profile
viewpoint

arxiv-vanity/arxiv-vanity 996

Renders papers from arXiv as responsive web pages so you don't have to squint at a PDF.

arxiv-vanity/engrafo 603

Convert LaTeX documents into beautiful responsive web pages using LaTeXML.

aanand/wick 34

NOT MAINTAINED

arXiv/arxiv-readability 16

Pilot project to render HTML5 from arXiv LaTeX sources

bfirsh/charingcross 4

Project planning with GitHub issues

arxiv-vanity/pandoc 3

[Archived - arXiv Vanity no longer uses Pandoc]

bfirsh/agent-plugins 2

A collection of custom plugins for the Cloudkick agent

bfirsh/backbone 2

Give your JS App some Backbone with Models, Views, Collections, and Events

bfirsh/backbone-otter 2

Tools for writing Otter apps with Backbone

bfirsh/celery 2

Distributed Task Queue for Django

issue closedarxiv-vanity/engrafo-issues

Hi, Sorry to intrude your mailbox. I saw you lin...

Hi,

Sorry to intrude your mailbox.

I saw you linked to https://developer.android.com/studio/command-line/adb from https://www.arxiv-vanity.com/papers/1906.11117/

I would like to bring to your attention a resource I recently created – Guru99. https://www.guru99.com/adb-connect.html The content is up to date and very in-depth.

Thought you might like this one.

Thanks! Alex

arXiv ID: 1906.11117

https://www.arxiv-vanity.com/papers/1906.11117/

http://localhost:8010/html/1906.11117/

closed time in 2 days

engrafobot

issue closedarxiv-vanity/engrafo-issues

Hi, I've reached out several times but haven't he...

Hi,

I've reached out several times but haven't heard back, which tells me one of three things:

  1. You’re interested in giving link back, but haven't had a chance to get back to me yet.
  2. You're not interested and want me to stop emailing.
  3. You've fallen and can't get up – in that case let me know and I'll call 911. Can you please reply with 1, 2 or 3? I don't want to be a bother.

======================== Original Message =========================

Hi,

Sorry to intrude your mailbox.

I saw you linked to https://developer.android.com/studio/command-line/adb from https://www.arxiv-vanity.com/papers/1906.11117/

I would like to bring to your attention a resource I recently created – Guru99. https://www.guru99.com/adb-connect.html. The content is up to date and very in-depth.

I did be obliged if you link to it.

As a thankyou, I would be glad to share your page with our 27k Facebook/Twitter/Linkedin Followers.

Thanks! Alex

arXiv ID: 1906.11117

https://www.arxiv-vanity.com/papers/1906.11117/

http://localhost:8010/html/1906.11117/

closed time in 2 days

engrafobot

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha f60143ad5f16a4fbb3a2d986ccf51432e544e065

Bump beautifulsoup4 from 4.8.1 to 4.8.2 Bumps [beautifulsoup4](http://www.crummy.com/software/BeautifulSoup/bs4/) from 4.8.1 to 4.8.2. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 2 days

PR merged arxiv-vanity/arxiv-vanity

Bump beautifulsoup4 from 4.8.1 to 4.8.2 dependencies python

Bumps beautifulsoup4 from 4.8.1 to 4.8.2.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 2 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 29629e624ad6d34e26076835741ed1c95a1707ca

Delete old renders on success

view details

push time in 4 days

push eventarxiv-vanity/arxiv-vanity

Jai

commit sha ecb5c6c71e51365d50626a884608f78a3dd7bbaf

Add exclude/test patterns to DeepSource config Signed-off-by: Jai <jai@deepsource.io>

view details

push time in 4 days

pull request commentarxiv-vanity/arxiv-vanity

Add exclude/test patterns to DeepSource config

wooo thanks :sparkles:

jaipradeesh

comment created time in 4 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha f7f23a85931a2fb3ba3decafb9b8ebf2c1ec4594

Index old papers less often

view details

push time in 4 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 0c2091e9b4b7f4cd454a3d1f21530379598682d4

Set up sitemap index for pagination

view details

push time in 4 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 6c29d671f95668e5f4a337bfe1df23d3bc6b5b0e

Make sitemap yet more efficient

view details

push time in 4 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 30a9a13b8e369f7911fc2088155a69f8606335c8

Limit number of sitemap entries per page heroku timeout

view details

push time in 4 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 5fc6d7499fe1624859cf57b64ebfb6a8b69281db

Run migrations on release

view details

Ben Firshman

commit sha 6b0dd79ec7c19a6bacdb7dd873887d810a4cb8d5

Increase length of doi and journal ref fields Sometimes these are long... sigh...

view details

push time in 4 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 552700ca936fc697893e812a12c7697be9ba79ec

Add sitemap

view details

push time in 4 days

delete branch arxiv-vanity/arxiv-vanity

delete branch : show-renders-forever

delete time in 5 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 04da23e1cbc238844599b7cd7ba628aa0d19e5e8

Bring back paper list test

view details

Ben Firshman

commit sha df07e9436e4ed859a49285ee06014e05d999bc7e

Rename "is_expired" to "is_deleted" To free up the term "expired" for meaning when papers need re-rendering, not when they've been deleted.

view details

Ben Firshman

commit sha 81d57ef697b5fcba60c76e4b10a243bc81b5ea9f

Write test for rendering paper

view details

Ben Firshman

commit sha e359d455e29fb8f5f3ce8a847a2161e9d5d01fa9

Implement new concept of expiration - Expiration now is just a boolean flag to determine whether a render is older than PAPERS_EXPIRED_DAYS. - No renders are deleted automatically any longer

view details

Ben Firshman

commit sha 568af6979523bb90cca776fbabffedea5b4945f6

Add is_expired as arg to render factory

view details

Ben Firshman

commit sha fbe396530075f147361dad78b81f7b36e69d5cae

Show renders persistently even if they fail or they're rendering!

view details

push time in 5 days

PR opened arxiv-vanity/arxiv-vanity

Show renders forever
+350 -100

0 comment

13 changed files

pr created time in 5 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha dda582539f6a797c2cb043823435c178779986fb

Implement new concept of expiration - Expiration now is just a boolean flag to determine whether a render is older than PAPERS_EXPIRED_DAYS. - No renders are deleted automatically any longer

view details

Ben Firshman

commit sha 89114d07f7f818b8e4228b27dccf020822e0f0b2

Add is_expired as arg to render factory

view details

Ben Firshman

commit sha 774d6780b5d235f079f59f345e3034ab6249a9df

Show renders persistently even if they fail or they're rendering!

view details

push time in 5 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 4ba7604a7f03e823321dfdffe3368727d6a3ce7b

Bump lxml from 4.4.1 to 4.4.2 Bumps [lxml](https://github.com/lxml/lxml) from 4.4.1 to 4.4.2. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-4.4.1...lxml-4.4.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 5 days

PR merged arxiv-vanity/arxiv-vanity

Bump lxml from 4.4.1 to 4.4.2 dependencies python

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps lxml from 4.4.1 to 4.4.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/lxml/lxml/blob/master/CHANGES.txt">lxml's changelog</a>.</em></p> <blockquote> <h1>4.4.2 (2019-11-25)</h1> <h2>Bugs fixed</h2> <ul> <li>LP#1835708: <code>ElementInclude</code> incorrectly rejected repeated non-recursive includes as recursive. Patch by Rainer Hausdorf.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lxml/lxml/commit/589c3c2f35e89fec66aa7f4bec2eb2755033b2b2"><code>589c3c2</code></a> Prepare release of lxml 4.4.2.</li> <li><a href="https://github.com/lxml/lxml/commit/bf15ea45a8d884e5cd49ad30f71a6f8d49c372a4"><code>bf15ea4</code></a> Improve frontpage section on sponsoring.</li> <li><a href="https://github.com/lxml/lxml/commit/e2f4ae135fea12e1e75b1a81de2ec3839a1b0ce0"><code>e2f4ae1</code></a> Add a link to Tidelift as a way of supporting the project.</li> <li><a href="https://github.com/lxml/lxml/commit/a2551ed1cb862b2113dc13ca6d057208fe02c31e"><code>a2551ed</code></a> Adapt doctest to libxml2 2.9.10.</li> <li><a href="https://github.com/lxml/lxml/commit/632e44da3cfa3b0be5b2760bd4a95936df173e4d"><code>632e44d</code></a> Try to avoid redundant recompilation in appveyor by building the wheel first ...</li> <li><a href="https://github.com/lxml/lxml/commit/355663d282446785979c2cb19dd3a3d61c36956e"><code>355663d</code></a> Fix indentation in appveyor build script.</li> <li><a href="https://github.com/lxml/lxml/commit/6f1df3a39f63850395357567098b6a1419bcbcae"><code>6f1df3a</code></a> Fix path escaping in appveyor build script.</li> <li><a href="https://github.com/lxml/lxml/commit/f1bb8b8a2235f0e49f04b37fa3fdf3224b8bb8e0"><code>f1bb8b8</code></a> Install Python 3.8 into the correct directory on appveyor.</li> <li><a href="https://github.com/lxml/lxml/commit/ec242248584961f080b089843ee44f1e7c4c23f3"><code>ec24224</code></a> appveyor: test with Python 3.8 (<a href="https://github-redirect.dependabot.com/lxml/lxml/issues/289">GH-289</a>)</li> <li><a href="https://github.com/lxml/lxml/commit/9bab0e1fef7bffcdcdb1ee0080718633dea7ada5"><code>9bab0e1</code></a> Add final Py3.8 to travis and appveyor builds.</li> <li>Additional commits viewable in <a href="https://github.com/lxml/lxml/compare/lxml-4.4.1...lxml-4.4.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 5 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 0a68850d1b080ee7c9e96def46c03ee03398f093

Bump sentry-sdk from 0.14.0 to 0.14.1 Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 0.14.0 to 0.14.1. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGES.md) - [Commits](https://github.com/getsentry/sentry-python/compare/0.14.0...0.14.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 5 days

PR merged arxiv-vanity/arxiv-vanity

Bump sentry-sdk from 0.14.0 to 0.14.1 dependencies python

Bumps sentry-sdk from 0.14.0 to 0.14.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-python/releases">sentry-sdk's releases</a>.</em></p> <blockquote> <h2>0.14.1</h2> <ul> <li>Fix a crash in the Django integration when used in combination with Django Rest Framework's test utilities for request.</li> <li>Fix high memory consumption when sending a lot of errors in the same process. Particularly noticeable in async environments.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-python/blob/master/CHANGES.md">sentry-sdk's changelog</a>.</em></p> <blockquote> <h2>0.14.1</h2> <ul> <li>Fix a crash in the Django integration when used in combination with Django Rest Framework's test utilities for request.</li> <li>Fix high memory consumption when sending a lot of errors in the same process. Particularly noticeable in async environments.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/getsentry/sentry-python/commit/42c685df2740a3f3ef0673d7b42dc8ef24cc156f"><code>42c685d</code></a> release: 0.14.1</li> <li><a href="https://github.com/getsentry/sentry-python/commit/1fbdb45f3fdbf8adaee2c3e3178d90bd817d5617"><code>1fbdb45</code></a> doc: Changelog for 0.14.1</li> <li><a href="https://github.com/getsentry/sentry-python/commit/9e1d46de1df69304323becc8d85faab6060b6d7c"><code>9e1d46d</code></a> build: Remove broken azure pipelines setup</li> <li><a href="https://github.com/getsentry/sentry-python/commit/20fdcf1b6895bab241b71300be7dfdab424f324f"><code>20fdcf1</code></a> fix: Enforce max queue length in transport (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/593">#593</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/9a42f95bace9f2a5d85a7abc7f543442b6317d91"><code>9a42f95</code></a> fix(wsgi): Avoid adding extra parameters if not necessary (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/588">#588</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/39ea175f9ba6b7de472a98b389e31bc82f71491a"><code>39ea175</code></a> ref: Semaphore is now Relay (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/589">#589</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/3bf293ea2330090cf3cf9d697fd685dd5ce0b076"><code>3bf293e</code></a> Merge release/0.14.0 into master</li> <li>See full diff in <a href="https://github.com/getsentry/sentry-python/compare/0.14.0...0.14.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 5 days

create barncharxiv-vanity/arxiv-vanity

branch : show-renders-forever

created branch time in 5 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha d3423480030807c662c66accd306060273185b00

Create .deepsource.toml

view details

push time in 6 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha f581f738e7e1888ad0adb493dfe27b2ece5fe5ec

Fix broken citation metadata

view details

push time in 6 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 8fc927b4e0a08be5475e205c65ef1b4ce9324c20

home page paper

view details

push time in 6 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 7539d64231697ca8853b1edb2d184801e53c6ada

Add dates to paper list

view details

push time in 6 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 392ce33a33723014dd19473179380396d5ffa07e

Disable crawl throttling Let's see what happens!!

view details

push time in 7 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 321e40ed89e8db9c0ecd44804254b6ccd2bb3dea

Add latest papers link to footer

view details

push time in 7 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha ca2e06c1832d08a6c156f45f975465436675ca66

Revert "Remove paper list page" This reverts commit 83ddf3cbc1ed2e3783bdfa3698a2c74be134ac17.

view details

Ben Firshman

commit sha 5120cd75d37b5acba574a07ffb9597d8e7dc5321

Make paper list new style, add heading

view details

Ben Firshman

commit sha d9140ad0e2de2bbca925da6ee1eca74fbcc687dc

Increase number of papers per page

view details

Ben Firshman

commit sha 1b62de390f400738514c8348313c90faf8ee4381

Add range paginator Bit more search engine friendly

view details

push time in 7 days

delete branch arxiv-vanity/engrafo

delete branch : bump-latexml

delete time in 7 days

push eventarxiv-vanity/engrafo

Ben Firshman

commit sha 470506b3115cf99ae99f3c794640f04177f07ce8

Bump latexml

view details

push time in 7 days

PR merged arxiv-vanity/engrafo

Bump latexml
+1 -1

0 comment

1 changed file

bfirsh

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 71b73151c358d2c3d6ceae80d6a2287143085065

Handle capital "V" in URL

view details

push time in 7 days

push eventarxiv-vanity/engrafo

dependabot-preview[bot]

commit sha 17c3566f82841d5321f24af0bbb07eed0147fa63

[Security] Bump handlebars from 4.1.2 to 4.7.2 Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.7.2. **This update includes a security fix.** - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.7.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/engrafo

