profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/blakeembrey/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.

basarat/typescript-book 15785

:books: The definitive guide to TypeScript and possibly the best TypeScript book :book:. Free and Open Source 🌹

ajv-validator/ajv 9931

The fastest JSON schema Validator. Supports JSON Schema draft-04/06/07/2019-09/2020-12 and JSON Type Definition (RFC8927)

blakeembrey/change-case 1555

Convert strings between camelCase, PascalCase, Capital Case, snake_case and more

blakeembrey/atom-dash 401

Dash documentation integration with Atom

blakeembrey/co-mocha 216

Enable support for generators in Mocha tests

blakeembrey/array-flatten 82

Flatten a multi-dimensional array in JavaScript.

blakeembrey/async-middleware 47

Wrap an asynchronous middleware (or handler) function for Express, Connect, router, etc.

blakeembrey/arity 17

Set the length of a function in JavaScript

blakeembrey/code-challenge 16

Command line interface for running code challenges

blakeembrey/atom-alignment 10

Align selections for Atom `⌘⌥^ ]`

pull request commentTypeStrong/ts-node

Create SECURITY.md

@cspotcode This is good with me until we find another solution. Do you know of any free shared email inbox solutions?

zidingz

comment created time in 6 days

issue closedplurals/pluralize

Plural of 'by' is 'bys', got 'bies'

When I run the following, it returns "bies". AFAIK the correct pluralization of "by" is "bys".

pluralize("by") // => "bies"

pluralize("Added by") // => "Added bies"

closed time in 7 days

amitbeck

issue commentplurals/pluralize

Plural of 'by' is 'bys', got 'bies'

Thanks for the report. I'm going to keep this package limited to largely nouns though, since it'd require a lot more work to understand the entire English language and that might be better by just re-using some dictionary.

amitbeck

comment created time in 7 days

issue commentblakeembrey/change-case

`title-case` capitalizes "from" (to "From")

Yeah, it's all a little subjective. I was looking at this example to double check which uses "From" as the example. I don't use this module personally and just opt for writing in sentence case 🤷

iacobfred

comment created time in 15 days

issue commentblakeembrey/change-case

`title-case` capitalizes "from" (to "From")

Seems subjective, do you have a reference for your expected behavior?

iacobfred

comment created time in 15 days

startedueberdosis/tiptap

started time in 16 days

startedethereumbook/ethereumbook

started time in 16 days

issue commentpillarjs/path-to-regexp

Wrong version installed

Here's the behavior I see FWIW, seems unlikely to help debug anything though:

~/Projects/tmp
❯ npm i path-to-regexp

added 1 package, and audited 44 packages in 731ms

found 0 vulnerabilities

~/Projects/tmp
❯ npm ls | grep path-to-regexp
├── path-to-regexp@6.2.0
filway

comment created time in 17 days

issue commentpillarjs/path-to-regexp

Wrong version installed

Can you provide a demo, replication, or video? Make sure to include any versions of dependencies for testing. Just saying something happens but without a way to replicate it doesn't help me help you, and 2 people out of millions of downloads sounds like the issue could be somewhere other than here.

filway

comment created time in 17 days

issue commentpillarjs/path-to-regexp

Wrong version installed

judging by the downloads on your npm site

0.1.7 is the version that comes with express, so seems expected. There's nothing else to change this and if you have a bug it's due to how NPM works and not anything I control.

filway

comment created time in 17 days

startedkyleconroy/sqlc

started time in 18 days

release blakeembrey/keyboard-manager

v4.0.1

released time in 18 days

created tagblakeembrey/keyboard-manager

tagv4.0.1

Small keyboard shortcut management for DOM-based applications

created time in 18 days

push eventblakeembrey/keyboard-manager

Blake Embrey

commit sha 9c96266af9911f82492c7721892ef5f85683acf4

4.0.1

view details

push time in 18 days

push eventblakeembrey/keyboard-manager

Blake Embrey

commit sha 85e0cdbddf2b4ea31edd9f56c45fd613b50751f4

Normalize with stringifyKey

view details

Blake Embrey

commit sha 6cf1a00e3d6ba1bc65213cb1c8676e872445dee9

Annotate return types, inline `Event` interface

view details

Blake Embrey

commit sha 6b780a1dce5b4c31117e0d0b71e4cce8f2ab3c9e

Upgrade @bordless/site and @types/jest

view details

push time in 18 days

delete branch blakeembrey/change-case

delete branch : dependabot/npm_and_yarn/packages/is-upper-case/color-string-1.6.0

delete time in 20 days

push eventblakeembrey/change-case

dependabot[bot]

commit sha 9b3c37b27f7a6c31e0e5be3c6480654b6eccde13

Bump color-string from 1.5.3 to 1.6.0 in /packages/is-upper-case (#258) Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.6.0. - [Release notes](https://github.com/Qix-/color-string/releases) - [Changelog](https://github.com/Qix-/color-string/blob/master/CHANGELOG.md) - [Commits](https://github.com/Qix-/color-string/commits/1.6.0) --- updated-dependencies: - dependency-name: color-string dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

view details

push time in 20 days

PR merged blakeembrey/change-case

Bump color-string from 1.5.3 to 1.6.0 in /packages/is-upper-case dependencies

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.


