profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/donno2048/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Elisha Hollander donno2048 Israel http://elisha.tk 16 yo oxygen addict from Israel

chalice-dev/awesome-chalice 120

☁️ Awesome Chalice: Community list of resources about AWS Chalice, a Python framework for writing serverless applications.

donno2048/CITUR-L 2

New version of CITUR corresponding to the Linux version of Rosehip

donno2048/buildroot 1

buildroot fork for Rosehip

donno2048/CITUR 1

create iso to use Rosehip

donno2048/100LinesOfCode 0

Let's build something productive in less than 100 Lines of Code.

donno2048/abcd-amasad 0

abcd-amasad created by GitHub Classroom

donno2048/Ackermann 0

The Ackermann function

donno2048/AI-chess 0

probably the dumbest way to construct a chess AI player

delete branch donno2048/restricted-functions

delete branch : iam-py-test-patch-1

delete time in 5 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha b975e983b4dc0ad6adb52ec14dc4d0f34941a64f

Update README.md

view details

Elisha Hollander

commit sha 9b7bd0af230baf40fd24a73e077900fda7c3782b

Update README.md

view details

iam-py-test

commit sha a76f59b1fc6c8f2374f844dae4aa1a591beab19f

Update README.md

view details

iam-py-test

commit sha 9a0b1430ccb93648fc9bbc23d790ae113d3757a1

Merge pull request #14 from donno2048/iam-py-test-patch-1 Update README.md

view details

push time in 5 hours

pull request commentdonno2048/restricted-functions

WIP Update README.md

Do these changes look ok?

iam-py-test

comment created time in 5 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha a76f59b1fc6c8f2374f844dae4aa1a591beab19f

Update README.md

view details

push time in 5 hours

issue commentdonno2048/restricted-functions

[meta] Working on restricting funtions

I have made some updates to the README. Does #14 look ok?

iam-py-test

comment created time in 5 hours

create barnchdonno2048/restricted-functions

branch : iam-py-test-patch-1

created branch time in 5 hours

issue commentdonno2048/restricted-functions

[meta] Working on restricting funtions

I think we should use docstrings, then we can automate the creation of the documentation, then, the README is probably better, because it supports different platforms.

What are docstrings? How do we set it up?

iam-py-test

comment created time in 5 hours

issue commentdonno2048/restricted-functions

[meta] Working on restricting funtions

How do you want to do the Docs? Should we use the README.md or GitHub's Wiki feature?

iam-py-test

comment created time in 6 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha a2b4b05cb4ad6420efb36904126303cb12244fdb

Create windows_test.yml

view details

push time in 6 hours

issue commentdonno2048/restricted-functions

[meta] Working on restricting funtions

There is an alpha already (to allow the pip installation) but sure, maybe as a pre-release like a beta version until some actual security levels will be introduced

Ok.

iam-py-test

comment created time in 6 hours

issue commentdonno2048/restricted-functions

[meta] Working on restricting funtions

Do you think it is time to create a first release?

iam-py-test

comment created time in 6 hours

Pull request review commentdonno2048/restricted-functions

Add security levels

   - [ ] os.kill   - [ ] os.killpg   - [ ] os.plock+  - [ ] os.removedirs   - [ ] execfile

I know, but wouldn't all the imports will be executed in the main module level of the original process?

I guess... I removed it anyway. (someone could probably use something else to do the same thing - eval(open("file.py").read())?)

iam-py-test

comment created time in 6 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha 2f037f7fc53c2a0c6e68a84d7d75d3b61023aa38

Remove execfile

view details

push time in 6 hours

Pull request review commentdonno2048/restricted-functions

Add security levels

   - [ ] os.kill   - [ ] os.killpg   - [ ] os.plock+  - [ ] os.removedirs   - [ ] execfile

It is for executing other files; that could be dangerous.

iam-py-test

comment created time in 6 hours

Pull request review commentdonno2048/restricted-functions

Work in progress: Add security levels

 - [ ] Get more dangerous functions-  - [ ] os.unlink+  - [X] os.unlink

Updated as os.unlink has been added

iam-py-test

comment created time in 6 hours

Pull request review commentdonno2048/restricted-functions

Work in progress: Add security levels

 - [ ] Get more dangerous functions-  - [ ] os.unlink+  - [X] os.unlink

Updated as os.unlink has been added

iam-py-test

comment created time in 6 hours

pull request commentdonno2048/restricted-functions

Work in progress: Add security levels

@donno2048 is this ready to merge?

iam-py-test

comment created time in 6 hours

Pull request review commentdonno2048/restricted-functions

Work in progress: Add security levels

 try: shutil.rmtree("../restricted-functions") except: pass else: raise Exception("failed")+try: open("w", "setup.py").write("text")+except: pass+else: raise Exception("failed")

@donno2048 maybe this should be replaced with a call to print to the rest of the program can be tested

else: print("Failed to block wirte")
iam-py-test

comment created time in 6 hours

Pull request review commentdonno2048/restricted-functions

Work in progress: Add security levels

 try: shutil.rmtree("../restricted-functions") except: pass else: raise Exception("failed")+try: open("w", "setup.py").write("text")

Maybe replace this with this to prevent an overwrite of a critical file:

try: open("w", "writeme.txt").write("text")
iam-py-test

comment created time in 6 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha b93ae47dbae66e4450c76538a8ba418e0f2094ec

Update TODO.md

view details

iam-py-test

commit sha 200651304cb886bf038fa6b1f345124a01310340

Merge branch 'master' into iam-py-test-patch-1

view details

push time in 6 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha 42c993397e5a2d77e048c3a736ae6553ced9159c

Update TODO.md

view details

push time in 10 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha e723314c91736966b2d4edc28b41a8554e8ad145

Add new Funcs

view details

push time in 10 hours

push eventdonno2048/restricted-functions

iam-py-test

commit sha b93ae47dbae66e4450c76538a8ba418e0f2094ec

Update TODO.md

view details

push time in a day

delete branch donno2048/imtost

delete branch : dependabot/npm_and_yarn/postcss-7.0.36

delete time in 2 days

pull request commentdonno2048/imtost

Bump postcss from 7.0.35 to 7.0.36

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot[bot]

comment created time in 2 days

push eventdonno2048/restricted-functions

iam-py-test

commit sha c9507bb3d79bd8b8535f7c5590bf2c48252195b3

Update __init__.py

view details

push time in 2 days

PR opened donno2048/imtost

Bump postcss from 7.0.35 to 7.0.36

Bumps postcss from 7.0.35 to 7.0.36. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/releases">postcss's releases</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/postcss/postcss/blob/main/CHANGELOG.md">postcss's changelog</a>.</em></p> <blockquote> <h2>7.0.36</h2> <ul> <li>Backport ReDoS vulnerabilities from PostCSS 8.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/postcss/postcss/commit/67e3d7b3402c5d3d036ab7c1e781f86910d6ca72"><code>67e3d7b</code></a> Release 7.0.36 version</li> <li><a href="https://github.com/postcss/postcss/commit/54cbf3c4847eb0fb1501b9d2337465439e849734"><code>54cbf3c</code></a> Backport ReDoS vulnerabilities from PostCSS 8</li> <li>See full diff in <a href="https://github.com/postcss/postcss/compare/7.0.35...7.0.36">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 2 days

create barnchdonno2048/imtost

branch : dependabot/npm_and_yarn/postcss-7.0.36

created branch time in 2 days