Skip to content

deps(deps): bump stellar-sdk from 12.3.0 to 13.3.0#426

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/main/stellar-sdk-13.3.0
Open

deps(deps): bump stellar-sdk from 12.3.0 to 13.3.0#426
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/main/stellar-sdk-13.3.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 6, 2026

Bumps stellar-sdk from 12.3.0 to 13.3.0.

Release notes

Sourced from stellar-sdk's releases.

v13.3.0

Added

  • Add includeFailed to PaymentCallBuilder for including failed transactions in calls (#1168).

Fixed

  • Ensure that rpc.Api.GetTransactionsResponse.transactions is always a valid array (#1162).

Contributors

@​fnando @​overcat

Full Changelog: stellar/js-stellar-sdk@v13.2.0...v13.3.1

v13.2.0

v13.2.0

Added

  • Support passing in an optional options.address to the contract.Client.deploy method (#1158).

Fixed

  • Extend support for parsing contract specifications in environments that don't have WebAssembly compilers (#1157).
  • Add missing to_muxed and to_muxed_id to Horizon’s PaymentOperationResponse (#1149).
  • Upgrade @stellar/stellar-base dependency to latest version (#1159).

Contributors

@​chadoh @​kknownymouss @​jeesunikim @​kalepail @​Shaptic

Full Changelog: stellar/js-stellar-sdk@v13.1.0...v13.2.0

v13.1.0

v13.1.0

Added

  • Added Horizon.Server.root to obtain information from the Horizon root endpoint (#1122).

Fixed

  • When using a friendbot that points to a Horizon instance that has ledger metadata disabled, you can no longer extract the account sequence from the response. Instead, we hit RPC directly (#1107).
  • rpc.Server.getEvents() now correctly returns the cursor field at the top-level response (#1124).

Contributors

Full Changelog: stellar/js-stellar-sdk@v13.0.0...v13.1.0

v13.0.0

v13.0.0: Protocol 22

This is a direct re-tag of rc.2 with the only change being an upgrade to the stellar-base library to incorporate a patch release. Nonetheless, the entire changelog from the prior major version here is replicated for a comprehensive view on what's broken, added, and fixed.

Breaking Changes

... (truncated)

Changelog

Sourced from stellar-sdk's changelog.

v13.3.0

Added

  • Add includeFailed to PaymentCallBuilder for including failed transactions in calls (#1168).

Fixed

  • Ensure that rpc.Api.GetTransactionsResponse.transactions is always a valid array (#1162).

v13.2.0

Added

  • Support passing in an optional options.address to the contract.Client.deploy method (#1158).

Fixed

  • Extend support for parsing contract specifications in environments that don't have WebAssembly compilers (#1157).
  • Upgraded @stellar/stellar-base dependency to latest version (#1159).

v13.1.0

Added

  • Added Horizon.Server.root to obtain information from the Horizon root endpoint (#1122).

Fixed

  • When using a friendbot that points to a Horizon instance that has ledger metadata disabled, you can no longer extract the account sequence from the response. Instead, we hit RPC directly (#1107).
  • rpc.Server.getEvents() now correctly returns the cursor field at the top-level response (#1124).

v13.0.0

This is a direct re-tag of rc.2 with the only change being an upgrade to the stellar-base library to incorporate a patch release. Nonetheless, the entire changelog from the prior major version here is replicated for a comprehensive view on what's broken, added, and fixed.

Breaking Changes

  • We stopped supporting Node 18 explicitly a while ago, but now the Babelification of the codebase will transform to Node 18 instead of 16.

TypeScript Bindings: the contract module.

  • contract.AssembledTransaction#signAuthEntries now takes an address instead of a publicKey. This brings the API more inline with its actual functionality: It can be used to sign all the auth entries for a particular address, whether that is the address of an account (public key) or a contract. (#1044).
  • The ClientOptions.signTransaction type has been updated to reflect the latest SEP-43 protocol, which matches the latest major version of Freighter and other wallets. It now accepts address, submit, and submitUrl options, and it returns a promise containing the signedTxXdr and the signerAddress. It now also returns an Error type if an error occurs during signing.
    • basicNodeSigner has been updated to reflect this new type.
  • ClientOptions.signAuthEntry type has been updated to reflect the SEP-43 protocol, which returns a promise containing the signerAddress in addition to the signAuthEntry that was returned previously. It also can return an Error type.
  • SentTransaction.init and new SentTransaction now take one (1) argument instead of two (2). The first argument had previously been deprecated and ignored. To update:
-SentTransaction(nonsense, realStuff)
+SentTransaction(realStuff)
-new SentTransaction(nonsense, realStuff)
+new SentTransaction(realStuff)

Server APIs: the rpc and Horizon modules.

  • Deprecated RPC APIs have been removed (#1084):

... (truncated)

Commits
  • b18004c Release v13.3.0 (#1169)
  • 448c27e Add PaymentCallBuilder.includeFailed(boolean) for including failed transact...
  • be5efd9 Coalesce transactions: null into an empty array for getTransactions. (#1162)
  • df4d572 Release v13.2.0 (#1159)
  • 83a3400 Parse Wasm contract spec manually when lacking WebAssembly support (#1157)
  • e211e3d support passing in an optional address to the deploy method (#1158)
  • bb6a32e Bump Node tests to v22, upgrade deps, fix minor Node version breakage (#1151)
  • 20ef5ea update ScSymbol description from spec (#1150)
  • c525195 Add muxed payments support for PaymentOperationResponse type (#1149)
  • 38115a1 chore: use requestAirdrop to fund e2e accounts (#1125)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
deps(deps): bump stellar-sdk from 12.3.0 to 13.3.0
71d7760 
Bumps [stellar-sdk](https://github.com/stellar/js-stellar-sdk) from 12.3.0 to 13.3.0.
- [Release notes](https://github.com/stellar/js-stellar-sdk/releases)
- [Changelog](https://github.com/stellar/js-stellar-sdk/blob/master/CHANGELOG.md)
- [Commits](stellar/js-stellar-sdk@v12.3.0...v13.3.0)

---
updated-dependencies:
- dependency-name: stellar-sdk
  dependency-version: 13.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 6, 2026

Assignees

The following users could not be added as assignees: RemmyAcee. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: dependencies, npm. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 6, 2026

📊 Coverage Report

✅ Coverage thresholds met

Metric Current Threshold Status
Statements 38.57% 20%
Branches 31.3% 15%
Functions 36.99% 25%
Lines 38.21% 20%

Coverage enforcement is configured in jest.config.js. Thresholds only go up — never down.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants