profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/dguo/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Danny Guo dguo @seedfi and @sublimefund New York, NY https://dannyguo.com 👍

dguo/blood-moon 31

:waxing_crescent_moon: A bold, dark color scheme for code

dguo/broker-scribe 10

Import 1099-B transactions into TurboTax Online using Puppeteer

dguo/chromatastic 5

Dynamic Firefox theme that continuously cycles through colors

dguo/churn 1

:credit_card: CLI for keeping track of credit card activity

dguo/alacritty 0

A cross-platform, GPU-accelerated terminal emulator

dguo/Algorithms 0

Efficient Algorithms

dguo/amazon-textract-developer-guide 0

The open source version of the Amazon Rekognition docs. You can submit feedback & requests for changes by submitting issues in this repo or by making proposed changes & submitting a pull request.

dguo/amirsadoughi.com 0

My homepage

push eventdguo/awair-js

snyk-bot

commit sha 57f947cb0b40c3cc8a8296a18fb7df560078823e

fix: package.json & yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-1579269

view details

push time in 18 days

create barnchdguo/awair-js

branch : snyk-fix-3e161425be9160ea4fa4992a8ef0dc5d

created branch time in 18 days

startedazeemba/pancakes

started time in 19 days

startedgithub/feedback

started time in a month

push eventdguo/dotfiles

Danny Guo

commit sha 19251a05ab95385b59a3521ceb076dd0c957766e

Switch from Google Backup and Sync to Google Drive Backup and Sync is deprecated in the favor of the new client.

view details

push time in a month

push eventdguo/dotfiles

Danny Guo

commit sha dc7076eef9f3d20ca25dcf52f1ffcf901d45f651

Add scrcpy

view details

push time in 2 months

startedGenymobile/scrcpy

started time in 2 months

push eventdguo/make-a-readme

Danny Guo

commit sha c1256bf71f9042c1df86653f2a33293817cb2aa4

Use React Markdown

view details

push time in 2 months

delete branch dguo/make-a-readme

delete branch : markdown

delete time in 2 months

PR merged dguo/make-a-readme

Use React Markdown
+513 -111

0 comment

7 changed files

dguo

pr closed time in 2 months

delete branch dguo/make-a-readme

delete branch : markdown-2

delete time in 2 months

PR closed dguo/make-a-readme

Test react-syntax-highlighter
+513 -111

1 comment

7 changed files

dguo

pr closed time in 2 months

pull request commentdguo/make-a-readme

Test react-syntax-highlighter

Closing in favor of #59.

