profile
viewpoint
Ben Blackmore bripkens @instana Solingen, Germany bripkens.github.io Software and quadcopter guy. Engineer with @instana.

bripkens/connect-history-api-fallback 1375

Fallback to index.html for applications that are using the HTML 5 history API

bripkens/dock 223

Bootstrap databases, MOMs and other tools that you need for development purposes

bripkens/event-loop-stats 23

Exposes stats about the libuv default loop

bripkens/admin 15

Drop-in Node.js admin endpoint to help you analyze production issues.

bripkens/formalistic 15

Model forms as an immutable data tree with validators and an explicit dirty/pristine state

bripkens/commonjs-karma-saucelabs-example 6

minimal working example of CommonJS modules that are tested on SauceLabs

bripkens/ec2c.js 6

Search and connect to EC2 instances via SSH - the easy way.

created tagbripkens/formalistic

tagv1.10.0

Model forms as an immutable data tree with validators and an explicit dirty/pristine state

created time in 7 days

push eventbripkens/formalistic

Ben Blackmore

commit sha 4ce18268d2f5727a9a2161bc9ec523d0f9e7e3b5

Support empty paths for updateIn

view details

Ben Blackmore

commit sha add2494dbfd631057da9f7dc38f5a45df75f18ad

1.10.0

view details

push time in 7 days

push eventbripkens/formalistic

Ben Blackmore

commit sha 3c640ab4fe4154e77e22d22e9f2ccca95d02dca4

Document insert API

view details

push time in 15 days

startedpopperjs/popper-core

started time in 18 days

startedwelldone-software/why-did-you-render

started time in 20 days

push eventinstana/website-monitoring-examples

Ben Blackmore

commit sha b9374ebe3445b18b3499de5ce3e0a4d946842681

Reference screenshot

view details

push time in 22 days

push eventinstana/website-monitoring-examples

Ben Blackmore

commit sha 457aecd68fc5e094e330f54dc3dc452d544c1406

Add an example showing backend correlation for node-js-express-js-socket-io

view details

push time in 22 days

delete branch instana/weasel

delete branch : extend-x-instana-l

delete time in 23 days

push eventinstana/weasel

Ben Blackmore

commit sha 99e608477bb6cc5f4a6277da97e2291488e273d5

Prepare migration to changed backend correlation (#46) **Why** In order to have a weaker reference between tracing and website monitoring on the backend side. **What** Extend the `X-INSTANA-L` header.

view details

push time in 23 days

PR merged instana/weasel

Prepare migration to changed backend correlation review & merge

Why

In order to have a weaker reference between tracing and website monitoring on the backend side.

What

Extend the X-INSTANA-L header.

+18 -16

1 comment

5 changed files

bripkens

pr closed time in 23 days

push eventinstana/weasel

Ben Blackmore

commit sha 0550460843863e62be7410a6a64248d2bec4d686

Prepare migration to changed backend correlation **Why** In order to have a weaker reference between tracing and website monitoring on the backend side. **What** Extend the `X-INSTANA-L` header.

view details

push time in 23 days

PR opened instana/weasel

Prepare migration to changed backend correlation review & merge

Why

In order to have a weaker reference between tracing and website monitoring on the backend side.

What

Extend the X-INSTANA-L header.

