Horizon test ci

[tmigone]

No description provided.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​types/​json5@​0.0.29 ⏵ 2.2.0			-30
	@​types/​bs58@​4.0.1 ⏵ 4.0.4			+1
	@​graphprotocol/​client-cli@​2.2.22
	@​types/​eslint__js@​8.42.3
	@​types/​glob@​7.2.0
	@​types/​minimist@​1.2.1 ⏵ 1.2.5
	@​types/​sinon-chai@​3.2.5 ⏵ 3.2.12
	@​stylistic/​eslint-plugin@​1.8.1
	@​tenderly/​api-client@​1.1.0
	@​types/​chai-as-promised@​7.1.8
	@​commitlint/​cli@​16.3.0
	@​graphprotocol/​sdk@​0.5.4
	@​commitlint/​cli@​18.6.1
	@​nomicfoundation/​hardhat-foundry@​1.1.3
	@​types/​yargs@​16.0.3 ⏵ 16.0.9	+1		+1
	@​openzeppelin/​hardhat-defender@​1.9.0
	arbos-precompiles@​1.0.2
	@​nomicfoundation/​hardhat-toolbox@​4.0.0
	@​types/​chai@​4.2.18 ⏵ 4.3.20			+1
	@​types/​chai@​4.2.18 ⏵ 4.3.4			+1
	@​openzeppelin/​contracts@​3.4.1 ⏵ 3.4.2		+50
	@​types/​mocha@​8.2.2 ⏵ 10.0.10			+1
	@​types/​inquirer@​7.3.1 ⏵ 7.3.3	+1		+1
	@​types/​mocha@​8.2.2 ⏵ 8.2.3			+1
	@​types/​mocha@​8.2.2 ⏵ 9.1.1			+1
	coingecko-api@​1.0.10
	@​types/​debug@​4.1.12
See 46 more rows in the dashboard

View full report

[socket-security]

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action	Severity	Alert (click for details)
Warn		babel-traverse@6.26.0 has a Critical CVE. CVE: GHSA-67hx-6x53-jw92 Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code (CRITICAL) Affected versions: >= 0 Patched version: No patched versions From: pnpm-lock.yaml → npm/babel-traverse@6.26.0 ℹ Read more on: This package | This alert | What is a critical CVE? Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev. Suggestion: Remove or replace dependencies that include known critical CVEs. Consumers can use dependency overrides or npm audit fix --force to remove vulnerable dependencies. Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore npm/babel-traverse@6.26.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

[openzeppelin-code]

Horizon test ci

Generated at commit: f8809acb5d8d288833bce0ea3a3783f554f7a297

🚨 Report Summary

	Severity Level	Results
Contracts	Critical High Medium Low Note Total	2 4 0 15 39 60
Dependencies	Critical High Medium Low Note Total	0 0 0 0 0 0

---

For more details view the full report in OpenZeppelin Code Inspector

[codecov]

Codecov Report

Attention: Patch coverage is 89.04110% with 8 lines in your changes missing coverage. Please review.

Project coverage is 92.56%. Comparing base (03d8d2a) to head (f8809ac).

Files with missing lines	Patch %	Lines
...ges/contracts/contracts/rewards/RewardsManager.sol	79.31%	6 Missing ⚠️
packages/contracts/contracts/staking/Staking.sol	77.77%	2 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##           testnet    #1178      +/-   ##
===========================================
- Coverage    92.83%   92.56%   -0.27%     
===========================================
  Files           47       47              
  Lines         2415     2435      +20     
  Branches       438      440       +2     
===========================================
+ Hits          2242     2254      +12     
- Misses         173      181       +8     

Flag	Coverage Δ
unittests	92.56% <89.04%> (-0.27%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.