Update dependency solidity-coverage to v0.7.21

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
solidity-coverage	^0.4.3 -> 0.7.21

---

Release Notes

sc-forks/solidity-coverage

v0.7.21

Compare Source

===================

• Add support for UncheckedStatement blocks (https://github.com/sc-forks/solidity-coverage/issues/712)
• Lazy load hardhat plugin resources (https://github.com/sc-forks/solidity-coverage/issues/711)

v0.7.20

Compare Source

===================

• Remove early V7 Truffle patches (https://github.com/sc-forks/solidity-coverage/issues/693)

v0.7.19

Compare Source

===================

• Update solidity-parser/parser to 0.14.0 - supports solidity user-defined types (https://github.com/sc-forks/solidity-coverage/issues/689)

v0.7.18

Compare Source

=================

• Add solcOptimizerDetails option to help workaround "stack too deep" errors (https://github.com/sc-forks/solidity-coverage/issues/683)
• Add __SOLIDITY_COVERAGE_RUNNING variable on global HH env for identifying solidity-coverage task from other tasks https://github.com/sc-forks/solidity-coverage/issues/6822)
• Fix hardhat_reset (https://github.com/sc-forks/solidity-coverage/issues/667)
• Add new hook and make temporary contracts directory configurable (https://github.com/sc-forks/solidity-coverage/issues/664)
• Use internal visibility for fn level hash method defs (https://github.com/sc-forks/solidity-coverage/issues/660)

v0.7.17

Compare Source

v0.7.16

Compare Source

===================

• Update @​solidity-parser/parser to ^0.12.0 (and support Panic keyword in catch clauses) (https://github.com/sc-forks/solidity-coverage/issues/621)

v0.7.15

Compare Source

===================

• Fix ctrl-c not exiting on Hardhat (https://github.com/sc-forks/solidity-coverage/issues/616)
• Fix bug instrumentation bug w/ "pragma abicoder v2" (https://github.com/sc-forks/solidity-coverage/issues/615)
• Update changelog: v0.7.14

v0.7.14

Compare Source

===================

• Support file scoped function definitions for solc >= 0.7.4
• Upgrade @​solidity-parser/parser to v0.11.0

v0.7.13

Compare Source

===================

• Use default artifact paths for hardhat >= 2.0.4 (Fixes hardhat-deploy bug)

v0.7.12

Compare Source

===================

• Add Hardhat plugin support and allow coverage to run on HardhatEVM (https://github.com/sc-forks/solidity-coverage/pull/548)
• Allow truffle projects to contain vyper contracts (https://github.com/sc-forks/solidity-coverage/issues/571)
• Locate .coverage_contracts correctly for subfolder paths
  https://github.com/sc-forks/solidity-coverage/issues/570/570)
• Replace Web3 with thin rpc wrapper (https://github.com/sc-forks/solidity-coverage/issues/568)
• Stop reporting assert statements as branches (https://github.com/sc-forks/solidity-coverage/issues/556)
• Upgrade @​truffle/provider to 0.2.24 (https://github.com/sc-forks/solidity-coverage/issues/550)
• Upgrade solidity-parser/parser to 0.8.1 (https://github.com/sc-forks/solidity-coverage/issues/549)

v0.7.11

Compare Source

========================

• Upgrade Web3 to ^1.3.0, ganache-cli to 6.11.0
• Make statement and function coverage measurement optional

v0.7.10

Compare Source

==================

• Bump parser to 0.7.0 (Solidity 0.7.0)

v0.7.9

Compare Source

==================

• Fix --testfiles glob handling (Buidler)

v0.7.8

Compare Source

==================

• Track statements in try/catch blocks correctly

v0.7.7

Compare Source

==================

• Recommend using --network in buidler docs
• Fix html report function highlighting
• Stop instrumenting receive() for statements / fns (to save gas)
• Lazy load ganache in buidler plugin (fix for buidler source-maps)
• Unset useLiteralContent in buidler compilation settings
• Support multi-contract files w/ inheritance for solc 0.6.x

v0.7.5

Compare Source

==================

• Auto disable buidler-gas-reporter (fixes hang when both plugins are present)
• Upgrade @​solidity-parser/parser to ^0.6.0 (for solc 0.6.5 parsing)

v0.7.4

Compare Source

==================

• Use @​solidity-parser/parser (^0.5.2) for better 0.6.x parsing (https://github.com/sc-forks/solidity-coverage/issues/495)
• Allowing providerOptions gasLimit and allowUnlimitedContractSize to override defaults (https://github.com/sc-forks/solidity-coverage/issues/494)

