Skip to content

Bump chia-blockchain from 2.6.0 to 2.7.0#148

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/chia-blockchain-2.7.0
Closed

Bump chia-blockchain from 2.6.0 to 2.7.0#148
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/chia-blockchain-2.7.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 7, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps chia-blockchain from 2.6.0 to 2.7.0.

Release notes

Sourced from chia-blockchain's releases.

2.7.0 Chia blockchain 2026-3-26

What's Changed

Added

  • Remote Wallet and new RPC calls

Changed

  • Numerous hardening measures and soft fork: Please read our blog post for more information https://www.chia.net/2026/03/26/chia-2-7-0-combatting-the-ai-siege/
  • Make the mempool a bit more defensive on slow machines
  • Harden connection handling and message validation in WSChiaConnection
  • Improve register_for_coin_updates
  • Early check of proof of space in a few places
  • Ignore unsolicited RespondTransaction
  • Mempool spend limit
  • Harden Streamable.from_bytes() to raise ValueError on unconsumed trailing bytes
  • Bump chia_rs to 0.41.1

Fixed

  • Fix timelord to skip processing after failed VDF proof validation
  • Apply client_timeout to all DataLayer plugin HTTP calls
  • DataLayer hardening related to DAT file downloading

2.7.0-rc2

What's Changed

Changed

Fixed

Full Changelog: Chia-Network/chia-blockchain@2.7.0-rc1...2.7.0-rc2

2.7.0-rc1

What's Changed

Changed

... (truncated)

Changelog

Sourced from chia-blockchain's changelog.

2.7.0 Chia blockchain 2026-3-26

What's Changed

Added

  • Remote Wallet and new RPC calls

Changed

  • Numerous hardening measures and soft fork: Please read our blog post for more information https://www.chia.net/2026/03/26/chia-2-7-0-combatting-the-ai-siege/
  • Make the mempool a bit more defensive on slow machines
  • Harden connection handling and message validation in WSChiaConnection
  • Improve register_for_coin_updates
  • Early check of proof of space in a few places
  • Ignore unsolicited RespondTransaction
  • Mempool spend limit
  • Harden Streamable.from_bytes() to raise ValueError on unconsumed trailing bytes
  • Bump chia_rs to 0.41.1

Fixed

  • Fix timelord to skip processing after failed VDF proof validation
  • Apply client_timeout to all DataLayer plugin HTTP calls
  • DataLayer hardening related to DAT file downloading

2.6.1 Chia blockchain 2026-3-18

What's Changed

Added

  • Add BYC and CRT to default CAT list
  • New inner puzzle meta-standard that has instructions for how a wallet can handle arbitrary authorization trees
  • Work in Progress - PoS2 integration
  • Use structured RPC errors in full_node_rpc_api

Changed

  • Simplify and optimize TransactionQueue
  • Use an adapted version of deficit round robin algorithm in TransactionQueue
  • Forward send_transaction and cat_spend to create_signed_transaction
  • Prioritize trusted peers in FullNodeAPI's send_transaction
  • Add kw_only to all wallet RPC types
  • Miscellaneous wallet RPC cleanups
  • Tolerate quote related cost mismatch for older nodes
  • Skip fetching additions and removals for non transaction blocks in FullNodeAPI's request_header_blocks
  • Refactor connection handshake
  • Reject unsolicited RespondCompactVDF messages

... (truncated)

Commits
  • ab8090a Update CHANGELOG.md for 2.7.0 (#20715)
  • 39f8bec 2.7.0 Checkpoint Merge (#20725)
  • 9aa2baa update chia_rs to 0.41.1 (#20714)
  • cb82283 don't ban peers for transactions that fail mempool checks (#20708)
  • 3b8a33d ignore unsolicited RespondTransaction (#20698)
  • 481ccb3 Mempool spend limit (#20703)
  • 25c3f0d Update chia_rs dependency. (#20700)
  • 88213ea CHIA-3977 Simplify a peer check in WSChiaConnection's _read_one_message (#20701)
  • 080fbb8 checkpoint: into main from release/2.6.1 @ 204fe59bd82984ec7c70794891a669a94...
  • bbd1502 Merge commit '204fe59bd82984ec7c70794891a669a949e3edc3' into checkpoint/main_...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump chia-blockchain from 2.6.0 to 2.7.0
7b3f84c 
Bumps [chia-blockchain](https://github.com/Chia-Network/chia-blockchain) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/Chia-Network/chia-blockchain/releases)
- [Changelog](https://github.com/Chia-Network/chia-blockchain/blob/main/CHANGELOG.md)
- [Commits](Chia-Network/chia-blockchain@2.6.0...2.7.0)

---
updated-dependencies:
- dependency-name: chia-blockchain
  dependency-version: 2.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added Changed Required label for PR that categorizes merge commit message as "Changed" for changelog dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 7, 2026
@dependabot dependabot Bot mentioned this pull request Apr 7, 2026
Closed
@socket-security

socket-security Bot commented Apr 7, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatedchia-blockchain@​2.6.0 ⏵ 2.7.075 -25100100 +11100100

View full report

@dependabot @github

dependabot Bot commented on behalf of github Apr 9, 2026

Copy link
Copy Markdown
Contributor Author

Looks like chia-blockchain is up-to-date now, so this is no longer needed.

@dependabot dependabot Bot closed this Apr 9, 2026
@dependabot dependabot Bot deleted the dependabot/pip/chia-blockchain-2.7.0 branch April 9, 2026 16:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Changed Required label for PR that categorizes merge commit message as "Changed" for changelog dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants