v1.0.9-48

What's Changed

• Bump google.golang.org/grpc from 1.56.3 to 1.79.3 in /packages/grpcwebproxy by @dependabot[bot] in #936
• Bump yauzl from 2.10.0 to 3.2.1 in /packages/apollo/test/cypress by @dependabot[bot] in #935
• Bump flatted from 3.3.1 to 3.4.2 in /packages/apollo by @dependabot[bot] in #937
• Bump flatted from 3.2.5 to 3.4.2 in /packages/stitch by @dependabot[bot] in #938
• Bump flatted from 3.2.5 to 3.4.2 in /packages/athena by @dependabot[bot] in #939
• Bump jsrsasign from 11.0.0 to 11.1.1, picomatch from 2.3.1 to 2.3.2, yaml from 2.3.3 to 2.8.3 by @Thomas-Leung in #943
• Bump node-forge from 1.3.2 to 1.4.0 in /packages/athena by @dependabot[bot] in #944
• Bump picomatch in /packages/apollo/test/cypress by @dependabot[bot] in #940
• Bump yaml from 2.3.3 to 2.8.3 in /packages/apollo/test/cypress by @dependabot[bot] in #942
• Bump path-to-regexp from 0.1.12 to 0.1.13 in /packages/athena by @dependabot[bot] in #950
• Bump serialize-javascript from 7.0.3 to 7.0.5 in /packages/apollo/test/cypress by @dependabot[bot] in #949
• Bump brace-expansion in /packages/apollo/test/cypress by @dependabot[bot] in #951
• Update Github Action: specified pipeline runs only when changed made in particular package by @Thomas-Leung in #948
• Bump picomatch from 2.3.1 to 2.3.2 by @dependabot[bot] in #947
• Bump handlebars from 4.7.8 to 4.7.9 by @dependabot[bot] in #945

Full Changelog: v1.0.9-47...v1.0.9-48

v1.0.9-47

What's Changed

• Fix pipeline and address CVEs by @Thomas-Leung in #920
• Bump ajv from 8.17.1 to 8.18.0 in /packages/stitch by @dependabot[bot] in #923
• Bump bn.js from 4.11.8 to 5.2.3 in /packages/athena by @dependabot[bot] in #928
• Bump qs from 6.14.1 to 6.14.2 in /packages/apollo/test/cypress by @dependabot[bot] in #926
• Bump minimatch in /packages/apollo/test/cypress by @dependabot[bot] in #929
• Bump ajv, ajv-keywords, schema-utils, terser-webpack-plugin and webpack in /packages/apollo/test/cypress by @dependabot[bot] in #922
• Bump lodash-es from 4.17.21 to 4.17.23 in /packages/apollo/test/cypress by @dependabot[bot] in #912
• Update github workflow For Deployer and GRPC Web proxy by @MuthuSundaravadivel in #914
• Bump lodash from 4.17.21 to 4.17.23 in /packages/apollo/test/cypress by @dependabot[bot] in #924
• Bump minimatch from 3.1.2 to 3.1.5 in /packages/athena by @dependabot[bot] in #931
• Bump serialize-javascript from 6.0.2 to 7.0.3 in /packages/apollo/test/cypress by @dependabot[bot] in #933
• Bump diff from 4.0.2 to 8.0.3 in /packages/apollo/test/cypress by @dependabot[bot] in #911
• Update releaseNotes.json for 1.0.9-47 by @Thomas-Leung in #934

Full Changelog: v1.0.9-46...v1.0.9-47

v1.0.9-46

What's Changed

• Updated the Node Packages qs which reported in cve-2025-15284 by @MuthuSundaravadivel in #906
• Bump js-yaml in /packages/apollo by @dependabot[bot] in #907
• Bump qs and @cypress/request in /packages/apollo/test/cypress by @dependabot[bot] in #908
• Update releaseNotes.json for 1.0.9-46 by @Thomas-Leung in #909
• Bump react-router and react-router-dom in /packages/apollo by @dependabot[bot] in #910

