profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/jaredly/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.

fabiocaccamo/django-colorfield 295

color field for django models with a nice color-picker in the admin. :art:

andrewray/iocaml 174

An OCaml kernel for the IPython notebook

greduan/chrome-ext-tabulator 127

Tabulator is a free Google Chrome extension that helps reduce tab clutter and memory usage by saving all your open tabs into lists which can be restored at another time

jaredly/a-reason-react-tutorial 92

included code for A ReasonReact Tutorial

jaredly/babytux 12

A game based on babysmash, for occupying small children at the computer

esy-ocaml/esy-install 5

package installer for esy (based on yarn)

PR closed Khan/eslint-action

Add logging to run-all-if-changed

Summary:

To make it easier to figure out why it's not working

Issue: none

Test plan:

+20 -7

1 comment

2 changed files

jaredly

pr closed time in a day

pull request commentKhan/eslint-action

Add logging to run-all-if-changed

not needed anymore

jaredly

comment created time in a day

fork jaredly/tinytar

Pure javascript implementation of POSIX TAR file format.

fork in 2 days

issue commentSwapnilSoni1999/spotify-dl

podcast download gives a null access error

@NANASHI0X74 is that web desktop? it's possible that mobile web is more pushy 🙄

NANASHI0X74

comment created time in 4 days

issue commentSwapnilSoni1999/spotify-dl

podcast download gives a null access error

to clarify: you do currently need an /account/, just not a premium account. On the web it looks like I can listen to podcast episodes without logging in at all, fwiw.

NANASHI0X74

comment created time in 4 days

push eventKhan/jest-action

Jared Forsyth

commit sha 085feb4364d8ab933260d42193d880fcd1b14c39

1.2.0

view details

push time in 4 days

created tagKhan/jest-action

tagv1.2.0

created time in 4 days

push eventKhan/jest-action

Jared Forsyth

commit sha 8d9687fb6f39f1c62b852dfbc7edbf988b378fcd

Allow folders to be specified in run-all-if-changed (#27) ## Summary: Our jest config in webapp has a bunch of files, and it would be nice to just specify the directory they live in. Issue: https://khanacademy.atlassian.net/browse/FEI-3520 ## Test plan: I'll use it over here https://github.com/Khan/webapp/pull/1343 Author: jaredly Reviewers: kevinbarabash Required Reviewers: Approved By: kevinbarabash Checks: ✅ Flow Coverage, ✅ Jest Coverage, ✅ Jest, ✅ Eslint, ✅ lint_and_unit, ✅ autofix Pull Request URL: https://github.com/Khan/jest-action/pull/27

view details

push time in 4 days

delete branch Khan/jest-action

delete branch : all-folder

delete time in 4 days

PR merged Khan/jest-action

Allow folders to be specified in run-all-if-changed

Summary:

Our jest config in webapp has a bunch of files, and it would be nice to just specify the directory they live in.

Issue: https://khanacademy.atlassian.net/browse/FEI-3520

Test plan:

I'll use it over here https://github.com/Khan/webapp/pull/1343

+29 -7

0 comment

3 changed files

jaredly

pr closed time in 4 days

push eventKhan/jest-action

Jared Forsyth

commit sha 0f82e7a7cc9cf2761db72d7346c950b9aeb3abac

fix flow coverage

view details

push time in 4 days

push eventKhan/react-native

Jared Forsyth

commit sha 63d2926c948c8eb73d1d0ad3398795474606f113

document the changes I made

view details

push time in 4 days

push eventKhan/react-native

Jared Forsyth

commit sha 623dca25673df75e4379fc33ff05e578ba646dea

add in the android build artifacts

view details

push time in 4 days

PR opened Khan/jest-action

Allow folders to be specified in run-all-if-changed

Summary:

Our jest config in webapp has a bunch of files, and it would be nice to just specify the directory they live in.

Issue: https://khanacademy.atlassian.net/browse/FEI-3520

Test plan:

I'll use it over here https://github.com/Khan/webapp/pull/1343

+25 -7

0 comment

3 changed files

pr created time in 7 days

create barnchKhan/jest-action

branch : all-folder

created branch time in 7 days

startedbnjbvr/rouille

started time in 7 days

PR closed Khan/jest-action

Bump path-parse from 1.0.6 to 1.0.7 dependencies

Bumps path-parse from 1.0.6 to 1.0.7. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/jbgutierrez/path-parse/commits/v1.0.7">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump bl from 1.2.2 to 1.2.3 dependencies

Bumps bl from 1.2.2 to 1.2.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rvagg/bl/commit/d69edfd66f2b1d8b50abc0ecfe42216437540178"><code>d69edfd</code></a> 1.2.3</li> <li><a href="https://github.com/rvagg/bl/commit/847473ab543e99a687a1ef871ba9a1c4d2e26ee7"><code>847473a</code></a> test all branches</li> <li><a href="https://github.com/rvagg/bl/commit/0bd87ec97be399b129fc62feff2943ffa21bcc00"><code>0bd87ec</code></a> Fix unintialized memory access</li> <li><a href="https://github.com/rvagg/bl/commit/dc097f3f33dffbe11ce4753cf0806ffca632260e"><code>dc097f3</code></a> test newer versions of Node</li> <li>See full diff in <a href="https://github.com/rvagg/bl/compare/v1.2.2...v1.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump ws from 7.3.0 to 7.5.3 dependencies