[Security] Bump handlebars from 4.1.2 to 4.7.2 dependencies javascript security

Bumps handlebars from 4.1.2 to 4.7.2. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-w457-6q6x-cgp9">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>High severity vulnerability that affects handlebars</strong> Versions of handlebars prior to 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution. Templates may alter an Object's <strong>proto</strong> and <strong>defineGetter</strong> properties, which may allow an attacker to execute arbitrary code through crafted payloads.</p> <p>Affected versions: < 4.3.0</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/wycats/handlebars.js/blob/master/release-notes.md">handlebars's changelog</a>.</em></p> <blockquote> <h2>v4.7.2 - January 13th, 2020</h2> <p>Bugfixes:</p> <ul> <li>fix: don't wrap helpers that are not functions - 9d5aa36, <a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1639">#1639</a></li> </ul> <p>Chore/Build:</p> <ul> <li>chore: execute saucelabs-task only if access-key exists - a4fd391</li> </ul> <p>Compatibility notes:</p> <ul> <li>No breaking changes are to be expected</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.1...v4.7.2">Commits</a></p> <h2>v4.7.1 - January 12th, 2020</h2> <p>Bugfixes:</p> <ul> <li>fix: fix log output in case of illegal property access - f152dfc</li> <li>fix: log error for illegal property access only once per property - 3c1e252</li> </ul> <p>Compatibility notes:</p> <ul> <li>no incompatibilities are to be expected.</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.0...v4.7.1">Commits</a></p> <h2>v4.7.0 - January 10th, 2020</h2> <p>Features:</p> <ul> <li>feat: default options for controlling proto access - 7af1c12, <a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1635">#1635</a> <ul> <li>This makes it possible to disable the prototype access restrictions added in 4.6.0</li> <li>an error is logged in the console, if access to prototype properties is attempted and denied and no explicit configuration has taken place.</li> </ul> </li> </ul> <p>Compatibility notes:</p> <ul> <li>no compatibilities are expected</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.6.0...v4.7.0">Commits</a></p> <h2>v4.6.0 - January 8th, 2020</h2> <p>Features:</p> <ul> <li>feat: access control to prototype properties via whitelist (<a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1633">#1633</a>)- d03b6ec</li> </ul> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/wycats/handlebars.js/commit/586e672c8bba7db787bc9bfe9a9fde4ec98d5b4f"><code>586e672</code></a> v4.7.2</li> <li><a href="https://github.com/wycats/handlebars.js/commit/f0c6c4cc1f9a91371535ad6affe09dfc1880dd9e"><code>f0c6c4c</code></a> Update release notes</li> <li><a href="https://github.com/wycats/handlebars.js/commit/a4fd391ba1c9faa1004e879f314beb80c3afe0b6"><code>a4fd391</code></a> chore: execute saucelabs-task only if access-key exists</li> <li><a href="https://github.com/wycats/handlebars.js/commit/9d5aa363cf3031b586e9945cf990e178f5b370db"><code>9d5aa36</code></a> fix: don't wrap helpers that are not functions</li> <li><a href="https://github.com/wycats/handlebars.js/commit/14ba3d0c43d75bcfcdbfb7c95c9fac99d88a17c8"><code>14ba3d0</code></a> v4.7.1</li> <li><a href="https://github.com/wycats/handlebars.js/commit/4cddfe7017c28235ccad98f3434deb3725258da8"><code>4cddfe7</code></a> Update release notes</li> <li><a href="https://github.com/wycats/handlebars.js/commit/f152dfc89204e8c117605d602dac4fdc174ddcd9"><code>f152dfc</code></a> fix: fix log output in case of illegal property access</li> <li><a href="https://github.com/wycats/handlebars.js/commit/3c1e2521694583bc1d8bade1ed5b162f5bfb065a"><code>3c1e252</code></a> fix: log error for illegal property access only once per property</li> <li><a href="https://github.com/wycats/handlebars.js/commit/0d5c807017f8ba6c6d947f9d6852033c8faa2e49"><code>0d5c807</code></a> v4.7.0</li> <li><a href="https://github.com/wycats/handlebars.js/commit/1f0834b1a2937150923f9de849b9612bd1969d11"><code>1f0834b</code></a> Update release notes</li> <li>Additional commits viewable in <a href="https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.7.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+13 -8

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/engrafo

dependabot-preview[bot]

commit sha 38711cf6310b6063d50c5f3474b511e79a979542

Bump debian from testing-20190910 to testing-20191224 Bumps debian from testing-20190910 to testing-20191224. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/engrafo

Bump debian from testing-20190910 to testing-20191224 dependencies docker

Bumps debian from testing-20190910 to testing-20191224.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/engrafo

dependabot-preview[bot]

commit sha f65657f63a23d53aba9480b9c8b3feceeccc87a2

[Security] Bump serialize-to-js from 3.0.0 to 3.0.2 Bumps [serialize-to-js](https://github.com/commenthol/serialize-to-js) from 3.0.0 to 3.0.2. **This update includes a security fix.** - [Release notes](https://github.com/commenthol/serialize-to-js/releases) - [Commits](https://github.com/commenthol/serialize-to-js/compare/v3.0.0...v3.0.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/engrafo

[Security] Bump serialize-to-js from 3.0.0 to 3.0.2 dependencies javascript security

Bumps serialize-to-js from 3.0.0 to 3.0.2. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

Moderate severity vulnerability that affects serialize-to-js

regular expressions Cross-Site Scripting (XSS) vulnerability

Impact

Affected versions of this package are vulnerable to Cross-site Scripting (XSS). It does not properly mitigate against unsafe characters in serialized regular expressions.

This vulnerability is not affected on Node.js environment since Node.js's implementation of RegExp.prototype.toString() backslash-escapes all forward slashes in regular expressions.

If serialized data of regular expression objects are used in an environment other than Node.js, it is affected by this vulnerability.

Patches

This was patched in v3.0.1.

Affected versions: < 3.0.1

</details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

PR opened arxiv-vanity/engrafo

Bump latexml
+1 -1

0 comment

1 changed file

pr created time in 7 days

create barncharxiv-vanity/engrafo

branch : bump-latexml

created branch time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 25cdc762180e52fb1c4e2557a3fd3c97435900d0

Bump pylint-django from 2.0.12 to 2.0.13 Bumps [pylint-django](https://github.com/PyCQA/pylint-django) from 2.0.12 to 2.0.13. - [Release notes](https://github.com/PyCQA/pylint-django/releases) - [Changelog](https://github.com/PyCQA/pylint-django/blob/master/CHANGELOG.rst) - [Commits](https://github.com/PyCQA/pylint-django/compare/v2.0.12...v2.0.13) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump pylint-django from 2.0.12 to 2.0.13 dependencies python

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps pylint-django from 2.0.12 to 2.0.13. <details> <summary>Changelog</summary>

Sourced from pylint-django's changelog.

Version 2.0.13 (23 Nov 2019), HackBulgaria edition

  • Suppress too-many-ancestors for class-based generic views
  • Add handler400, handler403, handler404 to good_names. Fix #248 </details> <details> <summary>Commits</summary>
  • 950fdf2 Changelog for v2.0.13
  • c5aa141 Suppress too-many-ancestors for class-based generic views
  • 6fc0955 tests: Add class-based generic views
  • 90a0d52 Add handlers to good_names. Fixes #248
  • a815175 Remove a sentence from SECURITY.md
  • 433e0b6 Update URL and formatting
  • See full diff in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha ecbe1ec2a9501f873d52b7cb87d6ec9dde625da5

Bump sentry-sdk from 0.12.3 to 0.14.0 Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 0.12.3 to 0.14.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGES.md) - [Commits](https://github.com/getsentry/sentry-python/compare/0.12.3...0.14.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump sentry-sdk from 0.12.3 to 0.14.0 dependencies python

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps sentry-sdk from 0.12.3 to 0.14.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-python/releases">sentry-sdk's releases</a>.</em></p> <blockquote> <h2>0.14.0</h2> <ul> <li>Show ASGI request data in Django 3.0</li> <li>New integration for the Trytond ERP framework. Thanks n1ngu!</li> </ul> <h2>0.13.5</h2> <ul> <li>Fix trace continuation bugs in APM.</li> <li>No longer report <code>asyncio.CancelledError</code> as part of AIOHTTP integration.</li> </ul> <h2>0.13.4</h2> <ul> <li>Fix package classifiers to mark this package as supporting Python 3.8. The SDK supported 3.8 before though.</li> <li>Update schema sent for transaction events (transaction status).</li> <li>Fix a bug where <code>None</code> inside request data was skipped/omitted.</li> </ul> <h2>0.13.3</h2> <ul> <li>Fix an issue with the ASGI middleware that would cause Uvicorn to infer the wrong ASGI versions and call the wrapped application with the wrong argument count.</li> <li>Do not ignore the <code>tornado.application</code> logger.</li> <li>The Redis integration now instruments Redis blaster for breadcrumbs and transaction spans.</li> </ul> <h2>0.13.2</h2> <ul> <li>Fix a bug in APM that would cause wrong durations to be displayed on non-UTC servers.</li> </ul> <h2>0.13.1</h2> <ul> <li>Add new global functions for setting scope/context data.</li> <li>Fix a bug that would make Django 1.11+ apps crash when using function-based middleware.</li> </ul> <h2>0.13.0</h2> <ul> <li>Remove an old deprecation warning (behavior itself already changed since a long time).</li> <li>The AIOHTTP integration now attaches the request body to crash reports. Thanks to Vitali Rebkavets!</li> <li>Add an experimental PySpark integration.</li> <li>First release to be tested under Python 3.8. No code changes were necessary though, so previous releases also might have worked.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/getsentry/sentry-python/blob/master/CHANGES.md">sentry-sdk's changelog</a>.</em></p> <blockquote> <h2>0.14.0</h2> <ul> <li>Show ASGI request data in Django 3.0</li> <li>New integration for the Trytond ERP framework. Thanks n1ngu!</li> </ul> <h2>0.13.5</h2> <ul> <li>Fix trace continuation bugs in APM.</li> <li>No longer report <code>asyncio.CancelledError</code> as part of AIOHTTP integration.</li> </ul> <h2>0.13.4</h2> <ul> <li>Fix package classifiers to mark this package as supporting Python 3.8. The SDK supported 3.8 before though.</li> <li>Update schema sent for transaction events (transaction status).</li> <li>Fix a bug where <code>None</code> inside request data was skipped/omitted.</li> </ul> <h2>0.13.3</h2> <ul> <li>Fix an issue with the ASGI middleware that would cause Uvicorn to infer the wrong ASGI versions and call the wrapped application with the wrong argument count.</li> <li>Do not ignore the <code>tornado.application</code> logger.</li> <li>The Redis integration now instruments Redis blaster for breadcrumbs and transaction spans.</li> </ul> <h2>0.13.2</h2> <ul> <li>Fix a bug in APM that would cause wrong durations to be displayed on non-UTC servers.</li> </ul> <h2>0.13.1</h2> <ul> <li>Add new global functions for setting scope/context data.</li> <li>Fix a bug that would make Django 1.11+ apps crash when using function-based middleware.</li> </ul> <h2>0.13.0</h2> <ul> <li>Remove an old deprecation warning (behavior itself already changed since a long time).</li> <li>The AIOHTTP integration now attaches the request body to crash reports. Thanks to Vitali Rebkavets!</li> <li>Add an experimental PySpark integration.</li> <li>First release to be tested under Python 3.8. No code changes were necessary though, so previous releases also might have worked.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/getsentry/sentry-python/commit/79ed596d5d0f80e650d0125a94cd9c994f919847"><code>79ed596</code></a> release: 0.14.0</li> <li><a href="https://github.com/getsentry/sentry-python/commit/1624b9465b5066b1d98d70f8603e0ff36c7a4524"><code>1624b94</code></a> doc: Changelog for 0.14.0</li> <li><a href="https://github.com/getsentry/sentry-python/commit/1b8644b83a76142a5997a9fd8d3b9d1c88d84eea"><code>1b8644b</code></a> Trytond integration (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/548">#548</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/0c93613df5decb23c4093d77356647367a577306"><code>0c93613</code></a> feat: Add test matrix for sanic 19 (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/584">#584</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/da29968cb750ab3fefc388633f476034474c35be"><code>da29968</code></a> fix: Disable irrelevant bugbear lint</li> <li><a href="https://github.com/getsentry/sentry-python/commit/ab479250447aaf3a115287c2912fa6dfa5cb8e23"><code>ab47925</code></a> feat: Add tests for Celery 4.4 (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/580">#580</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/19200af6dbb67fd06bea18c01f4683b4c7dec188"><code>19200af</code></a> feat: Instrument ASGI under Django 3.0 (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/573">#573</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/807abc6c02ebf2424f79b175237d0f6382d4a5a5"><code>807abc6</code></a> fix: Make contextvars-detection more readable (<a href="https://github-redirect.dependabot.com/getsentry/sentry-python/issues/574">#574</a>)</li> <li><a href="https://github.com/getsentry/sentry-python/commit/85c15e2e6d9707e43a412f0b49a530aab8925624"><code>85c15e2</code></a> Merge release/0.13.5 into master</li> <li><a href="https://github.com/getsentry/sentry-python/commit/7cdd713791a516a39e317c9eaddf0cc7cf0c8fc7"><code>7cdd713</code></a> release: 0.13.5</li> <li>Additional commits viewable in <a href="https://github.com/getsentry/sentry-python/compare/0.12.3...0.14.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 16901f1a49150ecdae3a68187ec2dabfa6e9618a

[Security] Bump django from 2.2.7 to 2.2.8 Bumps [django](https://github.com/django/django) from 2.2.7 to 2.2.8. **This update includes a security fix.** - [Release notes](https://github.com/django/django/releases) - [Commits](https://github.com/django/django/compare/2.2.7...2.2.8) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

[Security] Bump django from 2.2.7 to 2.2.8 dependencies python security

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps django from 2.2.7 to 2.2.8. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

Moderate severity vulnerability that affects django Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. A Django model admin displaying inline related models, where the user has view-only permissions to a parent model but edit permissions to the inline model, would be presented with an editing UI, allowing POST requests, for updating the inline model. Directly editing the view-only parent model was not possible, but the parent model's save() method was called, triggering potential side effects, and causing pre and post-save signal handlers to be invoked. (To resolve this, the Django admin is adjusted to require edit permissions on the parent model in order for inline models to be editable.)

Affected versions: >= 2.2.0, < 2.2.8

</details> <details> <summary>Commits</summary>

  • b8782c5 [2.2.x] Bumped version for 2.2.8 release.
  • d6fa509 [2.2.x] Added release dates for 2.1.15, 2.2.8 and 3.0.
  • 36f580a Fixed CVE-2019-19118 -- Required edit permissions on parent model for editabl...
  • 70311e1 [2.2.x] Refs #30953 -- Added 2.1.15 release note for 0107e3d1058f653f66032f7f...
  • 6cf3b6f [2.2.x] Fixed #30953 -- Made select_for_update() lock queryset's model when u...
  • 9a17ae5 [2.2.x] Fixed #31021 -- Fixed proxy model permissions data migration crash wi...
  • 019a1b9 [2.2.x] Fixed #31029 -- Used more specific links to RFCs.
  • 57f5a7e [2.2.x] Refs #31029 -- Added note about :rfc: role in writing documentation d...
  • 3cf70df [2.2.x] Fixed #31018 -- Removed django-nonrel in NoSQL databases FAQ.
  • e82a1bc [2.2.x] Improved custom MultiWidget example in docs.
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha c6652fc8333c5d3f00d0ccb78d8063782a8f2479

Bump django-storages from 1.7.2 to 1.8 Bumps [django-storages](https://github.com/jschneier/django-storages) from 1.7.2 to 1.8. - [Release notes](https://github.com/jschneier/django-storages/releases) - [Changelog](https://github.com/jschneier/django-storages/blob/master/CHANGELOG.rst) - [Commits](https://github.com/jschneier/django-storages/compare/1.7.2...1.8) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump django-storages from 1.7.2 to 1.8 dependencies python

Bumps django-storages from 1.7.2 to 1.8. <details> <summary>Changelog</summary>

Sourced from django-storages's changelog.

1.8 (2019-11-20)

  • Add support for Django 3.0 (#759)
  • Update license identifier to unambiguous BSD-3-Clause

S3

  • Include error message raised when missing library is imported (#776, #793)

Google

  • Breaking The minimum supported version of google-cloud-storage is now 1.15.0 which enables...
  • Add setting GS_CUSTOM_ENDPOINT to allow usage of custom domains (#775, #648)

Azure

  • Fix extra installation by pinning version to < 12 (#785)
  • Add support for setting AZURE_CACHE_CONTROL header (#780, #674) </details> <details> <summary>Commits</summary>
  • 33a0afc Release version 1.8
  • 888803f GoogleCloud: Allow custom endpoints (#648)
  • 6a4bbd4 Azure: Added Cache-Control header support (#780)
  • f94c065 Add Django 3.0 Trove classifier (#792)
  • e4077b1 S3Boto3: Include error message when reraising (#793)
  • c48a883 Pin dependency of azure storage blob to revert breakage by version 12 (#785)
  • 766b587 add Django 3.0 to the test matrix (#770)
  • 02315d0 Fix AWS_S3_ENDPOINT_URL example for DigitalOcean Spaces (#766)
  • 532a2fc Update setup.py license field to unambiguous SPDX identifier
  • 0ab2b1e Remove dependency on django.utils.six for Django 3.0 support (#759)
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha c5910ce5cd93fcc05a785a3cd2928f801c02c6a8

Bump django-db-geventpool from 3.1.0 to 3.2.0 Bumps [django-db-geventpool](https://github.com/jneight/django-db-geventpool) from 3.1.0 to 3.2.0. - [Release notes](https://github.com/jneight/django-db-geventpool/releases) - [Changelog](https://github.com/jneight/django-db-geventpool/blob/master/CHANGELOG.md) - [Commits](https://github.com/jneight/django-db-geventpool/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump django-db-geventpool from 3.1.0 to 3.2.0 dependencies python

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps django-db-geventpool from 3.1.0 to 3.2.0. <details> <summary>Changelog</summary>

Sourced from django-db-geventpool's changelog.

3.2.0

  • Removed support for django < 1.11
  • Updated previous deprecation warnings
  • Improved queue and connection handling, @​coderanger </details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 772d3211149c7ba5afc18627d6cfb80a4defef6c

Bump pylint from 2.4.2 to 2.4.4 Bumps [pylint](https://github.com/PyCQA/pylint) from 2.4.2 to 2.4.4. - [Release notes](https://github.com/PyCQA/pylint/releases) - [Changelog](https://github.com/PyCQA/pylint/blob/master/ChangeLog) - [Commits](https://github.com/PyCQA/pylint/compare/pylint-2.4.2...pylint-2.4.4) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump pylint from 2.4.2 to 2.4.4 dependencies python

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps pylint from 2.4.2 to 2.4.4. <details> <summary>Changelog</summary>

Sourced from pylint's changelog.

What's New in Pylint 2.4.4?

Release date: 2019-11-13

  • Exempt all the names found in type annotations from unused-import

    The previous code was assuming that only typing names need to be exempted, but we need to do that for the rest of the type comment names as well.

    Close #3112

  • Relax type import detection for names that do not come from the typing module

    Close #3191

What's New in Pylint 2.4.3?

Release date: 2019-10-18

  • Fix an issue with unnecessary-comprehension in comprehensions with additional repacking of elements.

    Close #3148

  • import-outside-toplevel is emitted for ImportFrom nodes as well.

    Close #3175

  • Do not emit no-method-argument for functions using positional only args.

    Close #3161

  • consider-using-sys-exit is no longer emitted when exit is imported in the local scope.

    Close #3147

  • invalid-overridden-method takes abc.abstractproperty in account

    Close #3150

  • Fixed missing-yield-type-doc getting incorrectly raised when a generator does not document a yield type but has a type annotation.

    Closes #3185

  • typing.overload functions are exempted from too-many-function-args

    Close #3170 </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>

  • d0a597b Prepare 2.4.4
  • 7946f13 Relax type import detection for names that do not come from the typing mo...
  • c51afc0 Mark this branch as 2.4.4
  • 2ac25f6 Exempt all the names found in type annotations from unused-import
  • 7807af3 Prepare 2.4.3
  • 57513cc Disable too-many-locals for complex function
  • ccb1d05 typing.overload functions are exempted from too-many-function-args
  • 89a18ef Fixed missing-yield-type-doc ignoring type annotation (#3195)
  • 30c1504 Disable too-few-public-methods
  • 237d110 invalid-overridden-method takes abc.abstractproperty in account
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 0f0d8f236479f638b1c8f348f7acf82653cadf73

Bump black from 19.3b0 to 19.10b0 Bumps [black](https://github.com/psf/black) from 19.3b0 to 19.10b0. - [Release notes](https://github.com/psf/black/releases) - [Commits](https://github.com/psf/black/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump black from 19.3b0 to 19.10b0 dependencies python

Bumps black from 19.3b0 to 19.10b0. <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 471deb3d5ea21754034ba2723f06ba9869aef415

Bump psycopg2-binary from 2.8.3 to 2.8.4 Bumps [psycopg2-binary](https://github.com/psycopg/psycopg2) from 2.8.3 to 2.8.4. - [Release notes](https://github.com/psycopg/psycopg2/releases) - [Changelog](https://github.com/psycopg/psycopg2/blob/master/NEWS) - [Commits](https://github.com/psycopg/psycopg2/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 7 days

PR merged arxiv-vanity/arxiv-vanity

Bump psycopg2-binary from 2.8.3 to 2.8.4 dependencies python

Bumps psycopg2-binary from 2.8.3 to 2.8.4. <details> <summary>Changelog</summary>

Sourced from psycopg2-binary's changelog.

Current release

What's new in psycopg 2.8.4 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Fixed building with Python 3.8 (:ticket:[#854](https://github.com/psycopg/psycopg2/issues/854)).
  • Don't swallow keyboard interrupts on connect when a password is specified in the connection string (:ticket:[#898](https://github.com/psycopg/psycopg2/issues/898)).
  • Don't advance replication cursor when the message wasn't confirmed (:ticket:[#940](https://github.com/psycopg/psycopg2/issues/940)).
  • Fixed inclusion of time.h on linux (:ticket:[#951](https://github.com/psycopg/psycopg2/issues/951)).
  • Fixed int overflow for large values in ~psycopg2.extensions.Column.table_oid and ~psycopg2.extensions.Column.type_code (:ticket:[#961](https://github.com/psycopg/psycopg2/issues/961)).
  • ~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 12.
  • Wheel package compiled against OpenSSL 1.1.1d and PostgreSQL at least 11.4.

What's new in psycopg 2.8.3 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Added interval_status parameter to ~psycopg2.extras.ReplicationCursor.start_replication() method and other facilities to send automatic replication keepalives at periodic intervals (:ticket:[#913](https://github.com/psycopg/psycopg2/issues/913)).
  • Fixed namedtuples caching introduced in 2.8 (:ticket:[#928](https://github.com/psycopg/psycopg2/issues/928)).

What's new in psycopg 2.8.2 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Fixed ~psycopg2.extras.RealDictCursor when there are repeated columns (:ticket:[#884](https://github.com/psycopg/psycopg2/issues/884)).
  • Binary packages built with openssl 1.1.1b. Should fix concurrency problems (:tickets:[#543](https://github.com/psycopg/psycopg2/issues/543), [#836](https://github.com/psycopg/psycopg2/issues/836)).

What's new in psycopg 2.8.1 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

  • Fixed ~psycopg2.extras.RealDictRow modifiability (:ticket:[#886](https://github.com/psycopg/psycopg2/issues/886)).
  • Fixed "there's no async cursor" error polling a connection with no cursor (:ticket:[#887](https://github.com/psycopg/psycopg2/issues/887)).

What's new in psycopg 2.8

New features: </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 7 days

push eventreplicate-examples/multigrain

Ben Firshman

commit sha ecfde29f1d0d94b52837518ffdedb9e1629c2404

Add replicate config

view details

push time in 10 days

push eventreplicate-examples/DenseNet

Ben Firshman

commit sha 95a345f47d00026b06f3eee495c769fdd669cb80

Add replicate config

view details

push time in 10 days

push eventreplicate-examples/DenseNet

Ben Firshman

commit sha 3e7302e40c0ecc0f60ce7af548e4935ecbc73bab

Add replicate config

view details

push time in 10 days

push eventreplicate-examples/efficientnet

Ben Firshman

commit sha 750c3b2f0ae27445350eeaf460f15893e20795d6

Add replicate config

view details

push time in 10 days

startedencode/httpx

started time in 17 days

startedmindsdb/mindsdb

started time in 17 days

startedIDSIA/sacred

started time in a month

startedgoogle/gin-config

started time in a month

startedtiangolo/fastapi

started time in 2 months

startedencode/starlette

started time in 2 months

issue commentbfirsh/django-shorturls

Django 2.0+ compatibility

Nope, sorry. Please help if you're willing. :) #24

kwhandy

comment created time in 2 months

PR opened koalazak/dorita980

Fix docker command in readme
+1 -4

0 comment

1 changed file

pr created time in 2 months

push eventbfirsh/dorita980

Ben Firshman

commit sha e0be4a4c29c9ce432fbdde0c50dfdfea556cf5fe

Fix docker command in readme

view details

push time in 2 months

fork bfirsh/dorita980

Unofficial iRobot Roomba (i7/i7+, 980, 960, 900, e5, 690, 675, etc) node.js library (SDK) to control your robot

fork in 2 months

push eventarxiv-vanity/arxiv-vanity

Ben Firshman

commit sha 809577526e1bf5b76196d5ee80644be2ac70694d

Replace null bytes in logs This error was coming up in sentry. May also be container.attrs...

view details

push time in 2 months

issue openedembassynetwork/modernomad

A way to view available rooms and what dates they are available

When I click on https://embassynetwork.com/locations/embassysf/ and click "view all rooms" I should actually be able to see all rooms, then see somehow what dates they are available.

I swear this used to work at some point...

created time in 2 months

issue openedembassynetwork/modernomad

Availability matrix doesn't update if there are no rooms available

Steps to reproduce:

  • https://embassynetwork.com/locations/embassysf/stay/
  • Select some dates where no rooms are available
  • Switch to availability matrix
  • Update dates to another date where no rooms are available
  • Availability matrix doesn't update

There is error in console.

created time in 2 months

startedcortexlabs/cortex

started time in 2 months

pull request commentkarpathy/arxiv-sanity-preserver

Add arXiv vanity links to the papers

@karpathy What do you think? We get lots of requests for this from arXiv Vanity users. An email today reminded me of this issue...

jasikpark

comment created time in 3 months

pull request commentkarpathy/arxiv-sanity-preserver

Add arXiv vanity links to the papers

This looks good to me!

jasikpark

comment created time in 3 months

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 7b887ae53cc136fa73a159f96ccb08b1d814fa54

Bump pylint-django from 2.0.11 to 2.0.12 Bumps [pylint-django](https://github.com/PyCQA/pylint-django) from 2.0.11 to 2.0.12. - [Release notes](https://github.com/PyCQA/pylint-django/releases) - [Changelog](https://github.com/PyCQA/pylint-django/blob/master/CHANGELOG.rst) - [Commits](https://github.com/PyCQA/pylint-django/compare/v2.0.11...v2.0.12) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 3 months

PR merged arxiv-vanity/arxiv-vanity

Bump pylint-django from 2.0.11 to 2.0.12 dependencies python

Bumps pylint-django from 2.0.11 to 2.0.12. <details> <summary>Release notes</summary>

Sourced from pylint-django's releases.

Version 2.0.12 (04 Nov 2019)

  • Fix too broad suppression of unused-argument warnings for functions and methods where the first argument is named request. Now issues warnings for the rest of the arguments if they are unused. Fix #249 (Pascal Urban)
  • Pass arguments of scripts/test.sh to test_func/pytest to ease development (Pascal Urban)
  • Document behavior when ForeignKey fields are referenced as strings. Fix #241 </details> <details> <summary>Changelog</summary>

Sourced from pylint-django's changelog.

Version 2.0.12 (04 Nov 2019)

  • Fix too broad suppression of unused-argument warnings for functions and methods where the first argument is named request. Now issues warnings for the rest of the arguments if they are unused. Fix #249 (Pascal Urban)
  • Pass arguments of scripts/test.sh to test_func/pytest to ease development (Pascal Urban)
  • Document behavior when ForeignKey fields are referenced as strings. Fix #241 </details> <details> <summary>Commits</summary>
  • d9147ab Forgot to update version to 2.0.12
  • 0df77f0 Changelog for v2.0.12
  • 5f752b6 Ignore unused-argument warning for request arguments (Fixes #249)
  • d2ad9ff Load pylint plugin configuration in test case
  • f75962f Pass arguments of test.sh to test_func/pytest
  • 85430c5 Add SECURITY.md for Tidelift
  • f1cce09 Disable new pylint warning
  • 11181aa tests: clone pylint locally for CI. Fixes #250
  • 695d1b6 Update expected test message for new pylint
  • d00dafb Document FK-string-reference behavior. Fixes #241
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 3 months

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 4633af5ce083e1f44e365557a16a119b09138af1

Bump python-dateutil from 2.8.0 to 2.8.1 Bumps [python-dateutil](https://github.com/dateutil/dateutil) from 2.8.0 to 2.8.1. - [Release notes](https://github.com/dateutil/dateutil/releases) - [Changelog](https://github.com/dateutil/dateutil/blob/master/NEWS) - [Commits](https://github.com/dateutil/dateutil/compare/2.8.0...2.8.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 3 months

PR merged arxiv-vanity/arxiv-vanity

Bump python-dateutil from 2.8.0 to 2.8.1 dependencies python

Bumps python-dateutil from 2.8.0 to 2.8.1. <details> <summary>Release notes</summary>

Sourced from python-dateutil's releases.

2.8.1

Version 2.8.1 (2019-11-03)

Data updates

  • Updated tzdata version to 2019c.

Bugfixes

  • Fixed a race condition in the tzoffset and tzstr "strong" caches on Python 2.7. Reported by [@​kainjow](https://github.com/kainjow) (gh issue #901).
  • Parsing errors will now raise ParserError, a subclass of ValueError, which has a nicer string representation. Patch by [@​gfyoung](https://github.com/gfyoung) (gh pr #881).
  • parser.parse will now raise TypeError when tzinfos is passed a type that cannot be interpreted as a time zone. Prior to this change, it would raise an UnboundLocalError instead. Patch by [@​jbrockmendel](https://github.com/jbrockmendel) (gh pr #891).
  • Changed error message raised when when passing a bytes object as the time zone name to gettz in Python 3. Reported and fixed by [@​labrys](https://github.com/labrys) () (gh issue #927, gh pr #935).
  • Changed compatibility logic to support a potential Python 4.0 release. Patch by Hugo van Kemenade (gh pr #950).
  • Updated many modules to use tz.UTC in favor of tz.tzutc() internally, to avoid an unnecessary function call. (gh pr #910).
  • Fixed issue where dateutil.tz was using a backported version of contextlib.nullcontext even in Python 3.7 due to a malformed import statement. (gh pr #963).

Tests

  • Switched from using assertWarns to using pytest.warns in the test suite. (gh pr #969).
  • Fix typo in setup.cfg causing PendingDeprecationWarning to not be explicitly specified as an error in the warnings filter. (gh pr #966)
  • Fixed issue where test_tzlocal_offset_equal would fail in certain environments (such as FreeBSD) due to an invalid assumption about what time zone names are provided. Reported and fixed by Kubilay Kocak (gh issue #918, pr #928).
  • Fixed a minor bug in test_isoparser related to bytes/str handling. Fixed by [@​fhuang5](https://github.com/fhuang5) (gh issue #776, gh pr #879).
  • Explicitly listed all markers used in the pytest configuration. (gh pr #915)
  • Extensive improvements to the parser test suite, including the adoption of pytest-style tests and the addition of parametrization </tr></table> ... (truncated) </details> <details> <summary>Changelog</summary>

Sourced from python-dateutil's changelog.

Version 2.8.1 (2019-11-03)

Data updates

  • Updated tzdata version to 2019c.

Bugfixes

  • Fixed a race condition in the tzoffset and tzstr "strong" caches on Python 2.7. Reported by @​kainjow (gh issue #901).
  • Parsing errors will now raise ParserError, a subclass of ValueError, which has a nicer string representation. Patch by @​gfyoung (gh pr #881).
  • parser.parse will now raise TypeError when tzinfos is passed a type that cannot be interpreted as a time zone. Prior to this change, it would raise an UnboundLocalError instead. Patch by @​jbrockmendel (gh pr #891).
  • Changed error message raised when when passing a bytes object as the time zone name to gettz in Python 3. Reported and fixed by @​labrys () (gh issue #927, gh pr #935).
  • Changed compatibility logic to support a potential Python 4.0 release. Patch by Hugo van Kemenade (gh pr #950).
  • Updated many modules to use tz.UTC in favor of tz.tzutc() internally, to avoid an unnecessary function call. (gh pr #910).
  • Fixed issue where dateutil.tz was using a backported version of contextlib.nullcontext even in Python 3.7 due to a malformed import statement. (gh pr #963).

Tests

  • Switched from using assertWarns to using pytest.warns in the test suite. (gh pr #969).
  • Fix typo in setup.cfg causing PendingDeprecationWarning to not be explicitly specified as an error in the warnings filter. (gh pr #966)
  • Fixed issue where test_tzlocal_offset_equal would fail in certain environments (such as FreeBSD) due to an invalid assumption about what time zone names are provided. Reported and fixed by Kubilay Kocak (gh issue #918, pr #928).
  • Fixed a minor bug in test_isoparser related to bytes/str handling. Fixed by @​fhuang5 (gh issue #776, gh pr #879).
  • Explicitly listed all markers used in the pytest configuration. (gh pr #915)
  • Extensive improvements to the parser test suite, including the adoption of pytest-style tests and the addition of parametrization of several test cases. Patches by @​jbrockmendel (gh prs #735, #890, #892, #894).
  • Added tests for tzinfos input types. Patch by @​jbrockmendel (gh pr #891). </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • fc9b162 Merge pull request #974 from pganssle/release_2.8.1
  • 4ccc8bb Update changelog for 2.8.1 release.
  • 5fdbdbb Merge pull request #971 from pganssle/update_releasing
  • e0f0b7e Add changelog for PR #971
  • 9390c88 Update RELEASING documentation
  • 3c9ccaa Change "Misc" to showcontent=True
  • 58a4e46 Add "news" environment to tox
  • 55301cd Fix Travis test for build command.
  • e03f1de Add working build and release tox environments.
  • 357c62c Merge pull request #973 from pganssle/strong_cache_race
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 3 months

push eventarxiv-vanity/arxiv-vanity

dependabot-preview[bot]

commit sha 9fb84dd4276ee40663cc0a698509a43f22b53eca

Bump django from 2.2.6 to 2.2.7 Bumps [django](https://github.com/django/django) from 2.2.6 to 2.2.7. - [Release notes](https://github.com/django/django/releases) - [Commits](https://github.com/django/django/compare/2.2.6...2.2.7) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 3 months

PR merged arxiv-vanity/arxiv-vanity

Bump django from 2.2.6 to 2.2.7 dependencies python

Bumps django from 2.2.6 to 2.2.7. <details> <summary>Commits</summary>

  • 27f2b44 [2.2.x] Bumped version for 2.2.7 release.
  • 1cbf607 [2.2.x] Updated man page for Django 2.2.
  • 6f26693 [2.2.x] Added release dates for 2.2.7, 2.1.14, and 1.11.26.
  • 785d170 [2.2.x] Fixed #30931 -- Restored ability to override Model.get_FIELD_display().
  • eb8a53c [2.2.x] Fixed typo in docs/ref/signals.txt.
  • 3ca4457 [2.2.x] Corrected error message in Many-to-many relationships docs.
  • 972eef6 [2.2.x] Fixed #30927 -- Simplified an example of test for the deprecation war...
  • 9d15f1e [2.2.x] Fixed #30917 -- Clarified formsets topic documentation.
  • 4cc1549 [2.2.x] Fixed #13750 -- Clarified need to reopen models.ImageField.image file...
  • 4d992bc [2.2.x] Fixed typo in docs/topics/files.txt.
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 3 months

startedgoogle/jax

started time in 3 months

startedterrcin/augustctl

started time in 3 months

startedreplit/prybar

started time in 3 months

issue commentbfirsh/jsnes

How could we relicense to more liberal license?

@greigs no I've been very busy, sorry! Would this be useful for you?

bfirsh

comment created time in 3 months

startedmarl/medleydb

started time in 3 months

push eventarxiv-vanity/arxiv-vanity

ImgBotApp

commit sha 6dbef0c29cf0566d9871a8907b90dfac4b7e7954

[ImgBot] Optimize images *Total -- 157.19kb -> 156.12kb (0.68%) /docs/architecture.svg -- 83.63kb -> 82.92kb (0.86%) /arxiv_vanity/static/logo.png -- 23.73kb -> 23.61kb (0.51%) /arxiv_vanity/static/sponsor-yld.png -- 49.82kb -> 49.59kb (0.46%) Signed-off-by: ImgBotApp <ImgBotHelp@gmail.com>

view details

push time in 3 months

PR merged arxiv-vanity/arxiv-vanity

[ImgBot] Optimize images

Beep boop. Your images are optimized!

Your image file size has been reduced!

<details> <summary> Details </summary>

File Before After Percent reduction
/docs/architecture.svg 83.63kb 82.92kb 0.86%
/arxiv_vanity/static/logo.png 23.73kb 23.61kb 0.51%
/arxiv_vanity/static/sponsor-yld.png 49.82kb 49.59kb 0.46%
Total : 157.19kb 156.12kb 0.68%

</details>


📝docs | :octocat: repo | 🙋issues | 🏅swag | 🏪marketplace

+1 -4

0 comment

3 changed files

imgbot[bot]

pr closed time in 3 months

push eventarxiv-vanity/engrafo

dependabot-preview[bot]

commit sha 11f82fa7296771d46a94489414754dff92b500d9

Bump dotenv from 8.1.0 to 8.2.0 Bumps [dotenv](https://github.com/motdotla/dotenv) from 8.1.0 to 8.2.0. - [Release notes](https://github.com/motdotla/dotenv/releases) - [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md) - [Commits](https://github.com/motdotla/dotenv/compare/v8.1.0...v8.2.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 3 months

PR merged arxiv-vanity/engrafo

Bump dotenv from 8.1.0 to 8.2.0 dependencies javascript

Bumps dotenv from 8.1.0 to 8.2.0. <details> <summary>Changelog</summary>

Sourced from dotenv's changelog.

8.2.0 (2019-10-16)

</details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 3 months

push eventarxiv-vanity/engrafo

dependabot-preview[bot]

commit sha 6b5d0f29354514a686b287c78c9e5606103afa8a

Bump eslint from 6.3.0 to 6.5.1 Bumps [eslint](https://github.com/eslint/eslint) from 6.3.0 to 6.5.1. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md) - [Commits](https://github.com/eslint/eslint/compare/v6.3.0...v6.5.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 3 months

PR merged arxiv-vanity/engrafo

Bump eslint from 6.3.0 to 6.5.1 dependencies javascript

Bumps eslint from 6.3.0 to 6.5.1. <details> <summary>Release notes</summary>

Sourced from eslint's releases.

v6.5.1

  • 0d3d7d9 Docs: fix typo in no-magic-numbers (#12345) (Josiah Rooney)
  • 447ac87 Fix: no-useless-rename handles ExperimentalRestProperty (fixes #12335) (#12339) (Kai Cataldo)
  • b6ff73c Sponsors: Sync README with website (ESLint Jenkins)

v6.5.0

  • 73596cb Update: Add enforceForSwitchCase option to use-isnan (#12106) (Milos Djermanovic)
  • d592a24 Fix: exclude \u000d so new line won't convert to text (fixes #12027) (#12031) (zamboney)
  • e85d27a Fix: no-regex-spaces false positives and invalid autofix (fixes #12226) (#12231) (Milos Djermanovic)
  • b349bf7 Fix: prefer-named-capture-group incorrect locations (fixes #12233) (#12247) (Milos Djermanovic)
  • 7dc1ea9 Fix: no-useless-return autofix removes comments (#12292) (Milos Djermanovic)
  • 0e68677 Fix: no-extra-bind autofix removes comments (#12293) (Milos Djermanovic)
  • 6ad7e86 Fix: no-extra-label autofix removes comments (#12298) (Milos Djermanovic)
  • acec201 Fix: no-undef-init autofix removes comments (#12299) (Milos Djermanovic)
  • d89390b Fix: use async reading of stdin in bin/eslint.js (fixes #12212) (#12230) (Barrie Treloar)
  • 334ca7c Update: no-useless-rename also reports default values (fixes #12301) (#12322) (Kai Cataldo)
  • 41bfe91 Update: Fix handling of chained new expressions in new-parens (#12303) (Milos Djermanovic)
  • 160b7c4 Chore: add autofix npm script (#12330) (Kai Cataldo)
  • 04b6adb Chore: enable eslint-plugin-jsdoc (refs #11146) (#12332) (Kai Cataldo)
  • 9b86167 Docs: Add new ES environments to Configuring ESLint (#12289) (Milos Djermanovic)
  • c9aeab2 Docs: Add supported ECMAScript version to README (#12290) (Milos Djermanovic)
  • 8316e7b Fix: no-useless-rename autofix removes comments (#12300) (Milos Djermanovic)
  • 29c12f1 Chore: cache results in runtime-info (#12320) (Kai Cataldo)
  • f5537b2 Fix: prefer-numeric-literals autofix removes comments (#12313) (Milos Djermanovic)
  • 11ae6fc Update: Fix call, new and member expressions in no-extra-parens (#12302) (Milos Djermanovic)
  • a7894eb New: add --env-info flag to CLI (#12270) (Kai Cataldo)
  • 61392ff Sponsors: Sync README with website (ESLint Jenkins)
  • 2c6bf8e Docs: English fix (#12306) (Daniel Nixon)
  • 6f11877 Sponsors: Sync README with website (ESLint Jenkins)
  • 2e202ca Docs: fix links in array-callback-return (#12288) (Milos Djermanovic)
  • e39c631 Docs: add example for CLIEngine#executeOnText 3rd arg (#12286) (Kai Cataldo)
  • d4f9a16 Update: add support for JSXFragments in indent rule (fixes #12208) (#12210) (Kai Cataldo)
  • c6af95f Sponsors: Sync README with website (ESLint Jenkins)
  • 8cadd52 Sponsors: Sync README with website (ESLint Jenkins)
  • f9fc695 Chore: enable default-param-last (#12244) (薛定谔的猫)
  • 9984c3e Docs: Update README team and sponsors (ESLint Jenkins)

