Bump bridge-transaction-parser from v0.5.0-beta to v1.1.4

[dependabot]

Bumps bridge-transaction-parser from v0.5.0-beta to v1.1.4.

Release notes

Sourced from bridge-transaction-parser's releases.

v1.1.4

What's Changed

• Refactors decodeLogs and creates a new decodeLog function to reuse lo… by @​jeremy-then in rsksmart/bridge-transaction-parser#52

Full Changelog: rsksmart/bridge-transaction-parser@v1.1.3...v1.1.4

v1.1.3

What's Changed

• Update abis version to lovell700 by @​nathanieliov in rsksmart/bridge-transaction-parser#50
• Upgrades rsk-precompiled-abis version by @​jeremy-then in rsksmart/bridge-transaction-parser#51

Full Changelog: rsksmart/bridge-transaction-parser@v1.1.2...v1.1.3

v1.1.2

What's Changed

Live monitoring tool changes and improvements.

• Exports BridgeTransactionParser class as default from the index.d.ts … by @​jeremy-then in rsksmart/bridge-transaction-parser#42
• Properly setting the network on live monitor reset by @​jeremy-then in rsksmart/bridge-transaction-parser#43
• Refactors live monitoring. Removes unnecessary properties. Waits and retries on error… by @​jeremy-then in rsksmart/bridge-transaction-parser#44
• Only emitting the stopped event only once if it is stopped and the user calls stop more times… by @​jeremy-then in rsksmart/bridge-transaction-parser#45
• Adds toBlock logic for the monitor to stop at toBlock if given… by @​jeremy-then in rsksmart/bridge-transaction-parser#46

Full Changelog: rsksmart/bridge-transaction-parser@v1.1.1...v1.1.2

v1.1.0

What's Changed

• Add block timestamp to response by @​marcos-iov in rsksmart/bridge-transaction-parser#41

Full Changelog: rsksmart/bridge-transaction-parser@v1.0.0...v1.1.0

v1.0.0

What's Changed

• Update to use latest ABI and display events by @​josedahlquist in rsksmart/bridge-transaction-parser#3
• Update README with running instructions by @​marcos-iov in rsksmart/bridge-transaction-parser#4
• Changes in data decoding by @​josedahlquist in rsksmart/bridge-transaction-parser#8
• Convert to library by @​kelvinator07 in rsksmart/bridge-transaction-parser#6
• Update Readme by @​josedahlquist in rsksmart/bridge-transaction-parser#10
• Specify minimum node version by @​nathanieliov in rsksmart/bridge-transaction-parser#9
• Fix For btcDestinationAddress from Hash160 to Base58 Format by @​kelvinator07 in rsksmart/bridge-transaction-parser#11
• Changes BridgeMethod and BridgeEvent arguments to Map type by @​jeremy-then in rsksmart/bridge-transaction-parser#13
• Add new method decodeBridgeTransaction by @​nathanieliov in rsksmart/bridge-transaction-parser#16
• Refactors for RSKIP326. by @​jeremy-then in rsksmart/bridge-transaction-parser#17
• Bump ansi-regex from 4.1.0 to 4.1.1 by @​dependabot in rsksmart/bridge-transaction-parser#15
• Bump simple-get from 2.8.1 to 2.8.2 by @​dependabot in rsksmart/bridge-transaction-parser#14

... (truncated)

Commits

• 24ff47b Merge pull request #52 from rsksmart/refactor-decodeLogs-to-reuse-logic
• c7cc7f5 Refactors decodeLogs and creates a new decodeLog function to reuse logic.
• 16bb6b7 Merge pull request #51 from rsksmart/upgrade-rsk-precompiled-abis-version
• c43e9de Upgrades package.json version.
• 08174a9 Using version directly.
• 1c743d2 Upgrades rsk-precompiled-abis version
• b37c389 Merge pull request #50 from rsksmart/update-abis-version-to-lovell700
• 1f4652f Update package-lock.json
• 0bf3126 Set an alias to rsk-precompiled-abis dependency
• cb89bf4 Update abi version
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

The following issues were found:

• ❌ 1 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 2 package(s) with unknown licenses.

See the Details below.

Vulnerabilities

package-lock.json

Name	Version	Vulnerability	Severity
bridge-transaction-parser	1.1.4	Malware in bridge-transaction-parser	critical

Only included vulnerabilities with severity high or higher.

License Issues

package-lock.json

Package	Version	License	Issue Type
bridge-transaction-parser	1.1.4	Null	Unknown License

package.json

Package	Version	License	Issue Type
bridge-transaction-parser	git+https://github.com/rsksmart/bridge-transaction-parser.git#1.1.4	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
npm/bridge-transaction-parser	1.1.4	🟢 3.3	Details Check Score Reason Maintained ⚠️ 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 Dangerous-Workflow ⚠️ -1 no workflows found Code-Review 🟢 5 Found 3/6 approved changesets -- score normalized to 5 Token-Permissions ⚠️ -1 No tokens found Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies ⚠️ -1 no dependencies found Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License ⚠️ 0 license file not detected Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/bridge-transaction-parser	git+https://github.com/rsksmart/bridge-transaction-parser.git#1.1.4	🟢 3.3	Details Check Score Reason Maintained ⚠️ 0 0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0 Dangerous-Workflow ⚠️ -1 no workflows found Code-Review 🟢 5 Found 3/6 approved changesets -- score normalized to 5 Token-Permissions ⚠️ -1 No tokens found Packaging ⚠️ -1 packaging workflow not detected Pinned-Dependencies ⚠️ -1 no dependencies found Binary-Artifacts 🟢 10 no binaries found in the repo CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License ⚠️ 0 license file not detected Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Files

• package-lock.json
• package.json