+21 -16

0 comment

6 changed files

pr created time in 23 days

create barnchinstana/weasel

branch : extend-x-instana-l

created branch time in 23 days

startedGoogleChrome/lighthouse-ci

started time in 24 days

push eventinstana/weasel

Ben Blackmore

commit sha 2cb7b763fc53b0655894a21ad71e0819ffe7f763

Fix author field

view details

push time in a month

push eventinstana/weasel

Ben Blackmore

commit sha caf3f220c2c1e89fe6c3252b45097bdb88764068

Update LICENSE

view details

push time in a month

starteddeadlockempire/deadlockempire.github.io

started time in a month

push eventinstana/website-monitoring-examples

Ben Blackmore

commit sha 4ed23cc8247c1b803a09a90a63558ce24b79aadc

Update README.md

view details

push time in a month

push eventinstana/website-monitoring-examples

Ben Blackmore

commit sha 9884f2e4ecf1a1a01b8ee2815dbfd1fc6be13ada

Add page load backend correlation example app

view details

push time in a month

push eventinstana/weasel

Ben Blackmore

commit sha d3db20184f839571716211734bddbc6427f1b199

Add an API to terminate sessions

view details

push time in a month

delete branch instana/weasel

delete branch : sessions

delete time in a month

push eventinstana/weasel

Ben Blackmore

commit sha fb908fb3c1870d7f99cee55370bd45bc44a5c100

Sessions Tracking (#45) * Report information about sessions * Start testing the session logic * Fix session test * Rename and add simple e2e test * Remove automatic clearing of resource timing buffers because we do not need them to be cleared anymore

view details

push time in a month

PR merged instana/weasel

Sessions Tracking review & merge
+318 -27

0 comment

15 changed files

bripkens

pr closed time in a month

push eventinstana/weasel

Ben Blackmore

commit sha 3e4d824eb368a3a30fe504bfcef183d042540d6f

Remove automatic clearing of resource timing buffers because we do not need them to be cleared anymore

view details

push time in a month

PR opened instana/weasel

Sessions Tracking WIP
+317 -2

0 comment

13 changed files

pr created time in a month

push eventinstana/weasel

Ben Blackmore

commit sha c8432ea42e8059f5b0eb3cd67a2ddf01dbf0e2c4

Fix session test

view details

Ben Blackmore

commit sha 6bbac1c8119b8a5756eed06bb4d4298f519f8ace

Rename and add simple e2e test

view details

push time in a month

push eventbripkens/proxrox

Ben Blackmore

commit sha a7c4f214cd4049e995401468403062377737b01d

Update INSTALLATION.md

view details

push time in a month

create barnchinstana/weasel

branch : sessions

created branch time in a month

push eventinstana/weasel

Ben Blackmore

commit sha 88c6701e2ca9dc43064c5dd797f0e061fa4b4684

Remove CSP violation logic

view details

push time in a month

delete branch bripkens/connect-history-api-fallback

delete branch : dependabot/npm_and_yarn/handlebars-4.5.3

delete time in 2 months

push eventbripkens/connect-history-api-fallback

dependabot[bot]

commit sha 48e170c92c53e6f2bdb8755175bc52e0bc8b838a

Bump handlebars from 4.1.2 to 4.5.3 (#74) Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.5.3. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged bripkens/connect-history-api-fallback

Bump handlebars from 4.1.2 to 4.5.3 dependencies

Bumps handlebars from 4.1.2 to 4.5.3. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.5.3 - November 18th, 2019

Bugfixes:

  • fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7
  • fix: add more properties required to be enumerable - 1988878

Chores / Build:

  • fix: use !== 0 instead of != 0 - c02b05f
  • add chai and dirty-chai and sinon, for cleaner test-assertions and spies, deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0

Security:

  • The properties __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ have been added to the list of "properties that must be enumerable". If a property by that name is found and not enumerable on its parent, it will silently evaluate to undefined. This is done in both the compiled template and the "lookup"-helper. This will prevent new Remote-Code-Execution exploits that have been published recently.

Compatibility notes:

  • Due to the security-fixes. The semantics of the templates using __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ in the respect that those expression now return undefined rather than their actual value from the proto.
  • The semantics have not changed in cases where the properties are enumerable, as in:
{
  __proto__: 'some string'
}
  • The change may be breaking in that respect, but we still only increase the patch-version, because the incompatible use-cases are not intended, undocumented and far less important than fixing Remote-Code-Execution exploits on existing systems.

