Skip to content

Release 4.3.3 #1640

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 10 commits into
base: master
Choose a base branch
from
Open

Release 4.3.3 #1640

wants to merge 10 commits into from

Conversation

@cb-jake
Copy link
Contributor

@cb-jake cb-jake commented Jun 4, 2025

Release Branch

arjun-dureja and others added 7 commits February 26, 2025 13:51
@arjun-dureja @cb-jake
Add blocked popup detection with UI to retry (#1538)
030612b 
* Add blocked popup detection with UI to retry

* Remove test code

* Share retry path

* typecheck
@cb-jake
v4.3.1
af7f9c1
@lukasrosario @cb-jake
fix rpc url (#1569)
1dc9125
@cb-jake
add action for canary and prod releases (#1549)
767f72b 
* add action and canary release

* update release and canary actions

* fix release
@cb-jake
mod release script
e5431d4
@cb-jake
update release prod script (#1571)
6867de6
@cb-jake
update version
726fe00
@cb-heimdall
Copy link
Collaborator

cb-heimdall commented Jun 4, 2025
edited
Loading

🟡 Heimdall Review Status

Requirement Status More Info
Reviews 🟡 0/1
Denominator calculation
Show calculation
1 if user is bot 0
1 if user is external 0
2 if repo is sensitive 0
From .codeflow.yml 1
Additional review requirements
Show calculation
Max 0
0
From CODEOWNERS 0
Global minimum 0
Max 1
1
1 if commit is unverified 0
Sum 1

github-advanced-security[bot]
github-advanced-security bot found potential problems Jun 4, 2025
View reviewed changes
.github/workflows/release.yml
Comment on lines +13 to +23
name: Authorize
runs-on: ubuntu-latest
steps:
- name: ${{ github.actor }} permission check to update release version
uses: "lannonbr/repo-permission-check-action@2.0.2"
with:
permission: "write"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

release:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Copilot Autofix

AI 5 months ago

To fix the issue, we need to add a permissions block to the authorize job. Since the job only checks permissions and does not perform any write operations, it should be granted the minimal contents: read permission. This ensures that the job has only the permissions it needs to function correctly.

The changes will be made in the .github/workflows/release.yml file. Specifically, a permissions block will be added to the authorize job.

Suggested changeset 1
.github/workflows/release.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -14,2 +14,4 @@
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     steps:
EOF
@@ -14,2 +14,4 @@
runs-on: ubuntu-latest
permissions:
contents: read
steps:
Copilot is powered by AI and may make mistakes. Always verify output.
willnewman-cb and others added 2 commits June 4, 2025 11:25
@willnewman-cb @cb-jake
WalletLink: Move heartbeat interval to a webworker (#1638)
61f6a83 
* Move heartbeat interval to a webworker

* Add tests
@cb-jake
merge
22ff8ac
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@cb-jake @cb-heimdall @arjun-dureja @lukasrosario @willnewman-cb