Bumps color-string from 1.5.3 to 1.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Qix-/color-string/releases">color-string's releases</a>.</em></p> <blockquote> <h2>1.6.0</h2> <h1>Minor release 1.6.0</h1> <ul> <li><a href="https://github.com/Qix-/color-string/issues/55">#55</a> - Add support for space-separated HSL</li> </ul> <p>Thanks <a href="https://github.com/htunnicliff"><code>@​htunnicliff</code></a> for the contribution :)</p> <h2>1.5.5 (Patch/Security Release) - hwb() ReDos patch (low-severity)</h2> <blockquote> <p>Release notes copied verbatim from the commit message, which can be found here: 0789e21284c33d89ebc4ab4ca6f759b9375ac9d3</p> </blockquote> <pre><code>Discovered by Yeting Li, c/o Colin Ife via Snyk.io. <p>A ReDos (Regular Expression Denial of Service) vulnerability was responsibly disclosed to me via email by Colin on Mar 5 2021 regarding an exponential time complexity for linearly increasing input lengths for <code>hwb()</code> color strings.</p> <p>Strings reaching more than 5000 characters would see several milliseconds of processing time; strings reaching more than 50,000 characters began seeing 1500ms (1.5s) of processing time.</p> <p>The cause was due to a the regular expression that parses hwb() strings - specifically, the hue value - where the integer portion of the hue value used a 0-or-more quantifier shortly thereafter followed by a 1-or-more quantifier.</p> <p>This caused excessive backtracking and a cartesian scan, resulting in exponential time complexity given a linear increase in input length.</p> <p>Thank you Yeting Li and Colin Ife for bringing this to my attention in a secure, responsible and professional manner.</p> <p>A CVE will not be assigned for this vulnerability. </code></pre></p> <h2>1.5.4 (Patch Release)</h2> <ul> <li>Removes rounding of alpha values in RGBA hex (<code>#rrggbbaa</code>) and condensed-hex (<code>#rgba</code>) parsers, which caused certain unique inputs to result in identical outputs (see <a href="https://github.com/qix-/color/issues/174">https://github.com/qix-/color/issues/174</a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Qix-/color-string/commits/1.6.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 20 days

delete branch blakeembrey/change-case

delete branch : dependabot/npm_and_yarn/packages/is-lower-case/color-string-1.6.0

delete time in 20 days

push eventblakeembrey/change-case

dependabot[bot]

commit sha bbd2cd3f394c459a169e279645424bbbb6e696aa

Bump color-string from 1.5.3 to 1.6.0 in /packages/is-lower-case (#259) Bumps [color-string](https://github.com/Qix-/color-string) from 1.5.3 to 1.6.0. - [Release notes](https://github.com/Qix-/color-string/releases) - [Changelog](https://github.com/Qix-/color-string/blob/master/CHANGELOG.md) - [Commits](https://github.com/Qix-/color-string/commits/1.6.0) --- updated-dependencies: - dependency-name: color-string dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

view details

push time in 20 days

PR merged blakeembrey/change-case

Bump color-string from 1.5.3 to 1.6.0 in /packages/is-lower-case dependencies

Bumps color-string from 1.5.3 to 1.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Qix-/color-string/releases">color-string's releases</a>.</em></p> <blockquote> <h2>1.6.0</h2> <h1>Minor release 1.6.0</h1> <ul> <li><a href="https://github.com/Qix-/color-string/issues/55">#55</a> - Add support for space-separated HSL</li> </ul> <p>Thanks <a href="https://github.com/htunnicliff"><code>@​htunnicliff</code></a> for the contribution :)</p> <h2>1.5.5 (Patch/Security Release) - hwb() ReDos patch (low-severity)</h2> <blockquote> <p>Release notes copied verbatim from the commit message, which can be found here: 0789e21284c33d89ebc4ab4ca6f759b9375ac9d3</p> </blockquote> <pre><code>Discovered by Yeting Li, c/o Colin Ife via Snyk.io. <p>A ReDos (Regular Expression Denial of Service) vulnerability was responsibly disclosed to me via email by Colin on Mar 5 2021 regarding an exponential time complexity for linearly increasing input lengths for <code>hwb()</code> color strings.</p> <p>Strings reaching more than 5000 characters would see several milliseconds of processing time; strings reaching more than 50,000 characters began seeing 1500ms (1.5s) of processing time.</p> <p>The cause was due to a the regular expression that parses hwb() strings - specifically, the hue value - where the integer portion of the hue value used a 0-or-more quantifier shortly thereafter followed by a 1-or-more quantifier.</p> <p>This caused excessive backtracking and a cartesian scan, resulting in exponential time complexity given a linear increase in input length.</p> <p>Thank you Yeting Li and Colin Ife for bringing this to my attention in a secure, responsible and professional manner.</p> <p>A CVE will not be assigned for this vulnerability. </code></pre></p> <h2>1.5.4 (Patch Release)</h2> <ul> <li>Removes rounding of alpha values in RGBA hex (<code>#rrggbbaa</code>) and condensed-hex (<code>#rgba</code>) parsers, which caused certain unique inputs to result in identical outputs (see <a href="https://github.com/qix-/color/issues/174">https://github.com/qix-/color/issues/174</a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Qix-/color-string/commits/1.6.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 20 days