Commits

v4.5.2 - November 13th, 2019

Bugfixes

  • fix: use String(field) in lookup when checking for "constructor" - d541378
  • test: add fluent API for testing Handlebars - c2ac79c

Compatibility notes:

  • no incompatibility are to be expected </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • c819c8b v4.5.3
  • 827c9d0 Update release notes
  • f7f05d7 fix: add "no-prototype-builtins" eslint-rule and fix all occurences
  • 1988878 fix: add more properties required to be enumerable
  • 886ba86 test/chore: add chai/expect and sinon to "runtime"-environment
  • 0817dad test: add sinon as global variable to eslint in the specs
  • 93516a0 test: add sinon.js for spies, deprecate current assertions
  • 93e284e chore: add chai and dirty-chai for better test assertions
  • c02b05f fix: use !== 0 instead of != 0
  • 8de121d v4.5.2
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch instana/website-monitoring-examples

delete branch : dependabot/npm_and_yarn/examples/defining-pages/angular-router/mixin-deep-1.3.2

delete time in 2 months

push eventinstana/website-monitoring-examples

dependabot[bot]

commit sha aecad3bfcfcf8bc68412542fe780d5b6b805e82c

Bump mixin-deep in /examples/defining-pages/angular-router (#8) Bumps [mixin-deep](https://github.com/jonschlinkert/mixin-deep) from 1.3.1 to 1.3.2. - [Release notes](https://github.com/jonschlinkert/mixin-deep/releases) - [Commits](https://github.com/jonschlinkert/mixin-deep/compare/1.3.1...1.3.2) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged instana/website-monitoring-examples

Bump mixin-deep from 1.3.1 to 1.3.2 in /examples/defining-pages/angular-router dependencies

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps mixin-deep from 1.3.1 to 1.3.2. <details> <summary>Commits</summary>

  • 754f0c2 1.3.2
  • 90ee1fa ensure keys are valid when mixing in values
  • See full diff in compare view </details> <details> <summary>Maintainer changes</summary>

This version was pushed to npm by doowb, a new releaser for mixin-deep since your current version. </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch instana/website-monitoring-examples

delete branch : dependabot/npm_and_yarn/examples/defining-pages/vue-router/mixin-deep-1.3.2

delete time in 2 months

push eventinstana/website-monitoring-examples

dependabot[bot]

commit sha 2c40dc8b4772bc6fc61651ef323907a488067134

Bump mixin-deep in /examples/defining-pages/vue-router (#9) Bumps [mixin-deep](https://github.com/jonschlinkert/mixin-deep) from 1.3.1 to 1.3.2. - [Release notes](https://github.com/jonschlinkert/mixin-deep/releases) - [Commits](https://github.com/jonschlinkert/mixin-deep/compare/1.3.1...1.3.2) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged instana/website-monitoring-examples

Bump mixin-deep from 1.3.1 to 1.3.2 in /examples/defining-pages/vue-router dependencies

Bumps mixin-deep from 1.3.1 to 1.3.2. <details> <summary>Commits</summary>

  • 754f0c2 1.3.2
  • 90ee1fa ensure keys are valid when mixing in values
  • See full diff in compare view </details> <details> <summary>Maintainer changes</summary>

This version was pushed to npm by doowb, a new releaser for mixin-deep since your current version. </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

push eventbripkens/lucene

dependabot[bot]

commit sha a9f050c23cd0357f1682192b0d409049c728b5d7

Bump handlebars from 4.1.2 to 4.5.3 (#31) Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.5.3. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged bripkens/lucene

Bump handlebars from 4.1.2 to 4.5.3 dependencies

Bumps handlebars from 4.1.2 to 4.5.3. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.5.3 - November 18th, 2019

Bugfixes:

  • fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7
  • fix: add more properties required to be enumerable - 1988878

Chores / Build:

  • fix: use !== 0 instead of != 0 - c02b05f
  • add chai and dirty-chai and sinon, for cleaner test-assertions and spies, deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0

Security:

  • The properties __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ have been added to the list of "properties that must be enumerable". If a property by that name is found and not enumerable on its parent, it will silently evaluate to undefined. This is done in both the compiled template and the "lookup"-helper. This will prevent new Remote-Code-Execution exploits that have been published recently.

