[Snyk] Upgrade openzeppelin-solidity from 2.1.0 to 3.4.1

[snyk-bot]

Snyk has created this PR to upgrade openzeppelin-solidity from 2.1.0 to 3.4.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 35 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2021-03-03.

Release notes

Package name: openzeppelin-solidity

• 3.4.1 - 2021-03-03
• 3.4.1-solc-0.7 - 2021-03-03
• 3.4.0 - 2021-02-02
  

  Read the full announcement in the blog or check out the changelog.

  Security Fixes

  • ERC777: fix potential reentrancy issues for custom extensions to ERC777. (#2483)

  If you're using our implementation of ERC777 from version 3.3.0 or earlier, and you define a custom _beforeTokenTransfer function that writes to a storage variable, you may be vulnerable to a reentrancy attack. If you're affected and would like assistance please write to [email protected]. Read more in the pull request.

• 3.4.0-rc.0 - 2021-01-26
  

  3.4.0-rc.0

• 3.3.0 - 2020-11-26
• 3.3.0-rc.2 - 2020-11-24
• 3.3.0-rc.1 - 2020-11-18
• 3.3.0-rc.0 - 2020-11-17
• 3.2.0 - 2020-09-10
• 3.2.0-rc.0 - 2020-09-03
• 3.1.0 - 2020-06-23
• 3.1.0-rc.0 - 2020-06-11
• 3.0.2 - 2020-06-08
• 3.0.1 - 2020-04-27
• 3.0.0 - 2020-04-20
• 3.0.0-rc.1 - 2020-04-03
• 3.0.0-rc.0 - 2020-03-16
• 3.0.0-beta.0 - 2020-02-14
• 2.5.1 - 2020-04-27
• 2.5.0 - 2020-02-04
• 2.5.0-rc.0 - 2020-01-24
• 2.4.0 - 2019-10-29
• 2.4.0-beta.2 - 2019-08-16
• 2.4.0-beta.1 - 2019-08-16
• 2.4.0-beta.0 - 2019-08-15
• 2.3.0 - 2019-05-27
• 2.3.0-rc.3 - 2019-05-16
• 2.3.0-rc.2 - 2019-05-08
• 2.3.0-rc.1 - 2019-04-24
• 2.3.0-rc.0 - 2019-04-24
• 2.2.0 - 2019-03-14
• 2.2.0-rc.1 - 2019-03-07
• 2.1.3 - 2019-02-26
• 2.1.2 - 2019-01-18
• 2.1.1 - 2019-01-04
• 2.1.0 - 2018-12-18

from openzeppelin-solidity GitHub release notes

Commit messages

Package name: openzeppelin-solidity

• cec0800 3.4.1
• b079293 Add a changelog entry
• a686a90 Make ERC721._approve internal
• fa64a1c 3.4.0
• 0f553e7 Remove SafeMathMock compilation warnings (#2497)
• a0e2bca Add "available since" comments in documentation
• ff300b1 3.4.0-rc.0
• 18c7efe Make view and pure functions virtual (#2473)
• 0931062 Use Address.sendValue instead of address.transfer in RefundEscrow (#2480)
• 3b4c951 Fix ERC777 potential reentrancy issues (#2483)
• c2c08af Add ERC165Checker.getSupportedInterfaces (#2469)
• 9e49be4 Add ERC1167 library (minimal proxy) (#2449)
• dd86c97 Fix scripts/prepare-docs.sh
• 5a8e6bd Update pull request template
• c342114 Refactor SafeMath to avoid memory leaks (#2462)
• 5a58fd2 Update lockfile (#2467)
• faec973 Make non-view functions virtual (#2468)
• 65b7e51 Align comments (#2458)
• 318c4b4 Move Context from GSN to utils directory (#2453)
• b6e5187 Use Address.sendValue for PaymentSplitter (#2456)
• 1e8cb4b Bubble revert reasons in proxy initialization (#2454)
• 9daa0d4 Update lockfile (#2447)
• ceb7324 Update TimelockController.sol (#2446)
• da00d28 Rename "amount" to "value" in permit (#2445)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs