profile
viewpoint
Ben Evans bencevans London, UK https://bencevans.io/ Computer Science & Artificial Intelligence @ Brunel University London / Institute of Zoology

bencevans/active-app-watcher 6

👓 Event emitting active window/app watcher

bencevans/active-app 4

Detect the active window/application on Linux (X11) and hopefully more platforms in the future...

bencevans/bonfire-blog 4

Blog Bonfire Module

bencevans/brutime 4

🗓️ Scrape timetabling info for Brunel Uni students.

bencevans/brucal 3

📆 iCal Web Service for Brunel Timetables. Automatically add your Brunel timetable to Google Calendar, GNOME Calendar or any other calendar application providing support for Web iCal.

bencevans/canvas-battery 2

Canvas Battery Charge Gauge (Component)

bencevans/arxiv-to-xml 1

📎 Generate XML representation of an arXiv paper using latexml

bencevans/Bonfire 1

Jumpstart your CodeIgniter web applications with a modular, HMVC-ready, backend.

bencevans/brunel-wifi-on-pi 1

Information and helper script for getting Raspberry Pis online at Brunel University

bencevans/brutime-cli 1

Brunel Timetable CLI

startedexiftool/exiftool

started time in 3 hours

push eventnode-influx/node-influx

Renovate Bot

commit sha 9e2e3fe98ec50c8e998bbe1f48d0da526b76120e

chore(deps): update dependency node-fetch to v3.1.1

view details

push time in 2 days

delete branch node-influx/node-influx

delete branch : renovate/node-fetch-3.x

delete time in 2 days

PR merged node-influx/node-influx

chore(deps): update dependency node-fetch to v3.1.1

WhiteSource Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
node-fetch 3.1.0 -> 3.1.1 age adoption passing confidence

Release Notes

<details> <summary>node-fetch/node-fetch</summary>

v3.1.1

Compare Source

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

New Contributors

Full Changelog: https://github.com/node-fetch/node-fetch/compare/v3.1.0...v3.1.1

</details>


Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • [ ] <!-- rebase-check -->If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by WhiteSource Renovate. View repository job log here.

+16 -16

0 comment

2 changed files

renovate[bot]

pr closed time in 2 days

startedfleaflet/flutter_map

started time in 3 days

push eventbencevans/node-sonos

dependabot[bot]

commit sha 7d6eaaa2ca35685abe2a7792e3e4f5b8dfc4707c

chore(deps): bump follow-redirects from 1.13.1 to 1.14.7 Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.13.1 to 1.14.7. - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.13.1...v1.14.7) --- updated-dependencies: - dependency-name: follow-redirects dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 3 days

PR merged bencevans/node-sonos

chore(deps): bump follow-redirects from 1.13.1 to 1.14.7 dependencies

Bumps follow-redirects from 1.13.1 to 1.14.7. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/2ede36d7c60d3acdcd324dcd99a9dbd52e4fb3a6"><code>2ede36d</code></a> Release version 1.14.7 of the npm package.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22"><code>8b347cb</code></a> Drop Cookie header across domains.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/6f5029ae1a0fdab4dc25f6379a5ee303c2319070"><code>6f5029a</code></a> Release version 1.14.6 of the npm package.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/af706bee57de954414c0bde0a9f33e62beea3e52"><code>af706be</code></a> Ignore null headers.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/d01ab7a5c5df3617c7a40a03de7af6427fdfac55"><code>d01ab7a</code></a> Release version 1.14.5 of the npm package.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/40052ea8aa13559becee5795715c1d45b1f0eb76"><code>40052ea</code></a> Make compatible with Node 17.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/86f7572f9365dadc39f85916259b58973819617f"><code>86f7572</code></a> Fix: clear internal timer on request abort to avoid leakage</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/2e1eaf0218c5315a2ab27f53964d0535d4dafb51"><code>2e1eaf0</code></a> Keep Authorization header on subdomain redirects.</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/2ad9e82b6277ae2104f7770e9ff1186cc6da29d4"><code>2ad9e82</code></a> Carry over Host header on relative redirects (<a href="https://github-redirect.dependabot.com/follow-redirects/follow-redirects/issues/172">#172</a>)</li> <li><a href="https://github.com/follow-redirects/follow-redirects/commit/77e2a581e1d1811674b7b74745a9c20a5b939488"><code>77e2a58</code></a> Release version 1.14.4 of the npm package.</li> <li>Additional commits viewable in <a href="https://github.com/follow-redirects/follow-redirects/compare/v1.13.1...v1.14.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 3 days