Compatibility notes:

  • Due to the security-fixes. The semantics of the templates using __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ in the respect that those expression now return undefined rather than their actual value from the proto.
  • The semantics have not changed in cases where the properties are enumerable, as in:
{
  __proto__: 'some string'
}
  • The change may be breaking in that respect, but we still only increase the patch-version, because the incompatible use-cases are not intended, undocumented and far less important than fixing Remote-Code-Execution exploits on existing systems.

Commits

v4.5.2 - November 13th, 2019

Bugfixes

  • fix: use String(field) in lookup when checking for "constructor" - d541378
  • test: add fluent API for testing Handlebars - c2ac79c

Compatibility notes:

  • no incompatibility are to be expected </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • c819c8b v4.5.3
  • 827c9d0 Update release notes
  • f7f05d7 fix: add "no-prototype-builtins" eslint-rule and fix all occurences
  • 1988878 fix: add more properties required to be enumerable
  • 886ba86 test/chore: add chai/expect and sinon to "runtime"-environment
  • 0817dad test: add sinon as global variable to eslint in the specs
  • 93516a0 test: add sinon.js for spies, deprecate current assertions
  • 93e284e chore: add chai and dirty-chai for better test assertions
  • c02b05f fix: use !== 0 instead of != 0
  • 8de121d v4.5.2
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

1 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch bripkens/formalistic

delete branch : dependabot/npm_and_yarn/handlebars-4.5.3

delete time in 2 months

push eventbripkens/formalistic

dependabot[bot]

commit sha e22aac565cda029270f2b6c962a787f9f0e1d77f

Bump handlebars from 4.1.2 to 4.5.3 (#11) Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.5.3. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged bripkens/formalistic

Bump handlebars from 4.1.2 to 4.5.3 dependencies

Bumps handlebars from 4.1.2 to 4.5.3. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.5.3 - November 18th, 2019

Bugfixes:

  • fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7
  • fix: add more properties required to be enumerable - 1988878

Chores / Build:

  • fix: use !== 0 instead of != 0 - c02b05f
  • add chai and dirty-chai and sinon, for cleaner test-assertions and spies, deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0

Security:

  • The properties __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ have been added to the list of "properties that must be enumerable". If a property by that name is found and not enumerable on its parent, it will silently evaluate to undefined. This is done in both the compiled template and the "lookup"-helper. This will prevent new Remote-Code-Execution exploits that have been published recently.

Compatibility notes:

  • Due to the security-fixes. The semantics of the templates using __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ in the respect that those expression now return undefined rather than their actual value from the proto.
  • The semantics have not changed in cases where the properties are enumerable, as in:
{
  __proto__: 'some string'
}
  • The change may be breaking in that respect, but we still only increase the patch-version, because the incompatible use-cases are not intended, undocumented and far less important than fixing Remote-Code-Execution exploits on existing systems.

Commits

v4.5.2 - November 13th, 2019

Bugfixes

  • fix: use String(field) in lookup when checking for "constructor" - d541378
  • test: add fluent API for testing Handlebars - c2ac79c

Compatibility notes:

  • no incompatibility are to be expected </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • c819c8b v4.5.3
  • 827c9d0 Update release notes
  • f7f05d7 fix: add "no-prototype-builtins" eslint-rule and fix all occurences
  • 1988878 fix: add more properties required to be enumerable
  • 886ba86 test/chore: add chai/expect and sinon to "runtime"-environment
  • 0817dad test: add sinon as global variable to eslint in the specs
  • 93516a0 test: add sinon.js for spies, deprecate current assertions
  • 93e284e chore: add chai and dirty-chai for better test assertions
  • c02b05f fix: use !== 0 instead of != 0
  • 8de121d v4.5.2
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

1 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch instana/weasel

delete branch : dependabot/npm_and_yarn/handlebars-4.5.3

delete time in 2 months

push eventinstana/weasel

dependabot[bot]

commit sha da4b4cd7dae6ef11d2502341062c45e4e3aa7a85

Bump handlebars from 4.1.2 to 4.5.3 (#44) Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.5.3. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged instana/weasel

