v2.0.0-rc.2 - GO Fabric Interop Chaincode - Jul 04, 2024

• Go Module: github.com/hyperledger/cacti/weaver/core/network/fabric-interop-cc/contracts/interop
• Release: v2.0.0-rc.2
• Readme: Here.
• Source: Here

v2.0.0-rc.2 - GO Weaver Protos - Jul 04, 2024

• Go Module: github.com/hyperledger/cacti/weaver/common/protos-go
• Release: v2.0.0-rc.2
• Readme: Here.
• Source: Here

v2.0.0-rc.1

All notable changes to this project will be documented in this file.
See Conventional Commits for commit guidelines.

2.0.0-rc.1 (2024-06-14)

Bug Fixes

• cactus-common: coerceUnknownToError() now uses HTML sanitize (d70488a)
• cactus-example-cbdc-bridging-backend: add missing CRPC port config option (84c0733)
• cmd-api-server: add runtime type validation to HTTP verbs pulled from OAS (b0ff599), closes #2751 #2751 #2751 #2754
• cmd-api-server: address CVE-2022-25881 (81da333), closes #2862
• cmd-api-server: fix CVE-2023-36665 protobufjs try 2 (4e8b553), closes #2682
• cmd-api-server: healthcheck broken due to missing wget binary (8f1ca3f), closes #2894
• connector-besu: error handling of DeployContractSolidityBytecodeEndpoint (89d9b93), closes #2868
• connector-besu: toBuffer only supports 0x-prefixed hex (1d00e32)
• connector-corda: contract deployment SSH reconnect race condition (0af2eb1)
• connector-fabric: address CVEs: CVE-2022-21190, CVE-2021-3918 (11e775d), closes #2864
• connector-quorum/ethereum: strengthen contract parameter validation (779bb7e), closes #2760
• corda-simple-app: use correct bond asset flows and contracts for bond asset exchange (caa2b3a)
• deps: bulk add missing dependencies - 2023-11-02 (8addb01), closes #2857
• GHSA-8qv2-5vq6-g2g7 webpki CPU denial of service in certificate path (e24458f)
• indy-vdr-nodejs: update dependency version (f81b46b)
• ledger-browser: fix vulnerability CVE-2022-37601 (55c7d3d)
• persistence-fabric: hide not critical API (793f94f)
• plugin-htlc-coordinator-besu: add missing HSTS header (dff34e8)
• plugin-keychain-vault: fix CVE-2024-0553 in vault server image (1eacf7e)
• security: address CVE-2021-3749 - axios >=0.22.0 (61fc700)
• security: mitigate CVE-2024-21505 (f48994f)
• security: remediate qs vulnerability CVE-2022-24999 (536b6b1)
• weaver-asset-transfer: return proper error messages for pledge status and claim status (f8f6bcb)
• weaver-fabric-node-sdk: made AES key length configurable in ECIES functions (e679801)
• weaver-go-cli: updated Weaver Fabric Go CLI module to ensure local compilation (1668cf4)
• weaver-go-sdk: corrected membership API function signatures (083ea4f)
• weaver-go-sdk: revert fabric-protos-go-apiv2 dep to fabric-protos-go (6994e5b)
• weaver-membership-functions: reverted earlier buggy change affecting identity mgmt (faf90dd)
• weaver-packages: removing unnecessary package-lock.json file (f3e53e4)
• weaver-satp: bug and configuration fixes in relays and Fabric drivers for sample SATP implementation (9f77871)
• weaver: improper exception handling (a33f30c), closes #2767
• weaver: upgraded Corda dependencies to overcome Log4j vulnerability (76f0c68)
• weaver: usage of weak PRNG issue (fa17b52), closes #2765

Features

• actionlint: fix the errors produced by the ActionLint tool (e6d5d88)
• bungee-hermes: new plugin bungee-hermes (ecf52ec)
• bungee-hermes: process & merge views (231a5e5)
• bungee-hermes: viewProof & ethereum strategy (22f389f)
• cactus-core-api: add ISendRequestResultV1 for Fujitsu verifier (483de38)
• cactus-core: add ConnectRPC service interface and type guard (9e83087)
• cactus-core: add handleRestEndpointException utility to public API (bf9dfe8)
• cactus-example-discounted-asset-trade: use openapi ethereum connector (dcaf9fe), closes #2645
• cactus-example-discounted-asset-trade: use openapi sawtooth connector (86d6b38), closes #2825
• cactus-example-electricity-trade: use openapi ethereum connector (9e66850)
• cactus-plugin-ledger-connector-aries: add new connector plugin (afef5ae), closes #2946
• cactus-plugin-ledger-connector-cdl-socketio: separate endpoint for subscription key (b1048af)
• cactus-plugin-ledger-connector-cdl-socketio: support subscription key auth (a04fc5b)
• cactus-plugin-ledger-connector-cdl: add new connector plugin (6efd8de)
• cactus-plugin-ledger-connector-ethereum: add json-rpc proxy (ed04201)
• cactus-plugin-ledger-connector-ethereum: add signing utils (84c5b34)
• cactus-plugin-ledger-connector-ethereum: add stress test (55fa26e), closes #2631
• cactus-plugin-ledger-connector-ethereum: refactor connector API (cda279f), closes #2630
• cactus-plugin-ledger-connector-ethereum: support...

