profile
viewpoint
Jonathan Chen dijonkitchen Long-term Partners Oakland Bay Area https://www.dijonkitchen.org/ Parallel mini-gamifying idealist of the future

dijonkitchen/bottles 1

99 Bottles of Beer in Clojure

dijonkitchen/but_why 1

Deep Why, What, and How

aattsai/menu 0

DBC Phase 3 Final Project: Aaron Tsai, Eunice Do, Jay Yee, and Jonathan Chen

dijonkitchen/.github 0

Contains organization-wide default files including issue and PR templates

dijonkitchen/aleph 0

asynchronous communication for clojure

dijonkitchen/algo-rhythms 0

Tickling the plastics for music to my brain

dijonkitchen/allPayAIO_Ruby 0

歐付寶allPay 全方位(All In One)金流介接 Ruby版

dijonkitchen/amazonica 0

A comprehensive Clojure client for the entire Amazon AWS api.

dijonkitchen/animate-validation 0

Gradual feedback in form validation React component

startedredis-io/redis

started time in 2 days

push eventdijonkitchen/score-ranking

JC

commit sha f0607d4d50715dcf059cbd85c82625c86a8c4e2f

docs: add Deno installation instructions

view details

push time in 5 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/eslint-plugin-import-2.22.0

delete time in 5 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 997e10233de3e8626a422bd9da25c228d1c3d6bc

Bump eslint-plugin-import from 2.21.2 to 2.22.0 Bumps [eslint-plugin-import](https://github.com/benmosher/eslint-plugin-import) from 2.21.2 to 2.22.0. - [Release notes](https://github.com/benmosher/eslint-plugin-import/releases) - [Changelog](https://github.com/benmosher/eslint-plugin-import/blob/master/CHANGELOG.md) - [Commits](https://github.com/benmosher/eslint-plugin-import/compare/v2.21.2...v2.22.0) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 5c4213288886e615c7de988e131699acad4846dd

Merge pull request #79 from dijonkitchen/dependabot/npm_and_yarn/eslint-plugin-import-2.22.0 Bump eslint-plugin-import from 2.21.2 to 2.22.0

view details

push time in 5 days

PR merged dijonkitchen/reader

Bump eslint-plugin-import from 2.21.2 to 2.22.0 dependencies

Bumps eslint-plugin-import from 2.21.2 to 2.22.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/benmosher/eslint-plugin-import/blob/master/CHANGELOG.md">eslint-plugin-import's changelog</a>.</em></p> <blockquote> <h2>[2.22.0] - 2020-06-26</h2> <h3>Added</h3> <ul> <li>[<code>no-unused-modules</code>]: consider exported TypeScript interfaces, types and enums (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1819">#1819</a>, thanks [<a href="https://github.com/nicolashenry">@nicolashenry</a>])</li> <li>[<code>no-cycle</code>]: allow <code>maxDepth</code> option to be <code>"∞"</code> (thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h3>Fixed</h3> <ul> <li>[<code>order</code>]/TypeScript: properly support <code>import = object</code> expressions (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1823">#1823</a>, thanks [<a href="https://github.com/manuth">@manuth</a>])</li> <li>[<code>no-extraneous-dependencies</code>]/TypeScript: do not error when importing type from dev dependencies (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1820">#1820</a>, thanks [<a href="https://github.com/fernandopasik">@fernandopasik</a>])</li> <li>[<code>default</code>]: avoid crash with <code>export =</code> (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1822">#1822</a>, thanks [<a href="https://github.com/AndrewLeedham">@AndrewLeedham</a>])</li> <li>[<code>order</code>]/[<code>newline-after-import</code>]: ignore TypeScript's "export import object" (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1830">#1830</a>, thanks [<a href="https://github.com/be5invis">@be5invis</a>])</li> <li>[<code>dynamic-import-chunkname</code>]/TypeScript: supports <code>@typescript-eslint/parser</code> (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1833">#1833</a>, thanks [<a href="https://github.com/noelebrun">@noelebrun</a>])</li> <li>[<code>order</code>]/TypeScript: ignore ordering of object imports (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1831">#1831</a>, thanks [<a href="https://github.com/manuth">@manuth</a>])</li> <li>[<code>namespace</code>]: do not report on shadowed import names (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/518">#518</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>export</code>]: avoid warning on <code>export * as</code> non-conflicts (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1834">#1834</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h3>Changed</h3> <ul> <li>[<code>no-extraneous-dependencies</code>]: add tests for importing types (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1824">#1824</a>, thanks [<a href="https://github.com/taye">@taye</a>])</li> <li>[docs] [<code>no-default-export</code>]: Fix docs url (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1836">#1836</a>, thanks [<a href="https://github.com/beatrizrezener">@beatrizrezener</a>])</li> <li>[docs] [<code>imports-first</code>]: deprecation info and link to <code>first</code> docs (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1835">#1835</a>, thanks [<a href="https://github.com/beatrizrezener">@beatrizrezener</a>])</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/878ce6efd055cb13c0cdd15123ae2734a5832ace"><code>878ce6e</code></a> Bump to v2.22.0</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/36a535b6a6628545ef76eb46fcf2cf515a65e7b9"><code>36a535b</code></a> fixup: [Tests] <code>export</code>: skip <code>export * as</code> tests in eslint < 6</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/7ceae48d31240be627f6ee89b28e4c2ba698bb9e"><code>7ceae48</code></a> [Tests] <code>export</code>: skip <code>export * as</code> tests in eslint < 6</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/07dc92a22319a7e24c46a64132370012779a7df3"><code>07dc92a</code></a> [Fix] <code>export</code>: avoid warning on <code>export * as</code> non-conflicts</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/b944e941b51fdc24805f5816a3a5d6022961682e"><code>b944e94</code></a> [Fix] <code>namespace</code>: do not report on shadowed import names</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/a963e8de03534d6c9c870c62b53e1401535cd75c"><code>a963e8d</code></a> [Refactor] <code>namespace</code>: clean up the code a bit</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/a6cd6bdc112f4611ed8b1b22de51faaa487c6af0"><code>a6cd6bd</code></a> [docs] <code>imports-first</code>: deprecation info and link to <code>first</code> docs</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/2468f101dafb73b471dcfb0f929f1ea75301423d"><code>2468f10</code></a> [docs] <code>no-default-export</code>: Fix docs url</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/c38b1699f8e8c7e615fb84b54a90baac8e464f58"><code>c38b169</code></a> [patch] <code>order</code>/TypeScript: ignore ordering of object imports</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/bfc50b72d4a5f390fbd8f2ba8aa7183a24995dc8"><code>bfc50b7</code></a> [New] <code>no-cycle</code>: allow <code>maxDepth</code> option to be <code>"∞"</code></li> <li>Additional commits viewable in <a href="https://github.com/benmosher/eslint-plugin-import/compare/v2.21.2...v2.22.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 5 days

push eventdijonkitchen/Set-TDD

dependabot-preview[bot]

commit sha b80d76bf30d562b78d0a67810c9211fe0e58f565

Build(deps-dev): Bump typescript from 3.9.5 to 3.9.6 Bumps [typescript](https://github.com/Microsoft/TypeScript) from 3.9.5 to 3.9.6. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Commits](https://github.com/Microsoft/TypeScript/commits) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 4ee23d691df6cf06fcf5e7ba5cc4728feb4c8c03

Merge pull request #148 from dijonkitchen/dependabot/npm_and_yarn/typescript-3.9.6 Build(deps-dev): Bump typescript from 3.9.5 to 3.9.6

view details

push time in 5 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/typescript-3.9.6

delete time in 5 days

PR merged dijonkitchen/Set-TDD

Build(deps-dev): Bump typescript from 3.9.5 to 3.9.6 dependencies

Bumps typescript from 3.9.5 to 3.9.6. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/Microsoft/TypeScript/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 5 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 0dbd3bdf6ef9d5c9c169d8b56f023173018984b7

Bump eslint-plugin-react from 7.6.1 to 7.20.3 Bumps [eslint-plugin-react](https://github.com/yannickcr/eslint-plugin-react) from 7.6.1 to 7.20.3. - [Release notes](https://github.com/yannickcr/eslint-plugin-react/releases) - [Changelog](https://github.com/yannickcr/eslint-plugin-react/blob/master/CHANGELOG.md) - [Commits](https://github.com/yannickcr/eslint-plugin-react/compare/v7.6.1...v7.20.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 7b2f1cfeaa354c18f54ba0c0e563fe19d7acb6d3

Merge pull request #82 from dijonkitchen/dependabot/npm_and_yarn/eslint-plugin-react-7.20.3 Bump eslint-plugin-react from 7.6.1 to 7.20.3

view details

push time in 5 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/eslint-plugin-react-7.20.3

delete time in 5 days

PR merged dijonkitchen/reader

Bump eslint-plugin-react from 7.6.1 to 7.20.3 dependencies

Bumps eslint-plugin-react from 7.6.1 to 7.20.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/yannickcr/eslint-plugin-react/releases">eslint-plugin-react's releases</a>.</em></p> <blockquote> <h2>v7.20.0</h2> <h3>Added</h3> <ul> <li>support eslint v7 (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2635">#2635</a>[] <a href="https://github.com/ljharb">@ljharb</a>, <a href="https://github.com/toshi-toma">@toshi-toma</a>)</li> <li>[<code>forbid-component-props</code>][]/[<code>forbid-dom-props</code>][]: Allow a custom message with forbid props (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2615">#2615</a>[] <a href="https://github.com/mtamhankar1">@mtamhankar1</a>)</li> <li>[<code>jsx-no-literals</code>][]: add <code>ignoreProps</code> option to ignore props validation (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2146">#2146</a>[] <a href="https://github.com/iiison">@iiison</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>[<code>jsx-sort-props</code>][]: only use localeCompare when case is ignored (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2556">#2556</a>[] <a href="https://github.com/tanmoyopenroot">@tanmoyopenroot</a>)</li> <li>[<code>jsx-key</code>][]: add a failing test case for optional chaining (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2610">#2610</a>[] <a href="https://github.com/JonathanLee-LX">@JonathanLee-LX</a>)</li> <li>[<code>no-unused-state</code>][]: handle optional chaining (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2588">#2588</a>[] <a href="https://github.com/golopot">@golopot</a>)</li> <li>[<code>jsx-pascal-case</code>][]: Do not consider namespaces when checking for DOM (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2638">#2638</a>[] <a href="https://github.com/yacinehmito">@yacinehmito</a>)</li> <li>[<code>jsx-curly-spacing</code>][], [<code>jsx-no-bind</code>][], <code>usedPropTypes</code> util: avoid node.start and node.end ([25b1936][] <a href="https://github.com/toshi-toma">@toshi-toma</a>)</li> <li>[<code>jsx-no-target-blank</code>][]: allow <code>no-referrer</code> without <code>noopener</code> by default (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2043">#2043</a>[] <a href="https://github.com/seancrater">@seancrater</a>)</li> <li>[<code>button-has-type</code>][]: improve message when non-static value is used ([aecff62][] <a href="https://github.com/golopot">@golopot</a>)</li> <li>[<code>no-adjacent-inline-elements</code>][]: prevent crash on nullish children (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2621">#2621</a>[] <a href="https://github.com/Rogdham">@Rogdham</a>)</li> <li>[<code>prop-types</code>][]: avoid crash when spreading any type (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2606">#2606</a>[] <a href="https://github.com/golopot">@golopot</a>))</li> <li>[<code>require-render-return</code>][]: add missing "a" (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2604">#2604</a>[] <a href="https://github.com/leothorp">@leothorp</a>)</li> <li>[<code>jsx-no-comment-textnodes</code>][]: fix for <code>@typescript-eslint/parser</code> (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2601">#2601</a>[] <a href="https://github.com/Axnyff">@Axnyff</a>)</li> <li>[<code>displayName</code>][]: avoid a crash when using React.memo (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2587">#2587</a>[] <a href="https://github.com/golopot">@golopot</a>)</li> </ul> <h3>Docs</h3> <ul> <li>Clean up examples in rule docs (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2546">#2546</a>[] <a href="https://github.com/silvenon">@silvenon</a>)</li> <li>[readme] Add Rules of Hooks to Other useful plugins section (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2633">#2633</a>[] <a href="https://github.com/petetnt">@petetnt</a>)</li> <li>[<code>no-this-in-sfc</code>][]: backtick <code>this</code> (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2616">#2616</a>[] <a href="https://github.com/mrflip">@mrflip</a>)</li> <li>[<code>function-component-definition</code>][]: Fix unnamedComponents option examples (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2608">#2608</a>[] <a href="https://github.com/vkrol">@vkrol</a>))</li> </ul> <h3>Changed</h3> <ul> <li>[Deps] Move "semver" to devDependencies (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2595">#2595</a>[] <a href="https://github.com/rajivshah3">@rajivshah3</a>)</li> <li>[eslint] remove <code>operator-linebreak</code> override (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2578">#2578</a>[] <a href="https://github.com/golopot">@golopot</a>)</li> <li>[Tests] <code>button-has-type</code>: ensure no mistakenly allowed identifiers named <code>button</code>/<code>submit</code>/<code>reset</code> (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2625">#2625</a>[] <a href="https://github.com/golopot">@golopot</a>)</li> <li>[Tests] <code>displayName</code>: add a test case (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2593">#2593</a>[] <a href="https://github.com/golopot">@golopot</a>)</li> <li>[Dev Deps] update <code>@types/eslint</code>, <code>@types/estree</code>, <code>@types/node</code>, <code>@typescript-eslint/parser</code>, <code>coveralls</code>, <code>eslint-config-airbnb-base</code>, <code>eslint-plugin-import</code>, <code>typescript</code></li> </ul> <p><a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2638">#2638</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2638">yannickcr/eslint-plugin-react#2638</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2635">#2635</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2635">yannickcr/eslint-plugin-react#2635</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2633">#2633</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2633">yannickcr/eslint-plugin-react#2633</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2625">#2625</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2625">yannickcr/eslint-plugin-react#2625</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2621">#2621</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2621">yannickcr/eslint-plugin-react#2621</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2616">#2616</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2616">yannickcr/eslint-plugin-react#2616</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2615">#2615</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2615">yannickcr/eslint-plugin-react#2615</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2610">#2610</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2610">yannickcr/eslint-plugin-react#2610</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2608">#2608</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2608">yannickcr/eslint-plugin-react#2608</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2606">#2606</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2606">yannickcr/eslint-plugin-react#2606</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2604">#2604</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2604">yannickcr/eslint-plugin-react#2604</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2601">#2601</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2601">yannickcr/eslint-plugin-react#2601</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2595">#2595</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2595">yannickcr/eslint-plugin-react#2595</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2593">#2593</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2593">yannickcr/eslint-plugin-react#2593</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2588">#2588</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2588">yannickcr/eslint-plugin-react#2588</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2587">#2587</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2587">yannickcr/eslint-plugin-react#2587</a></p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yannickcr/eslint-plugin-react/blob/master/CHANGELOG.md">eslint-plugin-react's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/yannickcr/eslint-plugin-react/compare/v7.20.2...v7.20.3">7.20.3</a> - 2020-06-30</h2> <h3>Fixed</h3> <ul> <li>[Fix] <code>no-unused-prop-types</code>/<code>prop-types</code>: typescript interface support literal type and only FunctionComponent should have propTypes validation (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2690">#2690</a>[] <a href="https://github.com/hank121314">@hank121314</a>)</li> <li>[Fix] <code>no-unused-prop-types</code>/TypeScript: avoid crash on indexable interface (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2687">#2687</a>[] <a href="https://github.com/ljharb">@ljharb</a>)</li> </ul> <p><a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2690">#2690</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2690">yannickcr/eslint-plugin-react#2690</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2687">#2687</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2687">yannickcr/eslint-plugin-react#2687</a></p> <h2><a href="https://github.com/yannickcr/eslint-plugin-react/compare/v7.20.1...v7.20.2">7.20.2</a> - 2020-06-29</h2> <h3>Fixed</h3> <ul> <li>[Fix] [<code>no-unused-prop-types</code>]: handle optional chaining (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2679">#2679</a>[] <a href="https://github.com/hank121314">@hank121314</a>)</li> <li>[Fix] [<code>jsx-pascal-case</code>]: fix a false positive with "H1" (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2683">#2683</a>[] <a href="https://github.com/ljharb">@ljharb</a>)</li> <li>[Fix] [<code>jsx-no-useless-fragment</code>]: avoid a crash when autofixing a self-closing React.Fragment (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2680">#2680</a>[] <a href="https://github.com/ljharb">@ljharb</a>)</li> <li>[Fix] [<code>forbid-prop-types</code>]: avoid crash (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2682">#2682</a>[] <a href="https://github.com/ljharb">@ljharb</a>)</li> </ul> <p><a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2683">#2683</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2683">yannickcr/eslint-plugin-react#2683</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2682">#2682</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2682">yannickcr/eslint-plugin-react#2682</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2680">#2680</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2680">yannickcr/eslint-plugin-react#2680</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2679">#2679</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2679">yannickcr/eslint-plugin-react#2679</a></p> <h2><a href="https://github.com/yannickcr/eslint-plugin-react/compare/v7.20.0...v7.20.1">7.20.1</a> - 2020-06-28</h2> <h3>Fixed</h3> <ul> <li>[<code>forbid-dom-props</code>], [<code>function-component-definition</code>]: fix schema typos (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2667">#2667</a>[] <a href="https://github.com/mflorence99">@mflorence99</a>)</li> <li>[<code>no-unused-prop-types</code>]: fix with typescript eslint parser (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2661">#2661</a>[] <a href="https://github.com/eltonio450">@eltonio450</a>)</li> </ul> <h3>Changed</h3> <ul> <li>[<code>forbid-prop-types</code>]: warn on destructured values as well (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2676">#2676</a>[] <a href="https://github.com/ajkovar">@ajkovar</a>)</li> <li>relax JSX pragma regexp (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2643">#2643</a>[] <a href="https://github.com/gfmio">@gfmio</a>)</li> <li>Cache detected React version (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2673">#2673</a>[] <a href="https://github.com/lencioni">@lencioni</a>)</li> <li>[refactor] [<code>jsx-pascal-case</code>]: Remove xregexp (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2636">#2636</a>[] <a href="https://github.com/yacinehmito">@yacinehmito</a>))</li> <li>[Tests] a [<code>no-typos</code>] test fails in eslint v7.3 (<a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2678">#2678</a>[] <a href="https://github.com/toshi-toma">@toshi-toma</a>)</li> <li>[Deps] update <code>jsx-ast-utils</code>, <code>object.entries</code>, <code>resolve</code></li> <li>[Dev Deps] update <code>@types/eslint</code>, <code>@types/estree</code>, <code>@types/node</code>, <code>@typescript-eslint/parser</code>, <code>eslint-config-airbnb-base</code>, <code>eslint-plugin-eslint-plugin</code>, <code>eslint-plugin-import</code>, <code>typescript</code></li> </ul> <p><a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2676">#2676</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2676">yannickcr/eslint-plugin-react#2676</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2673">#2673</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2673">yannickcr/eslint-plugin-react#2673</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2667">#2667</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2667">yannickcr/eslint-plugin-react#2667</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2661">#2661</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2661">yannickcr/eslint-plugin-react#2661</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2643">#2643</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2643">yannickcr/eslint-plugin-react#2643</a> <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/issues/2636">#2636</a>: <a href="https://github-redirect.dependabot.com/yannickcr/eslint-plugin-react/pull/2636">yannickcr/eslint-plugin-react#2636</a></p> <h2>[7.20.0] - 2020-05-12</h2> <h3>Added</h3> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/6fc4bc0a933501ff307d45922ac1bc2e8ea499dc"><code>6fc4bc0</code></a> Update CHANGELOG and bump version</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/4ee6f8e1ff15f89596e6c0249a21275a92052e58"><code>4ee6f8e</code></a> [Fix] <code>no-unused-prop-types</code>/<code>prop-types</code>: typescript interface support liter...</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/830bde71374a9a1b078405e2875db97e22fae092"><code>830bde7</code></a> [Fix] <code>no-unused-prop-types</code>/TypeScript: avoid crash on indexable interface</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/2db008051a898deea0951aeffbf8d03b25d06873"><code>2db0080</code></a> Update CHANGELOG and bump version</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/85e40aaedc928648f70390fa6fcae45d21b5268e"><code>85e40aa</code></a> [Fix] <code>no-unused-prop-types</code>: handle optional chaining</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/c65b79ecd8068fc432707e6246c4b41274f3a44b"><code>c65b79e</code></a> [Fix] <code>jsx-pascal-case</code>: fix a false positive with "H1"</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/d2a131a26e71f3ac84d9a99209432a94d0e257f7"><code>d2a131a</code></a> [Fix] <code>jsx-no-useless-fragment</code>: avoid a crash when autofixing a self-closing...</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/a9d2621f00b909d9c668fb207853687fbf4afb43"><code>a9d2621</code></a> [Fix] <code>forbid-prop-types</code>: avoid crash</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/f5405f7573b799712c44deab3a88964415bd15eb"><code>f5405f7</code></a> Update CHANGELOG and bump version</li> <li><a href="https://github.com/yannickcr/eslint-plugin-react/commit/46cf771db207923e9276d7804c047027e20218e2"><code>46cf771</code></a> [Dev Deps] update <code>@types/eslint</code>, <code>@types/estree</code>, <code>@types/node</code>, `eslint-pl...</li> <li>Additional commits viewable in <a href="https://github.com/yannickcr/eslint-plugin-react/compare/v7.6.1...v7.20.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+61 -22

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 5 days

startedmicrosoft/tsdoc

started time in 5 days

starteddijonkitchen/score-ranking

started time in 5 days

create barnchdijonkitchen/score-ranking

branch : master

created branch time in 5 days

created repositorydijonkitchen/score-ranking

created time in 5 days

push eventdijonkitchen/algo-rhythms

JC

commit sha d3a3e8485c04323223cca0973ddb8518462ead11

feat: add symmetry problem

view details

Jonathan Chen

commit sha c1ee5b3ba05401a8dcf953c514d171b4a6decde0

Merge pull request #24 from dijonkitchen/feat-symmetry feat: add symmetry problem

view details

push time in 14 days

delete branch dijonkitchen/algo-rhythms

delete branch : feat-symmetry

delete time in 14 days

PR merged dijonkitchen/algo-rhythms

feat: add symmetry problem

Changes proposed in this pull request:

Security considerations

[Note the any security considerations here, or make note of why there are none]

+68 -0

0 comment

1 changed file

dijonkitchen

pr closed time in 14 days

push eventdijonkitchen/To-TDD-or-TooDoDo-List

dependabot-preview[bot]

commit sha 4e4897a79fedbe9940ebf388c8fbdcf7d3e7f236

build(deps): [security] bump websocket-extensions from 0.1.4 to 0.1.5 Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-ruby) from 0.1.4 to 0.1.5. **This update includes a security fix.** - [Release notes](https://github.com/faye/websocket-extensions-ruby/releases) - [Changelog](https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-ruby/compare/0.1.4...0.1.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha cc4a96dcf1532e90f7280eb9fd9cb2d653fa46d3

Merge pull request #121 from dijonkitchen/dependabot/bundler/websocket-extensions-0.1.5 build(deps): [security] bump websocket-extensions from 0.1.4 to 0.1.5

view details

push time in 14 days

delete branch dijonkitchen/To-TDD-or-TooDoDo-List

delete branch : dependabot/bundler/websocket-extensions-0.1.5

delete time in 14 days

PR opened dijonkitchen/algo-rhythms

feat: add symmetry problem

Changes proposed in this pull request:

Security considerations

[Note the any security considerations here, or make note of why there are none]

+68 -0

0 comment

1 changed file

pr created time in 14 days

create barnchdijonkitchen/algo-rhythms

branch : feat-symmetry

created branch time in 14 days

push eventdijonkitchen/To-TDD-or-TooDoDo-List

dependabot-preview[bot]

commit sha 9d4c7f257cf8c42d1639399cda45e3fa855efd71

build(deps): [security] bump rack from 2.2.2 to 2.2.3 Bumps [rack](https://github.com/rack/rack) from 2.2.2 to 2.2.3. **This update includes a security fix.** - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/v2.2.2...2.2.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha e609a8ea092ef2afa7717ddb9c0c9297d8d899d5

Merge pull request #122 from dijonkitchen/dependabot/bundler/rack-2.2.3 build(deps): [security] bump rack from 2.2.2 to 2.2.3

view details

push time in 14 days

delete branch dijonkitchen/To-TDD-or-TooDoDo-List

delete branch : dependabot/bundler/rack-2.2.3

delete time in 14 days

PR merged dijonkitchen/To-TDD-or-TooDoDo-List

build(deps): [security] bump rack from 2.2.2 to 2.2.3 dependencies security

Bumps rack from 2.2.2 to 2.2.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2020-8184.yml">The Ruby Advisory Database</a>.</em></p> <blockquote> <p><strong>Percent-encoded cookies can be used to overwrite existing prefixed cookie names</strong> It is possible to forge a secure or host-only cookie prefix in Rack using an arbitrary cookie write by using URL encoding (percent-encoding) on the name of the cookie. This could result in an application that is dependent on this prefix to determine if a cookie is safe to process being manipulated into processing an insecure or cross-origin request. This vulnerability has been assigned the CVE identifier CVE-2020-8184.</p> <p>Versions Affected: rack < 2.2.3, rack < 2.1.4 Not affected: Applications which do not rely on __Host- and __Secure- prefixes to determine if a cookie is safe to process Fixed Versions: rack >= 2.2.3, rack >= 2.1.4</p> <h2>Impact</h2> <p>An attacker may be able to trick a vulnerable application into processing an insecure (non-SSL) or cross-origin request if they can gain the ability to write arbitrary cookies that are sent to the application.</p> <h2>Workarounds</h2> </tr></table> ... (truncated) <p>Patched versions: ~> 2.1.4; >= 2.2.3 Unaffected versions: none</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li>See full diff in <a href="https://github.com/rack/rack/compare/v2.2.2...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 14 days

push eventdijonkitchen/dotfiles

JC

commit sha 44f6873c12cc219ae1198656adce9ea1c4210b66

clean up Brewfile

view details

JC

commit sha f7e98097bc8fa285521eac258f587599f6f5a34a

localize work profile from git

view details

JC

commit sha fb9f585d4eca930255e5057915869f7b8f1dbd44

test some new settings

view details

JC

commit sha b6c184396727bd6926dcd9fd3741eef24bbd8d3a

build: add Ruby PATH from Homebrew

view details

JC

commit sha 04a0c2e0d4a2bfb4874a606cd851a0bfd236bd44

feat: use rbenv

view details

Jonathan Chen

commit sha 3b0daf651e32f17506296e1630a0a76ac404e768

Merge pull request #30 from dijonkitchen/build-cleanup Build cleanup

view details

push time in 14 days

delete branch dijonkitchen/dotfiles

delete branch : build-cleanup

delete time in 14 days

PR merged dijonkitchen/dotfiles

Build cleanup

<!--- Provide a general summary of your changes in the Title above. --> <!--- Don't worry, these comments go away when you submit! -->

What's does this do?

<!--- Does this reference any Issue #s ? If so, please link them. --> <!--- Otherwise, please provide a summary of WHY and HOW this was done. --> <!--- If needed, does this update the documentation? -->

How has this been tested?

<!--- Does this break any functionality? -->

Detailed changes are in commits below.

+5 -14

0 comment

4 changed files

dijonkitchen

pr closed time in 14 days

PR opened dijonkitchen/dotfiles

Build cleanup

<!--- Provide a general summary of your changes in the Title above. --> <!--- Don't worry, these comments go away when you submit! -->

What's does this do?

<!--- Does this reference any Issue #s ? If so, please link them. --> <!--- Otherwise, please provide a summary of WHY and HOW this was done. --> <!--- If needed, does this update the documentation? -->

How has this been tested?

<!--- Does this break any functionality? -->

Detailed changes are in commits below.