v0.7.3

Compare Source

==================

• Use empty string for default cli flag values (Buidler) (https://github.com/sc-forks/solidity-coverage/issues/490)
• Get test files after compileComplete hook runs (Truffle) (https://github.com/sc-forks/solidity-coverage/issues/485)
• Fix skipFiles option for Windows OS (https://github.com/sc-forks/solidity-coverage/issues/486)
• Allow modifier string arguments containing "{" (https://github.com/sc-forks/solidity-coverage/issues/480)
• Allow base contract string constructor args with open curly braces
  https://github.com/sc-forks/solidity-coverage/issues/479/479)
• Bump handlebars from 4.1.2 to 4.5.3
• Bump kind-of from 6.0.2 to 6.0.3

v0.7.2

Compare Source

===================

• Add support for UncheckedStatement blocks (https://github.com/sc-forks/solidity-coverage/issues/712)
• Lazy load hardhat plugin resources (https://github.com/sc-forks/solidity-coverage/issues/711)

v0.7.1

Compare Source

===================

• Update solidity-parser/parser to 0.14.0 - supports solidity user-defined types (https://github.com/sc-forks/solidity-coverage/issues/689)

v0.7.0

Compare Source

==================

• New architecture / Truffle plugin (See PR #​372 for details)
• Expose solidity-coverage/api (See PR #​421 for details)
• Add Buidler plugin (See PR #​421 for details)

v0.6.7

Compare Source

v0.6.5

Compare Source

=========================

• Ugrapde testrpc-sc to 6.5.1-sc.1 (using eth-sig-util 2.3.0)
• Pin solidity-parser-antlr to 0.4.7

v0.6.4

Compare Source

==================

• Upgrade testrpc-sc to track ganache-cli 6.5.1

v0.6.3

Compare Source

==================

• Fix parsing bug for soldity type keyword (upgrade solidity-parser-antlr to ^0.4.7)

v0.6.2

Compare Source

==================

• Fix coverage for solidity send and transfer (upgrade testrpc-sc to 6.4.5-sc.3)

v0.6.1

Compare Source

==================

• Fix bug preprocessing unbracketed if else statements

v0.6.0

Compare Source

==================

• Add E2E vs Zeppelin and Colony in CI
• Add misc regression tests
• Rebase testrpc-sc on ganache-cli 6.4.5, using --allowUnlimitedContractSize and --emitFreeLogs by default.
• Make pre-processor (and instrumentation step) much much faster
• Transition to using solidity-parser-antlr (@​area)

v0.5.11

Compare Source

===================

• Support org namespaces / subfolders for copyPackages option (contribution @​bingen)

v0.5.10

Compare Source

==================

• Add deep skip option to provide relief from instrumentation hangs for contracts like Oraclize

v0.5.9

Compare Source

v0.5.8

Compare Source

=================

• Fix instrumentation algo so SC doesn't instrument entire codebase twice (contribution @​sohkai)

v0.5.7

Compare Source

==================

• Add new parameter for build directory path (contribution @​DimitarSD)
• Upgrade testrpc-sc to 6.1.6 (to support reason strings) (@​area)
• Switch to CircleCI v2 (@​area)

v0.5.5

Compare Source

==================

• Also copy files starting with '.' into coverage environment - they might be necessary.
• Parse pragma ABIEncoderV2

v0.5.4

Compare Source

==================

• Use require.resolve() to get the path of testrpc-sc (lerna + yarn workspaces compatibility) (contribution @​vdrg)

v0.5.3

Compare Source

=================

• Add -L flag when copying packages specified in the copyPackages option (following symlinks | lerna + yarn workspaces compatibility) (contribution
  @​vdrg)

v0.5.2

Compare Source

==================

• Silence security warnings coming from the parser by upgrading mocha there to v4.
• Kill testrpc w/ tree-kill so that the childprocess actually dies in linux.

v0.5.1

Compare Source

===================

• Support org namespaces / subfolders for copyPackages option (contribution @​bingen)

v0.5.0

Compare Source

==================

• Update README for 0.5.0
• Cleanup stdout/stderr streams on exit. This might stop testrpc-sc from running as a background
  zombie on Linux systems, post-exit.
• Support constructor keyword
• Prefix instrumentation events with emit keyword
• (Temporarily) remove support for ternary conditional branch coverage. Solidity no longer allows
  us to emit instrumentationevents within the grammatical construction @​area devised to
  make this possible.

v0.4.15

Compare Source

===================

• Update parser to allow emit keyword (contribution @​andresilva).

v0.4.14

Compare Source

====================

• Fix misc bugs related to testrpc-sc using an older version of ganache-cli to webpack testrpc-sc
  by bumping to testrpc-sc 6.1.2

v0.4.13

Compare Source

====================

• Fix bug introduced in 0.4.12 that broke internal rpc server launch. (contribution @​andresilva)

v0.4.12

Compare Source

===================

• Fix bug that caused parser to crash on JS future-reserved keywords like class
• Use newer more stable ganache-core as core of testrpc-sc.
• Update instrumentation to allow interface contracts.