v6.4.0

  • e915fff Docs: Improve examples and clarify default option (#12067) (Yuping Zuo)
  • 540296f Update: enforceForClassMembers option to accessor-pairs (fixes #12063) (#12192) (Milos Djermanovic)
  • d3c2334 Update: flag nested block with declaration as error (#12193) (David Waller)
  • b2498d2 Update: Fix handling of property names in no-self-assign (#12105) (Milos Djermanovic)
  • 1ee61b0 Update: enforceForClassMembers computed-property-spacing (fixes #12049) (#12214) (Milos Djermanovic)
  • 520c922 Docs: Added naming convention details to plugin usage (#12202) (Henrique Barcelos)
  • f826eab Fix: Allow line comment exception in object-curly-spacing (fixes #11902) (#12216) (Milos Djermanovic)
  • db2a29b Update: indentation of comment followed by semicolon (fixes #12232) (#12243) (Kai Cataldo)
  • ae17d1c Fix: no-sequences is reporting incorrect locations (#12241) (Milos Djermanovic)
  • 365331a Fix: object-shorthand providing invalid fixes for typescript (#12260) (Brad Zacher)
  • 1c921c6 New: add no-import-assign (fixes #12237) (#12252) (Toru Nagashima)
  • 3be04fd New: Add prefer-regex-literals rule (fixes #12238) (#12254) (Milos Djermanovic) </tr></table> ... (truncated) </details> <details> <summary>Changelog</summary>

Sourced from eslint's changelog.

v6.5.1 - September 30, 2019

  • 0d3d7d9 Docs: fix typo in no-magic-numbers (#12345) (Josiah Rooney)
  • 447ac87 Fix: no-useless-rename handles ExperimentalRestProperty (fixes #12335) (#12339) (Kai Cataldo)
  • b6ff73c Sponsors: Sync README with website (ESLint Jenkins)

v6.5.0 - September 29, 2019

  • 73596cb Update: Add enforceForSwitchCase option to use-isnan (#12106) (Milos Djermanovic)
  • d592a24 Fix: exclude \u000d so new line won't convert to text (fixes #12027) (#12031) (zamboney)
  • e85d27a Fix: no-regex-spaces false positives and invalid autofix (fixes #12226) (#12231) (Milos Djermanovic)
  • b349bf7 Fix: prefer-named-capture-group incorrect locations (fixes #12233) (#12247) (Milos Djermanovic)
  • 7dc1ea9 Fix: no-useless-return autofix removes comments (#12292) (Milos Djermanovic)
  • 0e68677 Fix: no-extra-bind autofix removes comments (#12293) (Milos Djermanovic)
  • 6ad7e86 Fix: no-extra-label autofix removes comments (#12298) (Milos Djermanovic)
  • acec201 Fix: no-undef-init autofix removes comments (#12299) (Milos Djermanovic)
  • d89390b Fix: use async reading of stdin in bin/eslint.js (fixes #12212) (#12230) (Barrie Treloar)
  • 334ca7c Update: no-useless-rename also reports default values (fixes #12301) (#12322) (Kai Cataldo)
  • 41bfe91 Update: Fix handling of chained new expressions in new-parens (#12303) (Milos Djermanovic)
  • 160b7c4 Chore: add autofix npm script (#12330) (Kai Cataldo)
  • 04b6adb Chore: enable eslint-plugin-jsdoc (refs #11146) (#12332) (Kai Cataldo)
  • 9b86167 Docs: Add new ES environments to Configuring ESLint (#12289) (Milos Djermanovic)
  • c9aeab2 Docs: Add supported ECMAScript version to README (#12290) (Milos Djermanovic)
  • 8316e7b Fix: no-useless-rename autofix removes comments (#12300) (Milos Djermanovic)
  • 29c12f1 Chore: cache results in runtime-info (#12320) (Kai Cataldo)
  • f5537b2 Fix: prefer-numeric-literals autofix removes comments (#12313) (Milos Djermanovic)
  • 11ae6fc Update: Fix call, new and member expressions in no-extra-parens (#12302) (Milos Djermanovic)
  • a7894eb New: add --env-info flag to CLI (#12270) (Kai Cataldo)
  • 61392ff Sponsors: Sync README with website (ESLint Jenkins)
  • 2c6bf8e Docs: English fix (#12306) (Daniel Nixon)
  • 6f11877 Sponsors: Sync README with website (ESLint Jenkins)
  • 2e202ca Docs: fix links in array-callback-return (#12288) (Milos Djermanovic)
  • e39c631 Docs: add example for CLIEngine#executeOnText 3rd arg (#12286) (Kai Cataldo)
  • d4f9a16 Update: add support for JSXFragments in indent rule (fixes #12208) (#12210) (Kai Cataldo)
  • c6af95f Sponsors: Sync README with website (ESLint Jenkins)
  • 8cadd52 Sponsors: Sync README with website (ESLint Jenkins)
  • f9fc695 Chore: enable default-param-last (#12244) (薛定谔的猫)
  • 9984c3e Docs: Update README team and sponsors (ESLint Jenkins)

v6.4.0 - September 13, 2019

  • e915fff Docs: Improve examples and clarify default option (#12067) (Yuping Zuo)
  • 540296f Update: enforceForClassMembers option to accessor-pairs (fixes #12063) (#12192) (Milos Djermanovic)
  • d3c2334 Update: flag nested block with declaration as error (#12193) (David Waller)
  • b2498d2 Update: Fix handling of property names in no-self-assign (#12105) (Milos Djermanovic)
  • 1ee61b0 Update: enforceForClassMembers computed-property-spacing (fixes #12049) (#12214) (Milos Djermanovic)
  • 520c922 Docs: Added naming convention details to plugin usage (#12202) (Henrique Barcelos)
  • f826eab Fix: Allow line comment exception in object-curly-spacing (fixes #11902) (#12216) (Milos Djermanovic)
  • db2a29b Update: indentation of comment followed by semicolon (fixes #12232) (#12243) (Kai Cataldo)
  • ae17d1c Fix: no-sequences is reporting incorrect locations (#12241) (Milos Djermanovic) </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>

+5 -5

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 3 months

PR merged arxiv-vanity/engrafo

Bump debian from testing-20190812 to testing-20190910 dependencies docker

Bumps debian from testing-20190812 to testing-20190910.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 3 months

push eventarxiv-vanity/engrafo

dependabot-preview[bot]

commit sha 69123b478828f8971e1a6de01595b92f9f2a5d71

Bump debian from testing-20190812 to testing-20190910 Bumps debian from testing-20190812 to testing-20190910. Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 3 months

push eventembassynetwork/modernomad

dependabot-preview[bot]

commit sha 6ac8dc9336b9de3e89968848fe53b456027cdb99

Bump djangorestframework from 3.10.2 to 3.10.3 Bumps [djangorestframework](https://github.com/encode/django-rest-framework) from 3.10.2 to 3.10.3. - [Release notes](https://github.com/encode/django-rest-framework/releases) - [Commits](https://github.com/encode/django-rest-framework/compare/3.10.2...3.10.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

push time in 4 months

PR merged embassynetwork/modernomad

Bump djangorestframework from 3.10.2 to 3.10.3 dependencies python

Bumps djangorestframework from 3.10.2 to 3.10.3. <details> <summary>Commits</summary>

  • 89ac0a1 Version 3.10.3 (#6908)
  • 4b30b32 Default OpenAPI version to the empty string (#6907)
  • c0cf37e Update tutorial links (#6890)
  • e57c150 Replaced 'TODO' hardcoded version info by a parameter with default '0.1.0' (#...
  • b3f032f Fixed #6875 -- Made OpenAPI Schema operationId casing consistent. (#6876)
  • 1cc4be4 Fixed min/max attributes for serializers.ListField (#6866)
  • f8c1644 Add support for pagination in OpenAPI response schemas (#6867)
  • ec1b141 Fixed typos (#6872)
  • 5a8736a Handle 'None' return value of wait() properly during throttling. (#6837)
  • a142467 Fixed incorrect OpenAPI response schema generation for a DELETE method in gen...
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>

+1 -1

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 4 months

more