@abtnode/core 1.8.36 → 1.8.38

package/lib/event.js

@@ -249,6 +249,8 @@ module.exports = ({
     }
   };
 
+  const listen = (subject, event, handler) => subject.on(event, (data) => handler(event, data));
+
   [
     BlockletEvents.added,
     BlockletEvents.downloadFailed,
@@ -265,12 +267,12 @@ module.exports = ({
     BlockletEvents.startFailed,
     BlockletEvents.stopped,
   ].forEach((eventName) => {
-    blockletManager.on(eventName, (data) => handleBlockletEvent(eventName, data));
+    listen(blockletManager, eventName, handleBlockletEvent);
   });
 
-  notificationState.on(EVENTS.NOTIFICATION_CREATE, (data) => onEvent(EVENTS.NOTIFICATION_CREATE, data));
+  listen(notificationState, EVENTS.NOTIFICATION_CREATE, onEvent);
 
-  nodeState.on(BlockletEvents.purchaseChange, (data) => onEvent(BlockletEvents.purchaseChange, data));
+  listen(nodeState, BlockletEvents.purchaseChange, onEvent);
   nodeState.on(EVENTS.ROUTING_UPDATED, (nodeInfo) => onEvent(EVENTS.ROUTING_UPDATED, { routing: nodeInfo.routing }));
   nodeState.once(EVENTS.NODE_ADDED_OWNER, () => downloadAddedBlocklet());
   nodeState.on(EVENTS.NODE_UPDATED, (nodeInfo, oldInfo) => {
@@ -285,7 +287,8 @@ module.exports = ({
       });
     }
   });
-  nodeState.on(EVENTS.NODE_UPGRADE_PROGRESS, (session) => onEvent(EVENTS.NODE_UPGRADE_PROGRESS, session));
+
+  listen(nodeState, EVENTS.NODE_UPGRADE_PROGRESS, onEvent);
   nodeState.on(EVENTS.RELOAD_GATEWAY, (nodeInfo) => {
     handleRouting(nodeInfo).catch((err) => {
       logger.error('Handle routing failed on node.updated', { error: err });
@@ -300,15 +303,16 @@ module.exports = ({
     });
   });
 
-  teamAPI.on(EVENTS.USER_ADDED, (data) => onEvent(EVENTS.USER_ADDED, data));
-  teamAPI.on(EVENTS.USER_REMOVED, (data) => onEvent(EVENTS.USER_REMOVED, data));
-  teamAPI.on(EVENTS.USER_UPDATED, (data) => onEvent(EVENTS.USER_UPDATED, data));
-  teamAPI.on(BlockletEvents.updated, (data) => onEvent(BlockletEvents.updated, data));
+  listen(teamAPI, EVENTS.USER_ADDED, onEvent);
+  listen(teamAPI, EVENTS.USER_REMOVED, onEvent);
+  listen(teamAPI, EVENTS.USER_UPDATED, onEvent);
+  listen(teamAPI, BlockletEvents.updated, onEvent);
+  listen(teamManager, BlockletEvents.storeChange, onEvent);
 
-  certManager.on('cert.issued', (data) => onEvent(EVENTS.CERT_ISSUED, data));
-  certManager.on('cert.error', (data) => onEvent(EVENTS.CERT_ERROR, data));
+  listen(certManager, EVENTS.CERT_ISSUED, onEvent);
+  listen(certManager, EVENTS.CERT_ERROR, onEvent);
 
-  routerManager.on(BlockletEvents.updated, (data) => onEvent(BlockletEvents.updated, data));
+  listen(routerManager, BlockletEvents.updated, onEvent);
 
   events.setEventHandler = (handler) => {
     if (typeof handler === 'function') {

package/lib/index.js

@@ -6,7 +6,6 @@ const Cron = require('@abtnode/cron');
 
 const logger = require('@abtnode/logger')('@abtnode/core');
 const { fromBlockletStatus, toBlockletStatus, fromBlockletSource, toBlockletSource } = require('@blocklet/constant');
-const { getServiceMetas } = require('@blocklet/meta/lib/service');
 const { listProviders } = require('@abtnode/router-provider');
 const { DEFAULT_CERTIFICATE_EMAIL, EVENTS } = require('@abtnode/constant');
 
@@ -236,9 +235,6 @@ function ABTNode(options) {
     getNodeInfo: nodeAPI.getInfo.bind(nodeAPI),
     getNodeEnv: nodeAPI.getEnv.bind(nodeAPI),
     updateNodeInfo: nodeAPI.updateNodeInfo.bind(nodeAPI),
-    addBlockletStore: nodeAPI.addRegistry.bind(nodeAPI),
-    deleteBlockletStore: nodeAPI.deleteRegistry.bind(nodeAPI),
-    selectBlockletStore: nodeAPI.selectRegistry.bind(nodeAPI),
     getDelegationState: nodeAPI.getDelegationState.bind(nodeAPI),
     cleanupDirtyUpgradeState: states.node.cleanupDirtyUpgradeState.bind(states.node),
     updateNodeOwner: states.node.updateNodeOwner.bind(states.node),
@@ -307,6 +303,10 @@ function ABTNode(options) {
     configTrustedPassports: teamAPI.configTrustedPassports.bind(teamAPI),
     configPassportIssuance: teamAPI.configPassportIssuance.bind(teamAPI),
 
+    // Team Settings
+    addBlockletStore: teamAPI.addStore.bind(teamAPI),
+    deleteBlockletStore: teamAPI.deleteStore.bind(teamAPI),
+
     // Challenge
     generateChallenge: states.challenge.generate.bind(states.challenge),
     verifyChallenge: states.challenge.verify.bind(states.challenge),
@@ -383,9 +383,6 @@ function ABTNode(options) {
       ),
     endSession: (params, context) => states.session.end(params.id, context),
 
-    // Services
-    getServices: (params, context) => getServiceMetas({ stringifySchema: true }, context),
-
     // Utilities: moved here because some deps require native build
     getSysInfo,
     getSysInfoEmitter: (interval) => new SysInfoEmitter(interval),

package/lib/states/audit-log.js

@@ -410,7 +410,7 @@ class AuditLogState extends BaseState {
       }
 
       try {
-        const { ip, ua, user } = context;
+        const { ip, ua, user = {} } = context;
         const [info, uaInfo] = await Promise.all([node.states.node.read(), parse(ua)]);
 
         fixActor(user);

package/lib/states/blocklet.js

@@ -106,6 +106,21 @@ class BlockletState extends BaseState {
     });
   }
 
+  async isExternalBlocklet(did) {
+    if (!did) {
+      return false;
+    }
+
+    const exist = await this.findOne({
+      $or: [{ 'meta.did': did }, { appDid: did }],
+      controller: {
+        $exists: true,
+      },
+    });
+
+    return !!exist;
+  }
+
   async getBlockletStatus(did) {
     return new Promise((resolve, reject) => {
       if (!did) {

package/lib/states/node.js

@@ -302,10 +302,6 @@ class NodeState extends BaseState {
     }));
   }
 
-  getBlockletRegistry() {
-    return this.read().then((info) => info.blockletRegistryList.find((item) => item.selected).url);
-  }
-
   async increaseCustomBlockletNumber() {
     const { _id, customBlockletNumber = 0 } = await this.read();
     const num = customBlockletNumber + 1;

package/lib/states/notification.js

@@ -76,44 +76,30 @@ class NotificationState extends BaseState {
   }
 
   // eslint-disable-next-line no-unused-vars
-  read({ id }, context) {
+  async read({ id }, context) {
     const idList = id.split(',').map((x) => x.trim());
     logger.info('mark notification as read', { idList });
 
-    return new Promise((resolve, reject) => {
-      this.update(
-        { _id: { $in: idList } },
-        { $set: { read: true } },
-        { multi: true, upsert: false, returnUpdatedDocs: false },
-        (err, numAffected) => {
-          if (err) {
-            return reject(err);
-          }
+    const [numAffected] = await this.update(
+      { _id: { $in: idList } },
+      { $set: { read: true } },
+      { multi: true, upsert: false, returnUpdatedDocs: false }
+    );
 
-          return resolve(numAffected);
-        }
-      );
-    });
+    return numAffected;
   }
 
   // eslint-disable-next-line no-unused-vars
-  unread({ id }, context) {
+  async unread({ id }, context) {
     const idList = Array.isArray(id) ? id : [id];
 
-    return new Promise((resolve, reject) => {
-      this.update(
-        { _id: { $in: idList } },
-        { $set: { read: false } },
-        { multi: true, upsert: false, returnUpdatedDocs: false },
-        (err, numAffected) => {
-          if (err) {
-            return reject(err);
-          }
+    const [numAffected] = await this.update(
+      { _id: { $in: idList } },
+      { $set: { read: false } },
+      { multi: true, upsert: false, returnUpdatedDocs: false }
+    );
 
-          return resolve(numAffected);
-        }
-      );
-    });
+    return numAffected;
   }
 }
 

package/lib/team/manager.js

@@ -5,10 +5,12 @@ const path = require('path');
 const { EventEmitter } = require('events');
 const upperFirst = require('lodash/upperFirst');
 const get = require('lodash/get');
+const pick = require('lodash/pick');
 
 const { createRBAC, MemoryStorage, NedbStorage } = require('@abtnode/rbac');
 const logger = require('@abtnode/logger')('@abtnode/core:team:manager');
 const { ROLES, RBAC_CONFIG } = require('@abtnode/constant');
+const { BlockletEvents } = require('@blocklet/constant');
 const Lock = require('@abtnode/util/lib/lock');
 const UserState = require('../states/user');
 const SessionState = require('../states/session');
@@ -280,6 +282,26 @@ class TeamManager extends EventEmitter {
     }
   }
 
+  async getStoreList(did) {
+    if (this.isNodeTeam(did)) {
+      const nodeInfo = await this.states.node.read();
+      return nodeInfo.blockletRegistryList || [];
+    }
+
+    const settings = await this.states.blockletExtras.getSettings(did);
+    return get(settings, 'storeList', []) || [];
+  }
+
+  async updateStoreList(did, list) {
+    if (this.isNodeTeam(did)) {
+      await this.states.node.updateNodeInfo({ blockletRegistryList: list });
+      return;
+    }
+
+    await this.states.blockletExtras.setSettings(did, { storeList: list });
+    this.emit(BlockletEvents.storeChange, { meta: { did } });
+  }
+
   async getOwner(did) {
     let owner;
     if (this.isNodeTeam(did)) {
@@ -293,6 +315,14 @@ class TeamManager extends EventEmitter {
     return owner;
   }
 
+  async getRoles(did) {
+    const rbac = await this.getRBAC(did);
+
+    const roles = await rbac.getRoles();
+
+    return roles.map((d) => pick(d, ['name', 'grants', 'title', 'description']));
+  }
+
   async initTeam(did) {
     if (!did) {
       logger.error('initTeam: did does not exist');

package/lib/util/blocklet.js

@@ -2,6 +2,7 @@
 
 const fs = require('fs-extra');
 const path = require('path');
+const joinURL = require('url-join');
 const shelljs = require('shelljs');
 const os = require('os');
 const tar = require('tar');
@@ -10,19 +11,25 @@ const streamToPromise = require('stream-to-promise');
 const { Throttle } = require('stream-throttle');
 const ssri = require('ssri');
 const diff = require('deep-diff');
+const axios = require('@abtnode/util/lib/axios');
+const { stableStringify } = require('@arcblock/vc');
 
-const { toHex } = require('@ocap/util');
+const { fromSecretKey, WalletType } = require('@ocap/wallet');
+const { toHex, toBase58 } = require('@ocap/util');
+const { types } = require('@ocap/mcrypto');
 const { isValid: isValidDid } = require('@arcblock/did');
 const logger = require('@abtnode/logger')('@abtnode/core:util:blocklet');
 const pm2 = require('@abtnode/util/lib/async-pm2');
 const sleep = require('@abtnode/util/lib/sleep');
+const { formatEnv } = require('@abtnode/util/lib/security');
 const ensureEndpointHealthy = require('@abtnode/util/lib/ensure-endpoint-healthy');
 const CustomError = require('@abtnode/util/lib/custom-error');
 const getFolderSize = require('@abtnode/util/lib/get-folder-size');
 const normalizePathPrefix = require('@abtnode/util/lib/normalize-path-prefix');
 const hashFiles = require('@abtnode/util/lib/hash-files');
 const isPathPrefixEqual = require('@abtnode/util/lib/is-path-prefix-equal');
-const { BLOCKLET_MAX_MEM_LIMIT_IN_MB } = require('@abtnode/constant');
+const { BLOCKLET_MAX_MEM_LIMIT_IN_MB, BLOCKLET_STORE } = require('@abtnode/constant');
+const { BLOCKLET_PREFERENCE_FILE, BLOCKLET_PREFERENCE_PREFIX } = require('@blocklet/constant');
 const formatBackSlash = require('@abtnode/util/lib/format-back-slash');
 
 const SCRIPT_ENGINES_WHITE_LIST = ['npm', 'npx', 'pnpm', 'yarn'];
@@ -148,7 +155,7 @@ const getComponentDirs = (
   }
 
   if (validate && !main && !startFromDevEntry && group !== BlockletGroup.gateway) {
-    throw new Error('Incorrect blocklet manifest: missing `main` field');
+    throw new Error('Incorrect blocklet.yml: missing `main` field');
   }
 
   let appDir = null;
@@ -380,7 +387,7 @@ const getRuntimeEnvironments = (blocklet, nodeEnvironments, ancestors) => {
     ? getBlockletWallet(blocklet.meta.did, nodeEnvironments.ABT_NODE_SK, undefined, 1)
     : null;
 
-  return {
+  const env = {
     ...blocklet.configObj,
     ...getSharedConfigObj(blocklet, ancestors),
     ...blocklet.environmentObj,
@@ -392,6 +399,13 @@ const getRuntimeEnvironments = (blocklet, nodeEnvironments, ancestors) => {
     ...nodeEnvironments,
     ...safeNodeEnvironments,
   };
+
+  // ensure all envs are literals and do not contain line breaks
+  Object.keys(env).forEach((key) => {
+    env[key] = formatEnv(env[key]);
+  });
+
+  return env;
 };
 
 const isUsefulError = (err) =>
@@ -1248,7 +1262,7 @@ const needBlockletDownload = (blocklet, oldBlocklet) => {
     return true;
   }
 
-  return !(get(oldBlocklet, 'meta.dist.integrity') === get(blocklet, 'meta.dist.integrity'));
+  return get(oldBlocklet, 'meta.dist.integrity') !== get(blocklet, 'meta.dist.integrity');
 };
 
 const findAvailableDid = (meta, siblings) => {
@@ -1330,6 +1344,15 @@ const getBlocklet = async ({
   blocklet.enablePassportIssuance = get(settings, 'enablePassportIssuance', true);
   blocklet.settings = settings || {};
 
+  blocklet.settings.storeList = blocklet.settings.storeList || [];
+
+  if (!blocklet.settings.storeList.find((x) => x.url === BLOCKLET_STORE.url)) {
+    blocklet.settings.storeList.unshift({
+      ...BLOCKLET_STORE,
+      protected: true,
+    });
+  }
+
   // app site
   blocklet.site = await states.site.findOneByBlocklet(blocklet.meta.did);
 
@@ -1385,7 +1408,68 @@ const ensureEnvDefault = (environments, ancestors) => {
   return environments;
 };
 
+const fromProperty2Config = (properties = {}, result) => {
+  Object.keys(properties).forEach((key) => {
+    const prop = properties[key];
+    if (prop.properties) {
+      fromProperty2Config(prop.properties, result);
+    } else if (prop['x-decorator'] === 'FormItem') {
+      const secure = prop['x-component'] === 'Password';
+      result.push({
+        default: prop.default || '',
+        description: prop.title || key,
+        name: `${BLOCKLET_PREFERENCE_PREFIX}${key}`,
+        required: prop.required || false,
+        secure,
+        shared: !secure,
+      });
+    }
+  });
+};
+const getConfigFromPreferences = (blocklet) => {
+  const result = [];
+  const schemaFile = path.join(blocklet.env.appDir, BLOCKLET_PREFERENCE_FILE);
+  if (fs.existsSync(schemaFile)) {
+    try {
+      const schema = JSON.parse(fs.readFileSync(schemaFile, 'utf8'));
+      fromProperty2Config(schema.schema?.properties, result);
+    } catch {
+      // do nothing
+    }
+  }
+
+  return result;
+};
+
+const consumeServerlessNFT = async ({ nftId, nodeInfo, blocklet }) => {
+  try {
+    const { url } = nodeInfo.launcher;
+    const type = WalletType({
+      role: types.RoleType.ROLE_APPLICATION,
+      pk: types.KeyType.ED25519,
+      hash: types.HashType.SHA3,
+    });
+    const wallet = fromSecretKey(nodeInfo.sk, type);
+    const appURL = blocklet.environments.find((item) => item.key === 'BLOCKLET_APP_URL').value;
+
+    const body = { nftId, appURL };
+
+    const { data } = await axios.post(joinURL(url, '/api/serverless/consume'), body, {
+      headers: {
+        'x-sig': toBase58(wallet.sign(stableStringify(body))),
+      },
+    });
+
+    logger.error('consume serverless nft success', { nftId, hash: data.hash });
+  } catch (error) {
+    logger.error('consume serverless nft failed', { nftId, error });
+
+    throw new Error(`consume nft ${nftId} failed`);
+  }
+};
+
 module.exports = {
+  consumeServerlessNFT,
   forEachBlocklet,
   getBlockletMetaFromUrl: (url) => getBlockletMetaFromUrl(url, { logger }),
   parseChildrenFromMeta,
@@ -1425,4 +1509,5 @@ module.exports = {
   ensureMeta,
   getBlocklet,
   ensureEnvDefault,
+  getConfigFromPreferences,
 };

package/lib/util/default-node-config.js

@@ -1,4 +1,4 @@
-const { NODE_REGISTER_URL, BLOCKLET_STORE_URL, BLOCKLET_STORE_URL_DEV } = require('@abtnode/constant');
+const { NODE_REGISTER_URL, BLOCKLET_STORE, BLOCKLET_STORE_DEV } = require('@abtnode/constant');
 const canPackageReadWrite = require('@abtnode/util/lib/can-pkg-rw');
 
 const getDefaultAutoUpgrade = () => {
@@ -16,21 +16,11 @@ const defaultNodeConfigs = {
   blockletRegistryList: {
     getDefaultValue: () => [
       {
-        name: 'Official Store',
-        description: 'ArcBlock official blocklet registry',
-        url: BLOCKLET_STORE_URL,
-        logoUrl: '/logo.png',
-        maintainer: 'arcblock',
-        selected: true,
+        ...BLOCKLET_STORE,
         protected: true,
       },
       {
-        name: 'Dev Store',
-        description: 'ArcBlock dev registry that contains demo and example blocklets',
-        url: BLOCKLET_STORE_URL_DEV,
-        maintainer: 'arcblock',
-        logoUrl: '/logo.png',
-        selected: false,
+        ...BLOCKLET_STORE_DEV,
         protected: false,
       },
     ],

package/lib/util/index.js

@@ -394,6 +394,49 @@ const getDelegateState = async (chainHost, address) => {
   return get(result.data, 'data.getDelegateState.state');
 };
 
+const getNFTState = async (chainHost, nftId) => {
+  const url = joinUrl(new URL(chainHost).origin, '/api/gql/');
+
+  const result = await axios.post(
+    url,
+    JSON.stringify({
+      query: `{
+        getAssetState(address: "${nftId}") {
+          state {
+            address
+            data {
+              typeUrl
+              value
+            }
+            display {
+              type
+              content
+            }
+            issuer
+            owner
+            parent
+            tags
+          }
+        }
+      }`,
+    }),
+    {
+      headers: {
+        'Content-Type': 'application/json',
+        Accept: 'application/json',
+      },
+      timeout: 60 * 1000,
+    }
+  );
+
+  const state = get(result, 'data.data.getAssetState.state');
+  if (state && state.data.typeUrl === 'json') {
+    state.data.value = JSON.parse(state.data.value);
+  }
+
+  return state;
+};
+
 const lib = {
   validateOwner,
   getProviderFromNodeInfo,
@@ -428,6 +471,7 @@ const lib = {
   memoizeAsync,
   getStateCrons,
   getDelegateState,
+  getNFTState,
 };
 
 module.exports = lib;

package/lib/util/store.js

@@ -84,7 +84,7 @@ const parseSourceUrl = async (url) => {
   };
 };
 
-const resolveTarballURL = async ({ did, tarball = '', registryUrl = '' }) => {
+const resolveTarballURL = async ({ did, tarball = '', storeUrl = '' }) => {
   if (!tarball) {
     return '';
   }
@@ -97,7 +97,7 @@ const resolveTarballURL = async ({ did, tarball = '', registryUrl = '' }) => {
     return tarball;
   }
 
-  if (!registryUrl) {
+  if (!storeUrl) {
     return '';
   }
 
@@ -105,11 +105,11 @@ const resolveTarballURL = async ({ did, tarball = '', registryUrl = '' }) => {
     return '';
   }
 
-  return joinURL(registryUrl, 'api', 'blocklets', did, tarball);
+  return joinURL(storeUrl, 'api', 'blocklets', did, tarball);
 };
 