+5 -14

0 comment

4 changed files

pr created time in 14 days

push eventdijonkitchen/dotfiles

JC

commit sha 04a0c2e0d4a2bfb4874a606cd851a0bfd236bd44

feat: use rbenv

view details

push time in 14 days

PR merged dijonkitchen/reader

Bump eslint from 4.17.0 to 4.19.1 dependencies

Bumps eslint from 4.17.0 to 4.19.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/releases">eslint's releases</a>.</em></p> <blockquote> <h2>v4.19.1</h2> <ul> <li>3ff5d11 Fix: no-invalid-regexp not understand variable for flags (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10112">#10112</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10113">#10113</a>) (薛定谔的猫)</li> <li>abc765c Fix: object-curly-newline minProperties w/default export (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10101">#10101</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10103">#10103</a>) (Kevin Partington)</li> <li>6f9e155 Docs: Update ambiguous for...in example for guard-for-in (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10114">#10114</a>) (CJ R)</li> <li>0360cc2 Chore: Adding debug logs on successful plugin loads (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10100">#10100</a>) (Kevin Partington)</li> <li>a717c5d Chore: Adding log at beginning of unit tests in Makefile.js (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10102">#10102</a>) (Kevin Partington)</li> </ul> <h2>v4.19.0</h2> <ul> <li>55a1593 Update: consecutive option for one-var (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/4680">#4680</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9994">#9994</a>) (薛定谔的猫)</li> <li>8d3814e Fix: false positive about ES2018 RegExp enhancements (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9893">#9893</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10062">#10062</a>) (Toru Nagashima)</li> <li>935f4e4 Docs: Clarify default ignoring of node_modules (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10092">#10092</a>) (Matijs Brinkhuis)</li> <li>72ed3db Docs: Wrap <code>Buffer()</code> in backticks in <code>no-buffer-constructor</code> rule description (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10084">#10084</a>) (Stephen Edgar)</li> <li>3aded2f Docs: Fix lodash typos, make spacing consistent (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10073">#10073</a>) (Josh Smith)</li> <li>e33bb64 Chore: enable no-param-reassign on ESLint codebase (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10065">#10065</a>) (Teddy Katz)</li> <li>66a1e9a Docs: fix possible typo (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10060">#10060</a>) (Vse Mozhet Byt)</li> <li>2e68be6 Update: give a node at least the indentation of its parent (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9995">#9995</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10054">#10054</a>) (Teddy Katz)</li> <li>72ca5b3 Update: Correctly indent JSXText with trailing linebreaks (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9878">#9878</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10055">#10055</a>) (Teddy Katz)</li> <li>2a4c838 Docs: Update ECMAScript versions in FAQ (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10047">#10047</a>) (alberto)</li> </ul> <h2>v4.18.2</h2> <ul> <li>6b71fd0 Fix: table@4.0.2, because 4.0.3 needs "ajv": "^6.0.1" (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10022">#10022</a>) (Mathieu Seiler)</li> <li>3c697de Chore: fix incorrect comment about linter.verify return value (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10030">#10030</a>) (Teddy Katz)</li> <li>9df8653 Chore: refactor parser-loading out of linter.verify (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10028">#10028</a>) (Teddy Katz)</li> <li>f6901d0 Fix: remove catastrophic backtracking vulnerability (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10002">#10002</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10019">#10019</a>) (Jamie Davis)</li> <li>e4f52ce Chore: Simplify dataflow in linter.verify (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10020">#10020</a>) (Teddy Katz)</li> <li>33177cd Chore: make library files non-executable (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10021">#10021</a>) (Teddy Katz)</li> <li>558ccba Chore: refactor directive comment processing (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10007">#10007</a>) (Teddy Katz)</li> <li>18e15d9 Chore: avoid useless catch clauses that just rethrow errors (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10010">#10010</a>) (Teddy Katz)</li> <li>a1c3759 Chore: refactor populating configs with defaults in linter (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10006">#10006</a>) (Teddy Katz)</li> <li>aea07dc Fix: Make max-len ignoreStrings ignore JSXText (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9954">#9954</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9985">#9985</a>) (Rachael Sim)</li> </ul> <h2>v4.18.1</h2> <ul> <li>f417506 Fix: ensure no-await-in-loop reports the correct node (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9992">#9992</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9993">#9993</a>) (Teddy Katz)</li> <li>3e99363 Docs: Fixed typo in key-spacing rule doc (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9987">#9987</a>) (Jaid)</li> <li>7c2cd70 Docs: deprecate experimentalObjectRestSpread (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9986">#9986</a>) (Toru Nagashima)</li> </ul> <h2>v4.18.0</h2> <ul> <li>70f22f3 Chore: Apply memoization to config creation within glob utils (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9944">#9944</a>) (Kenton Jacobsen)</li> <li>0e4ae22 Update: fix indent bug with binary operators/ignoredNodes (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9882">#9882</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9951">#9951</a>) (Teddy Katz)</li> <li>47ac478 Update: add named imports and exports for object-curly-newline (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9876">#9876</a>) (Nicholas Chua)</li> <li>e8efdd0 Fix: support Rest/Spread Properties (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9885">#9885</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9943">#9943</a>) (Toru Nagashima)</li> <li>f012b8c Fix: support Async iteration (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9891">#9891</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9957">#9957</a>) (Toru Nagashima)</li> <li>74fa253 Docs: Clarify no-mixed-operators options (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9962">#9962</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9964">#9964</a>) (Ivan Hayes)</li> <li>426868f Docs: clean up key-spacing docs (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9900">#9900</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9963">#9963</a>) (Abid Uzair)</li> <li>4a6f22e Update: support eslint-disable-* block comments (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/8781">#8781</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9745">#9745</a>) (Erin)</li> <li>777283b Docs: Propose fix typo for function (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9965">#9965</a>) (John Eismeier)</li> <li>bf3d494 Docs: Fix typo in max-len ignorePattern example. (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9956">#9956</a>) (Tim Martin)</li> <li>d64fbb4 Docs: fix typo in prefer-destructuring.md example (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9930">#9930</a>) (Vse Mozhet Byt)</li> <li>f8d343f Chore: Fix default issue template (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9946">#9946</a>) (Kai Cataldo)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/eslint/eslint/blob/master/CHANGELOG.md">eslint's changelog</a>.</em></p> <blockquote> <p>v4.19.1 - March 21, 2018</p> <ul> <li>3ff5d11 Fix: no-invalid-regexp not understand variable for flags (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10112">#10112</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10113">#10113</a>) (薛定谔的猫)</li> <li>abc765c Fix: object-curly-newline minProperties w/default export (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10101">#10101</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10103">#10103</a>) (Kevin Partington)</li> <li>6f9e155 Docs: Update ambiguous for...in example for guard-for-in (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10114">#10114</a>) (CJ R)</li> <li>0360cc2 Chore: Adding debug logs on successful plugin loads (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10100">#10100</a>) (Kevin Partington)</li> <li>a717c5d Chore: Adding log at beginning of unit tests in Makefile.js (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10102">#10102</a>) (Kevin Partington)</li> </ul> <p>v4.19.0 - March 16, 2018</p> <ul> <li>55a1593 Update: consecutive option for one-var (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/4680">#4680</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9994">#9994</a>) (薛定谔的猫)</li> <li>8d3814e Fix: false positive about ES2018 RegExp enhancements (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9893">#9893</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10062">#10062</a>) (Toru Nagashima)</li> <li>935f4e4 Docs: Clarify default ignoring of node_modules (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10092">#10092</a>) (Matijs Brinkhuis)</li> <li>72ed3db Docs: Wrap <code>Buffer()</code> in backticks in <code>no-buffer-constructor</code> rule description (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10084">#10084</a>) (Stephen Edgar)</li> <li>3aded2f Docs: Fix lodash typos, make spacing consistent (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10073">#10073</a>) (Josh Smith)</li> <li>e33bb64 Chore: enable no-param-reassign on ESLint codebase (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10065">#10065</a>) (Teddy Katz)</li> <li>66a1e9a Docs: fix possible typo (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10060">#10060</a>) (Vse Mozhet Byt)</li> <li>2e68be6 Update: give a node at least the indentation of its parent (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9995">#9995</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10054">#10054</a>) (Teddy Katz)</li> <li>72ca5b3 Update: Correctly indent JSXText with trailing linebreaks (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9878">#9878</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10055">#10055</a>) (Teddy Katz)</li> <li>2a4c838 Docs: Update ECMAScript versions in FAQ (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10047">#10047</a>) (alberto)</li> </ul> <p>v4.18.2 - March 2, 2018</p> <ul> <li>6b71fd0 Fix: table@4.0.2, because 4.0.3 needs "ajv": "^6.0.1" (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10022">#10022</a>) (Mathieu Seiler)</li> <li>3c697de Chore: fix incorrect comment about linter.verify return value (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10030">#10030</a>) (Teddy Katz)</li> <li>9df8653 Chore: refactor parser-loading out of linter.verify (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10028">#10028</a>) (Teddy Katz)</li> <li>f6901d0 Fix: remove catastrophic backtracking vulnerability (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10002">#10002</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10019">#10019</a>) (Jamie Davis)</li> <li>e4f52ce Chore: Simplify dataflow in linter.verify (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10020">#10020</a>) (Teddy Katz)</li> <li>33177cd Chore: make library files non-executable (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10021">#10021</a>) (Teddy Katz)</li> <li>558ccba Chore: refactor directive comment processing (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10007">#10007</a>) (Teddy Katz)</li> <li>18e15d9 Chore: avoid useless catch clauses that just rethrow errors (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10010">#10010</a>) (Teddy Katz)</li> <li>a1c3759 Chore: refactor populating configs with defaults in linter (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10006">#10006</a>) (Teddy Katz)</li> <li>aea07dc Fix: Make max-len ignoreStrings ignore JSXText (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9954">#9954</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9985">#9985</a>) (Rachael Sim)</li> </ul> <p>v4.18.1 - February 20, 2018</p> <ul> <li>f417506 Fix: ensure no-await-in-loop reports the correct node (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9992">#9992</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9993">#9993</a>) (Teddy Katz)</li> <li>3e99363 Docs: Fixed typo in key-spacing rule doc (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9987">#9987</a>) (Jaid)</li> <li>7c2cd70 Docs: deprecate experimentalObjectRestSpread (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9986">#9986</a>) (Toru Nagashima)</li> </ul> <p>v4.18.0 - February 16, 2018</p> <ul> <li>70f22f3 Chore: Apply memoization to config creation within glob utils (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9944">#9944</a>) (Kenton Jacobsen)</li> <li>0e4ae22 Update: fix indent bug with binary operators/ignoredNodes (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9882">#9882</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9951">#9951</a>) (Teddy Katz)</li> <li>47ac478 Update: add named imports and exports for object-curly-newline (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9876">#9876</a>) (Nicholas Chua)</li> <li>e8efdd0 Fix: support Rest/Spread Properties (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9885">#9885</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9943">#9943</a>) (Toru Nagashima)</li> <li>f012b8c Fix: support Async iteration (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9891">#9891</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9957">#9957</a>) (Toru Nagashima)</li> <li>74fa253 Docs: Clarify no-mixed-operators options (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9962">#9962</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9964">#9964</a>) (Ivan Hayes)</li> <li>426868f Docs: clean up key-spacing docs (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9900">#9900</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9963">#9963</a>) (Abid Uzair)</li> <li>4a6f22e Update: support eslint-disable-* block comments (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/8781">#8781</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9745">#9745</a>) (Erin)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/eslint/eslint/commit/f1f1bdfffe0c2675e42cb6ad58145d40a6870135"><code>f1f1bdf</code></a> 4.19.1</li> <li><a href="https://github.com/eslint/eslint/commit/b446650083012a152ec55dd19c20f2ce951eb30a"><code>b446650</code></a> Build: changelog update for 4.19.1</li> <li><a href="https://github.com/eslint/eslint/commit/3ff5d11fe2ed601d4e0226bde50c06fe7c7f16ac"><code>3ff5d11</code></a> Fix: no-invalid-regexp not understand variable for flags (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10112">#10112</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10113">#10113</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/abc765c1bc6b546db82cb5cd038b66a3aa68b315"><code>abc765c</code></a> Fix: object-curly-newline minProperties w/default export (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10101">#10101</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10103">#10103</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/6f9e15514e7a6b880b7c735ac9e8b43aed3cc67e"><code>6f9e155</code></a> Docs: Update ambiguous for...in example for guard-for-in (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10114">#10114</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/0360cc25c86619d30e37e25d4ce9a78309591c18"><code>0360cc2</code></a> Chore: Adding debug logs on successful plugin loads (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10100">#10100</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/a717c5db7575c0ba677f1fd1e909cba08818bfae"><code>a717c5d</code></a> Chore: Adding log at beginning of unit tests in Makefile.js (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/10102">#10102</a>)</li> <li><a href="https://github.com/eslint/eslint/commit/4f595e8a7cc1fefae866d2cf0e758515d6098e3c"><code>4f595e8</code></a> 4.19.0</li> <li><a href="https://github.com/eslint/eslint/commit/16fc59e95140aeb7d7cda732aca7921a12b046c1"><code>16fc59e</code></a> Build: changelog update for 4.19.0</li> <li><a href="https://github.com/eslint/eslint/commit/55a15936346def8ddc0c5023431df20bec798fb2"><code>55a1593</code></a> Update: consecutive option for one-var (fixes <a href="https://github-redirect.dependabot.com/eslint/eslint/issues/4680">#4680</a>) (<a href="https://github-redirect.dependabot.com/eslint/eslint/issues/9994">#9994</a>)</li> <li>Additional commits viewable in <a href="https://github.com/eslint/eslint/compare/v4.17.0...v4.19.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+22 -24

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 14 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha a9057369d8596f821968243131d1aec741fb1305

Bump eslint from 4.17.0 to 4.19.1 Bumps [eslint](https://github.com/eslint/eslint) from 4.17.0 to 4.19.1. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/master/CHANGELOG.md) - [Commits](https://github.com/eslint/eslint/compare/v4.17.0...v4.19.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 7b6f5623349c9136e74fb348c4f5836a696e0208

Merge pull request #69 from dijonkitchen/dependabot/npm_and_yarn/eslint-4.19.1 Bump eslint from 4.17.0 to 4.19.1

view details

push time in 14 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/eslint-4.19.1

delete time in 14 days

delete branch dijonkitchen/algo-rhythms

delete branch : fixes

delete time in 14 days

push eventdijonkitchen/algo-rhythms

JC

commit sha f42275cd53da78e6b8a49d5d225c2fd152395894

fix: use duration, not next backoff amount

view details

JC

commit sha a3e1e10040b0996fe9002dba8b30393c6b9abd5e

bug: note problem to fix

view details

JC

commit sha afe1907f11d4ef6c548f1cea2a27a1c6dd8168f4

feat: add LRU cache

view details

JC

commit sha 3a0d25bed283f256c9e189087edda35105ced771

feat: add random grouping

view details

JC

commit sha e804259f1d53ce777c33d15d08fb5a6edd8eeb69

feat: add nearestPoints

view details

Jonathan Chen

commit sha ea783e6cbf44e0bc046603598f14919e1bd772cb

Merge pull request #23 from dijonkitchen/fixes Fixes

view details

push time in 14 days

PR merged dijonkitchen/algo-rhythms

Fixes

Changes proposed in this pull request:

Security considerations

[Note the any security considerations here, or make note of why there are none]

+143 -2

0 comment

5 changed files

dijonkitchen

pr closed time in 14 days

PR opened dijonkitchen/algo-rhythms

Fixes

Changes proposed in this pull request:

Security considerations

[Note the any security considerations here, or make note of why there are none]

+143 -2

0 comment

5 changed files

pr created time in 14 days

create barnchdijonkitchen/algo-rhythms

branch : fixes

created branch time in 14 days

push eventdijonkitchen/dijonkitchen.github.io

Jonathan Chen

commit sha bf12b70f7d51dd93888946f3aeaf33caa81538d4

Update 2017-05-25-solutioning.md

view details

push time in 14 days

push eventdijonkitchen/dijonkitchen.github.io

Jonathan Chen

commit sha 17167fe143cd4e5826f2e5835dcb42d09c5b3f61

Create 2015-09-22-pairing.md

view details

push time in 14 days

push eventdijonkitchen/dijonkitchen.github.io

Jonathan Chen

commit sha ba9f13cc508854b429a5347caa97dca0650b8656

Create 2017-05-25-solutioning.md

view details

push time in 14 days

push eventdijonkitchen/dijonkitchen.github.io

Jonathan Chen

commit sha c27f5eb70b955d974895cd7b4da3da5b4a82034e

Create 2018-02-25-architecture.md

view details

push time in 14 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 07fe6ba5760b4290d9eefc46de44e7c5883f77e5

Bump enzyme-adapter-react-16 from 1.1.1 to 1.15.2 Bumps [enzyme-adapter-react-16](https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16) from 1.1.1 to 1.15.2. - [Release notes](https://github.com/airbnb/enzyme/releases) - [Changelog](https://github.com/enzymejs/enzyme/blob/master/CHANGELOG.md) - [Commits](https://github.com/airbnb/enzyme/commits/enzyme-adapter-react-16@1.15.2/packages/enzyme-adapter-react-16) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 00c192e93ff678016dc80fba3ecc3776db9bd745

Merge pull request #72 from dijonkitchen/dependabot/npm_and_yarn/enzyme-adapter-react-16-1.15.2 Bump enzyme-adapter-react-16 from 1.1.1 to 1.15.2

view details

push time in 14 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/enzyme-adapter-react-16-1.15.2

delete time in 14 days

PR merged dijonkitchen/reader

Bump enzyme-adapter-react-16 from 1.1.1 to 1.15.2 dependencies

Bumps enzyme-adapter-react-16 from 1.1.1 to 1.15.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/enzymejs/enzyme/blob/master/CHANGELOG.md">enzyme-adapter-react-16's changelog</a>.</em></p> <blockquote> <h1>Change Log</h1> <h2>3.11.0</h2> <h3>New Stuff</h3> <ul> <li><code>render</code>: handle Fiber strings and numbers (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2221">#2221</a>)</li> </ul> <h3>Fixes</h3> <ul> <li><code>shallow</code>: Share child context logic between <code>shallow</code> and <code>dive</code> (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2296">#2296</a>)</li> <li><code>mount</code>: <code>children</code>: include text nodes ($2269)</li> <li><code>mount</code>: <code>invoke</code>: use adapter’s <code>wrapInvoke</code> if present (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2158">#2158</a>)</li> </ul> <h3>Docs</h3> <ul> <li><code>mount</code>/<code>shallow</code>: <code>closest</code>/<code>parent</code>: Add missing arguments description (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2264">#2264</a>)</li> <li><code>mount</code>/<code>shallow</code>: fix pluralization of “exist” (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2262">#2262</a>)</li> <li><code>shallow</code>/<code>mount</code>: <code>simulate</code>: added functional component example to simulate doc (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2248">#2248</a>)</li> <li><code>mount</code>: <code>debug</code>: add missing verbose option flag (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2184">#2184</a>)</li> <li><code>mount</code>/<code>shallow</code>: <code>update</code>: fix semantics description (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2194">#2194</a>)</li> <li>add missing backticks to linked method names (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2170">#2170</a>)</li> <li><code>invoke</code>: Add missing backticks to end of codeblock (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2160">#2160</a>)</li> <li><code>invoke</code>: Fix typo (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2167">#2167</a>)</li> <li>Explicit React CSS selector syntax description (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2178">#2178</a>)</li> </ul> <h3>Meta Stuff</h3> <ul> <li>[meta] add <code>funding</code> field</li> <li>[meta] Update airbnb.io URLs to use https (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2222">#2222</a>)</li> <li>[deps] update <code>is-boolean-object</code>, <code>is-callable</code>, <code>is-number-object</code>, <code>is-string</code>, <code>enzyme-shallow-equal</code>, <code>array.prototype.flat</code>, <code>function.prototype.name</code>, <code>html-element-map</code>, <code>is-regex</code>, <code>object-inspect</code>, <code>object-is</code>, <code>object.entries</code>, <code>object.vales</code>, <code>raf</code>, <code>string.prototype.trim</code></li> <li>[dev deps] update <code>eslint</code>, <code>eslint-plugin-import</code>, <code>eslint-plugin-markdown</code>, <code>eslint-plugin-react</code>, <code>safe-publish-latest</code>, <code>eslint-config-airbnb</code>, <code>rimraf</code>, <code>safe-publish-latest</code>, <code>karma-firefox-launcher</code>, <code>babel-preset-airbnb</code>, <code>glob-gitignore</code>, <code>semver</code>, <code>eslint-plugin-jsx-a11y</code></li> </ul> <h2>3.10.0</h2> <h3>New Stuff</h3> <ul> <li><code>shallow</code> add <code>suspenseFallback</code> option; support <code>Suspense</code>/<code>Lazy</code> (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/1975">#1975</a>)</li> <li><code>shallow</code>/<code>mount</code>: add <code>invoke(propName)(...args)</code> (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/1856">#1856</a>, <a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/945">#945</a>)</li> <li><code>shallow</code>: Support rendering and <code>dive()</code>ing <code>createContext()</code> providers and consumers (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/1966">#1966</a>)</li> <li><code>mount</code>/<code>shallow</code>: add <code>getWrappingComponent</code> (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/1960">#1960</a>)</li> <li><code>Utils</code>: add <code>isCustomComponent</code> (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/1960">#1960</a>)</li> <li><code>Utils</code>: add <code>stub</code> argument to <code>spyMethod</code></li> <li><code>EnzymeAdapter</code>: add <code>matchesElementType</code> (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2146">#2146</a>)</li> <li><code>RSTTraversal</code>: add <code>getHTMLFromHostNodes</code></li> </ul> <h3>Fixes</h3> <ul> <li><code>selectors</code>: unwrap <code>memo</code> elements - in both directions (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2146">#2146</a>)</li> <li><code>shallow</code>: properly determine "should render" for <code>PureComponent</code>s (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2096">#2096</a>)</li> <li><code>mount</code>/<code>shallow</code>: <code>renderProp</code>: improve error messages (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2070">#2070</a>)</li> <li><code>mount</code>: <code>setContext</code>: use proper wrapper name in error message</li> <li><code>shallow</code>: <code>.contains()</code>: clean up error message</li> <li><code>shallow</code>/<code>mount</code>: <code>hasClass</code>: avoid a crash with a non-string argument (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2057">#2057</a>)</li> <li><code>mount</code>: properly handle HTML of multiple nodes (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2052">#2052</a>)</li> <li><code>shallow</code>: ensure that if gDSFP exists, cDU is called. (<a href="https://github.com/airbnb/enzyme/tree/HEAD/packages/enzyme-adapter-react-16/issues/2027">#2027</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/enzymejs/enzyme/commit/9e3f562e6544b1244bd4fd8ca905201ae2f9dcf0"><code>9e3f562</code></a> v1.15.2</li> <li><a href="https://github.com/enzymejs/enzyme/commit/9ab3fa1db9399165e06cc46bb9737bd644f819f3"><code>9ab3fa1</code></a> [enzyme,enzyme-adapter-react-16] [deps] update <code>enzyme-shallow-equal</code></li> <li><a href="https://github.com/enzymejs/enzyme/commit/4aab4b8eda524dfaead4c61b3e355090f4665e17"><code>4aab4b8</code></a> [enzyme-adapter-react-] [deps] update <code>enzyme-adapter-utils</code></li> <li><a href="https://github.com/enzymejs/enzyme/commit/e57dbe8bfed7847f57f8c9ab6738f32d5019e91e"><code>e57dbe8</code></a> [] [meta] add <code>funding</code> field</li> <li><a href="https://github.com/enzymejs/enzyme/commit/82c35811f62968d07d7d994c053a0f61effdf771"><code>82c3581</code></a> [enzyme-adapter-react-{13,14,15,15.4,16,16.2,16.3}] [deps] update object-val...</li> <li><a href="https://github.com/enzymejs/enzyme/commit/8e98572003c12c21d99d2adb685382ecd0984c5d"><code>8e98572</code></a> [*] [dev deps] update <code>eslint</code>, <code>eslint-plugin-import</code>,eslint-plugin-markdo...</li> <li><a href="https://github.com/enzymejs/enzyme/commit/8b94a4470178c1970ea0d86560344c627623ad89"><code>8b94a44</code></a> [enzyme-adapter-react-{14,15.4,15,16.1,16.2,16.3,16}] [deps] update <code>react-is</code></li> <li><a href="https://github.com/enzymejs/enzyme/commit/dba05db843aa7c11adf3db56bb42f16002939196"><code>dba05db</code></a> [enzyme-adapter-react-16] [fix] <code>isMemo</code> and <code>isLazy</code> are no longer directly ...</li> <li><a href="https://github.com/enzymejs/enzyme/commit/9e26937c12a46c9915327d913b2a9fd3e711476e"><code>9e26937</code></a> [enzyme-adapter-react-16] v1.15.1</li> <li><a href="https://github.com/enzymejs/enzyme/commit/d4cd9180d830f931d54a61abea06f79933f000ba"><code>d4cd918</code></a> [enyzme-adapter-react-*] [deps] update <code>enzyme-adapter-utils</code></li> <li>Additional commits viewable in <a href="https://github.com/airbnb/enzyme/commits/enzyme-adapter-react-16@1.15.2/packages/enzyme-adapter-react-16">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+105 -32

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 14 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 19efe25ab58f20d42d8240ef04caac837c89b63f

Bump react-dom from 16.2.1 to 16.13.0 Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) from 16.2.1 to 16.13.0. - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/v16.13.0/packages/react-dom) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 0576bbfa1e966c8d792e15adea8152fd382d7faa

Merge pull request #73 from dijonkitchen/dependabot/npm_and_yarn/react-dom-16.13.0 Bump react-dom from 16.2.1 to 16.13.0

view details

push time in 14 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/react-dom-16.13.0

delete time in 14 days

PR merged dijonkitchen/reader

Bump react-dom from 16.2.1 to 16.13.0 dependencies

Bumps react-dom from 16.2.1 to 16.13.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/facebook/react/releases">react-dom's releases</a>.</em></p> <blockquote> <h2>16.13.0 (February 26, 2020)</h2> <h3>React</h3> <ul> <li>Warn when a string ref is used in a manner that's not amenable to a future codemod (<a href="https://github.com/lunaruan">@lunaruan</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17864">#17864</a>)</li> <li>Deprecate <code>React.createFactory()</code> (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17878">#17878</a>)</li> </ul> <h3>React DOM</h3> <ul> <li>Warn when changes in <code>style</code> may cause an unexpected collision (<a href="https://github.com/sophiebits">@sophiebits</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/14181">#14181</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/18002">#18002</a>)</li> <li>Warn when a function component is updated during another component's render phase (<a href="(https://github.com/acdlite)">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17099">#17099</a>)</li> <li>Deprecate <code>unstable_createPortal</code> (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17880">#17880</a>)</li> <li>Fix <code>onMouseEnter</code> being fired on disabled buttons (<a href="https://github.com/AlfredoGJ">@AlfredoGJ</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17675">#17675</a>)</li> <li>Call <code>shouldComponentUpdate</code> twice when developing in <code>StrictMode</code> (<a href="https://github.com/bvaughn">@bvaughn</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17942">#17942</a>)</li> <li>Add <code>version</code> property to ReactDOM (<a href="https://github.com/ealush">@ealush</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/15780">#15780</a>)</li> <li>Don't call <code>toString()</code> of <code>dangerouslySetInnerHTML</code> (<a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17773">#17773</a>)</li> <li>Show component stacks in more warnings (<a href="https://github.com/gaearon">@gaearon</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17922">#17922</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17586">#17586</a>)</li> </ul> <h3>Concurrent Mode (Experimental)</h3> <ul> <li>Warn for problematic usages of <code>ReactDOM.createRoot()</code> (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17937">#17937</a>)</li> <li>Remove <code>ReactDOM.createRoot()</code> callback params and added warnings on usage (<a href="https://github.com/bvaughn">@bvaughn</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17916">#17916</a>)</li> <li>Don't group Idle/Offscreen work with other work (<a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17456">#17456</a>)</li> <li>Adjust <code>SuspenseList</code> CPU bound heuristic (<a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17455">#17455</a>)</li> <li>Add missing event plugin priorities (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17914">#17914</a>)</li> <li>Fix <code>isPending</code> only being true when transitioning from inside an input event (<a href="https://github.com/acdlite">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17382">#17382</a>)</li> <li>Fix <code>React.memo</code> components dropping updates when interrupted by a higher priority update (<a href="(https://github.com/acdlite)">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/18091">#18091</a>)</li> <li>Don't warn when suspending at the wrong priority (<a href="https://github.com/gaearon">@gaearon</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17971">#17971</a>)</li> <li>Fix a bug with rebasing updates (<a href="https://github.com/acdlite">@acdlite</a> and <a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17560">#17560</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17510">#17510</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17483">#17483</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17480">#17480</a>)</li> </ul> <h2>Artifacts</h2> <ul> <li>react: <a href="https://unpkg.com/react@16.13.0/umd/">https://unpkg.com/react@16.13.0/umd/</a></li> <li>react-art: <a href="https://unpkg.com/react-art@16.13.0/umd/">https://unpkg.com/react-art@16.13.0/umd/</a></li> <li>react-dom: <a href="https://unpkg.com/react-dom@16.13.0/umd/">https://unpkg.com/react-dom@16.13.0/umd/</a></li> <li>react-is: <a href="https://unpkg.com/react-is@16.13.0/umd/">https://unpkg.com/react-is@16.13.0/umd/</a></li> <li>react-test-renderer: <a href="https://unpkg.com/react-test-renderer@16.13.0/umd/">https://unpkg.com/react-test-renderer@16.13.0/umd/</a></li> <li>scheduler: <a href="https://unpkg.com/scheduler@0.19.0/umd/">https://unpkg.com/scheduler@0.19.0/umd/</a></li> </ul> <h2>16.12.0 (November 14, 2019)</h2> <h3>React DOM</h3> <ul> <li>Fix passive effects (<code>useEffect</code>) not being fired in a multi-root app. (<a href="https://github.com/acdlite">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17347">#17347</a>)</li> </ul> <h3>React Is</h3> <ul> <li>Fix <code>lazy</code> and <code>memo</code> types considered elements instead of components (<a href="https://github.com/bvaughn">@bvaughn</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17278">#17278</a>)</li> </ul> <h2>Artifacts</h2> <p>• react: <a href="https://unpkg.com/react@16.12.0/umd/">https://unpkg.com/react@16.12.0/umd/</a></p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/facebook/react/blob/master/CHANGELOG.md">react-dom's changelog</a>.</em></p> <blockquote> <h2>16.13.0 (February 26, 2020)</h2> <h3>React</h3> <ul> <li>Warn when a string ref is used in a manner that's not amenable to a future codemod (<a href="https://github.com/lunaruan">@lunaruan</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17864">#17864</a>)</li> <li>Deprecate <code>React.createFactory()</code> (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17878">#17878</a>)</li> </ul> <h3>React DOM</h3> <ul> <li>Warn when changes in <code>style</code> may cause an unexpected collision (<a href="https://github.com/sophiebits">@sophiebits</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/14181">#14181</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/18002">#18002</a>)</li> <li>Warn when a function component is updated during another component's render phase (<a href="https://github.com/acdlite">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17099">#17099</a>)</li> <li>Deprecate <code>unstable_createPortal</code> (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17880">#17880</a>)</li> <li>Fix <code>onMouseEnter</code> being fired on disabled buttons (<a href="https://github.com/AlfredoGJ">@AlfredoGJ</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17675">#17675</a>)</li> <li>Call <code>shouldComponentUpdate</code> twice when developing in <code>StrictMode</code> (<a href="https://github.com/bvaughn">@bvaughn</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17942">#17942</a>)</li> <li>Add <code>version</code> property to ReactDOM (<a href="https://github.com/ealush">@ealush</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/15780">#15780</a>)</li> <li>Don't call <code>toString()</code> of <code>dangerouslySetInnerHTML</code> (<a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17773">#17773</a>)</li> <li>Show component stacks in more warnings (<a href="https://github.com/gaearon">@gaearon</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17922">#17922</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17586">#17586</a>)</li> </ul> <h3>Concurrent Mode (Experimental)</h3> <ul> <li>Warn for problematic usages of <code>ReactDOM.createRoot()</code> (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17937">#17937</a>)</li> <li>Remove <code>ReactDOM.createRoot()</code> callback params and added warnings on usage (<a href="https://github.com/bvaughn">@bvaughn</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17916">#17916</a>)</li> <li>Don't group Idle/Offscreen work with other work (<a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17456">#17456</a>)</li> <li>Adjust <code>SuspenseList</code> CPU bound heuristic (<a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17455">#17455</a>)</li> <li>Add missing event plugin priorities (<a href="https://github.com/trueadm">@trueadm</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17914">#17914</a>)</li> <li>Fix <code>isPending</code> only being true when transitioning from inside an input event (<a href="https://github.com/acdlite">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17382">#17382</a>)</li> <li>Fix <code>React.memo</code> components dropping updates when interrupted by a higher priority update (<a href="(https://github.com/acdlite)">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/18091">#18091</a>)</li> <li>Don't warn when suspending at the wrong priority (<a href="https://github.com/gaearon">@gaearon</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17971">#17971</a>)</li> <li>Fix a bug with rebasing updates (<a href="https://github.com/acdlite">@acdlite</a> and <a href="https://github.com/sebmarkbage">@sebmarkbage</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17560">#17560</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17510">#17510</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17483">#17483</a>, <a href="https://github-redirect.dependabot.com/facebook/react/pull/17480">#17480</a>)</li> </ul> <h2>16.12.0 (November 14, 2019)</h2> <h3>React DOM</h3> <ul> <li>Fix passive effects (<code>useEffect</code>) not being fired in a multi-root app. (<a href="https://github.com/acdlite">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17347">#17347</a>)</li> </ul> <h3>React Is</h3> <ul> <li>Fix <code>lazy</code> and <code>memo</code> types considered elements instead of components (<a href="https://github.com/bvaughn">@bvaughn</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17278">#17278</a>)</li> </ul> <h2>16.11.0 (October 22, 2019)</h2> <h3>React DOM</h3> <ul> <li>Fix <code>mouseenter</code> handlers from firing twice inside nested React containers. <a href="https://github.com/yuanoook">@yuanoook</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/16928">#16928</a></li> <li>Remove <code>unstable_createRoot</code> and <code>unstable_createSyncRoot</code> experimental APIs. (These are available in the Experimental channel as <code>createRoot</code> and <code>createSyncRoot</code>.) (<a href="http://github.com/acdlite">@acdlite</a> in <a href="https://github-redirect.dependabot.com/facebook/react/pull/17088">#17088</a>)</li> </ul> <h2>16.10.2 (October 3, 2019)</h2> <h3>React DOM</h3> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/facebook/react/commits/v16.13.0/packages/react-dom">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~threepointone">threepointone</a>, a new releaser for react-dom since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+30 -15

