profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/RichardLitt/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Richard Littauer RichardLitt @mntnr Montpelier, Vermont https://burntfen.com Open source maintainer, birder, sailor, poet, linguist, flâneur, etc, etc, etc.

k88hudson/git-flight-rules 37239

Flight rules for git

lukasz-madon/awesome-remote-job 20971

A curated list of awesome remote jobs and resources. Inspired by https://github.com/vinta/awesome-python

btford/write-good 4466

Naive linter for English prose

daviddias/awesome-hacking-locations 869

:computer: :coffee: List of Awesome Hacking Locations, organised by Country and City, listing if it features power and wifi

magalhini/firstaidgit 274

First Aid Git

ipfs-shipyard/ipfs-primer 268

A primer explaining IPFS and the Decentralized Web, viewable as a website, pdf or e-book

ipfs-inactive/reading-list 226

[ARCHIVED] Moved to https://docs.ipfs.io — papers to read to understand IPFS

mntnr/awesome-contributing 85

Awesome contributing guides for open source development.

adventure-js/arcticjs.club 68

The http://arcticjs.club website

ipfs-shipyard/dnslink-deploy 56

Set the DNS records on Digital Ocean programmatically

push eventsustainers/website

Richard Littauer

commit sha 9b4589feae5dd79400886aa785bf8d23fca07446

Minor changes

view details

push time in a day

push eventsustainers/website

Richard Littauer

commit sha ce25f46167ce9a4fce881eae9e2ce1bdac2dacbd

Adding podcasts page

view details

push time in a day

create barnchsustainers/website

branch : master

created branch time in a day

push eventk88hudson/git-flight-rules

Jared Culp

commit sha 5f1db99e49ea13c8fa0b7b2882592f086cb9dd30

Fix "gim" typo (#331)

view details

push time in 3 days

pull request commentk88hudson/git-flight-rules

Fix "gim" typo

Thanks.

jaredculp

comment created time in 3 days

PR merged k88hudson/git-flight-rules

Fix "gim" typo

I didn't notice this in any of the other translated files, which is why only one of them is being updated.

+2 -2

0 comment

2 changed files

jaredculp

pr closed time in 3 days

MemberEvent

push eventRichardLitt/ospoplusplus.com

jacoblyopen

commit sha 7779cacf98f273687c4564223a1bade8155b3be5

Update working-group.md jacob is testing the editing capabilities, and updateing the schedule

view details

Richard Littauer

commit sha df7400021e50eb4109bcdbe93b2482f998f7d2ae

Merge pull request #13 from jacoblyopen/patch-1 Update working-group.md

view details

push time in 4 days

PR merged RichardLitt/ospoplusplus.com

Update working-group.md

jacob is testing the editing capabilities, and updateing the schedule

+0 -8

0 comment

1 changed file

jacoblyopen

pr closed time in 4 days

pull request commentRichardLitt/low-resource-languages

More entries for the Divvun and GiellaLT resources

Thank you! :)

snomos

comment created time in 8 days

push eventRichardLitt/low-resource-languages

Sjur Moshagen

commit sha 6726a613c3a357081c88969530bd37176859d843

Add Divvun and GiellaLT entries

view details

Sjur Moshagen

commit sha 00e499537d40736434cfe70ca5f818c70144a29b

Enhance Divvun entry

view details

Sjur Moshagen

commit sha cf68c676dab001aaf99183c4face39f5c6c3d977

Update name of giella-ime ⇒ giellakbd-android

view details

Sjur Moshagen

commit sha b8c4bb50194e1020138bea4146aa77ea46e17a9b

Sort giellakbd-android

view details

Sjur Moshagen

commit sha 1db01b71df544b534f25b0ffa8b215f9891163dd

Add more info about giellakbd-ios and -android

view details

Sjur Moshagen

commit sha a2d09eff47d30dbdb8e38ebbccdd9e045416434f

Add entry for divvun-keyboard

view details

Richard Littauer

commit sha a63676c27752a717d610f7d995ef3d13e20a3fd5

Merge pull request #150 from snomos/master

view details

push time in 8 days

push eventRichardLitt/ospoplusplus.com

Richard Littauer

commit sha c55bd6e7c9c333a81d7c866451f15576eafd8f81

Adding Nagy link

view details

push time in 8 days

push eventRichardLitt/ospoplusplus.com

Richard Littauer

commit sha 59d0b3fc3de023afea75bf0fda01a378a288e4c1

Spelling

view details

Richard Littauer

commit sha 58c6db05142cf2c1c34520809008b0e9fbd73935

Update WG page

view details

push time in 10 days

issue commentRichardLitt/standard-readme

cat: spec.md: No such file or directory

Probably an issue with shell not being in the right directory. Definitely a bug. Thanks for pointing this out.

I don't have time to fix this at the moment, but would be happy to review a PR.

paulrberg

comment created time in 13 days

push eventRichardLitt/burntfen.com

Richard Littauer

commit sha 59576b1b95197e777c8241b6523fa5a5e7c17606

Update jekyll

view details

push time in 19 days

push eventRichardLitt/burntfen.com

Richard Littauer

commit sha c7ab06be7f72c96b6005b45f66940455107660bc

Orders

view details

push time in 19 days

push eventRichardLitt/burntfen.com

dependabot[bot]

commit sha 9b59e870e23db89f15db7fd5e6947584ecf5f47f

Bump rake from 12.2.1 to 12.3.3 Bumps [rake](https://github.com/ruby/rake) from 12.2.1 to 12.3.3. - [Release notes](https://github.com/ruby/rake/releases) - [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc) - [Commits](https://github.com/ruby/rake/compare/v12.2.1...v12.3.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Richard Littauer

commit sha aab249a1ff2ab425e3ab4c173d4cc9a85764ea0b

Merge pull request #88 from RichardLitt/dependabot/bundler/rake-12.3.3 Bump rake from 12.2.1 to 12.3.3

view details

push time in 19 days

PR merged RichardLitt/burntfen.com

Bump rake from 12.2.1 to 12.3.3 dependencies

Bumps rake from 12.2.1 to 12.3.3. <details> <summary>Changelog</summary>

Sourced from rake's changelog.

=== 12.3.3

==== Bug fixes

  • Use the application's name in error message if a task is not found. Pull Request #303 by tmatilai

==== Enhancements:

  • Use File.open explicitly.

=== 12.3.2

==== Bug fixes

  • Fixed test fails caused by 2.6 warnings. Pull Request #297 by hsbt

==== Enhancements:

  • Rdoc improvements. Pull Request #293 by colby-swandale
  • Improve multitask performance. Pull Request #273 by jsm
  • Add alias prereqs. Pull Request #268 by take-cheeze

=== 12.3.1

==== Bug fixes

  • Support did_you_mean >= v1.2.0 which has a breaking change on formatters. Pull request #262 by FUJI Goro.

==== Enhancements:

  • Don't run task if it depends on already invoked but failed task. Pull request #252 by Gonzalo Rodriguez.
  • Make space trimming consistent for all task arguments. Pull request #259 by Gonzalo Rodriguez.
  • Removes duplicated inclusion of Rake::DSL in tests. Pull request #254 by Gonzalo Rodriguez.
  • Re-raise a LoadError that didn't come from require in the test loader. Pull request #250 by Dylan Thacker-Smith.

=== 12.3.0

==== Compatibility Changes

  • Bump required_ruby_version to Ruby 2.0.0. Rake has already </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • 5c87c46 Bump version to 12.3.3.
  • 5b8f8fc Use File.open explicitly.
  • 6497ba4 Merge pull request #317 from ruby/ignore-gitignore
  • be62efb Removed gitignore from gemspec files.
  • 1c22b49 Merge pull request #309 from RDIL/patch-1
  • 496944a Remove deprecated travis ci option
  • 489c7d8 Merge pull request #307 from ruby/azure-pipelines
  • 77eb6d8 Only enabled macOS environment
  • 72ffa2e use realpath
  • 7744872 Do not specify ruby version of macOS
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

push eventRichardLitt/burntfen.com

dependabot[bot]

commit sha b3a7d8838b9711cd9c007e5b10da44ca4120101f

Bump path-parse from 1.0.6 to 1.0.7 Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. - [Release notes](https://github.com/jbgutierrez/path-parse/releases) - [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7) --- updated-dependencies: - dependency-name: path-parse dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

view details

Richard Littauer

commit sha 5234dc4384931e065b1a0bdf15ec382ebc833c7f

Merge pull request #97 from RichardLitt/dependabot/npm_and_yarn/path-parse-1.0.7 Bump path-parse from 1.0.6 to 1.0.7

view details

push time in 19 days

PR merged RichardLitt/burntfen.com

Bump path-parse from 1.0.6 to 1.0.7 dependencies javascript

Bumps path-parse from 1.0.6 to 1.0.7. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/jbgutierrez/path-parse/commits/v1.0.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

push eventRichardLitt/burntfen.com

dependabot[bot]

commit sha 724116386ca9d71da3133aa945ccdb7c136cdbb2

Bump decompress from 4.2.0 to 4.2.1 Bumps [decompress](https://github.com/kevva/decompress) from 4.2.0 to 4.2.1. - [Release notes](https://github.com/kevva/decompress/releases) - [Commits](https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

Richard Littauer

commit sha f226804291396dd705d2a48f4470260bbcc26e4a

Merge pull request #90 from RichardLitt/dependabot/npm_and_yarn/decompress-4.2.1 Bump decompress from 4.2.0 to 4.2.1

view details

push time in 19 days

PR merged RichardLitt/burntfen.com

Bump decompress from 4.2.0 to 4.2.1 dependencies javascript

Bumps decompress from 4.2.0 to 4.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/kevva/decompress/releases">decompress's releases</a>.</em></p> <blockquote> <h2>v4.2.1</h2> <ul> <li>Prevent directory traversal (<a href="https://github-redirect.dependabot.com/kevva/decompress/issues/73">#73</a>) 967146e</li> </ul> <p><a href="https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1">https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kevva/decompress/commit/84a8c1046946add1a6ae01c54dbebf312e4ffc85"><code>84a8c10</code></a> 4.2.1</li> <li><a href="https://github.com/kevva/decompress/commit/fafff47880cb5b47b022cd7be5542d576448603a"><code>fafff47</code></a> Meta tweaks</li> <li><a href="https://github.com/kevva/decompress/commit/967146e70f48be32ed1a69daa3941d681944d513"><code>967146e</code></a> Prevent directory traversal (<a href="https://github-redirect.dependabot.com/kevva/decompress/issues/73">#73</a>)</li> <li><a href="https://github.com/kevva/decompress/commit/74a462a139cc2561b6695e696266c8dc31562d3d"><code>74a462a</code></a> Meta tweaks</li> <li><a href="https://github.com/kevva/decompress/commit/7ddadd92139079e520cb822a03fe4260b7db7676"><code>7ddadd9</code></a> Add note about <code>filter</code> option</li> <li>See full diff in <a href="https://github.com/kevva/decompress/compare/v4.2.0...v4.2.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

push eventRichardLitt/burntfen.com

dependabot[bot]

commit sha bd8389394fd81db4eadea9ac068f759044f81bc5

Bump yargs-parser from 5.0.0 to 5.0.1 Bumps [yargs-parser](https://github.com/yargs/yargs-parser) from 5.0.0 to 5.0.1. - [Release notes](https://github.com/yargs/yargs-parser/releases) - [Changelog](https://github.com/yargs/yargs-parser/blob/v5.0.1/CHANGELOG.md) - [Commits](https://github.com/yargs/yargs-parser/compare/v5.0.0...v5.0.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

Richard Littauer

commit sha fc9a2a86683cdf977059af4ed2e93189ded0190b

Merge pull request #93 from RichardLitt/dependabot/npm_and_yarn/yargs-parser-5.0.1 Bump yargs-parser from 5.0.0 to 5.0.1

view details

push time in 19 days

PR merged RichardLitt/burntfen.com

Bump yargs-parser from 5.0.0 to 5.0.1 dependencies javascript

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.


Bumps yargs-parser from 5.0.0 to 5.0.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/yargs/yargs-parser/releases">yargs-parser's releases</a>.</em></p> <blockquote> <h2>yargs-parser v5.0.1</h2> <h3>Bug Fixes</h3> <ul> <li><strong>security:</strong> address GHSA-p9pc-299p-vxgp (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/362">#362</a>) (<a href="https://www.github.com/yargs/yargs-parser/commit/1c417bd0b42b09c475ee881e36d292af4fa2cc36">1c417bd</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yargs/yargs-parser/blob/v5.0.1/CHANGELOG.md">yargs-parser's changelog</a>.</em></p> <blockquote> <h1><a href="https://github.com/yargs/yargs-parser/compare/v4.2.1...v5.0.0">5.0.0</a> (2017-02-18)</h1> <h3>Bug Fixes</h3> <ul> <li>environment variables should take precedence over config file (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/81">#81</a>) (<a href="https://github.com/yargs/yargs-parser/commit/76cee1f">76cee1f</a>)</li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li>environment variables will now override config files (args, env, config-file, config-object)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h3><a href="https://www.github.com/yargs/yargs-parser/compare/v5.0.0...v5.0.1">5.0.1</a> (2021-03-10)</h3> <h3>Bug Fixes</h3> <ul> <li><strong>security:</strong> address GHSA-p9pc-299p-vxgp (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/362">#362</a>) (<a href="https://www.github.com/yargs/yargs-parser/commit/1c417bd0b42b09c475ee881e36d292af4fa2cc36">1c417bd</a>)</li> </ul> <h2><a href="https://github.com/yargs/yargs-parser/compare/v4.2.0...v4.2.1">4.2.1</a> (2017-01-02)</h2> <h3>Bug Fixes</h3> <ul> <li>flatten/duplicate regression (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/75">#75</a>) (<a href="https://github.com/yargs/yargs-parser/commit/68d68a0">68d68a0</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h1><a href="https://github.com/yargs/yargs-parser/compare/v4.1.0...v4.2.0">4.2.0</a> (2016-12-01)</h1> <h3>Bug Fixes</h3> <ul> <li>inner objects in configs had their keys appended to top-level key when dot-notation was disabled (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/72">#72</a>) (<a href="https://github.com/yargs/yargs-parser/commit/0b1b5f9">0b1b5f9</a>)</li> </ul> <h3>Features</h3> <ul> <li>allow multiple arrays to be provided, rather than always combining (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/71">#71</a>) (<a href="https://github.com/yargs/yargs-parser/commit/0f0fb2d">0f0fb2d</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h1><a href="https://github.com/yargs/yargs-parser/compare/v4.0.2...v4.1.0">4.1.0</a> (2016-11-07)</h1> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yargs/yargs-parser/commit/eab6c039888bd5d51f33dda7a98808564acfa938"><code>eab6c03</code></a> chore: release 5.0.1 (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/363">#363</a>)</li> <li><a href="https://github.com/yargs/yargs-parser/commit/1c417bd0b42b09c475ee881e36d292af4fa2cc36"><code>1c417bd</code></a> fix(security): address GHSA-p9pc-299p-vxgp (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/362">#362</a>)</li> <li><a href="https://github.com/yargs/yargs-parser/commit/e93a345e1e585ba5df97c1da438673e7f2e8909b"><code>e93a345</code></a> chore: mark release in commit history (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/361">#361</a>)</li> <li><a href="https://github.com/yargs/yargs-parser/commit/ee15863f7c62418c4fc92b64c3488778c46833dc"><code>ee15863</code></a> chore: push new package version</li> <li><a href="https://github.com/yargs/yargs-parser/commit/47742078426f0e4e02aa988062b5fb0fa61182b9"><code>4774207</code></a> fix: back-porting prototype fixes for <em>really</em> old version (<a href="https://github-redirect.dependabot.com/yargs/yargs-parser/issues/271">#271</a>)</li> <li>See full diff in <a href="https://github.com/yargs/yargs-parser/compare/v5.0.0...v5.0.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~oss-bot">oss-bot</a>, a new releaser for yargs-parser since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+5 -4

0 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

push eventRichardLitt/burntfen.com

dependabot[bot]

commit sha e4154a67a3518a225b53d2d231b3a0747a874c82

Bump addressable from 2.7.0 to 2.8.0 Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.7.0 to 2.8.0. - [Release notes](https://github.com/sporkmonger/addressable/releases) - [Changelog](https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md) - [Commits](https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.8.0) --- updated-dependencies: - dependency-name: addressable dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

view details

Richard Littauer

commit sha 7955ec8c2c4129c770426200e2b385846de06934

Merge pull request #96 from RichardLitt/dependabot/bundler/addressable-2.8.0 Bump addressable from 2.7.0 to 2.8.0

view details

push time in 19 days

PR merged RichardLitt/burntfen.com

Bump addressable from 2.7.0 to 2.8.0 dependencies ruby

Bumps addressable from 2.7.0 to 2.8.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md">addressable's changelog</a>.</em></p> <blockquote> <h1>Addressable 2.8.0</h1> <ul> <li>fixes ReDoS vulnerability in Addressable::Template#match</li> <li>no longer replaces <code>+</code> with spaces in queries for non-http(s) schemes</li> <li>fixed encoding ipv6 literals</li> <li>the <code>:compacted</code> flag for <code>normalized_query</code> now dedupes parameters</li> <li>fix broken <code>escape_component</code> alias</li> <li>dropping support for Ruby 2.0 and 2.1</li> <li>adding Ruby 3.0 compatibility for development tasks</li> <li>drop support for <code>rack-mount</code> and remove Addressable::Template#generate</li> <li>performance improvements</li> <li>switch CI/CD to GitHub Actions</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sporkmonger/addressable/commit/6469a232c0f1892809ff66737370c765d574e16c"><code>6469a23</code></a> Updating gemspec again</li> <li><a href="https://github.com/sporkmonger/addressable/commit/24336385de0261571b3adaad0431459edb420c79"><code>2433638</code></a> Merge branch 'main' of github.com:sporkmonger/addressable into main</li> <li><a href="https://github.com/sporkmonger/addressable/commit/e9c76b889789c75d7073c17b0ab557635d3f6704"><code>e9c76b8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/sporkmonger/addressable/issues/378">#378</a> from ashmaroli/flat-map</li> <li><a href="https://github.com/sporkmonger/addressable/commit/56c5cf7ece9223ff4240e07078cc26d3adbbbd30"><code>56c5cf7</code></a> Update the gemspec</li> <li><a href="https://github.com/sporkmonger/addressable/commit/c1fed1ca0a44c448e74d761fd44ed94869199807"><code>c1fed1c</code></a> Require a non-vulnerable rake</li> <li><a href="https://github.com/sporkmonger/addressable/commit/0d8a3127e35886ce9284810a7f2438bff6b43cbc"><code>0d8a312</code></a> Adding note about ReDoS vulnerability</li> <li><a href="https://github.com/sporkmonger/addressable/commit/89c76130ce255c601f642a018cb5fb5a80e679a7"><code>89c7613</code></a> Merge branch 'template-regexp' into main</li> <li><a href="https://github.com/sporkmonger/addressable/commit/cf8884f815c96b646c796f707bf768cf6eb65543"><code>cf8884f</code></a> Note about alias fix</li> <li><a href="https://github.com/sporkmonger/addressable/commit/bb03f7112e8e478240a0f96e1cc7428159b41586"><code>bb03f71</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/sporkmonger/addressable/issues/371">#371</a> from charleystran/add_missing_encode_component_doc_entry</li> <li><a href="https://github.com/sporkmonger/addressable/commit/6d1d8094a66cbf932ecf69db6850bc9edaf86de0"><code>6d1d809</code></a> Adding note about :compacted normalization</li> <li>Additional commits viewable in <a href="https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.8.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+2 -2

0 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

push eventRichardLitt/burntfen.com

Richard Littauer

commit sha 4cd9704c38c0c71116753057918d9d2c8bc0a561

Adding OSPO++

view details

push time in 19 days

PR closed k88hudson/git-flight-rules

Le brach

new README, go on and click on it

+2057 -0

1 comment

2 changed files

Gigio212

pr closed time in 19 days

PR closed k88hudson/git-flight-rules

new otherResources
+2057 -0

0 comment

2 changed files

Gigio212

pr closed time in 19 days