dguo

comment created time in 2 months

push eventdguo/make-a-readme

Danny Guo

commit sha 2065ba3c9c0a48f90e698abfc03b8ad94dc739da

Use React Markdown

view details

push time in 2 months

push eventdguo/make-a-readme

Danny Guo

commit sha 602eae1b68cf9f91eabe099e5dec93b5d456fed4

Clean up

view details

push time in 2 months

push eventdguo/make-a-readme

Danny Guo

commit sha 90fc44bf33372c3e61b04718ef72877798939c44

Use LightAsync

view details

push time in 2 months

push eventdguo/make-a-readme

Danny Guo

commit sha 9ef0be79fa6d71a3b1b19168255ae26dc58745a6

register js

view details

push time in 2 months

push eventdguo/make-a-readme

Danny Guo

commit sha b09c35afd354c43d5af00d05a927c1ebd6b95bfa

Enable Python

view details

push time in 2 months

PR opened dguo/make-a-readme

Test react-syntax-highlighter
+587 -112

0 comment

7 changed files

pr created time in 2 months

create barnchdguo/make-a-readme

branch : markdown-2

created branch time in 2 months

push eventdguo/dannyguo.com

Danny Guo

commit sha 47e0c5d1e6ddf4cce163ff499aacaaa1db04fbb6

Publish the substring post

view details

push time in 2 months

PR opened dguo/make-a-readme

Use React Markdown
+463 -110

0 comment

6 changed files

pr created time in 2 months

create barnchdguo/make-a-readme

branch : markdown

created branch time in 2 months

PR closed dguo/blood-moon

Bump color-string from 1.5.3 to 1.5.5 dependencies

Bumps color-string from 1.5.3 to 1.5.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Qix-/color-string/releases">color-string's releases</a>.</em></p> <blockquote> <h2>1.5.5 (Patch/Security Release) - hwb() ReDos patch (low-severity)</h2> <blockquote> <p>Release notes copied verbatim from the commit message, which can be found here: 0789e21284c33d89ebc4ab4ca6f759b9375ac9d3</p> </blockquote> <pre><code>Discovered by Yeting Li, c/o Colin Ife via Snyk.io. <p>A ReDos (Regular Expression Denial of Service) vulnerability was responsibly disclosed to me via email by Colin on Mar 5 2021 regarding an exponential time complexity for linearly increasing input lengths for <code>hwb()</code> color strings.</p> <p>Strings reaching more than 5000 characters would see several milliseconds of processing time; strings reaching more than 50,000 characters began seeing 1500ms (1.5s) of processing time.</p> <p>The cause was due to a the regular expression that parses hwb() strings - specifically, the hue value - where the integer portion of the hue value used a 0-or-more quantifier shortly thereafter followed by a 1-or-more quantifier.</p> <p>This caused excessive backtracking and a cartesian scan, resulting in exponential time complexity given a linear increase in input length.</p> <p>Thank you Yeting Li and Colin Ife for bringing this to my attention in a secure, responsible and professional manner.</p> <p>A CVE will not be assigned for this vulnerability. </code></pre></p> <h2>1.5.4 (Patch Release)</h2> <ul> <li>Removes rounding of alpha values in RGBA hex (<code>#rrggbbaa</code>) and condensed-hex (<code>#rgba</code>) parsers, which caused certain unique inputs to result in identical outputs (see <a href="https://github.com/qix-/color/issues/174">https://github.com/qix-/color/issues/174</a>).</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Qix-/color-string/commits/1.5.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

PR closed dguo/blood-moon

Bump diff from 3.3.1 to 3.5.0 dependencies

Bumps diff from 3.3.1 to 3.5.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kpdecker/jsdiff/blob/master/release-notes.md">diff's changelog</a>.</em></p> <blockquote> <h2>v3.5.0 - March 4th, 2018</h2> <ul> <li>Omit redundant slice in join method of diffArrays - 1023590</li> <li>Support patches with empty lines - fb0f208</li> <li>Accept a custom JSON replacer function for JSON diffing - 69c7f0a</li> <li>Optimize parch header parser - 2aec429</li> <li>Fix typos - e89c832</li> </ul> <p><a href="https://github.com/kpdecker/jsdiff/compare/v3.4.0...v3.5.0">Commits</a></p> <h2>v3.4.0 - October 7th, 2017</h2> <ul> <li><a href="https://github-redirect.dependabot.com/kpdecker/jsdiff/issues/183">#183</a> - Feature request: ability to specify a custom equality checker for <code>diffArrays</code></li> <li><a href="https://github-redirect.dependabot.com/kpdecker/jsdiff/issues/173">#173</a> - Bug: diffArrays gives wrong result on array of booleans</li> <li><a href="https://github-redirect.dependabot.com/kpdecker/jsdiff/issues/158">#158</a> - diffArrays will not compare the empty string in array?</li> <li>comparator for custom equality checks - 30e141e</li> <li>count oldLines and newLines when there are conflicts - 53bf384</li> <li>Fix: diffArrays can compare falsey items - 9e24284</li> <li>Docs: Replace grunt with npm test - 00e2f94</li> </ul> <p><a href="https://github.com/kpdecker/jsdiff/compare/v3.3.1...v3.4.0">Commits</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kpdecker/jsdiff/commit/e9ab94893a77f1f7d7ea8483b873083e6c6a390a"><code>e9ab948</code></a> v3.5.0</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/b73884c013d199aeba62f583c392a823083a889f"><code>b73884c</code></a> Update release notes</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/89530211601abfd0baf6276f0f862d5e43f908ee"><code>8953021</code></a> Update release notes</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/1023590bd4b29edb8c4d280f9bd50966fc22e469"><code>1023590</code></a> Omit redundant slice in join method of diffArrays</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/c72ef4aec8fc6318dd413ab7c225fa47891f607c"><code>c72ef4a</code></a> Add missing test coverage</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/b9ef24f8004624f024f9853842ea45903dc0afc7"><code>b9ef24f</code></a> Support patches with empty lines</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/10aaabb3b7b22c8019dc74f0ab674041167e7438"><code>10aaabb</code></a> Support patches with empty lines</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/196d3aa052e89bfe929ed6368b11dc7d011bf911"><code>196d3aa</code></a> Support patches with empty lines</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/e24d789f71991db9a74e3997653d9cf52d071749"><code>e24d789</code></a> Support patches with empty lines</li> <li><a href="https://github.com/kpdecker/jsdiff/commit/8616a02a139422c8a3e008b63d60083abdd56b7c"><code>8616a02</code></a> Support patches with empty lines</li> <li>Additional commits viewable in <a href="https://github.com/kpdecker/jsdiff/compare/v3.3.1...v3.5.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -5