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 14 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/types/jest-26.0.3

delete time in 14 days

push eventdijonkitchen/Set-TDD

dependabot-preview[bot]

commit sha 8fa78f336d0467c888f96c54544330ff816fa977

Build(deps-dev): Bump @types/jest from 26.0.0 to 26.0.3 Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 26.0.0 to 26.0.3. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha fbac39df6f240940c56ffde7fa269c4c03e21c56

Merge pull request #145 from dijonkitchen/dependabot/npm_and_yarn/types/jest-26.0.3 Build(deps-dev): Bump @types/jest from 26.0.0 to 26.0.3

view details

push time in 14 days

PR merged dijonkitchen/Set-TDD

Build(deps-dev): Bump @types/jest from 26.0.0 to 26.0.3 dependencies

Bumps @types/jest from 26.0.0 to 26.0.3. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 14 days

push eventdijonkitchen/humanevalue

Jonathan Chen

commit sha 61f752ab4dd2ecfb9e822a0144f661ec2db52b6b

Update README.md

view details

push time in 14 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/eslint-plugin-import-2.21.2

delete time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 779319c463df0a92792df95553abb83bfe8cb9ce

Bump eslint-plugin-import from 2.8.0 to 2.21.2 Bumps [eslint-plugin-import](https://github.com/benmosher/eslint-plugin-import) from 2.8.0 to 2.21.2. - [Release notes](https://github.com/benmosher/eslint-plugin-import/releases) - [Changelog](https://github.com/benmosher/eslint-plugin-import/blob/master/CHANGELOG.md) - [Commits](https://github.com/benmosher/eslint-plugin-import/compare/v2.8.0...v2.21.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha f9206599e133678423cc3b8ae10485b732bfab32

Merge pull request #61 from dijonkitchen/dependabot/npm_and_yarn/eslint-plugin-import-2.21.2 Bump eslint-plugin-import from 2.8.0 to 2.21.2

view details

push time in 16 days

PR merged dijonkitchen/reader

Bump eslint-plugin-import from 2.8.0 to 2.21.2 dependencies

Bumps eslint-plugin-import from 2.8.0 to 2.21.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/benmosher/eslint-plugin-import/blob/master/CHANGELOG.md">eslint-plugin-import's changelog</a>.</em></p> <blockquote> <h2>[2.21.2] - 2020-06-09</h2> <h3>Fixed</h3> <ul> <li>[<code>order</code>]: avoid a crash on TypeScript’s <code>export import</code> syntax (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1808">#1808</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>newline-after-import</code>]: consider TypeScript <code>import =</code> syntax' (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1811">#1811</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> <li>[<code>no-internal-modules</code>]: avoid a crash on a named export declaration (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1814">#1814</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h2>[2.21.1] - 2020-06-07</h2> <h3>Fixed</h3> <ul> <li>TypeScript: [<code>import/named</code>]: avoid requiring <code>typescript</code> when not using TS (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1805">#1805</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h2>[2.21.0] - 2020-06-07</h2> <h3>Added</h3> <ul> <li>[<code>import/default</code>]: support default export in TSExportAssignment (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1528">#1528</a>, thanks [<a href="https://github.com/joaovieira">@joaovieira</a>])</li> <li>[<code>no-cycle</code>]: add <code>ignoreExternal</code> option (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1681">#1681</a>, thanks [<a href="https://github.com/sveyret">@sveyret</a>])</li> <li>[<code>order</code>]: Add support for TypeScript's "import equals"-expressions (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1785">#1785</a>, thanks [<a href="https://github.com/manuth">@manuth</a>])</li> <li>[<code>import/default</code>]: support default export in TSExportAssignment (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1689">#1689</a>, thanks [<a href="https://github.com/Maxim-Mazurok">@Maxim-Mazurok</a>])</li> <li>[<code>no-restricted-paths</code>]: add custom message support (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1802">#1802</a>, thanks [<a href="https://github.com/malykhinvi">@malykhinvi</a>])</li> </ul> <h3>Fixed</h3> <ul> <li>[<code>group-exports</code>]: Flow type export awareness (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1702">#1702</a>, thanks [<a href="https://github.com/ernestostifano">@ernestostifano</a>])</li> <li>[<code>order</code>]: Recognize pathGroup config for first group (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1719">#1719</a>, <a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1724">#1724</a>, thanks [<a href="https://github.com/forivall">@forivall</a>], [<a href="https://github.com/xpl">@xpl</a>])</li> <li>[<code>no-unused-modules</code>]: Fix re-export not counting as usage when used in combination with import (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1722">#1722</a>, thanks [<a href="https://github.com/Ephem">@Ephem</a>])</li> <li>[<code>no-duplicates</code>]: Handle TS import type (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1676">#1676</a>, thanks [<a href="https://github.com/kmui2">@kmui2</a>])</li> <li>[<code>newline-after-import</code>]: recognize decorators (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1139">#1139</a>, thanks [<a href="https://github.com/atos1990">@atos1990</a>])</li> <li>[<code>no-unused-modules</code>]: Revert "[flow] <code>no-unused-modules</code>: add flow type support" (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1770">#1770</a>, thanks [<a href="https://github.com/Hypnosphi">@Hypnosphi</a>])</li> <li>TypeScript: Add nested namespace handling (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1763">#1763</a>, thanks [<a href="https://github.com/julien1619">@julien1619</a>])</li> <li>[<code>namespace</code>]/<code>ExportMap</code>: Fix interface declarations for TypeScript (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1764">#1764</a>, thanks [<a href="https://github.com/julien1619">@julien1619</a>])</li> <li>[<code>no-unused-modules</code>]: avoid order-dependence (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1744">#1744</a>, thanks [<a href="https://github.com/darkartur">@darkartur</a>])</li> <li>[<code>no-internal-modules</code>]: also check <code>export from</code> syntax (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1691">#1691</a>, thanks [<a href="https://github.com/adjerbetian">@adjerbetian</a>])</li> <li>TypeScript: [<code>export</code>]: avoid a crash with <code>export =</code> (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1801">#1801</a>, thanks [<a href="https://github.com/ljharb">@ljharb</a>])</li> </ul> <h3>Changed</h3> <ul> <li>[Refactor] <code>no-extraneous-dependencies</code>: use moduleVisitor (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1735">#1735</a>, thanks [<a href="https://github.com/adamborowski">@adamborowski</a>])</li> <li>TypeScript config: Disable [<code>named</code>][] (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1726">#1726</a>, thanks [<a href="https://github.com/astorije">@astorije</a>])</li> <li>[readme] Remove duplicate no-unused-modules from docs (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1690">#1690</a>, thanks [<a href="https://github.com/arvigeus">@arvigeus</a>])</li> <li>[Docs] <code>order</code>: fix bad inline config (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1788">#1788</a>, thanks [<a href="https://github.com/nickofthyme">@nickofthyme</a>])</li> <li>[Tests] Add fix for Windows Subsystem for Linux (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1786">#1786</a>, thanks [<a href="https://github.com/manuth">@manuth</a>])</li> <li>[Docs] <code>no-unused-rules</code>: Fix docs for unused exports (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1776">#1776</a>, thanks [<a href="https://github.com/barbogast">@barbogast</a>])</li> <li>[eslint] bump minimum v7 version to v7.2.0</li> </ul> <h2>[2.20.2] - 2020-03-28</h2> <h3>Fixed</h3> <ul> <li>[<code>order</code>]: fix <code>isExternalModule</code> detect on windows (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1651">#1651</a>, thanks [<a href="https://github.com/fisker">@fisker</a>])</li> <li>[<code>order</code>]: recognize ".." as a "parent" path (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1658">#1658</a>, thanks [<a href="https://github.com/golopot">@golopot</a>])</li> <li>[<code>no-duplicates</code>]: fix fixer on cases with default import (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1666">#1666</a>, thanks [<a href="https://github.com/golopot">@golopot</a>])</li> <li>[<code>no-unused-modules</code>]: Handle <code>export { default } from</code> syntax (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1631">#1631</a>, thanks [<a href="https://github.com/richardxia">@richardxia</a>])</li> <li>[<code>first</code>]: Add a way to disable <code>absolute-first</code> explicitly (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1664">#1664</a>, thanks [<a href="https://github.com/TheCrueltySage">@TheCrueltySage</a>])</li> <li>[Docs] <code>no-webpack-loader-syntax</code>: Updates webpack URLs (<a href="https://github-redirect.dependabot.com/benmosher/eslint-plugin-import/issues/1751">#1751</a>, thanks [<a href="https://github.com/MikeyBeLike">@MikeyBeLike</a>])</li> </ul> <h2>[2.20.1] - 2020-02-01</h2> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/f53e872540dfc13b129f456844373b451fa540f3"><code>f53e872</code></a> Bump to v2.21.2</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/ffd540fc7a32c154eb870d05b865de0db64fa2cb"><code>ffd540f</code></a> [Dev Deps] update <code>in-publish</code>, <code>typescript</code></li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/4ce280a0e1527380c25c7ca7d83767326d972442"><code>4ce280a</code></a> [Fix] <code>no-internal-modules</code>: avoid a crash on a named export declaration</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/903e8fbcaf345544338077e23a83e669fd54bc14"><code>903e8fb</code></a> [Fix] <code>newline-after-import</code>: consider TypeScript <code>import =</code> syntax</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/cc604c1ed9267427c50dd8e598f6a1e136867173"><code>cc604c1</code></a> [Fix] <code>order</code>: avoid a crash on TypeScript’s <code>export import</code> syntax</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/1951ef517ab50b6d664a97bd3d799e347914e186"><code>1951ef5</code></a> [Tests] <code>order</code>: group TS tests together</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/63d2a3f8c0d9ef874680c3150d1c14925fb1f36b"><code>63d2a3f</code></a> Bump to v2.21.1</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/381b2b56597bfc45e2558d916ad78a7db055f691"><code>381b2b5</code></a> [Fix] TypeScript: <code>named</code>: avoid requiring <code>typescript</code> when not using TS</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/26992510364f7c6061b18249c33ee8d9a14ccc80"><code>2699251</code></a> Bump to v2.21.0</li> <li><a href="https://github.com/benmosher/eslint-plugin-import/commit/d84062e290b1e2b80f459ecff7dde5ea5f8c0141"><code>d84062e</code></a> [eslint] bump minimum v7 version to v7.2.0</li> <li>Additional commits viewable in <a href="https://github.com/benmosher/eslint-plugin-import/compare/v2.8.0...v2.21.2">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~ljharb">ljharb</a>, a new releaser for eslint-plugin-import since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+66 -43

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/handlebars-4.1.2

delete time in 16 days

push eventdijonkitchen/reader

dependabot[bot]

commit sha f5d8ca4c686cbf67bb85f7eb7ed0e333862a1617

Bump handlebars from 4.0.11 to 4.1.2 Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.11 to 4.1.2. - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.0.11...v4.1.2) Signed-off-by: dependabot[bot] <support@github.com>

view details

Jonathan Chen

commit sha edac01afa3b0fb9017e59e90793a395401ada3a9

Merge pull request #46 from dijonkitchen/dependabot/npm_and_yarn/handlebars-4.1.2 Bump handlebars from 4.0.11 to 4.1.2

view details

push time in 16 days

PR merged dijonkitchen/reader

Bump handlebars from 4.0.11 to 4.1.2 dependencies

Bumps handlebars from 4.0.11 to 4.1.2. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.1.2 - April 13th, 2019

Chore/Test:

  • #1515 - Port over linting and test for typings (@​zimmi88)
  • chore: add missing typescript dependency, add package-lock.json - 594f1e3
  • test: remove safari from saucelabs - 871accc

Bugfixes:

  • fix: prevent RCE through the "lookup"-helper - cd38583

Compatibility notes:

Access to the constructor of a class thought {{lookup obj "constructor" }} is now prohibited. This closes a leak that only half closed in versions 4.0.13 and 4.1.0, but it is a slight incompatibility.

This kind of access is not the intended use of Handlebars and leads to the vulnerability described in #1495. We will not increase the major version, because such use is not intended or documented, and because of the potential impact of the issue (we fear that most people won't use a new major version and the issue may not be resolved on many systems).

Commits

v4.1.1 - March 16th, 2019

Bugfixes:

  • fix: add "runtime.d.ts" to allow "require('handlebars/runtime')" in TypeScript - 5cedd62

Refactorings:

  • replace "async" with "neo-async" - 048f2ce
  • use "substring"-function instead of "substr" - 445ae12

Compatibility notes:

  • This is a bugfix release. There are no breaking change and no new features.

Commits

v4.1.0 - February 7th, 2019

New Features

  • import TypeScript typings - 27ac1ee

Security fixes:

  • disallow access to the constructor in templates to prevent RCE - 42841c4, #1495

Housekeeping

  • chore: fix components/handlebars package.json and auto-update on release - bacd473
  • chore: Use node 10 to build handlebars - 78dd89c
  • chore/doc: Add more release docs - 6b87c21

</tr></table> ... (truncated) </details> <details> <summary>Commits</summary>

  • 10b5fcf v4.1.2
  • dd0144c Update release notes
  • 594f1e3 chore: add missing typescript dependency, add package-lock.json
  • 871accc test: remove safari from saucelabs
  • cd38583 fix: prevent RCE through the "lookup"-helper
  • c454d94 Merge pull request #1515 from zimmi88/4.x-typings-lint
  • 9cfb5dd Merge pull request #1516 from phil-davis/revert-double-release-notes
  • be44246 Remove triplicate of v4.0.12 release notes
  • 002561b Revert "Update release notes"
  • 3fb6687 Port over linting and test for typings
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

</details>

+19 -95

0 comment

1 changed file

dependabot[bot]

pr closed time in 16 days

push eventdijonkitchen/Set-TDD

dependabot-preview[bot]

commit sha e553b9bca79e91b01870bfcb10614c36084e7662

Build(deps-dev): Bump @types/jest from 25.2.1 to 26.0.0 Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 25.2.1 to 26.0.0. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 6ced270934ba574c0f277c2f6bf6a9394c6d1767

Merge pull request #140 from dijonkitchen/dependabot/npm_and_yarn/types/jest-26.0.0 Build(deps-dev): Bump @types/jest from 25.2.1 to 26.0.0

view details

push time in 16 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/types/jest-26.0.0

delete time in 16 days

PR merged dijonkitchen/Set-TDD

Build(deps-dev): Bump @types/jest from 25.2.1 to 26.0.0 dependencies

Bumps @types/jest from 25.2.1 to 26.0.0. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 8dfa48a9708db6de3c28138c69199ed0bea40963

[Security] Bump stringstream from 0.0.5 to 0.0.6 Bumps [stringstream](https://github.com/mhart/StringStream) from 0.0.5 to 0.0.6. **This update includes security fixes.** - [Release notes](https://github.com/mhart/StringStream/releases) - [Commits](https://github.com/mhart/StringStream/compare/v0.0.5...v0.0.6)

view details

Jonathan Chen

commit sha 20ce8aa6ae6c957850b53f83720fe917d2ea0ab9

Merge pull request #42 from dijonkitchen/dependabot/npm_and_yarn/stringstream-0.0.6 [Security] Bump stringstream from 0.0.5 to 0.0.6

view details

push time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/stringstream-0.0.6

delete time in 16 days

PR merged dijonkitchen/reader

[Security] Bump stringstream from 0.0.5 to 0.0.6 dependencies security

Bumps stringstream from 0.0.5 to 0.0.6. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The Node Security Working Group.

Out-of-bounds Read stringstream allocates uninitialized Buffers when number is passed in input stream on Node.js 4.x and below

Affected versions: <=0.0.5

Sourced from The Node Security Working Group.

Out-of-bounds Read stringstream allocates uninitialized Buffers when number is passed in input stream on Node.js 4.x and below

Affected versions: <=0.0.5

</details> <details> <summary>Commits</summary>

  • fee31c5 0.0.6
  • 2f4a9d4 Merge pull request #9 from mhart/fix-buffer-constructor-vuln
  • afbc744 Ensure data is not a number in Buffer constructor
  • See full diff in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+2 -2

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/handlebars-4.7.6

delete time in 16 days

push eventdijonkitchen/Set-TDD

dependabot-preview[bot]

commit sha 4406f0443e888feb09c6d39ff470d820b92ae507

Build(deps): [Security] Bump handlebars from 4.3.0 to 4.7.6 Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.3.0 to 4.7.6. **This update includes a security fix.** - [Release notes](https://github.com/wycats/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md) - [Commits](https://github.com/wycats/handlebars.js/compare/v4.3.0...v4.7.6) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha f622bfc09d57d5c713b530952888ed9b2875ec1e

Merge pull request #129 from dijonkitchen/dependabot/npm_and_yarn/handlebars-4.7.6 Build(deps): [Security] Bump handlebars from 4.3.0 to 4.7.6

view details

push time in 16 days

PR merged dijonkitchen/Set-TDD

Build(deps): [Security] Bump handlebars from 4.3.0 to 4.7.6 dependencies security

Bumps handlebars from 4.3.0 to 4.7.6. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/nodejs/security-wg/blob/master/vuln/npm/519.json">The Node Security Working Group</a>.</em></p> <blockquote> <p><strong>Denial of Service</strong> Crash Node.js process from handlebars using a small and simple source</p> <p>Affected versions: <4.6.0</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md">handlebars's changelog</a>.</em></p> <blockquote> <h2>v4.7.6 - April 3rd, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1672">#1672</a> - Switch cmd parser to latest minimist (<a href="https://api.github.com/users/dougwilson">@dougwilson</a></li> </ul> <p>Compatibility notes:</p> <ul> <li>Restored Node.js compatibility</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.5...v4.7.6">Commits</a></p> <h2>v4.7.5 - April 2nd, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><del>Node.js version support has been changed to v6+</del> Reverted in 4.7.6</li> </ul> <p>Compatibility notes:</p> <ul> <li><del>Node.js < v6 is no longer supported</del> Reverted in 4.7.6</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.4...v4.7.5">Commits</a></p> <h2>v4.7.4 - April 1st, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1666">#1666</a> - Replaced minimist with yargs for handlebars CLI (<a href="https://api.github.com/users/aorinevo">@aorinevo</a>, <a href="https://api.github.com/users/AviVahl">@AviVahl</a> & <a href="https://api.github.com/users/fabb">@fabb</a>)</li> </ul> <p>Compatibility notes:</p> <ul> <li>No incompatibilities are to be expected</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.3...v4.7.4">Commits</a></p> <h2>v4.7.3 - February 5th, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1644">#1644</a> - Download links to aws broken on handlebarsjs.com - access denied (<a href="https://api.github.com/users/Tea56">@Tea56</a>)</li> <li>Fix spelling and punctuation in changelog - d78cc73</li> </ul> <p>Bugfixes:</p> <ul> <li>Add Type Definition for Handlebars.VERSION, Fixes <a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1647">#1647</a> - 4de51fe</li> <li>Include Type Definition for runtime.js in Package - a32d05f</li> </ul> <p>Compatibility notes:</p> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/e6ad93ea01bcde1f8ddaa4b4ebe572dd616abfaa"><code>e6ad93e</code></a> v4.7.6</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/2bf4fc6fd3ae3d8f076d628653f284d85faebeb4"><code>2bf4fc6</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/b64202bc9197307bd785a58693e3820eb9bb41a8"><code>b64202b</code></a> Update release-notes.md</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/c2f1e6203178918569f085e12afdb762cae17fb0"><code>c2f1e62</code></a> Switch cmd parser to latest minimist</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/08e9a11a34c3ad8387a0b85b1334f97cab85191a"><code>08e9a11</code></a> Revert "chore: set Node.js compatibility to v6+"</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/1fd2edee2a12fb228061fcde807905c6b14339c4"><code>1fd2ede</code></a> v4.7.5</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/3c9c2f5cf29cf10f54d5fe4daca6b24b65f0adcf"><code>3c9c2f5</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/16487a088e13f4d52c6fd6610b9ec71c4a51be8a"><code>16487a0</code></a> chore: downgrade yargs to v14</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/309d2b49a11628d2a8f052c5587e7459968cd705"><code>309d2b4</code></a> chore: set Node.js compatibility to v6+</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/645ac73844918668f9a2f41e49b7cb18ce5abf36"><code>645ac73</code></a> test: fix integration tests</li> <li>Additional commits viewable in <a href="https://github.com/wycats/handlebars.js/compare/v4.3.0...v4.7.6">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~erisds">erisds</a>, a new releaser for handlebars since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+9 -34

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha cf7f1be1500b0dc4b7d09ebb5f5b9fbf94b53317

[Security] Bump merge from 1.2.0 to 1.2.1 Bumps [merge](https://github.com/yeikos/js.merge) from 1.2.0 to 1.2.1. **This update includes security fixes.** - [Release notes](https://github.com/yeikos/js.merge/releases) - [Commits](https://github.com/yeikos/js.merge/compare/v1.2.0...v1.2.1)

view details

Jonathan Chen

commit sha 11da84169cf1bddbde9164998fe238b54b784017

Merge pull request #40 from dijonkitchen/dependabot/npm_and_yarn/merge-1.2.1 [Security] Bump merge from 1.2.0 to 1.2.1

view details

push time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/merge-1.2.1

delete time in 16 days

PR merged dijonkitchen/reader

[Security] Bump merge from 1.2.0 to 1.2.1 dependencies security

Bumps merge from 1.2.0 to 1.2.1. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

High severity vulnerability that affects merge The merge.recursive function in the merge package in versions before 1.2.1 can be tricked into adding or modifying properties of the Object prototype. These properties will be present on all objects allowing for a denial of service attack.

Affected versions: < 1.2.1

</details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+2 -2

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/typescript-3.9.5

delete time in 16 days

push eventdijonkitchen/Set-TDD

dependabot-preview[bot]

commit sha d3738b220cdc816a4fcb42e604ba3ef473af4838

Build(deps-dev): Bump typescript from 3.8.3 to 3.9.5 Bumps [typescript](https://github.com/Microsoft/TypeScript) from 3.8.3 to 3.9.5. - [Release notes](https://github.com/Microsoft/TypeScript/releases) - [Commits](https://github.com/Microsoft/TypeScript/compare/v3.8.3...v3.9.5) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 0adba895572cdd2d7cc96ebdb8af26151c3fc74d

Merge pull request #139 from dijonkitchen/dependabot/npm_and_yarn/typescript-3.9.5 Build(deps-dev): Bump typescript from 3.8.3 to 3.9.5

view details

push time in 16 days

PR merged dijonkitchen/Set-TDD

Build(deps-dev): Bump typescript from 3.8.3 to 3.9.5 dependencies

Bumps typescript from 3.8.3 to 3.9.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Microsoft/TypeScript/releases">typescript's releases</a>.</em></p> <blockquote> <h2>TypeScript 3.9.5</h2> <p>This release contains <a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.5%22+is%3Aclosed+">bug fixes in type-checking, emit, and editor scenarios</a>.</p> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.0%22+is%3Aclosed+">fixed issues query for Typescript v3.9.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.1%22+is%3Aclosed+">fixed issues query for Typescript v3.9.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.2%22+is%3Aclosed+">fixed issues query for Typescript v3.9.2 (Final)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.3%22+is%3Aclosed+">fixed issues query for Typescript v3.9.3 (patch release)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.5%22+is%3Aclosed+">fixed issues query for Typescript v3.9.5 (patch release)</a>.</li> </ul> <p>(note, 3.9.4 was intentionally skipped due to minor complications in publishing)</p> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> </ul> <h2>TypeScript 3.9.3</h2> <p>This release contains <a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.3%22+is%3Aclosed+">bug fixes in type-checking, APIs, emit, and editor scenarios</a>.</p> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.0%22+is%3Aclosed+">fixed issues query for Typescript v3.9.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.1%22+is%3Aclosed+">fixed issues query for Typescript v3.9.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.2%22+is%3Aclosed+">fixed issues query for Typescript v3.9.2 (Final)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.3%22+is%3Aclosed+">fixed issues query for Typescript v3.9.3 (patch release)</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> </ul> <h2>TypeScript 3.9.2</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9/">release announcement</a>.</p> <p>For the complete list of fixed issues, check out the</p> <ul> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.0%22+is%3Aclosed+">fixed issues query for Typescript v3.9.0 (Beta)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.1%22+is%3Aclosed+">fixed issues query for Typescript v3.9.1 (RC)</a>.</li> <li><a href="https://github.com/Microsoft/TypeScript/issues?utf8=%E2%9C%93&q=is%3Aissue+milestone%3A%22TypeScript+3.9.2%22+is%3Aclosed+">fixed issues query for Typescript v3.9.2 (Final)</a>.</li> </ul> <p>Downloads are available on:</p> <ul> <li><a href="https://www.npmjs.com/package/typescript">npm</a></li> <li><a href="https://marketplace.visualstudio.com/items?itemName=TypeScriptTeam.TypeScript-39">Visual Studio 2017/2019</a> (<a href="https://github.com/Microsoft/TypeScript/wiki/Updating-TypeScript-in-Visual-Studio-2017">Select new version in project options</a>)</li> <li><a href="https://www.nuget.org/packages/Microsoft.TypeScript.MSBuild">NuGet package</a></li> </ul> <h2>TypeScript 3.9 RC</h2> <p>For release notes, check out the <a href="https://devblogs.microsoft.com/typescript/announcing-typescript-3-9-rc/">release announcement</a>.</p> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/microsoft/TypeScript/commit/c388222b29228a572b4e3c9ca907863d0b1945c6"><code>c388222</code></a> Bump version to 3.9.5 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/e0d620d18ed55c289f0863a11355c11423f7f6ed"><code>e0d620d</code></a> Update LKG.</li> <li><a href="https://github.com/microsoft/TypeScript/commit/28ea935aa25d89f41951dc0328066cfb3c966ef0"><code>28ea935</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38811">#38811</a> from typescript-bot/pick/38808/release-3.9</li> <li><a href="https://github.com/microsoft/TypeScript/commit/4087757e9d376cdc97b30a4516881db1f90636ae"><code>4087757</code></a> Bump version to 3.9.4 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/c34b39bcffbacbe2b9d11ce03a6b0490aa2eac29"><code>c34b39b</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38808">#38808</a> into release-3.9</li> <li><a href="https://github.com/microsoft/TypeScript/commit/d49ad7acf8ad41bae9a216b400ce98a109d950af"><code>d49ad7a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38721">#38721</a> from microsoft/cherry-pick-38719</li> <li><a href="https://github.com/microsoft/TypeScript/commit/4ac4d9a940557d56155aad0e5d51437030bf2f2d"><code>4ac4d9a</code></a> Cherry-pick 79f1ec32bdad218a46ba58f9e01535aaf5433578</li> <li><a href="https://github.com/microsoft/TypeScript/commit/c019c8354798dbcaec370ab68ae625be450be31e"><code>c019c83</code></a> Cherry-pick PR <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38683">#38683</a> into release-3.9 (<a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38718">#38718</a>)</li> <li><a href="https://github.com/microsoft/TypeScript/commit/a076e9ebe25c567645c508533b4aff51925bab2f"><code>a076e9e</code></a> Bump version to 3.9.3 and LKG</li> <li><a href="https://github.com/microsoft/TypeScript/commit/59d7d000051ab24c37284313b046c244b281c6bf"><code>59d7d00</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/Microsoft/TypeScript/issues/38669">#38669</a> from typescript-bot/pick/38565/release-3.9</li> <li>Additional commits viewable in <a href="https://github.com/Microsoft/TypeScript/compare/v3.8.3...v3.9.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+4 -4

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 7ec0f9e33733b1b5b8223aa300d97f31b43fba3b

[Security] Bump sshpk from 1.13.1 to 1.16.1 Bumps [sshpk](https://github.com/joyent/node-sshpk) from 1.13.1 to 1.16.1. **This update includes security fixes.** - [Release notes](https://github.com/joyent/node-sshpk/releases) - [Commits](https://github.com/joyent/node-sshpk/compare/v1.13.1...v1.16.1)

view details

Jonathan Chen

commit sha 3011dce0bd1631e62d61e794bcf1b792defb26cb

Merge pull request #41 from dijonkitchen/dependabot/npm_and_yarn/sshpk-1.16.1 [Security] Bump sshpk from 1.13.1 to 1.16.1

view details

push time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/sshpk-1.16.1

delete time in 16 days

PR merged dijonkitchen/reader

[Security] Bump sshpk from 1.13.1 to 1.16.1 dependencies security

Bumps sshpk from 1.13.1 to 1.16.1. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

Moderate severity vulnerability that affects sshpk The sshpk NPM package is vulnerable to ReDoS when parsing crafted invalid public keys.

Affected versions: < 1.13.2

Sourced from The Node Security Working Group.

Denial of Service sshpk is vulnerable to ReDoS when parsing crafted invalid public keys

Affected versions: <=1.13.1

</details> <details> <summary>Release notes</summary>

Sourced from sshpk's releases.

v1.16.1

  • Fixes for #60 (correctly encoding certificates with expiry dates >=2050), #62 (accepting PKCS#8 EC private keys with missing public key parts)

v1.16.0

  • Add support for SPKI fingerprints, PuTTY PPK format (public-key only for now), PKCS#8 PBKDF2 encrypted private keys
  • Fix for #48

v1.15.2

  • New API for accessing x509 extensions in certificates
  • Fixes for #52, #50

v1.14.1

  • Remove all remaining usage of jodid25519 (abandoned dep)
  • Add support for DNSSEC key format
  • Add support for Ed25519 keys in PEM format (according to draft-curdle-pkix)
  • Fixes for X.509 encoding issues (asn.1 NULLs in RSA certs, cert string type mangling)
  • Performance issues parsing long SSH public keys </details> <details> <summary>Commits</summary>
  • 1aece0d joyent/node-sshpk#60 certs should generate GeneralizedTime values for dates >...
  • 684dbe6 joyent/node-sshpk#62 handle pkcs8 ECDSA keys with missing public parts
  • 574ff21 joyent/node-sshpk#18 support for PKCS8 encrypted private keys
  • f647cf2 joyent/node-sshpk#27 Add support for PuTTY PPK format
  • 44aec4a joyent/node-sshpk#59 want support for SPKI fingerprint format
  • 385ff11 joyent/node-sshpk#48 wish: add support for x509 certificates in text form
  • c7a6c68 joyent/node-sshpk#58 des-ede3-cbc encrypted keys broken
  • 2ab4f2a joyent/node-sshpk#56 md5 fingerprints not quite right
  • 026ef47 joyent/node-sshpk#53 stop using optional deps to fix webpack
  • 53e23fe joyent/node-sshpk#50 Support PKCS#5 AES-256-CBC encrypted private keys
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+18 -11

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

push eventdijonkitchen/Set-TDD

dependabot-preview[bot]

commit sha 253d18636eeb6aa58f4ed6882cabf7765e627b2a

Build(deps-dev): Bump @babel/preset-env from 7.9.5 to 7.10.3 Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.9.5 to 7.10.3. - [Release notes](https://github.com/babel/babel/releases) - [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md) - [Commits](https://github.com/babel/babel/commits/v7.10.3/packages/babel-preset-env) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha b24f3b358f991730898fee93423ea2887f1f27a3

Merge pull request #142 from dijonkitchen/dependabot/npm_and_yarn/babel/preset-env-7.10.3 Build(deps-dev): Bump @babel/preset-env from 7.9.5 to 7.10.3

view details

push time in 16 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/babel/preset-env-7.10.3

delete time in 16 days

PR merged dijonkitchen/Set-TDD

Build(deps-dev): Bump @babel/preset-env from 7.9.5 to 7.10.3 dependencies

Bumps @babel/preset-env from 7.9.5 to 7.10.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/releases">@babel/preset-env's releases</a>.</em></p> <blockquote> <h2>v7.10.3 (2020-06-19)</h2> <p>Thanks <a href="https://github.com/AjayPoshak">@AjayPoshak</a>, <a href="https://github.com/jessethomson">@jessethomson</a>, <a href="https://github.com/sajadtorkamani">@sajadtorkamani</a>, <a href="https://github.com/shaodahong">@shaodahong</a> and <a href="https://github.com/wlawt">@wlawt</a> for their first PRs!</p> <h4>:eyeglasses: Spec Compliance</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11676">#11676</a> Properly parse <code>export default from</code> when <code>exportDefaultFrom</code> is not enabled (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-optional-chaining</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11662">#11662</a> refactor: do not rely on AST extra properties in plugins (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-logical-assignment-operators</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11658">#11658</a> Perform NamedEvaluation of Anonymous Functions in Logical Assignment (<a href="https://github.com/jridgewell">@jridgewell</a>)</li> </ul> </li> <li><code>babel-helper-create-class-features-plugin</code>, <code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-optional-chaining</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11623">#11623</a> fix: ensure (a?.b)() has proper this (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-parser</code>, <code>babel-plugin-transform-flow-comments</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11697">#11697</a> Fix innercomments (<a href="https://github.com/shaodahong">@shaodahong</a>)</li> </ul> </li> <li><code>babel-helper-member-expression-to-functions</code>, <code>babel-plugin-proposal-class-properties</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11703">#11703</a> fix:added check for forXstatement pattern (<a href="https://github.com/wlawt">@wlawt</a>)</li> </ul> </li> <li><code>babel-template</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11695">#11695</a> Allow templates to parse v8intrinsics (<a href="https://github.com/jridgewell">@jridgewell</a>)</li> </ul> </li> <li><code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11687">#11687</a> improve node type definitions to avoid any's in generated types (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> </ul> </li> <li><code>babel-plugin-transform-react-pure-annotations</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11685">#11685</a> Add React.createContext to @babel/plugin-transform-react-pure-annotat… (<a href="https://github.com/jessethomson">@jessethomson</a>)</li> </ul> </li> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11676">#11676</a> Properly parse <code>export default from</code> when <code>exportDefaultFrom</code> is not enabled (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-helper-create-class-features-plugin</code>, <code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-private-methods</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11571">#11571</a> Add a check for privateMap's existence (<a href="https://github.com/AjayPoshak">@AjayPoshak</a>)</li> </ul> </li> </ul> <h4>:nail_care: Polish</h4> <ul> <li><code>babel-plugin-transform-typescript</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11682">#11682</a> Fix small typo (<a href="https://github.com/sajadtorkamani">@sajadtorkamani</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li>Other <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11730">#11730</a> Revert "chore: pin windows node.js version (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11522">#11522</a>)" (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11727">#11727</a> replace whitelist by allowlist in parser-tests (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11677">#11677</a> Bump @babel/* deps (<a href="https://github.com/existentialism">@existentialism</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11672">#11672</a> chore: output ascii only standalone minified bundle (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11647">#11647</a> chore: check version lazily in babel-eslint-parser (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> </li> <li><code>babel-helper-plugin-utils</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11674">#11674</a> chore: add npmignore to babel-helper-plugin-utils (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-plugin-proposal-class-properties</code>, <code>babel-plugin-proposal-private-property-in-object</code>, <code>babel-preset-env</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11655">#11655</a> Fix some test fixtures (<a href="https://github.com/existentialism">@existentialism</a>)</li> </ul> </li> </ul> <h4>Committers: 11</h4> <ul> <li>Ajay Poshak (<a href="https://github.com/AjayPoshak">@AjayPoshak</a>)</li> <li>Bogdan Savluk (<a href="https://github.com/zxbodya">@zxbodya</a>)</li> <li>Brian Ng (<a href="https://github.com/existentialism">@existentialism</a>)</li> <li>Huáng Jùnliàng (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/babel/babel/blob/main/CHANGELOG.md">@babel/preset-env's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <blockquote> <p><strong>Tags:</strong></p> <ul> <li>:boom: [Breaking Change]</li> <li>:eyeglasses: [Spec Compliance]</li> <li>:rocket: [New Feature]</li> <li>:bug: [Bug Fix]</li> <li>:memo: [Documentation]</li> <li>:house: [Internal]</li> <li>:nail_care: [Polish]</li> </ul> </blockquote> <p><em>Note: Gaps between patch versions are faulty, broken or test releases.</em></p> <p>See <a href="https://github.com/babel/babel/blob/main/.github/CHANGELOG-v4.md">CHANGELOG - v4</a>, <a href="https://github.com/babel/babel/blob/main/.github/CHANGELOG-v5.md">CHANGELOG - v5</a>, and <a href="https://github.com/babel/babel/blob/main/.github/CHANGELOG-v6.md">CHANGELOG - v6</a> for v4.x-v6.x changes. See <a href="https://github.com/babel/babel/blob/main/.github/CHANGELOG-6to5.md">CHANGELOG - 6to5</a> for the pre-4.0.0 version changelog. See <a href="https://github.com/babel/babel/blob/main/packages/babel-parser/CHANGELOG.md">Babylon's CHANGELOG</a> for the Babylon pre-7.0.0-beta.29 version changelog. See <a href="https://github.com/babel/babel-eslint/releases"><code>babel-eslint</code>'s releases</a> for the changelog before <code>@babel/eslint-parser</code> 7.8.0. See <a href="https://github.com/babel/eslint-plugin-babel/releases"><code>eslint-plugin-babel</code>'s releases</a> for the changelog before <code>@babel/eslint-plugin</code> 7.8.0.</p> <!-- raw HTML omitted --> <!-- raw HTML omitted --> <h2>v7.10.2 (2020-05-30)</h2> <h4>:rocket: New Feature</h4> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11639">#11639</a> feature: babel-eslint-parser passes through config options (<a href="https://github.com/kaicataldo">@kaicataldo</a>)</li> </ul> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-helper-compilation-targets</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11648">#11648</a> fix: don't mutate InputTarget's passed to @babel/helper-compilation-targets (<a href="https://github.com/fivetanley">@fivetanley</a>)</li> </ul> </li> <li><code>babel-helper-create-class-features-plugin</code>, <code>babel-preset-env</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11634">#11634</a> Class features loose should have precedence over preset-env (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> </ul> </li> <li><code>babel-generator</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11645">#11645</a> fix: add bigIntSuffix to minified output (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> <li><code>babel-generator</code>, <code>babel-types</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11641">#11641</a> Add support for printing ImportAttribute (<a href="https://github.com/existentialism">@existentialism</a>)</li> </ul> </li> <li><code>babel-plugin-syntax-module-attributes</code>, <code>babel-standalone</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11631">#11631</a> Fix moduleAttributesVersion errors with stage-0 preset in babel standalone (<a href="https://github.com/hamlim">@hamlim</a>)</li> </ul> </li> </ul> <h4>:nail_care: Polish</h4> <ul> <li><code>babel-core</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11643">#11643</a> fix: add new plugin names to missing plugin helpers (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h4>:house: Internal</h4> <ul> <li><code>babel-parser</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11653">#11653</a> refactor: split locationParser into ParserErrors and error message (<a href="https://github.com/JLHwung">@JLHwung</a>)</li> </ul> </li> </ul> <h2>v7.10.1 (2020-05-27)</h2> <h4>:bug: Bug Fix</h4> <ul> <li><code>babel-preset-env</code> <ul> <li><a href="https://github-redirect.dependabot.com/babel/babel/pull/11633">#11633</a> [hotfix] Use same targets for fields as for private methods (<a href="https://github.com/nicolo-ribaudo">@nicolo-ribaudo</a>)</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/babel/babel/commit/2787ee2f967b6d8e1121fca00a8d578d75449a53"><code>2787ee2</code></a> v7.10.3</li> <li><a href="https://github.com/babel/babel/commit/eea156b2cb8deecfcf82d52aa1b71ba4995c7d68"><code>eea156b</code></a> Migrate from "master" branch to "main" (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11715">#11715</a>)</li> <li><a href="https://github.com/babel/babel/commit/41085248560b1403b8d0f99f108491e679531c6c"><code>4108524</code></a> Update prettier to v2 (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11579">#11579</a>)</li> <li><a href="https://github.com/babel/babel/commit/3a3457d8084d2da5cce2c1a517b3ff84f95d6398"><code>3a3457d</code></a> Fix some test fixtures (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11655">#11655</a>)</li> <li><a href="https://github.com/babel/babel/commit/b0350e5b1e86bd2d53b4a25705e39eb380ec65a2"><code>b0350e5</code></a> v7.10.2</li> <li><a href="https://github.com/babel/babel/commit/e6d873e061a967c64c9999f15b831aa121cc5a68"><code>e6d873e</code></a> Class features loose should have precedence over preset-env (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11634">#11634</a>)</li> <li><a href="https://github.com/babel/babel/commit/88f57a7ea659d25232bf62de1efceb5d6299b8cf"><code>88f57a7</code></a> v7.10.1</li> <li><a href="https://github.com/babel/babel/commit/32bd530f25bbcf05753eeb7293b305659acc64ec"><code>32bd530</code></a> [hotfix] Use same targets for fields as for private methods (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11633">#11633</a>)</li> <li><a href="https://github.com/babel/babel/commit/242d9e0b20af3ec3f05c929eb0cf5a57cc576e39"><code>242d9e0</code></a> Use <code>repository.directory</code> field in <code>package.json</code> files (<a href="https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env/issues/11625">#11625</a>)</li> <li><a href="https://github.com/babel/babel/commit/5da2440adff6f25579fb6e9a018062291c89416f"><code>5da2440</code></a> v7.10.0</li> <li>Additional commits viewable in <a href="https://github.com/babel/babel/commits/v7.10.3/packages/babel-preset-env">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~jlhwung">jlhwung</a>, a new releaser for @babel/preset-env since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+388 -411

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/is-my-json-valid-2.20.0

delete time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 837b8f3136427137c3b68508ae990c764748f292

[Security] Bump is-my-json-valid from 2.17.1 to 2.20.0 Bumps [is-my-json-valid](https://github.com/mafintosh/is-my-json-valid) from 2.17.1 to 2.20.0. **This update includes security fixes.** - [Release notes](https://github.com/mafintosh/is-my-json-valid/releases) - [Commits](https://github.com/mafintosh/is-my-json-valid/compare/v2.17.1...v2.20.0)

view details

Jonathan Chen

commit sha 0e8a285a5de4b348eaa96a7f8443a297d1d61416

Merge pull request #39 from dijonkitchen/dependabot/npm_and_yarn/is-my-json-valid-2.20.0 [Security] Bump is-my-json-valid from 2.17.1 to 2.20.0

view details

push time in 16 days

PR merged dijonkitchen/reader

[Security] Bump is-my-json-valid from 2.17.1 to 2.20.0 dependencies security

Bumps is-my-json-valid from 2.17.1 to 2.20.0. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The Node Security Working Group.

Regular Expression Denial of Service (ReDoS) is-my-json-valid is vulnerable to Regular Expression Denial of Service (ReDoS) attacks via the email validation function

Affected versions: <1.4.1 || >=2.0.0 <2.17.2

</details> <details> <summary>Commits</summary>

  • 60111f4 2.20.0
  • 8c11f77 Merge pull request #175 from LinusU/meta
  • b6d9b3f Cleanup package metadata
  • dcea5be 2.19.0
  • 1712811 Merge pull request #171 from mafintosh/ts-nullable
  • fad4c91 Add nullable types to TypeScript typings
  • 484197f Add test for nested object in typings
  • 4bec868 Merge pull request #168 from mafintosh/ts-oneof
  • e8c30d5 Add support for "oneOf" to TypeScript typings
  • 7160756 Merge pull request #167 from mafintosh/ts-required
  • Additional commits viewable in compare view </details> <details> <summary>Maintainer changes</summary>

This version was pushed to npm by linusu, a new releaser for is-my-json-valid since your current version. </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+14 -7

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 870e6787279e93931e3cf2f900f1c3c6d68943b3

[Security] Bump tar from 2.2.1 to 2.2.2 Bumps [tar](https://github.com/npm/node-tar) from 2.2.1 to 2.2.2. **This update includes security fixes.** - [Release notes](https://github.com/npm/node-tar/releases) - [Commits](https://github.com/npm/node-tar/compare/v2.2.1...v2.2.2)

view details

Jonathan Chen

commit sha cc474687013ef05362267b4359d2502f7c36a0da

Merge pull request #43 from dijonkitchen/dependabot/npm_and_yarn/tar-2.2.2 [Security] Bump tar from 2.2.1 to 2.2.2

view details

push time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/tar-2.2.2

delete time in 16 days

PR merged dijonkitchen/reader

[Security] Bump tar from 2.2.1 to 2.2.2 dependencies security

Bumps tar from 2.2.1 to 2.2.2. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

High severity vulnerability that affects tar A vulnerability was found in node-tar before version 4.4.2. An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a later plain file with the same name as the hardlink. This plain file content replaces the existing file content.