delete branch blakeembrey/change-case

delete branch : dependabot/npm_and_yarn/tar-4.4.19

delete time in 20 days

push eventblakeembrey/change-case

dependabot[bot]

commit sha 881ab25d8141d6cdfd5de674f37052215896b581

Bump tar from 4.4.8 to 4.4.19 (#252) Bumps [tar](https://github.com/npm/node-tar) from 4.4.8 to 4.4.19. - [Release notes](https://github.com/npm/node-tar/releases) - [Changelog](https://github.com/npm/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/npm/node-tar/compare/v4.4.8...v4.4.19) --- updated-dependencies: - dependency-name: tar dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

view details

push time in 20 days

PR merged blakeembrey/change-case

Bump tar from 4.4.8 to 4.4.19 dependencies

Bumps tar from 4.4.8 to 4.4.19. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/node-tar/commit/9a6faa017ca90538840f3ae2ccdb4550ac3f4dcf"><code>9a6faa0</code></a> 4.4.19</li> <li><a href="https://github.com/npm/node-tar/commit/70ef812593184cc54ea1bc74c5dae2d22995002d"><code>70ef812</code></a> drop dirCache for symlink on all platforms</li> <li><a href="https://github.com/npm/node-tar/commit/3e35515c09da615ac268254bed85fe43ee71e2f0"><code>3e35515</code></a> 4.4.18</li> <li><a href="https://github.com/npm/node-tar/commit/52b09e309bcae0c741a7eb79a17ef36e7828b946"><code>52b09e3</code></a> fix: prevent path escape using drive-relative paths</li> <li><a href="https://github.com/npm/node-tar/commit/bb93ba243746f705092905da1955ac3b0509ba1e"><code>bb93ba2</code></a> fix: reserve paths properly for unicode, windows</li> <li><a href="https://github.com/npm/node-tar/commit/2f1bca027286c23e110b8dfc7efc10756fa3db5a"><code>2f1bca0</code></a> fix: prune dirCache properly for unicode, windows</li> <li><a href="https://github.com/npm/node-tar/commit/9bf70a8cf725c3af5fe2270f1e5d2e06d1559b93"><code>9bf70a8</code></a> 4.4.17</li> <li><a href="https://github.com/npm/node-tar/commit/6aafff0a8621ba9509b63654bde28762be373d58"><code>6aafff0</code></a> fix: skip extract if linkpath is stripped entirely</li> <li><a href="https://github.com/npm/node-tar/commit/5c5059a69c2aaaedfe4e9766e102ae9fb79e8255"><code>5c5059a</code></a> fix: reserve paths case-insensitively</li> <li><a href="https://github.com/npm/node-tar/commit/fd6accba697070560f301604b8f5f7e2995a2a8b"><code>fd6accb</code></a> 4.4.16</li> <li>Additional commits viewable in <a href="https://github.com/npm/node-tar/compare/v4.4.8...v4.4.19">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1727 -537

0 comment

22 changed files

dependabot[bot]

pr closed time in 20 days

startedpostalsys/emailengine

started time in 20 days

issue commentpillarjs/path-to-regexp

`PathFunction` should require parameter

At the very least I think we could do both, potentially use “unknown” for inferred keys and have it there as type safe validation that the interface type is valid?

OliverJAsh

comment created time in a month

issue commentpillarjs/path-to-regexp

`PathFunction` should require parameter

I love the idea of being able to infer in typescript, I assumed it might be too difficult though. Let’s make it required and I can create a “next” branch so it can be in the next release and we can still fix bugs in the current release.

OliverJAsh

comment created time in a month

issue commentpillarjs/path-to-regexp

Code base seems to be non-formatted with Prettier

I’d rather not add a special config to avoid this, the point of prettier personally was to avoid configuration. That said, I’ll take a look and maybe migrate to https://github.com/borderless/ts-scripts anyway since I’ve standardized this setup for all other repos.

kettanaito

comment created time in a month

issue commentpillarjs/path-to-regexp

Support absolute URLs?

You can use a backslash to escape the : for now, but there’s also ongoing work to standardize this protocol in chrome too with URL pattern: https://web.dev/urlpattern/. I probably won’t be making major changes until we standardize that spec a bit more and then back port some of the decisions.

kettanaito

comment created time in a month

startedfastify/light-my-request

started time in a month