PullRequestReviewEvent

push eventIDABrunel/pacman

dependabot[bot]

commit sha 2a954088f0ceb3593bcda84c5b38e114d33430de

chore(deps): bump numpy from 1.18.1 to 1.21.0 in /game Bumps [numpy](https://github.com/numpy/numpy) from 1.18.1 to 1.21.0. - [Release notes](https://github.com/numpy/numpy/releases) - [Changelog](https://github.com/numpy/numpy/blob/main/doc/HOWTO_RELEASE.rst.txt) - [Commits](https://github.com/numpy/numpy/compare/v1.18.1...v1.21.0) --- updated-dependencies: - dependency-name: numpy dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 5 days

delete branch IDABrunel/pacman

delete branch : dependabot/pip/game/numpy-1.21.0

delete time in 5 days

PR merged IDABrunel/pacman

chore(deps): bump numpy from 1.18.1 to 1.21.0 in /game dependencies

Bumps numpy from 1.18.1 to 1.21.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/numpy/numpy/releases">numpy's releases</a>.</em></p> <blockquote> <h2>v1.21.0</h2> <h1>NumPy 1.21.0 Release Notes</h1> <p>The NumPy 1.21.0 release highlights are</p> <ul> <li>continued SIMD work covering more functions and platforms,</li> <li>initial work on the new dtype infrastructure and casting,</li> <li>universal2 wheels for Python 3.8 and Python 3.9 on Mac,</li> <li>improved documentation,</li> <li>improved annotations,</li> <li>new <code>PCG64DXSM</code> bitgenerator for random numbers.</li> </ul> <p>In addition there are the usual large number of bug fixes and other improvements.</p> <p>The Python versions supported for this release are 3.7-3.9. Official support for Python 3.10 will be added when it is released.</p> <p>:warning: Warning: there are unresolved problems compiling NumPy 1.21.0 with gcc-11.1 .</p> <ul> <li>Optimization level <code>-O3</code> results in many wrong warnings when running the tests.</li> <li>On some hardware NumPy will hang in an infinite loop.</li> </ul> <h2>New functions</h2> <h3>Add PCG64DXSM BitGenerator</h3> <p>Uses of the PCG64 BitGenerator in a massively-parallel context have been shown to have statistical weaknesses that were not apparent at the first release in numpy 1.17. Most users will never observe this weakness and are safe to continue to use PCG64. We have introduced a new PCG64DXSM BitGenerator that will eventually become the new default BitGenerator implementation used by <code>default_rng</code> in future releases. PCG64DXSM solves the statistical weakness while preserving the performance and the features of PCG64.</p> <p>See <code>upgrading-pcg64</code> for more details.</p> <p>(<a href="https://github-redirect.dependabot.com/numpy/numpy/pull/18906">gh-18906</a>)</p> <h2>Expired deprecations</h2> <ul> <li>The <code>shape</code> argument <code>numpy.unravel_index</code> cannot be passed as <code>dims</code> keyword argument anymore. (Was deprecated in NumPy 1.16.)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/numpy/numpy/commit/b235f9e701e14ed6f6f6dcba885f7986a833743f"><code>b235f9e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/numpy/numpy/issues/19283">#19283</a> from charris/prepare-1.21.0-release</li> <li><a href="https://github.com/numpy/numpy/commit/34aebc2824cf8c2bdbe19040b82f98f18557c8ba"><code>34aebc2</code></a> MAINT: Update 1.21.0-notes.rst</li> <li><a href="https://github.com/numpy/numpy/commit/493b64bfe9c5396498325b87e5e80e1917555c41"><code>493b64b</code></a> MAINT: Update 1.21.0-changelog.rst</li> <li><a href="https://github.com/numpy/numpy/commit/07d7e72ab6880c05b5fdd98482cf88982e778393"><code>07d7e72</code></a> MAINT: Remove accidentally created directory.</li> <li><a href="https://github.com/numpy/numpy/commit/032fca5e2e9749b152ec56153f476e05efdff287"><code>032fca5</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/numpy/numpy/issues/19280">#19280</a> from charris/backport-19277</li> <li><a href="https://github.com/numpy/numpy/commit/7d25b81025a50cc0368f5727c65e875ca769469a"><code>7d25b81</code></a> BUG: Fix refcount leak in ResultType</li> <li><a href="https://github.com/numpy/numpy/commit/fa5754e8c159a37fcd9345df261cf82821088ea0"><code>fa5754e</code></a> BUG: Add missing DECREF in new path</li> <li><a href="https://github.com/numpy/numpy/commit/61127bb4d46d523b699da1b63abaa5035670da27"><code>61127bb</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/numpy/numpy/issues/19268">#19268</a> from charris/backport-19264</li> <li><a href="https://github.com/numpy/numpy/commit/143d45fff3ed9e051bdeef7bdb4df38025ea7d1c"><code>143d45f</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/numpy/numpy/issues/19269">#19269</a> from charris/backport-19228</li> <li><a href="https://github.com/numpy/numpy/commit/d80e4738f781a1d206bbc04a2e863299e5f2e104"><code>d80e473</code></a> BUG: Removed typing for == and != in dtypes</li> <li>Additional commits viewable in <a href="https://github.com/numpy/numpy/compare/v1.18.1...v1.21.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 5 days

PullRequestReviewEvent

delete branch IDABrunel/pacman

delete branch : dependabot/pip/game/pillow-9.0.0

delete time in 5 days

push eventIDABrunel/pacman

dependabot[bot]

commit sha e05b6fa08198748479c891dd75f6a36a7b5abb3e

chore(deps): bump pillow from 8.3.2 to 9.0.0 in /game Bumps [pillow](https://github.com/python-pillow/Pillow) from 8.3.2 to 9.0.0. - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](https://github.com/python-pillow/Pillow/compare/8.3.2...9.0.0) --- updated-dependencies: - dependency-name: pillow dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 5 days

PR merged IDABrunel/pacman

chore(deps): bump pillow from 8.3.2 to 9.0.0 in /game dependencies

Bumps pillow from 8.3.2 to 9.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/python-pillow/Pillow/releases">pillow's releases</a>.</em></p> <blockquote> <h2>9.0.0</h2> <p><a href="https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html">https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html</a></p> <h2>Changes</h2> <ul> <li>Restrict builtins for ImageMath.eval() <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5923">#5923</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Ensure JpegImagePlugin stops at the end of a truncated file <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921">#5921</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed ImagePath.Path array handling <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5920">#5920</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Remove consecutive duplicate tiles that only differ by their offset <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5919">#5919</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Removed redundant part of condition <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5915">#5915</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Explicitly enable strip chopping for large uncompressed TIFFs <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5517">#5517</a> [<a href="https://github.com/kmilos"><code>@​kmilos</code></a>]</li> <li>Use the Windows method to get TCL functions on Cygwin <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5807">#5807</a> [<a href="https://github.com/DWesl"><code>@​DWesl</code></a>]</li> <li>Changed error type to allow for incremental WebP parsing <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5404">#5404</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Improved I;16 operations on big endian <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5901">#5901</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Ensure that BMP pixel data offset does not ignore palette <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5899">#5899</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Limit quantized palette to number of colors <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5879">#5879</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Use latin1 encoding to decode bytes <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5870">#5870</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed palette index for zeroed color in FASTOCTREE quantize <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5869">#5869</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>When saving RGBA to GIF, make use of first transparent palette entry <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5859">#5859</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Pass SAMPLEFORMAT to libtiff <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5848">#5848</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added rounding when converting P and PA <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5824">#5824</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Improved putdata() documentation and data handling <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5910">#5910</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Exclude carriage return in PDF regex to help prevent ReDoS <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5912">#5912</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Image.NONE is only used for resampling and dithers <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5908">#5908</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fixed freeing pointer in ImageDraw.Outline.transform <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5909">#5909</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Add Tidelift alignment action and badge <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5763">#5763</a> [<a href="https://github.com/aclark4life"><code>@​aclark4life</code></a>]</li> <li>Replaced further direct invocations of setup.py <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5906">#5906</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added ImageShow support for xdg-open <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5897">#5897</a> [<a href="https://github.com/m-shinder"><code>@​m-shinder</code></a>]</li> <li>Fixed typo <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5902">#5902</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Switched from deprecated "setup.py install" to "pip install ." <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5896">#5896</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Support 16-bit grayscale ImageQt conversion <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5856">#5856</a> [<a href="https://github.com/cmbruns"><code>@​cmbruns</code></a>]</li> <li>Fixed raising OSError in _safe_read when size is greater than SAFEBLOCK <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5872">#5872</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Convert subsequent GIF frames to RGB or RGBA <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5857">#5857</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>WebP: Fix memory leak during decoding on failure <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5798">#5798</a> [<a href="https://github.com/ilai-deutel"><code>@​ilai-deutel</code></a>]</li> <li>Do not prematurely return in ImageFile when saving to stdout <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5665">#5665</a> [<a href="https://github.com/infmagic2047"><code>@​infmagic2047</code></a>]</li> <li>Added support for top right and bottom right TGA orientations <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5829">#5829</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Corrected ICNS file length in header <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5845">#5845</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Block tile TIFF tags when saving <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5839">#5839</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Added line width argument to ImageDraw polygon <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5694">#5694</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Do not redeclare class each time when converting to NumPy <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5844">#5844</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Only prevent repeated polygon pixels when drawing with transparency <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5835">#5835</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix pushes_fd method signature <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5833">#5833</a> [<a href="https://github.com/hoodmane"><code>@​hoodmane</code></a>]</li> <li>Add support for pickling TrueType fonts <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5826">#5826</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>Only prefer command line tools SDK on macOS over default MacOSX SDK <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5828">#5828</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix compilation on 64-bit Termux <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5793">#5793</a> [<a href="https://github.com/landfillbaby"><code>@​landfillbaby</code></a>]</li> <li>Replace 'setup.py sdist' with '-m build --sdist' <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5785">#5785</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>Use declarative package configuration <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5784">#5784</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> <li>Use title for display in ImageShow <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5788">#5788</a> [<a href="https://github.com/radarhere"><code>@​radarhere</code></a>]</li> <li>Fix for PyQt6 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5775">#5775</a> [<a href="https://github.com/hugovk"><code>@​hugovk</code></a>]</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst">pillow's changelog</a>.</em></p> <blockquote> <h2>9.0.0 (2022-01-02)</h2> <ul> <li> <p>Restrict builtins for ImageMath.eval(). CVE-2022-22817 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5923">#5923</a> [radarhere]</p> </li> <li> <p>Ensure JpegImagePlugin stops at the end of a truncated file <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921">#5921</a> [radarhere]</p> </li> <li> <p>Fixed ImagePath.Path array handling. CVE-2022-22815, CVE-2022-22816 <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5920">#5920</a> [radarhere]</p> </li> <li> <p>Remove consecutive duplicate tiles that only differ by their offset <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5919">#5919</a> [radarhere]</p> </li> <li> <p>Improved I;16 operations on big endian <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5901">#5901</a> [radarhere]</p> </li> <li> <p>Limit quantized palette to number of colors <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5879">#5879</a> [radarhere]</p> </li> <li> <p>Fixed palette index for zeroed color in FASTOCTREE quantize <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5869">#5869</a> [radarhere]</p> </li> <li> <p>When saving RGBA to GIF, make use of first transparent palette entry <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5859">#5859</a> [radarhere]</p> </li> <li> <p>Pass SAMPLEFORMAT to libtiff <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5848">#5848</a> [radarhere]</p> </li> <li> <p>Added rounding when converting P and PA <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5824">#5824</a> [radarhere]</p> </li> <li> <p>Improved putdata() documentation and data handling <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5910">#5910</a> [radarhere]</p> </li> <li> <p>Exclude carriage return in PDF regex to help prevent ReDoS <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5912">#5912</a> [hugovk]</p> </li> <li> <p>Fixed freeing pointer in ImageDraw.Outline.transform <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5909">#5909</a> [radarhere]</p> </li> <li> <p>Added ImageShow support for xdg-open <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5897">#5897</a> [m-shinder, radarhere]</p> </li> <li> <p>Support 16-bit grayscale ImageQt conversion <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5856">#5856</a> [cmbruns, radarhere]</p> </li> <li> <p>Convert subsequent GIF frames to RGB or RGBA <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5857">#5857</a> [radarhere]</p> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/python-pillow/Pillow/commit/82541b6dec8452cb612067fcebba1c5a1a2bfdc8"><code>82541b6</code></a> 9.0.0 version bump</li> <li><a href="https://github.com/python-pillow/Pillow/commit/cae5ac495badd7c7ecfad8223a08f55f5d2eaacb"><code>cae5ac4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5924">#5924</a> from radarhere/cves</li> <li><a href="https://github.com/python-pillow/Pillow/commit/ed4cf7813777ad8478cac46f448bc45416a2a99e"><code>ed4cf78</code></a> CVEs TBD</li> <li><a href="https://github.com/python-pillow/Pillow/commit/d7f60d1d5a746eb01d4cb3c7fb05b6593f46b0f5"><code>d7f60d1</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5923">#5923</a> from radarhere/imagemath_eval</li> <li><a href="https://github.com/python-pillow/Pillow/commit/8531b01d6cdf0b70f256f93092caa2a5d91afc11"><code>8531b01</code></a> Restrict builtins for ImageMath.eval</li> <li><a href="https://github.com/python-pillow/Pillow/commit/1efb1d9fabd1dfdbf7982035eca0dae7306abef1"><code>1efb1d9</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5922">#5922</a> from radarhere/releasenotes</li> <li><a href="https://github.com/python-pillow/Pillow/commit/f6c78713a491764dfac576f6c42127755f2c62b3"><code>f6c7871</code></a> Added release notes for <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5919">#5919</a>, <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5920">#5920</a> and <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921">#5921</a></li> <li><a href="https://github.com/python-pillow/Pillow/commit/032d2dc3658f94718109068ac70799313e440754"><code>032d2dc</code></a> Update CHANGES.rst [ci skip]</li> <li><a href="https://github.com/python-pillow/Pillow/commit/baae9ec4b67c68e3adaf1208cf54e8de5e38a6fd"><code>baae9ec</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/python-pillow/Pillow/issues/5921">#5921</a> from radarhere/jpeg_eoi</li> <li><a href="https://github.com/python-pillow/Pillow/commit/1059eb537639925c96d3245dcd73c106d4266c83"><code>1059eb5</code></a> If appended EOI did not work, do not keep trying</li> <li>Additional commits viewable in <a href="https://github.com/python-pillow/Pillow/compare/8.3.2...9.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 5 days

PullRequestReviewEvent

push eventbencevans/screenshot-desktop

Ben Evans

commit sha 2632d7ebfd9f29d213a08569988a9cf7ec34b646

ci: update node versions

view details

push time in 7 days

issue commentbencevans/screenshot-desktop

LINUX Command failed: xrandr Can't open display

Thanks for your report, @rohit5ram. I suspect it's a security issue that limits access from the system user to the display. Please could you share the unit/service file you're using?

rohit5ram

comment created time in 20 days

created tagonthecut/crt-notice-scraper

tagv2.1.6

Canal and River Trust (CRT) Notice Scraper

created time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha 4f3f0ce76b9aaf72e0c06588bd8557ded397a419

2.1.6

view details

push time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha efb6e08a37d0ce961c346149933a2e60e0661de4

revert tape import

view details

push time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha 05065a4acefb17ec4c7616d164b876e477174800

Revert "non * import" This reverts commit bd1c3bf5c3d185c24cecbde6f73df9bb4d73aa54.

view details

push time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha 499f3b6349c571effab129d04b2115542f00bdf1

test on node 16 + 17

view details

push time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha bd1c3bf5c3d185c24cecbde6f73df9bb4d73aa54

non * import

view details

push time in a month

created tagonthecut/crt-notice-scraper

tagv2.1.5

Canal and River Trust (CRT) Notice Scraper

created time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha 10f4839aa694e7ba9c167f84c4fff0bc67a7cce9

include js files in release

view details

Ben Evans

commit sha 4afe9559e71bfd11aefeb95ff0706df596e97957

2.1.5

view details

push time in a month

created tagonthecut/crt-notice-scraper

tagv2.1.4

Canal and River Trust (CRT) Notice Scraper

created time in a month

push eventonthecut/crt-notice-scraper

Ben Evans

commit sha 8ed6eb66f7eff164515579e8fa7580540c1d227c

2.1.4

view details

push time in a month

push eventnode-influx/node-influx

Renovate Bot

commit sha 3b81f7dd5a8afc329c9537b6da752ca68e32eb5d

chore(deps): update dependency puppeteer to v13

view details

push time in a month

delete branch node-influx/node-influx

delete branch : renovate/puppeteer-13.x

delete time in a month

more