Web3

Web3j Gradle 8.7 Upgrade and Vulnerability Fixes

Photo of DailyBlockchain.News Admin DailyBlockchain.News AdminJuly 19, 2024
3 minutes read
Web3j Gradle 8.7 Upgrade And Vulnerability Fixes

We’re excited to announce that every one Web3j repositories have been upgraded to the most recent Gradle model 8.7. As well as, we now have up to date the dependency libraries to their newest variations to handle vulnerabilities and deprecated code. This contains important libraries corresponding to BouncyCastle, jackson core, javaPoet, kotlinPoet, OkHttp, RxJava, slf4j, javaWebSocket, picocli, kzg4844, Logback, and so on

Web3j Key Updates

Gradle Upgrade to 8.7

Upgraded Gradle from model 7.6 to 8.7 in web3j. This may deliver a number of advantages, together with new options, efficiency enhancements, and higher compatibility with newer variations of dependencies and instruments. Listed here are some key advantages you may anticipate:

1. Efficiency Enhancements

  • Construct Pace: Gradle 8.x introduces varied efficiency enhancements that may velocity up construct instances, together with enhancements in incremental builds, caching, and parallel execution.
  • Configuration Time: Enhanced efficiency throughout the configuration part can cut back the general construct time, particularly for giant tasks.

2. New Options and Enhancements

  • Dependency Administration: Improved dependency administration capabilities, together with higher help for model catalogs and dependency constraints.
  • Enhanced Tooling: Gradle 8.x brings enhancements to the Gradle tooling API, which may enhance the mixing with IDEs and different instruments.

3. Improved Compatibility and Help

  • Java Compatibility: Higher help for newer Java variations, guaranteeing compatibility with the most recent language options and JVM enhancements.
  • Library and Plugin Updates: Entry to newer variations of Gradle plugins and libraries which will require Gradle 8.x for full compatibility.

4. Safety and Bug Fixes

  • Safety Patches: Upgrading to a more moderen model ensures you have got the most recent safety patches, decreasing vulnerabilities in your construct course of.
  • Bug Fixes: Gradle 8.x contains quite a few bug fixes that handle points current within the 7.x variations.

Up to date Dependency Libraries

As a part of this improve, we now have additionally up to date a number of key dependency libraries:

  1. BouncyCastle: The newest model v1.78.1 fixes varied safety vulnerabilities – CVE-2024-34447, CVE-2024-30172, CVE-2024-30171, CVE-2024-29857, CVE-2023-33201 which have been current in previous v1.73 and deprecations. BouncyCastle is vital for cryptographic operations, and maintaining it up-to-date ensures that our purposes stay safe.
  2. Jackson Core: Upgrading Jackson Core ensures higher JSON processing with improved efficiency and safety.
  3. JavaPoet and KotlinPoet: These libraries, important for producing Java and Kotlin supply recordsdata, have been up to date to boost code technology capabilities and preserve compatibility with the most recent language options.
  4. KZG4844: Because of the ConsenSys workforce, the KZG4844 library is now obtainable on Maven Central, permitting us to take away the dependency on the ConsenSys repository or power customers so as to add it to their tasks whereas they have been utilizing Web3J.
  5. OkHttp: The up to date OkHttp library supplies higher HTTP consumer functionalities with improved efficiency and safety.
  6. RxJava, SLF4J, Java-WebSocket, PicoCLI, Logback, and so on
  7. Different Dependencies: Along with the above-stated libraries, we now have up to date varied different dependencies to their newest variations to make sure compatibility and stability.

Elimination of Dependency on ConsenSys Repo for KZG Library

We’re additionally happy to announce that we now have eliminated the dependency on the ConsenSys repository for the KZG library. Because of the ConsenSys workforce for importing their library, jc-kzg-4844, to Maven Central. This alteration simplifies our construct course of, enhances reliability, and helps customers to stay to public repositories.

Kotlin Replace 

Up to date Kotlin from 1.8.10 to 1.9.4 in Web3j tasks, this can result in improved efficiency and extra environment friendly code by enhanced language options and compiler optimizations. It additionally ensures higher integration with trendy growth instruments and libraries, offering a smoother and extra productive growth expertise.

Up to date Junit 4 to Junit 5

We have now up to date all of the remaining Junit 4 checks to Junit 5 which has resulted in additional environment friendly, readable, and maintainable check code.

Latest Web3j Version: v4.12.0 

With these updates, we’re excited to announce that the most recent primary model of Web3j is now v4.12.0. This model contains all of the updates and enhancements talked about above, offering a safer, environment friendly, and steady basis on your blockchain purposes.

We encourage all builders to improve to the most recent variations to benefit from these enhancements. As at all times, we admire your help and contributions to the Web3j ecosystem. If in case you have any questions or want help with the improve, please reach out to our Discord Channel – (Word: You’ll first want to hitch Hyperledger Server to entry our Channel) or the Hyperledger Web3j GitHub repository.

Tags
Photo of DailyBlockchain.News Admin DailyBlockchain.News AdminJuly 19, 2024
3 minutes read
Photo of DailyBlockchain.News Admin

DailyBlockchain.News Admin

Our Mission is to bridge the knowledge gap and foster an informed blockchain community by presenting clear, concise, and reliable information every single day. Join us on this exciting journey into the future of finance, technology, and beyond. Whether you’re a blockchain novice or an enthusiast, DailyBlockchain.news is here for you.
Back to top button