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

push eventdguo/blood-moon

Danny Guo

commit sha 160d2064b967e99010106c07f55eabe5c37157c9

Rename master to main

view details

push time in 2 months

create barnchdguo/blood-moon

branch : main

created branch time in 2 months

delete branch dguo/blood-moon

delete branch : master

delete time in 2 months

PR closed dguo/blood-moon

Bump ini from 1.3.4 to 1.3.8 dependencies

Bumps ini from 1.3.4 to 1.3.8. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/ini/commit/a2c5da86604bc2238fe393c5ff083bf23a9910eb"><code>a2c5da8</code></a> 1.3.8</li> <li><a href="https://github.com/npm/ini/commit/af5c6bb5dca6f0248c153aa87e25bddfc515ff6e"><code>af5c6bb</code></a> Do not use Object.create(null)</li> <li><a href="https://github.com/npm/ini/commit/8b648a1ac49e1b3b7686ea957e0b95e544bc6ec1"><code>8b648a1</code></a> don't test where our devdeps don't even work</li> <li><a href="https://github.com/npm/ini/commit/c74c8af35f32b801a7e82a8309eab792a95932f6"><code>c74c8af</code></a> 1.3.7</li> <li><a href="https://github.com/npm/ini/commit/024b8b55ac1c980c6225607b007714c54eb501ba"><code>024b8b5</code></a> update deps, add linting</li> <li><a href="https://github.com/npm/ini/commit/032fbaf5f0b98fce70c8cc380e0d05177a9c9073"><code>032fbaf</code></a> Use Object.create(null) to avoid default object property hazards</li> <li><a href="https://github.com/npm/ini/commit/2da90391ef70db41d10f013e3a87f9a8c5d01a72"><code>2da9039</code></a> 1.3.6</li> <li><a href="https://github.com/npm/ini/commit/cfea636f534b5ca7550d2c28b7d1a95d936d56c6"><code>cfea636</code></a> better git push script, before publish instead of after</li> <li><a href="https://github.com/npm/ini/commit/56d2805e07ccd94e2ba0984ac9240ff02d44b6f1"><code>56d2805</code></a> do not allow invalid hazardous string as section name</li> <li><a href="https://github.com/npm/ini/commit/738eca59d77d8cfdddf5c477c17a0d8f8fbfe0fd"><code>738eca5</code></a> v1.3.5</li> <li>Additional commits viewable in <a href="https://github.com/isaacs/ini/compare/v1.3.4...v1.3.8">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~isaacs">isaacs</a>, a new releaser for ini since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -7

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

PR closed dguo/blood-moon

Bump dot-prop from 4.2.0 to 4.2.1 dependencies

Bumps dot-prop from 4.2.0 to 4.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sindresorhus/dot-prop/releases">dot-prop's releases</a>.</em></p> <blockquote> <h2>v4.2.1</h2> <ul> <li>Backport <a href="https://github.com/sindresorhus/dot-prop/commit/3039c8c07f6fdaa8b595ec869ae0895686a7a0f2">https://github.com/sindresorhus/dot-prop/commit/3039c8c07f6fdaa8b595ec869ae0895686a7a0f2</a> to the v4.x release line.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sindresorhus/dot-prop/commit/c914124f418f55edea27928e89c94d931babe587"><code>c914124</code></a> feat: patch 4.2.0 with fixes for CVE-2020-8116</li> <li>See full diff in <a href="https://github.com/sindresorhus/dot-prop/compare/v4.2.0...v4.2.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+2 -2

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months