Bump handlebars from 4.1.2 to 4.5.3 dependencies

Bumps handlebars from 4.1.2 to 4.5.3. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.5.3 - November 18th, 2019

Bugfixes:

  • fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7
  • fix: add more properties required to be enumerable - 1988878

Chores / Build:

  • fix: use !== 0 instead of != 0 - c02b05f
  • add chai and dirty-chai and sinon, for cleaner test-assertions and spies, deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0

Security:

  • The properties __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ have been added to the list of "properties that must be enumerable". If a property by that name is found and not enumerable on its parent, it will silently evaluate to undefined. This is done in both the compiled template and the "lookup"-helper. This will prevent new Remote-Code-Execution exploits that have been published recently.

Compatibility notes:

  • Due to the security-fixes. The semantics of the templates using __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ in the respect that those expression now return undefined rather than their actual value from the proto.
  • The semantics have not changed in cases where the properties are enumerable, as in:
{
  __proto__: 'some string'
}
  • The change may be breaking in that respect, but we still only increase the patch-version, because the incompatible use-cases are not intended, undocumented and far less important than fixing Remote-Code-Execution exploits on existing systems.

Commits

v4.5.2 - November 13th, 2019

Bugfixes

  • fix: use String(field) in lookup when checking for "constructor" - d541378
  • test: add fluent API for testing Handlebars - c2ac79c

Compatibility notes:

  • no incompatibility are to be expected </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • c819c8b v4.5.3
  • 827c9d0 Update release notes
  • f7f05d7 fix: add "no-prototype-builtins" eslint-rule and fix all occurences
  • 1988878 fix: add more properties required to be enumerable
  • 886ba86 test/chore: add chai/expect and sinon to "runtime"-environment
  • 0817dad test: add sinon as global variable to eslint in the specs
  • 93516a0 test: add sinon.js for spies, deprecate current assertions
  • 93e284e chore: add chai and dirty-chai for better test assertions
  • c02b05f fix: use !== 0 instead of != 0
  • 8de121d v4.5.2
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+11 -11

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch instana/website-monitoring-examples

delete branch : dependabot/npm_and_yarn/examples/defining-pages/angular-router/handlebars-4.5.3

delete time in 2 months

push eventinstana/website-monitoring-examples

dependabot[bot]

commit sha 7236724652d2def600b8a56386061edbc6df0233

Bump handlebars in /examples/defining-pages/angular-router (#7) Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.1.2 to 4.5.3. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.1.2...v4.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 2 months

PR merged instana/website-monitoring-examples

Bump handlebars from 4.1.2 to 4.5.3 in /examples/defining-pages/angular-router dependencies

Bumps handlebars from 4.1.2 to 4.5.3. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.5.3 - November 18th, 2019

Bugfixes:

  • fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7
  • fix: add more properties required to be enumerable - 1988878

Chores / Build:

  • fix: use !== 0 instead of != 0 - c02b05f
  • add chai and dirty-chai and sinon, for cleaner test-assertions and spies, deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0

Security:

  • The properties __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ have been added to the list of "properties that must be enumerable". If a property by that name is found and not enumerable on its parent, it will silently evaluate to undefined. This is done in both the compiled template and the "lookup"-helper. This will prevent new Remote-Code-Execution exploits that have been published recently.

Compatibility notes:

  • Due to the security-fixes. The semantics of the templates using __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ in the respect that those expression now return undefined rather than their actual value from the proto.
  • The semantics have not changed in cases where the properties are enumerable, as in:
{
  __proto__: 'some string'
}
  • The change may be breaking in that respect, but we still only increase the patch-version, because the incompatible use-cases are not intended, undocumented and far less important than fixing Remote-Code-Execution exploits on existing systems.