Affected versions: < 2.2.2

</details> <details> <summary>Commits</summary>

  • 523c5c7 2.2.2
  • 7ecef07 Bump fstream to fix hardlink overwriting vulnerability
  • 9fc84b9 Use {} for hardlink tracking instead of []
  • 15e59f1 Only track previously seen hardlinks
  • 4f85851 Ignore potentially unsafe files
  • See full diff in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+4 -4

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/extend-3.0.2

delete time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 4baf7f80f14ea581955558227d7795c036f7b3d9

[Security] Bump extend from 3.0.1 to 3.0.2 Bumps [extend](https://github.com/justmoon/node-extend) from 3.0.1 to 3.0.2. **This update includes security fixes.** - [Release notes](https://github.com/justmoon/node-extend/releases) - [Changelog](https://github.com/justmoon/node-extend/blob/master/CHANGELOG.md) - [Commits](https://github.com/justmoon/node-extend/compare/v3.0.1...v3.0.2)

view details

Jonathan Chen

commit sha e053ee662704ce7cd6bfda84fd796097cd60f370

Merge pull request #36 from dijonkitchen/dependabot/npm_and_yarn/extend-3.0.2 [Security] Bump extend from 3.0.1 to 3.0.2

view details

push time in 16 days

PR merged dijonkitchen/reader

[Security] Bump extend from 3.0.1 to 3.0.2 dependencies security

Bumps extend from 3.0.1 to 3.0.2. This update includes security fixes. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

Low severity vulnerability that affects extend A prototype pollution vulnerability was found in module extend <2.0.2, ~<3.0.2 that allows an attacker to inject arbitrary properties onto Object.prototype.

Affected versions: >= 3.0.0 < 3.0.2

</details> <details> <summary>Changelog</summary>

Sourced from extend's changelog.

3.0.2 / 2018-07-19

  • [Fix] Prevent merging __proto__ property (#48)
  • [Dev Deps] update eslint, @ljharb/eslint-config, tape
  • [Tests] up to node v10.7, v9.11, v8.11, v7.10, v6.14, v4.9; use nvm install-latest-npm </details> <details> <summary>Commits</summary>
  • 8d106d2 v3.0.2
  • e97091f [Dev Deps] update tape
  • e841aac [Tests] up to node v10.7
  • 0e68e71 [Fix] Prevent merging proto property
  • a689700 Only apps should have lockfiles
  • f13c1c4 [Dev Deps] update eslint, @ljharb/eslint-config, tape
  • f3570fe [Tests] up to node v10.0, v9.11, v8.11, v7.10, v6.14, v4.9; use...
  • See full diff in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+2 -2

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/react-dom-16.2.1

delete time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha c701d9b7b9a725d151da74939ea0fe01605b72e9

[Security] Bump react-dom from 16.2.0 to 16.2.1 Bumps [react-dom](https://github.com/facebook/react/tree/HEAD/packages/react-dom) from 16.2.0 to 16.2.1. **This update includes a security fix.** - [Release notes](https://github.com/facebook/react/releases) - [Changelog](https://github.com/facebook/react/blob/master/CHANGELOG.md) - [Commits](https://github.com/facebook/react/commits/HEAD/packages/react-dom) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 31fefa13af3b8a6aee231b97b00923f32bbd03fe

Merge pull request #51 from dijonkitchen/dependabot/npm_and_yarn/react-dom-16.2.1 [Security] Bump react-dom from 16.2.0 to 16.2.1

view details

push time in 16 days

PR merged dijonkitchen/reader

[Security] Bump react-dom from 16.2.0 to 16.2.1 dependencies security

Bumps react-dom from 16.2.0 to 16.2.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

Low severity vulnerability that affects react-dom React applications which rendered to HTML using the ReactDOMServer API were not escaping user-supplied attribute names at render-time. That lack of escaping could lead to a cross-site scripting vulnerability. This vulnerability can only affect some server-rendered React apps. Purely client-rendered apps are not affected.

This issue affected minor releases 16.0.x, 16.1.x, 16.2.x, 16.3.x, and 16.4.x. It was fixed in 16.0.1, 16.1.2, 16.2.1, 16.3.3, and 16.4.2.

Affected versions: = 16.2.0

</details> <details> <summary>Changelog</summary>

Sourced from react-dom's changelog.

16.2.1 (August 1, 2018)

React DOM Server

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>

+4 -4

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 5ea574c16dcd00c9662bd35813f9b4b2d6bd7c32

[Security] Bump fstream from 1.0.11 to 1.0.12 Bumps [fstream](https://github.com/npm/fstream) from 1.0.11 to 1.0.12. **This update includes a security fix.** - [Release notes](https://github.com/npm/fstream/releases) - [Commits](https://github.com/npm/fstream/compare/v1.0.11...v1.0.12) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Jonathan Chen

commit sha 8b1ae925ad99f99e7599d98ac36de6b1a3c80f7b

Merge pull request #50 from dijonkitchen/dependabot/npm_and_yarn/fstream-1.0.12 [Security] Bump fstream from 1.0.11 to 1.0.12

view details

push time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/fstream-1.0.12

delete time in 16 days

PR merged dijonkitchen/reader

[Security] Bump fstream from 1.0.11 to 1.0.12 dependencies security

Bumps fstream from 1.0.11 to 1.0.12. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary>

Sourced from The GitHub Security Advisory Database.

Moderate severity vulnerability that affects fstream Versions of fstream prior to 1.0.12 are vulnerable to Arbitrary File Overwrite.

Affected versions: < 1.0.12

</details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it). To ignore the version in this PR you can just close it
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>

+30 -19

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 16 days

delete branch dijonkitchen/Set-TDD

delete branch : dependabot/npm_and_yarn/js-yaml-3.14.0

delete time in 16 days

push eventdijonkitchen/Set-TDD

dependabot[bot]

commit sha e235b7ac518b22b114a7a2adee3d954bcaef4c28

Build(deps): Bump js-yaml from 3.10.0 to 3.14.0 Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 3.10.0 to 3.14.0. - [Release notes](https://github.com/nodeca/js-yaml/releases) - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](https://github.com/nodeca/js-yaml/compare/3.10.0...3.14.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

Jonathan Chen

commit sha 4fd644fa3d4f68422090e4ec116cbf5ff90a91af

Merge pull request #143 from dijonkitchen/dependabot/npm_and_yarn/js-yaml-3.14.0 Build(deps): Bump js-yaml from 3.10.0 to 3.14.0

view details

push time in 16 days

PR merged dijonkitchen/Set-TDD

Build(deps): Bump js-yaml from 3.10.0 to 3.14.0 dependencies

Bumps js-yaml from 3.10.0 to 3.14.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md">js-yaml's changelog</a>.</em></p> <blockquote> <h2>[3.14.0] - 2020-05-22</h2> <h3>Changed</h3> <ul> <li>Support <code>safe/loadAll(input, options)</code> variant of call.</li> <li>CI: drop outdated nodejs versions.</li> <li>Dev deps bump.</li> </ul> <h3>Fixed</h3> <ul> <li>Quote <code>=</code> in plain scalars <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/519">#519</a>.</li> <li>Check the node type for <code>!<?></code> tag in case user manually specifies it.</li> <li>Verify that there are no null-bytes in input.</li> <li>Fix wrong quote position when writing condensed flow, <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/526">#526</a>.</li> </ul> <h2>[3.13.1] - 2019-04-05</h2> <h3>Security</h3> <ul> <li>Fix possible code execution in (already unsafe) <code>.load()</code>, <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/480">#480</a>.</li> </ul> <h2>[3.13.0] - 2019-03-20</h2> <h3>Security</h3> <ul> <li>Security fix: <code>safeLoad()</code> can hang when arrays with nested refs used as key. Now throws exception for nested arrays. <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/475">#475</a>.</li> </ul> <h2>[3.12.2] - 2019-02-26</h2> <h3>Fixed</h3> <ul> <li>Fix <code>noArrayIndent</code> option for root level, <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/468">#468</a>.</li> </ul> <h2>[3.12.1] - 2019-01-05</h2> <h3>Added</h3> <ul> <li>Added <code>noArrayIndent</code> option, <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/432">#432</a>.</li> </ul> <h2>[3.12.0] - 2018-06-02</h2> <h3>Changed</h3> <ul> <li>Support arrow functions without a block statement, <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/421">#421</a>.</li> </ul> <h2>[3.11.0] - 2018-03-05</h2> <h3>Added</h3> <ul> <li>Add arrow functions suport for <code>!!js/function</code>.</li> </ul> <h3>Fixed</h3> <ul> <li>Fix dump in bin/octal/hex formats for negative integers, <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/399">#399</a>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/nodeca/js-yaml/commit/34e5072f43fd36b08aaaad433da73c10d47c41e5"><code>34e5072</code></a> 3.14.0 released</li> <li><a href="https://github.com/nodeca/js-yaml/commit/7b25c83a6dc77097c2bf14bf714e168f60ee199b"><code>7b25c83</code></a> Browser files rebuild</li> <li><a href="https://github.com/nodeca/js-yaml/commit/6f7347396867b8dcfc042722c2aae810dfe4caae"><code>6f73473</code></a> Dev deps bump</li> <li><a href="https://github.com/nodeca/js-yaml/commit/0c293491d903cddcd41b41c165bc45eeb9a8d720"><code>0c29349</code></a> Travis-CI: drop old nodejs versions</li> <li><a href="https://github.com/nodeca/js-yaml/commit/10be97ebbd588e68907e6c67e0b3843a4caab475"><code>10be97e</code></a> fix(loader): Add support for <code>safe/loadAll(input, options)</code></li> <li><a href="https://github.com/nodeca/js-yaml/commit/d6983dd4291849b2854e8d26e1beb302edfd4c76"><code>d6983dd</code></a> Fix issue <a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/526">#526</a>: wrong quote position writing condensed flow (<a href="https://github-redirect.dependabot.com/nodeca/js-yaml/issues/527">#527</a>)</li> <li><a href="https://github.com/nodeca/js-yaml/commit/93fbf7d4ddecea60709c8379397247af28f11e10"><code>93fbf7d</code></a> fix issue 526 (wrong quote position writing condensed flow)</li> <li><a href="https://github.com/nodeca/js-yaml/commit/e569cc70ec9b41760d0d37b805a1d9b3ada519ca"><code>e569cc7</code></a> readme: update titelift info</li> <li><a href="https://github.com/nodeca/js-yaml/commit/8fb29059223b5f700dec4ea09b3d5550cd3a8e32"><code>8fb2905</code></a> changelog format update</li> <li><a href="https://github.com/nodeca/js-yaml/commit/33c2236d702fee430cac27ab41d75069b6647765"><code>33c2236</code></a> Verify that there are no null-bytes in input</li> <li>Additional commits viewable in <a href="https://github.com/nodeca/js-yaml/compare/3.10.0...3.14.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+4 -4

1 comment

1 changed file

dependabot[bot]

pr closed time in 16 days

push eventdijonkitchen/reader

dependabot-preview[bot]

commit sha 717a21385b4d5a4883affe1dcb052312864b84e4

Bump react-native-scripts from 1.11.1 to 2.0.1 Bumps [react-native-scripts](https://github.com/react-community/create-react-native-app) from 1.11.1 to 2.0.1. - [Release notes](https://github.com/react-community/create-react-native-app/releases) - [Changelog](https://github.com/react-community/create-react-native-app/blob/master/CHANGELOG.md) - [Commits](https://github.com/react-community/create-react-native-app/commits)

view details

Jonathan Chen

commit sha c581fe9bebd865f2dd510e0aa35f63592b802f61

Merge pull request #35 from dijonkitchen/dependabot/npm_and_yarn/react-native-scripts-2.0.1 Bump react-native-scripts from 1.11.1 to 2.0.1

view details

push time in 16 days

delete branch dijonkitchen/reader

delete branch : dependabot/npm_and_yarn/react-native-scripts-2.0.1

delete time in 16 days

PR merged dijonkitchen/reader

Bump react-native-scripts from 1.11.1 to 2.0.1 dependencies

Bumps react-native-scripts from 1.11.1 to 2.0.1. <details> <summary>Changelog</summary>

Sourced from react-native-scripts's changelog.

2.0.1 (September 21, 2018)

This release merges Create React Native App with Expo CLI.

  • Expo CLI is a tool based on CRNA, made by the same team
  • It has all the same features, plus some additional benefits
  • Like CRNA, Expo CLI does not require an Expo user account
  • The create-react-native-app command will continue to work

The separate react-native-scripts package is now deprecated: new projects created with create-react-native-app will use Expo CLI instead of react-native-scripts. In addition to everything provided by CRNA, Expo CLI includes these extras:

  • Web-based user interface: in addition to the CLI, there's a GUI where you can view logs, launch the app on your devices or simulators, and publish updates.
  • Standalone app builds: you can build IPA and APK packages for deploying to App Store and Play Store without using Xcode or Android Studio.
  • Publishing: you can push updates to your deployed apps and optionally publish your app to Expo.io.
  • Tunnel: your physical device doesn’t need to be in the same wi-fi as your computer to be able to develop using it.
  • Optional user accounts: logging in allows listing all your projects in development in the Expo app without having to scan any QR codes and enables additional features like standalone builds. However, just like CRNA, Expo CLI can also be used without a user account.

Why are we bringing these two tools together?

  • Just one tool to learn: previously developers would start with CRNA and then switch to exp or XDE for additional features like standalone builds. Expo CLI is as easy to get started with as CRNA, but also supports everything previously offered by these separate tools.
  • Less confusing options: CRNA apps have always been loaded using the Expo app and able to use the Expo APIs in addition to the core React Native APIs. Users are sometimes confused about the differences between plain React Native, CRNA and Expo apps created with tools like exp or XDE. Installing the expo-cli package will make it clearer the additional functionality is provided by Expo.
  • Developer experience: Expo CLI is ahead of CRNA in terms of features and developer experience, and we’re continuously improving it.
  • Maintenance: having these two projects as separate codebases requires more maintenance and CRNA has previously falled behind because of this. A single codebase helps us keep it up to date and fix issues as fast as possible.

Upgrading from 1.14.0 to 2.0.1

All apps created with create-react-native-app, are compatible with Expo CLI without changes.

Upgrade react-native-scripts to v2.0.1 with:

npm install --save --save-exact react-native-scripts@2.0.1

or

yarn add --exact react-native-scripts@2.0.1

When you run npm start for the first time, Expo CLI will be installed.

Because react-native-scripts is now a wrapper for Expo CLI, you can also follow these steps to remove it from your project and use Expo CLI directly:

  1. Replace react-native-scripts with expo in the scripts config in package.json. Example:
    "scripts": {
      "start": "expo start",
      "eject": "expo eject",
      "android": "expo start --android",
      "ios": "expo start --ios",
      "test": "jest"
    }
    

</tr></table> ... (truncated) </details> <details> <summary>Commits</summary>

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Note: This repo was added to Dependabot recently, so you'll receive a maximum of 5 PRs for your first few update runs. Once an update run creates fewer than 5 PRs we'll remove that limit.

You can always request more updates by clicking Bump now in your Dependabot dashboard.

<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

</details>


<a href='https://dependabot.com/blog/hello-github/'><img width='376' alt='Dependabot has been acquired by GitHub 🎉' src='https://user-images.githubusercontent.com/20165/58035530-e739b700-7b20-11e9-9d1b-12a7630b84e0.png'></a>

+64 -1527

0 comment

2 changed files

dependabot-preview[bot]

pr closed time in 16 days

more