00%> (+77.42%)`	⬆️
cli/p2p_info.go	`100.00% <100.00%> (ø)`
cli/p2p_replicator.go	`100.00% <100.00%> (ø)`
cli/schema_set_default.go	`100.00% <100.00%> (ø)`
... and 120 more

... and 30 files with indirect coverage changes

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 3d1667d...9dc6cd2. Read the comment docs.

Release v0.8.0

nasdf and others added 30 commits September 19, 2023 13:46

fix: Infinite loop when updating one-one relation (#1915)

e952be5

## Relevant issue(s) Resolves #1914 ## Description Fixes an a bug where an infinite loop may be created when updating a self-referencing one-one relation from the secondary side.

fix: Remove collection name from schema ID generation (#1920)

6244c5b

## Relevant issue(s) Resolves #1083 ## Description Removes collection name from schema ID generation. It is a schema ID, not a collection ID, including the collection name makes no sense and is likely a historical artefact.

ci(i): Fix the pull_request trigger and ci badge (#1922)

3f9decc

## Relevant issue(s) Resolves #1921 ## Description - Fix workflow badge to the new workflow name - Fix the omitted pull_request trigger

fix(i): Update fetcher mock (#1926)

04a20e3

## Relevant issue(s) Resolves #1887 ## Description Updates the fetcher mock.

bot: Bump golang.org/x/net from 0.16.0 to 0.17.0 (#1961)

1e255e7

nasdf and others added 20 commits October 20, 2023 11:21

docs(i): Fix typos (#2002)

0f6acba

## Relevant issue(s) Resolves #2002 ## Description Fixing a few typos

feat: Rename Schema.SchemaID to Schema.Root (#2005)

d49c860

## Relevant issue(s) Resolves #2004 ## Description Renames Schema.SchemaID to Schema.Root. A `Schema` doesn't really exist outside of its version, and this name change will hopefully help clarify that.

fix: Fix test module relying on closed memory leak (#2037)

ec46f7d

## Relevant issue(s) Resolves #2036 ## Description Fix module relying on closed memory leak. It only half fixes this, it will be solved properly in lens-vm/lens#62

ci: Add goreleaser workflow (#2040)

b6f7a10

## Relevant issue(s) Resolves #2039 ## Description This PR adds a Goreleaser workflow to automate the publication of releases on Github and DockerHub. Note that the release header and the milestone name should be updated manually for every release.

Release v0.8.0

9dc6cd2

fredcarle added the release Related to release cycle label Nov 15, 2023

fredcarle requested a review from a team November 15, 2023 04:51

fredcarle self-assigned this Nov 15, 2023

fredcarle changed the base branch from develop to master November 15, 2023 04:54

jsimnz approved these changes Nov 15, 2023

View reviewed changes

fredcarle merged commit 177ca01 into master Nov 15, 2023
30 checks passed

fredcarle deleted the release/0.8.0 branch November 15, 2023 05:06

shahzadlone pushed a commit to shahzadlone/defradb that referenced this pull request Feb 23, 2024

Merge pull request sourcenetwork#2055 from sourcenetwork/release/0.8.0

be1e9a3

Release v0.8.0

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Release v0.8.0 #2055

Release v0.8.0 #2055

fredcarle commented Nov 15, 2023

jsimnz commented Nov 15, 2023

jsimnz left a comment

codecov bot commented Nov 15, 2023

Release v0.8.0 #2055

Release v0.8.0 #2055

Conversation

fredcarle commented Nov 15, 2023

jsimnz commented Nov 15, 2023

jsimnz left a comment

Choose a reason for hiding this comment

codecov bot commented Nov 15, 2023

Codecov Report