Full Changelog: v1.0.9-45...v1.0.9-46

v1.0.9-45

What's Changed

• update mocha from v9 to v11 to fix js-yaml vulnerability by @Thomas-Leung in #894
• Bump glob from 10.4.5 to 10.5.0 by @dependabot[bot] in #893
• Bump js-yaml from 4.1.0 to 4.1.1 in /packages/apollo/test/cypress by @dependabot[bot] in #892
• Bump node-forge and selfsigned in /packages/athena by @dependabot[bot] in #895
• Bump validator from 13.15.20 to 13.15.22 in /packages/apollo by @dependabot[bot] in #897
• Bump js-yaml from 4.1.0 to 4.1.1 in athena by @Thomas-Leung in #898
• Bump js-yaml and mocha in /packages/stitch by @dependabot[bot] in #896
• Bump jws package from 3.1.5 to 3.2.3 by @Thomas-Leung in #900
• Bump github.com/docker/docker from 28.0.0+incompatible to v28.5.2+incompatible in /packages/fabric-deployer by @MuthuSundaravadivel in #899
• Adding Version Check in Chaincode Modal by @MuthuSundaravadivel in #901
• Update releaseNotes.json for 1.0.9-45 by @Thomas-Leung in #902

Full Changelog: v1.0.9-44...v1.0.9-45

v1.0.9-44

What's Changed

• Validator update to 13.15.20 in apollo by @ketulsha in #889
• Update releaseNotes.json for 1.0.9-44 by @ketulsha in #891

Full Changelog: v1.0.9-43...v1.0.9-44

v1.0.9-43

What's Changed

We have added additional log traces in the ChainCode Model window.

v1.0.9-42

What's Changed

• Bump axios from 1.8.4 to 1.12.0 in /packages/athena by @dependabot[bot] in #880
• Update releaseNotes.json for 1.0.9-42 by @ketulsha in #881

Full Changelog: v1.0.9-41...v1.0.9-42

v1.0.9-41

What's Changed

• Bump github.com/docker/docker from 26.1.5+incompatible to 28.0.0+incompatible in /packages/fabric-deployer by @dependabot[bot] in #875
• Bump sha.js and cipher-base by @ketulsha in #878
• Updated release note for 1.0.9-41 by @Thomas-Leung in #879

Full Changelog: v1.0.9-40...v1.0.9-41

v1.0.9-40

What's Changed

• update on-headers and form-data packages by @Thomas-Leung in #868
• Bump form-data from 4.0.2 to 4.0.4 by @dependabot[bot] in #869
• Bump golang.org/x/oauth2 from 0.0.0-20211104180415-d3ed0bb246c8 to 0.27.0 in /packages/fabric-deployer by @dependabot[bot] in #865
• Bump form-data and @cypress/request in /packages/apollo/test/cypress by @dependabot[bot] in #870
• Bump tmp and @cucumber/cucumber in /packages/apollo/test/cypress by @dependabot[bot] in #872
• Bump tmp from 0.2.1 to 0.2.4 in /packages/stitch by @dependabot[bot] in #873
• Updated release note for 1.0.9-40 by @Thomas-Leung in #874

Full Changelog: v1.0.9-39...v1.0.9-40

v1.0.9-39

What's Changed

• Bump esbuild and @badeball/cypress-cucumber-preprocessor in /packages/apollo/test/cypress by @dependabot[bot] in #832
• update tar to 6.2.1 and cross-spawn to 7.0.6 by @Thomas-Leung in #860
• update pbkdf2 to 3.1.3 by @Thomas-Leung in #861
• Bump brace-expansion from 1.1.11 to 1.1.12 in /packages/apollo/test/cypress by @dependabot[bot] in #862
• Update releaseNotes.json by @ketulsha in #863

Full Changelog: v1.0.9-38...v1.0.9-39