Commits

v4.5.2 - November 13th, 2019

Bugfixes

  • fix: use String(field) in lookup when checking for "constructor" - d541378
  • test: add fluent API for testing Handlebars - c2ac79c

Compatibility notes:

  • no incompatibility are to be expected </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • c819c8b v4.5.3
  • 827c9d0 Update release notes
  • f7f05d7 fix: add "no-prototype-builtins" eslint-rule and fix all occurences
  • 1988878 fix: add more properties required to be enumerable
  • 886ba86 test/chore: add chai/expect and sinon to "runtime"-environment
  • 0817dad test: add sinon as global variable to eslint in the specs
  • 93516a0 test: add sinon.js for spies, deprecate current assertions
  • 93e284e chore: add chai and dirty-chai for better test assertions
  • c02b05f fix: use !== 0 instead of != 0
  • 8de121d v4.5.2
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

pull request commentbripkens/connect-history-api-fallback

Allow HEAD requests (Fixes #72)

Hey @dsinni,

thank you for the PR! Could you please also add test cases for this and extend the changelog?

dsinni

comment created time in 2 months

issue commentbripkens/connect-history-api-fallback

HEAD requests are not accepted

Hey @dsinni,

could you describe the use case behind this for me? Preferably with an example app in a PR so that I understand why this needs to be done (and to test changes)?

dsinni

comment created time in 2 months

delete branch bripkens/dear-github-2.0

delete branch : patch-1

delete time in 2 months

starteddrop-ice/dear-github-2.0

started time in 2 months

PR opened drop-ice/dear-github-2.0

Reviewers
Add signature
+1 -0

0 comment

1 changed file

pr created time in 2 months

push eventbripkens/dear-github-2.0

Ben Blackmore

commit sha 78eaa494723c58fb4ac3f39b174a902bda3e36ac

Add signature

view details

push time in 2 months

fork bripkens/dear-github-2.0

📨 An open letter to GitHub from the maintainers of open source projects

fork in 2 months

push eventinstana/weasel

Ben Blackmore

commit sha e764e4620becb8fcebff619c4d6ce35db43a5ead

Ignore super large resource durations

view details

push time in 3 months

issue commentw3c/server-timing

Server Timing can be used a persistent 3rd party identifier

that would be mitigated by requiring timing-origin: Origin header from original request would it not though? Since only the requesting domain could make the request and your service could add the allow-origin as easily as the identifier? Or requiring cache-partitioning of course.

This mechanism already only works when our customers set the Timing-Allow-Origin-Header for cross-origin requests. So whether or not Timing-Allow-Origin-Header: * or Timing-Allow-Origin-Header: https://origin.example.com is set doesn't make a difference to us (and we cannot influence what our customers do here).

JibberJim

comment created time in 3 months

issue commentw3c/server-timing

Server Timing can be used a persistent 3rd party identifier

To resolve this, I'm not sure, on what the use cases of the feature on 3rd party resources, however I cannot personally see any use cases for caching server-timing

We (Instana) and our customers have a use case for this: Being able to correlate end-user experience / problems to the actual server-side execution that generated a response. Note that this doesn't necessarily have to involve a third-party. Businesses commonly share resources/assets and expose APIs via separate origins, e.g. https://example.com hosts the website and https://api.example.com the API.

To elaborate: This is not a user fingerprinting. We generate an ID for the server-side activity and place this ID into the Server-Timing header. Each server-side activity has a unique ID.

JibberJim

comment created time in 3 months

startedkfahy/slack-disable-wysiwyg-bookmarklet

started time in 3 months

issue commentkfahy/slack-disable-wysiwyg-bookmarklet

Interested in a persistent script to patch Desktop slack?

When you move your Slack.app to $HOME/Applications beforehand, then you can avoid execution with sudo and also remove sudo from the script. This makes this a lot less dangerous.

dbalatero

comment created time in 3 months

issue closedbripkens/connect-history-api-fallback

mistakenly rewriting non extension files as extensioned files

It seems that regardless of what I set disableDotRule to it disables the dot rule. By that I mean that if a route does not have an extension it still treats it like it's a file and does not route it to index.html as it should but instead attempts to route the file.

