[Snyk] Security upgrade @ethereumjs/block from 3.6.2 to 4.0.0

[snyk-io]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	170/1000 Why? Confidentiality impact: None, Integrity impact: High, Availability impact: None, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.01055, Social Trends: No, Days since published: 6, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.83, Score Version: V5	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-8187303	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @ethereumjs/block

The new version differs by 250 commits.

• 1e0de28 Final Breaking Releases (#2270)
• 3bb0fe1 trie: implement trie pruning (#2203)
• b9ecb20 feat(trie): support manual setting of checkpoints (#2240)
• ca7089c evm: Update examples (#2266)
• 1a9da6f util: remove isTruthy and isFalsy (#2261)
• 45e47e3 client: remove isTruthy and isFalsy (#2258)
• 67aca1b client: Update merge instructions (#2246)
• 9587550 block: remove isTruthy and isFalsy (#2256)
• 55ca254 evm: remove isTruthy and isFalsy (#2252)
• fababfe devp2p: remove isTruthy and isFalsy (#2254)
• 1c3e0e6 monorepo: remove receiptRoot inconsistency (#2259)
• 94646f3 stateManager: remove isTruthy and isFalsy (#2251)
• f441c83 ethash: remove isTruthy and isFalsy (#2253)
• 742514a common: remove isTruthy and isFalsy (#2255)
• 2a31b56 blockchain: remove isTruthy and isFalsy (#2257)
• 15790b3 vm: remove isTruthy and isFalsy (#2248)
• 52d5961 Update: README.md -> Graph (#2242)
• f39b0b2 tx: remove isTruthy and isFalsy (#2250)
• f06b921 trie: remove isTruthy and isFalsy (#2249)
• 2d60261 Invalid README examples (#2247)
• de21d49 evm: add error which triggers if code size deposit exceeds the maximum size (#2239)
• c70a158 update tests to 11.1 (#2244)
• a87f179 monorepo: update package lock for rc1 (#2238)
• 8d394cc Monorepo RC 1 Releases (#2237)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@ethereumjs/[email protected]	None	+19	6.2 MB	holgerd77

🚮 Removed packages: npm/@ethereumjs/[email protected]

View full report↗︎