-const getBlockletMeta = async ({ did, registryUrl }) => {
-  const url = joinURL(registryUrl, BLOCKLET_STORE_API_PREFIX, `/blocklets/${did}/blocklet.json?__t__=${Date.now()}`);
+const getBlockletMeta = async ({ did, storeUrl }) => {
+  const url = joinURL(storeUrl, BLOCKLET_STORE_API_PREFIX, `/blocklets/${did}/blocklet.json?__t__=${Date.now()}`);
 
   const { data } = await request.get(url);
   try {
@@ -122,7 +122,7 @@ const getBlockletMeta = async ({ did, registryUrl }) => {
     meta.dist.tarball = await resolveTarballURL({
       did,
       tarball: meta.dist.tarball,
-      registryUrl,
+      storeUrl,
     });
 
     return meta;

package/lib/validators/blocklet.js

@@ -4,11 +4,9 @@ const { didExtension } = require('@blocklet/meta/lib/extension');
 const Joi = JOI.extend(didExtension);
 
 const blockletController = Joi.object({
-  id: Joi.DID().required(), // userDid
   nftId: Joi.DID().required(),
   nftOwner: Joi.DID().required(),
   appMaxCount: Joi.number().required().min(1),
-  expireDate: Joi.date(),
 }).options({ stripUnknown: true });
 
 module.exports = {

package/lib/validators/role.js

@@ -10,6 +10,10 @@ const roleNameSchema = JOI.string()
       throw new Error('role name cannot start with "blocklet"');
     }
 
+    if (/[^a-zA-z0-9]/.test(value)) {
+      throw new Error('role name can include only numbers or letters');
+    }
+
     return value;
   });
 

package/package.json

@@ -3,7 +3,7 @@
   "publishConfig": {
     "access": "public"
   },
-  "version": "1.8.36",
+  "version": "1.8.38",
   "description": "",
   "main": "lib/index.js",
   "files": [
@@ -19,32 +19,32 @@
   "author": "wangshijun <wangshijun2010@gmail.com> (http://github.com/wangshijun)",
   "license": "MIT",
   "dependencies": {
-    "@abtnode/auth": "1.8.36",
-    "@abtnode/certificate-manager": "1.8.36",
-    "@abtnode/constant": "1.8.36",
-    "@abtnode/cron": "1.8.36",
-    "@abtnode/db": "1.8.36",
-    "@abtnode/logger": "1.8.36",
-    "@abtnode/queue": "1.8.36",
-    "@abtnode/rbac": "1.8.36",
-    "@abtnode/router-provider": "1.8.36",
-    "@abtnode/static-server": "1.8.36",
-    "@abtnode/timemachine": "1.8.36",
-    "@abtnode/util": "1.8.36",
-    "@arcblock/did": "1.18.15",
+    "@abtnode/auth": "1.8.38",
+    "@abtnode/certificate-manager": "1.8.38",
+    "@abtnode/constant": "1.8.38",
+    "@abtnode/cron": "1.8.38",
+    "@abtnode/db": "1.8.38",
+    "@abtnode/logger": "1.8.38",
+    "@abtnode/queue": "1.8.38",
+    "@abtnode/rbac": "1.8.38",
+    "@abtnode/router-provider": "1.8.38",
+    "@abtnode/static-server": "1.8.38",
+    "@abtnode/timemachine": "1.8.38",
+    "@abtnode/util": "1.8.38",
+    "@arcblock/did": "1.18.18",
     "@arcblock/did-motif": "^1.1.10",
-    "@arcblock/did-util": "1.18.15",
-    "@arcblock/event-hub": "1.18.15",
-    "@arcblock/jwt": "^1.18.15",
+    "@arcblock/did-util": "1.18.18",
+    "@arcblock/event-hub": "1.18.18",
+    "@arcblock/jwt": "^1.18.18",
     "@arcblock/pm2-events": "^0.0.5",
-    "@arcblock/vc": "1.18.15",
-    "@blocklet/constant": "1.8.36",
-    "@blocklet/meta": "1.8.36",
-    "@blocklet/sdk": "1.8.36",
+    "@arcblock/vc": "1.18.18",
+    "@blocklet/constant": "1.8.38",
+    "@blocklet/meta": "1.8.38",
+    "@blocklet/sdk": "1.8.38",
     "@fidm/x509": "^1.2.1",
-    "@ocap/mcrypto": "1.18.15",
-    "@ocap/util": "1.18.15",
-    "@ocap/wallet": "1.18.15",
+    "@ocap/mcrypto": "1.18.18",
+    "@ocap/util": "1.18.18",
+    "@ocap/wallet": "1.18.18",
     "@slack/webhook": "^5.0.4",
     "axios": "^0.27.2",
     "axon": "^2.0.3",
@@ -82,5 +82,5 @@
     "express": "^4.18.2",
     "jest": "^27.5.1"
   },
-  "gitHead": "507e974ce88bad1aa002c593130b32982207f803"
+  "gitHead": "cbb88f107eb6b403c8cd47a765920575860c7bc7"
 }