I'm sure I'm missing something small, please let me know what it is I'm missing.

This is my current setup

import path from 'path';
import history from 'connect-history-api-fallback';
import { static as expressStatic } from 'express';

const staticBaseRoute = '/public';
const staticFilePath= path.join(__dirname, '..', '/public/dist/');

app.use(
  history({
    verbose: true,
    index: path.join(staticBaseRoute, '/index.html'),
    disableDotRule: false,
    rewrites: [
      {
        from: /^\/(?!api\/).*/i,
        to(context) {
          const { pathname: pathName } = context.parsedUrl;

          const resultPath = path.join(staticBaseRoute, pathName);

          console.log(
            `HISTORY: routing from\n${pathName}\nto\n${resultPath}`,
          );
          return resultPath;
        },
      },
    ],
  }),
);

app.use(staticBaseRoute, expressStatic(staticFilePath));

expected behaviour

  • / -> /public/index.html -> ${__dirname}/../public/dist/index.html
  • /login -> /public/index.html -> ${__dirname}/../public/dist/index.html
  • /css/main.css -> /public/css/main.css -> ${__dirname}/../public/dist/css/main.css
  • /api/users/:id -> express route

actual behaviour

  • / -> /public/index.html -> ${__dirname}/../public/dist/index.html
  • 🚫 /login -> /public/index.html -> ${__dirname}/../public/dist/index.html
  • /css/main.css -> /public/css/main.css -> ${__dirname}/../public/dist/css/main.css
  • /api/users/:id -> express route

closed time in 3 months

aminnaggar

issue commentbripkens/connect-history-api-fallback

mistakenly rewriting non extension files as extensioned files

Please check the example app and specifically how it mounts the static file handler (it does so twice). Does this resolve your problem?

https://github.com/bripkens/connect-history-api-fallback/tree/master/examples/static-files-and-index-rewrite

aminnaggar

comment created time in 3 months

delete branch instana/weasel

delete branch : dependabot/npm_and_yarn/mixin-deep-1.3.2

delete time in 3 months

push eventinstana/weasel

dependabot[bot]

commit sha 996155cbdf793eb9bce5fead0a6036511273f820

Bump mixin-deep from 1.3.1 to 1.3.2 (#43) Bumps [mixin-deep](https://github.com/jonschlinkert/mixin-deep) from 1.3.1 to 1.3.2. - [Release notes](https://github.com/jonschlinkert/mixin-deep/releases) - [Commits](https://github.com/jonschlinkert/mixin-deep/compare/1.3.1...1.3.2) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 3 months

PR merged instana/weasel

Bump mixin-deep from 1.3.1 to 1.3.2 dependencies

Bumps mixin-deep from 1.3.1 to 1.3.2. <details> <summary>Commits</summary>

  • 754f0c2 1.3.2
  • 90ee1fa ensure keys are valid when mixing in values
  • See full diff in compare view </details> <details> <summary>Maintainer changes</summary>

This version was pushed to npm by doowb, a new releaser for mixin-deep since your current version. </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 3 months

push eventinstana/weasel

Ben Ripkens

commit sha 78d798af4cd55235daa3b4a1f1d545f98a5fbf62

Do not fail when entryTypes is unsupported

view details

push time in 3 months

startedc3e/grundgesetz-dev

started time in 4 months

issue commentbripkens/lucene

Problem stringifying the AST with a parenthesized negated expression

Fix is released as version 2.1.1

vsetka

comment created time in 4 months

push eventbripkens/lucene

Ben Ripkens

commit sha 9aaa7f155ee8c3843667999ef54e38298cf3c9df

Prepare 2.1.1

view details

Ben Ripkens

commit sha f34a55b3387d760effda7f20d8833aad1b2af3e0

2.1.1

view details

push time in 4 months

created tagbripkens/lucene

tagv2.1.1

Node.js lib to transform: lucene query → syntax tree → lucene query

created time in 4 months

issue closedbripkens/lucene

Problem stringifying the AST with a parenthesized negated expression

If we have a parenthesized expression that has a start (no left-hand expression), parenthesis is not placed correctly when stringifying the AST.