v0.4.11

Compare Source

===================

• Add @​vdrg to contributor list
• Update parser to allow function types as function parameters (contribution: vrdg)

v0.4.10

Compare Source

===================

• Fix bug that corrupted the line coverage alignment in reports when view/pure modifiers
  occupied their own line.

v0.4.9

Compare Source

==================

• Fix bug that ommitted line-coverage for lines with trailing '//' comment

v0.4.8

Compare Source

==================

• Fix windows html report bug caused by failure to pass path relativized mapping to Istanbul

v0.4.7

Compare Source

==================

• Fix parsing bug preventing fn definition in structs. Bump parser to 0.4.4

v0.4.6

Compare Source

v0.4.5

Compare Source

==================

• Fix parsing bug preventing fn definition in structs. Bump parser to 0.4.4

v0.4.4

Compare Source

==================

• Fix build folder management by only deleting its contracts folder (contribution: ukstv)
• Document problems/solutions when Truffle must be a local dependency.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, click this checkbox.

---

This PR has been generated by Mend Renovate. View repository job log here.

[guardrails]

⚠️ We detected 49 security issues in this pull request:

Vulnerable Libraries (49)

Severity	Details
High	ini@1.3.4 (t) - no patch available
Informational	qs@6.3.2 (t) - no patch available
High	acorn@5.1.1 (t) - no patch available
Medium	bl@1.2.1 (t) - no patch available
High	braces@1.8.5 (t) - no patch available
High	debug@2.6.8 (t) - no patch available
Low	elliptic@6.4.0 (t) - no patch available
Critical	cryptiles@2.0.5 (t) - no patch available
High	growl@1.9.2 (t) - no patch available
Medium	extend@3.0.1 (t) - no patch available
High	glob-parent@2.0.0 (t) - no patch available
Medium	handlebars@4.0.11 (t) - no patch available
High	is-my-json-valid@2.16.0 (t) - no patch available
High	js-yaml@3.6.1 (t) - no patch available
Medium	hoek@2.16.3 (t) - no patch available
Medium	hosted-git-info@2.5.0 (t) - no patch available
High	minimist@0.0.8 (t) - no patch available
High	node-fetch@1.7.2 (t) - no patch available
High	mem@1.1.0 (t) - no patch available
Medium	lodash@4.17.4 (t) - no patch available
High	path-parse@1.0.5 (t) - no patch available
High	stringstream@0.0.5 (t) - no patch available
High	tar-fs@1.15.3 (t) - no patch available
High	trim@0.0.1 (t) - no patch available
High	tough-cookie@2.3.2 (t) - no patch available
High	tunnel-agent@0.4.3 (t) - no patch available
High	sshpk@1.13.1 (t) - no patch available
High	yargs-parser@2.4.1 (t) - no patch available
High	y18n@3.2.1 (t) - no patch available
Medium	ansi-regex@3.0.0 (t) upgrade to: 3.0.0
High	bl@1.2.1 (t) upgrade to: >=1.2.3
High	elliptic@6.4.0 (t) upgrade to: >6.5.3
High	ethereumjs-block@1.2.2 (t) upgrade to: >=0.0.3
Medium	extend@3.0.1 (t) upgrade to: >3.0.1
High	ini@1.3.4 (t) upgrade to: >=1.3.6
Medium	is-my-json-valid@2.16.0 (t) upgrade to: >2.20.5
Medium	jsprim@1.4.1 (t) upgrade to: >1.4.1 || >2.0.1
Critical	lodash@4.17.4 (t) upgrade to: >4.17.20
High	parse-headers@2.0.1 (t) upgrade to: >2.0.1
High	pathval@1.1.0 (t) upgrade to: >=1.1.1
High	prebuild-install@2.2.2 (t) upgrade to: >2.5.0
Critical	rc@1.2.1 (t) upgrade to: >1.2.6
High	solidity-coverage@0.7.21 upgrade to: >=0.7.0
High	sshpk@1.13.1 (t) upgrade to: >=1.13.2
Medium	stringstream@0.0.5 (t) upgrade to: >=0.0.6
Medium	table@4.0.2 (t) upgrade to: >4.0.2
High	tar-fs@1.15.3 (t) upgrade to: >=1.16.2
High	tough-cookie@2.3.2 (t) upgrade to: >=2.3.3
High	watchpack@1.4.0 (t) upgrade to: >1.6.1

More info on how to fix Vulnerable Libraries in General and JavaScript.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.