v2.0.0-rc.1 - GO Fabric Utils Library for Interoperation - Jun 18, 2024

• Go Module: github.com/hyperledger/cacti/weaver/core/network/fabric-interop-cc/libs/utils
• Release: v2.0.0-rc.1
• Readme: Here.
• Source: Here

v2.0.0-rc.1 - GO Fabric Library for Asset Exchange - Jun 18, 2024

• Go Module: github.com/hyperledger/cacti/weaver/core/network/fabric-interop-cc/libs/assetexchange
• Release: v2.0.0-rc.1
• Readme: Here.
• Source: Here

v2.0.0-rc.1 - GO Fabric Asset Management Interface - Jun 18, 2024

• Go Module: github.com/hyperledger/cacti/weaver/core/network/fabric-interop-cc/interfaces/asset-mgmt
• Release: v2.0.0-rc.1
• Readme: Here.
• Source: Here

v2.0.0-rc.1 - GO Fabric Interop Chaincode - Jun 18, 2024

• Go Module: github.com/hyperledger/cacti/weaver/core/network/fabric-interop-cc/contracts/interop
• Release: v2.0.0-rc.1
• Readme: Here.
• Source: Here

v2.0.0-rc.1 - GO Weaver Protos - Jun 18, 2024

• Go Module: github.com/hyperledger/cacti/weaver/common/protos-go
• Release: v2.0.0-rc.1
• Readme: Here.
• Source: Here

v2.0.0-alpha.2

All notable changes to this project will be documented in this file.
See Conventional Commits for commit guidelines.

2.0.0-alpha.2 (2023-09-27)

Bug Fixes

• besu: testnet web3 version fixed to 1.10.0 (334612d)
• cactus-core-api: address CVE-2021-38192 - GHSA-x4qm-mcjq-v2gf (ff1afa5), closes #2612
• cactus-validator-socketio-indy: upgrade pyjwt to 2.4.0 (59f9f91), closes #2614
• cmd-api-server: fix CVE-2023-36665 protobufjs Prototype Pollution vuln (7bb3957), closes #2682
• connector-fabric: runTransactionV1 Open API validation crash (516dd49)
• ejs critical vulnerability CVE-2022-29078 (2813b75)
• indy-validator: fix package dependencies (a28641a), closes #2596
• plugin-odap-hermes: fix duplicate enum values of OdapMessageType (292d287), closes #2553
• security: crash in HeaderParser in dicer (77fb559)
• security: the CVE-2022-2421 - upgrade socket.io-parser to >=4.2.1 (9172172), closes #2229 #2228
• security: upgrade fabric 2.x deps to 2.2.18 (36988a5), closes #2610
• security: vulnerabilities found in cactus-whitepaper (c56334d), closes #2038
• tessera: updated tessera version error in quorum-all-in-one #2411 (759f305), closes #2240 #2274
• use common conventions: tsconfig.json, package.json (50f5c02), closes #2216
• vscode/devcontainer: unexpected exit stdout /etc/passwd (eb0134b), closes #2404
• weaver-corda: throw error correctly in responder flows (b888a5e)
• webpack: fix broken bundling - cannot find webpack.config.js (794f0b4)

Code Refactoring

• cmd-api-server: clean up configuration parameters #720 (b8e8388)

Features

• besu-test-ledger: send funds to already created address (3a58508), closes #2250
• cacti-cmd-gui-app: add GUI to visualize Fabric, Ethereum blocks (15d9e9d)
• cactus-common: add createRuntimeErrorWithCause() & newRex() (b3a508c), closes #1702
• cactus-core: add GetOpenApiSpecV1EndpointBase<S, P> class (6d68292)
• cactus-plugin-ledger-connector-cdl-socketio: add new connector plugin (aee28fe), closes #2455
• cactus-plugin-ledger-connector-ethereum: add new connector plugin (f8a2131), closes #2534
• cbdc-bridging-app: implementation of CBDC bridging example (ca1b3be), closes #2205
• cmd-api-server: add GetOpenApiSpecV1Endpoint (HTTP GET) (aeebbd4)
• connector-besu: add GetOpenApiSpecV1Endpoint (HTTP GET) (76744f0)
• connector-iroha2: update to the new LTS image as of 28.07.2023 (ccdaa12)
• connector-quorum: add WebsocketProvider options to quorum LP (b7ad571)
• connector-tcs-huawei: add initial version (d8d538d)
• corda asset transfer test workflow added and bug fixes (4b5ee09)
• fabric-test-ledger: add support to enrolling users in different Orgs (b910681), closes #2248
• geth-all-in-one: add ethereum test image and helper class (fb4231f), closes #2577
• openapi: upgrade to 6.3.0 phase1 (a094614), closes #2298
• plugin-htlc-eth-besu: add private HTLCs and forge build & test (aade510)
• plugin-persistence-fabric: add new fabric persistence plugin (47a64ee), closes #2259 #2265
• quorum-connector: add script for checking connection status (d306d21), closes #2309
• quorum: private transaction support (3c944d6)
• weaver-corda: support array of remote views, consequent user flow call (a8e5d54)
• weaver/common: add data view protocol buffer spec & RFCs for Besu (97f17e0)
• weaver: added multiple participants support for data sharing in corda (4e81b92)

BREAKING CHANGES

• cmd-api-server: Removed the keyPairPem parameter from the API server
  configuration.

v2.0.0-alpha.2 - GO Fabric Weaver SDK - Sep 29, 2023

• Go Module: github.com/hyperledger/cacti/weaver/sdks/fabric/go-sdk
• Release: v2.0.0-alpha.2
• Readme: Here.
• Source: Here