Example:

const { parse, toString } = require('lucene')

toString(parse('my.prop:value1 AND (NOT _exists_:other.prop OR other.prop:value2)'))
// Result is -> "my.prop:value1 AND NOT (_exists_:other.prop OR other.prop:value2)"

At a glance, the fix should be simple. Check if parenthesized is set when concatenating start and make sure start is not set when adding an opening parenthesis for a parenthesized left-hand.

closed time in 4 months

vsetka

issue commentbripkens/lucene

Problem stringifying the AST with a parenthesized negated expression

Thank you again for reporting and fixing!

vsetka

comment created time in 4 months

PR closed bripkens/lucene

Fixes issue with parenthesized NOT

Closes #29

+6 -2

3 comments

2 changed files

vsetka

pr closed time in 4 months

pull request commentbripkens/lucene

Fixes issue with parenthesized NOT

Awesome, thank you @vsetka! Merged via https://github.com/bripkens/lucene/commit/6eaadf57a9e2cf104c72a5f073d5d8ac77ccb8e0.

vsetka

comment created time in 4 months

push eventbripkens/lucene

Vladimir Šetka

commit sha 6eaadf57a9e2cf104c72a5f073d5d8ac77ccb8e0

Place opening parenthesis correctly for parenthesized expressions with start Write tests for parenthesized NOT Simplify test

view details

Ben Ripkens

commit sha 1da79fc6fd93407fb782ed0a95fc407dcc0244a1

Prepare 2.1.1

view details

push time in 4 months

delete branch instana/weasel

delete branch : allow-to-ignore-more

delete time in 4 months

push eventinstana/weasel

Ben Ripkens

commit sha 7c20bee11ec1d0ee863c26c29adfe09819f021d3

Allow to ignore more (#42)

view details

push time in 4 months

PR merged instana/weasel

Allow to ignore more beacons
+136 -44

0 comment

15 changed files

bripkens

pr closed time in 4 months

PR opened instana/weasel

Allow to ignore more
+136 -44

0 comment

15 changed files

pr created time in 4 months

create barnchinstana/weasel

branch : allow-to-ignore-more

created branch time in 4 months

startedweiweihuanghuang/Times-New-Bastard

started time in 4 months

push eventinstana/monitoring-presentation

Ben Ripkens

commit sha 70722f5578b49e65b3371c2c6c9d737f1d027e61

Add website monitoring

view details

push time in 5 months

push eventinstana/monitoring-presentation

Ben Ripkens

commit sha 47f5160f3e0fdbf638315795c05970fb5481e5a0

Integrate backend/UI

view details

push time in 5 months

push eventinstana/monitoring-presentation

Ben Ripkens

commit sha 53755f079903a0cc9140450591f6e50d9e56c13e

Adapt names and add run mode for backend

view details

push time in 5 months

push eventinstana/monitoring-presentation

Ben Ripkens

commit sha 3aa8f17865a5bd0b91ba9ae2123ef4d72489ae12

Provide a way to run the UI in a container

view details

push time in 5 months

push eventinstana/branch-updater

Ben Ripkens

commit sha 5a44b8b96421e82a07e61791e1b7929697edb62b

More visible instructions

view details

push time in 5 months

push eventinstana/branch-updater

Ben Ripkens

commit sha 4fd6f2065c590fba33005f86d81442d57c40a730

More visible instructions

view details

push time in 5 months

push eventinstana/branch-updater

Ben Ripkens

commit sha 9d689bc22127b0ced90a49360be2c770319bf13f

More visible instructions

view details

push time in 5 months

push eventinstana/branch-updater

Ben Ripkens

commit sha dfa76bfa159eb13bb9dd948244be583eeabffb00

Make it more visible

view details

push time in 5 months

more