vechain/thor-devkit.js v2.2.0
on GitHub

one month ago

Security

Fixed critical vulnerability (GHSA-vjh7-7g9h-fjfh): replaced @vechain/ethers@4.0.27-5 with ethers@^6.13.0, eliminating the elliptic@6.5.4 ECDSA private key extraction risk. Total npm audit vulnerabilities reduced from 23 (including 4 critical, 11 high) to 3 low.

Dependencies

Replaced @vechain/ethers with ethers@^6 for ABI encoding/decoding, HD wallet, keystore, and mnemonic.
Replaced tslint with eslint@9 + @typescript-eslint@8.
Upgraded mocha@5 → mocha@11, nyc@14 → nyc@18, typescript@3 → typescript@5.

Tests

Added encode/decode coverage for bytes32[], uint256[3], bare tuple, and tuple[] types.

CI

Node.js test matrix updated to [22, lts/*, latest].
Removed SonarCloud job.

Check out latest releases or
releases around vechain/thor-devkit.js v2.2.0

Don't miss a new thor-devkit.js release

NewReleases is sending notifications on new releases.

Get notifications