[Snyk] Security upgrade ipfs-http-client from 29.1.0 to 42.0.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	566/1000 Why? Recently disclosed, Has a fix available, CVSS 5.6	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430337	Yes	No Known Exploit
	651/1000 Why? Recently disclosed, Has a fix available, CVSS 7.3	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430339	Yes	No Known Exploit
	566/1000 Why? Recently disclosed, Has a fix available, CVSS 5.6	Improper Verification of Cryptographic Signature SNYK-JS-NODEFORGE-2430341	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: ipfs-http-client

The new version differs by 236 commits.

• da055df Merge branch 'master' of github.com:ipfs/js-ipfs-http-client
• c20a568 chore: release version v42.0.0
• 2e9dd9e chore: update contributors
• 74a9147 docs: port examples to new api (#1222)
• d3eee0d fix: interface tests (#1233)
• 7d05429 42.0.0-pre.2
• ddce43d 42.0.0-pre.1
• 00cdba5 chore: update bundle size
• 2a9d765 refactor: return peer ids as strings (#1226)
• e9aaa75 chore: release version v42.0.0-pre.0
• e74c42f chore: update contributors
• 8a6bfde refactor: async iterables (#1183)
• 435e132 chore: release version v41.0.1
• 410de4b chore: update contributors
• 86eba68 test: adds tests for metadata with mfs stat and files.add (#1221)
• d7eb0e8 chore: release version v41.0.0
• 17466ba chore: update contributors
• 4ef26cd refactor: removes format option (#1218)
• 13f8d7a fix: return CIDs from files.flush (#1216)
• ed43408 chore: release version v40.2.1
• 3651bab chore: update contributors
• 8565018 chore: update multicodec dep to stable version
• 7042ea1 chore: release version v40.2.0
• 0c679de chore: update contributors

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.