From ec13bc9ede53a1669dcc54df9b06a3d75cdde1cc Mon Sep 17 00:00:00 2001 From: Doug <4741454+douglance@users.noreply.github.com> Date: Fri, 8 Mar 2024 09:35:38 -0500 Subject: [PATCH 1/2] chore: fix audit failure (#419) --- audit-ci.jsonc | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/audit-ci.jsonc b/audit-ci.jsonc index e1cbb36942..22f6383790 100644 --- a/audit-ci.jsonc +++ b/audit-ci.jsonc @@ -71,6 +71,14 @@ // we don't use oz/merkle-trees anywhere // from @arbitrum/nitro-contracts>@offchainlabs/upgrade-executor>@openzeppelin/contracts-upgradeable // from @arbitrum/nitro-contracts>@offchainlabs/upgrade-executor>@openzeppelin/contracts - "GHSA-wprv-93r4-jj2p" + "GHSA-wprv-93r4-jj2p", + // https://github.com/advisories/GHSA-9vx6-7xxf-x967 + // OpenZeppelin Contracts base64 encoding may read from potentially dirty memory + // we don't use the base64 functions + // from: @arbitrum/nitro-contracts>@openzeppelin/contracts-upgradeable + // from: @arbitrum/token-bridge-contracts>@openzeppelin/contracts-upgradeable + // from: @arbitrum/nitro-contracts>@openzeppelin/contracts + // from: @arbitrum/token-bridge-contracts>@openzeppelin/contracts + "GHSA-9vx6-7xxf-x967" ] } From 7a6a06d84ff3825fd99f9da8e59b0f169a72e74a Mon Sep 17 00:00:00 2001 From: Doug <4741454+douglance@users.noreply.github.com> Date: Mon, 11 Mar 2024 12:32:08 -0400 Subject: [PATCH 2/2] ci: update testnode version (#420) --- .github/workflows/build-test.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/build-test.yml b/.github/workflows/build-test.yml index ee6e16b19c..c75b70db47 100644 --- a/.github/workflows/build-test.yml +++ b/.github/workflows/build-test.yml @@ -161,7 +161,7 @@ jobs: - name: Set up the local node uses: OffchainLabs/actions/run-nitro-test-node@main with: - nitro-testnode-ref: master + nitro-testnode-ref: release l3-node: ${{ matrix.orbit-test == '1' }} args: ${{ matrix.custom-fee == '1' && '--l3-fee-token' || '' }}