Merge branch 'main' into dependabot/cargo/google-cloud-auth-0.21.0

* main:
  chore: Updating lock file (#383)
  chore: Update msrv to 1.86 (#384)
  chore: Add codeql.yml (#382)
  fix: Semgrep send metrics value (#381)
  chore: Adding support for Fuse, Abstract and Sophon (#370)
  fix: Implement stellar sequence sync and tx reset (#367)
  feat: Update Stellar network config and docs (#380)
  chore: Updating lock file (#379)
  fix: Inheritance validation (#374)
  chore: Add osv-scanner.toml file to ignore some false positives (#376)
  chore(deps): bump tj-actions/changed-files from 115870536a85eaf050e369291c7895748ff12aea to e8772ff27de71367c2771ef3e8b5b2075b3f8282 (#328)
  chore(deps): bump peter-evans/dockerhub-description from d2ae8d7d33235a2c36eca5780f07651ab62f54e4 to 940963a8741595ec313b776ff5b2944075a02357 (#330)
  feat: Add status_reason field to transaction responses (#369)
  feat: Enhance Stellar tx handling with fee updates (#368)
  chore(deps): bump github/codeql-action from 3.28.19 to 3.29.2 (#331)
  chore(deps): bump redis from 0.32.2 to 0.32.3 (#333)
  chore(deps): bump reqwest from 0.12.20 to 0.12.21 (#334)
  chore(deps): bump form-data from 4.0.3 to 4.0.4 in /plugins in the npm_and_yarn group across 1 directory (#377)

Author: LuisUrrutia

.github/workflows/ci.yaml

@@ -41,7 +41,7 @@ jobs:
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683  # v4.2.2
       - name: Get changed files
         id: changed-files-yaml
-        uses: tj-actions/changed-files@115870536a85eaf050e369291c7895748ff12aea  # v46.0.4
+        uses: tj-actions/changed-files@ed68ef82c095e0d48ec87eccea555d944a631a4c  # v46.0.5
         with:
           files_yaml: |
             code:
@@ -147,7 +147,7 @@ jobs:
           path: clippy-results.sarif
           retention-days: 1
       - name: Upload
-        uses: github/codeql-action/upload-sarif@fca7ace96b7d713c7035871441bd52efbe39e27e  # v3.28.19
+        uses: github/codeql-action/upload-sarif@d6bbdef45e766d081b84a2def353b0055f728d3e  # v3.29.3
         with:
           sarif_file: clippy-results.sarif
           wait-for-processing: true
@@ -208,7 +208,7 @@ jobs:
           RUSTFLAGS: -Cinstrument-coverage
           RUST_TEST_THREADS: 1
         run: cargo hack llvm-cov --locked --lib --ignore-filename-regex "(.*/relayer_docs\.rs$|src/repositories/.*/.*_redis\.rs$)" --lcov --output-path unit-lcov.info
-      
+
       # Integration tests coverage
       - name: Run Integration Tests and Generate Coverage Report
         env:

.github/workflows/codeql.yml

@@ -0,0 +1,49 @@
+name: "CodeQL Advanced"
+
+on:
+  push:
+    branches: ["main"]
+  pull_request:
+    branches: ["main"]
+  schedule:
+    - cron: "25 21 * * 1"
+
+jobs:
+  analyze:
+    name: Analyze (${{ matrix.language }})
+    runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
+    permissions:
+      # required for all workflows
+      security-events: write
+
+      # required to fetch internal or private CodeQL packs
+      packages: read
+
+      # only required for workflows in private repositories
+      # actions: read
+      # contents: read
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+          - language: actions
+            build-mode: none
+          - language: rust
+            build-mode: none
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.5.4
+
+      # Initializes the CodeQL tools for scanning.
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@d6bbdef45e766d081b84a2def353b0055f728d3e # v3.29.3
+        with:
+          languages: ${{ matrix.language }}
+          build-mode: ${{ matrix.build-mode }}
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@d6bbdef45e766d081b84a2def353b0055f728d3e # v3.29.3
+
+        with:
+          category: "/language:${{matrix.language}}"

.github/workflows/release-docker.yml

@@ -84,7 +84,7 @@ jobs:
           push-to-registry: false
           github-token: ${{ steps.gh-app-token.outputs.token }}
       - name: Docker Hub Description
-        uses: peter-evans/dockerhub-description@d2ae8d7d33235a2c36eca5780f07651ab62f54e4
+        uses: peter-evans/dockerhub-description@432a30c9e07499fd01da9f8a49f0faf9e0ca5b77  # v4.0.2
         with:
           username: ${{ vars.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_PAT }}

.github/workflows/scorecard.yml

@@ -53,6 +53,6 @@ jobs:
           path: results.sarif
           retention-days: 5
       - name: Upload SARIF to GitHub Code Scanning
-        uses: github/codeql-action/upload-sarif@fca7ace96b7d713c7035871441bd52efbe39e27e  # v3.28.19
+        uses: github/codeql-action/upload-sarif@d6bbdef45e766d081b84a2def353b0055f728d3e  # v3.29.3
         with:
           sarif_file: results.sarif

.github/workflows/semgrep.yml

@@ -1,17 +1,17 @@
+---
 name: Semgrep
-
 on:
   # Scan changed files in PRs (diff-aware scanning):
   pull_request_target: {}
   # Scan on-demand through GitHub Actions interface:
   workflow_dispatch: {}
   # Scan mainline branches and report all findings:
   push:
-    branches: ["main"]
+    branches:
+      - main
   # Schedule the CI job (this method uses cron syntax):
   schedule:
-    - cron: '15 11 * * *' # Sets Semgrep to scan every day at 11:15 UTC.
-
+    - cron: 15 11 * * *  # Sets Semgrep to scan every day at 11:15 UTC.
 jobs:
   semgrep:
     name: semgrep/ci
@@ -20,13 +20,11 @@ jobs:
       security-events: write
       # contents: read
       # actions: read
-
     container:
       image: semgrep/semgrep@sha256:85f9de554201cc891c470774bb93a7f4faf41ea198ddccc34a855b53f7a51443  # v1.127.1
 
     # Skip any PR created by dependabot to avoid permission issues:
     if: (github.actor != 'dependabot[bot]')
-
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0  # v2.12.0
@@ -42,9 +40,8 @@ jobs:
           # Do not check for new version
           SEMGREP_ENABLE_VERSION_CHECK: 0
           # No metrics
-          SEMGREP_SEND_METRICS: off
+          SEMGREP_SEND_METRICS: 'off'
       - name: Upload SARIF file for GitHub Advanced Security Dashboard
-        uses: github/codeql-action/upload-sarif@fca7ace96b7d713c7035871441bd52efbe39e27e  # v3.28.19
+        uses: github/codeql-action/upload-sarif@d6bbdef45e766d081b84a2def353b0055f728d3e  # v3.29.3
         with:
           sarif_file: semgrep.sarif
-

CONTRIBUTING.md

@@ -346,7 +346,7 @@ Note: if your pull request isn't getting enough attention, you can contact us on
 
 ## Coding Standards
 
-- Use **Rust 2021 edition**, version `1.85` or later.
+- Use **Rust 2021 edition**, version `1.86` or later.
 - Follow the [Rust API Guidelines](https://rust-lang.github.io/api-guidelines/).
 - Run pre-commit hooks on your code to ensure code quality.