Bumps ws from 7.3.0 to 7.5.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/websockets/ws/releases">ws's releases</a>.</em></p> <blockquote> <h2>7.5.3</h2> <h1>Bug fixes</h1> <ul> <li>The <code>WebSocketServer</code> constructor now throws an error if more than one of the <code>noServer</code>, <code>server</code>, and <code>port</code> options are specefied (66e58d27).</li> <li>Fixed a bug where a <code>'close'</code> event was emitted by a <code>WebSocketServer</code> before the internal HTTP/S server was actually closed (5a587304).</li> <li>Fixed a bug that allowed WebSocket connections to be established after <code>WebSocketServer.prototype.close()</code> was called (772236a1).</li> </ul> <h2>7.5.2</h2> <h1>Bug fixes</h1> <ul> <li>The opening handshake is now aborted if the client receives a <code>Sec-WebSocket-Extensions</code> header but no extension was requested or if the server indicates an extension not requested by the client (aca94c86).</li> </ul> <h2>7.5.1</h2> <h1>Bug fixes</h1> <ul> <li>Fixed an issue that prevented the connection from being closed properly if an error occurred simultaneously on both peers (b434b9f1).</li> </ul> <h2>7.5.0</h2> <h1>Features</h1> <ul> <li>Some errors now have a <code>code</code> property describing the specific type of error that has occurred (<a href="https://github-redirect.dependabot.com/websockets/ws/issues/1901">#1901</a>).</li> </ul> <h1>Bug fixes</h1> <ul> <li>A close frame is now sent to the remote peer if an error (such as a data framing error) occurs (8806aa9a).</li> <li>The close code is now always 1006 if no close frame is received, even if the connection is closed due to an error (8806aa9a).</li> </ul> <h2>7.4.6</h2> <h1>Bug fixes</h1> <ul> <li>Fixed a ReDoS vulnerability (00c425ec).</li> </ul> <p>A specially crafted value of the <code>Sec-Websocket-Protocol</code> header could be used to significantly slow down a ws server.</p> <pre lang="js"><code>for (const length of [1000, 2000, 4000, 8000, 16000, 32000]) { const value = 'b' + ' '.repeat(length) + 'x'; const start = process.hrtime.bigint(); <p>value.trim().split(/ *, */); </tr></table> </code></pre></p> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/websockets/ws/commit/4c1849a61e773fe0ce016f6eb59bc3877f09aeee"><code>4c1849a</code></a> [dist] 7.5.3</li> <li><a href="https://github.com/websockets/ws/commit/772236a13ff2bd28291c911b7c25fbfe99580ed1"><code>772236a</code></a> [fix] Abort the handshake if the server is closing or closed</li> <li><a href="https://github.com/websockets/ws/commit/5a5873048005cf5d25a2186fb9dc6db2a85096b0"><code>5a58730</code></a> [fix] Emit the <code>'close'</code> event after the server is closed</li> <li><a href="https://github.com/websockets/ws/commit/ea63b29e81f95f7c5d38079487952b2eae94391e"><code>ea63b29</code></a> [minor] Fix typo</li> <li><a href="https://github.com/websockets/ws/commit/66e58d279ffabe5108424c08ab71403aceddcad9"><code>66e58d2</code></a> [fix] Make the <code>{noS,s}erver</code>, and <code>port</code> options mutually exclusive</li> <li><a href="https://github.com/websockets/ws/commit/ecb9d9ea8f126416f2c07a2a8485b1d1e4ab3989"><code>ecb9d9e</code></a> [minor] Improve JSDoc-inferred types (<a href="https://github-redirect.dependabot.com/websockets/ws/issues/1912">#1912</a>)</li> <li><a href="https://github.com/websockets/ws/commit/0ad1f9d6a48ed1b30bda09b958cb142c1e09cced"><code>0ad1f9d</code></a> [dist] 7.5.2</li> <li><a href="https://github.com/websockets/ws/commit/aca94c86e000675900b09729559e405f9207d154"><code>aca94c8</code></a> [fix] Abort the handshake if an unexpected extension is received</li> <li><a href="https://github.com/websockets/ws/commit/38c6c734daf8e15d5cd902ed3e47b8651fd1032c"><code>38c6c73</code></a> [dist] 7.5.1</li> <li><a href="https://github.com/websockets/ws/commit/2916006477bd50d5a7513640fcb610f7fd0dddda"><code>2916006</code></a> [test] Add more tests for <code>WebSocket.prototype.close()</code></li> <li>Additional commits viewable in <a href="https://github.com/websockets/ws/compare/7.3.0...7.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump ini from 1.3.5 to 1.3.8 dependencies

Bumps ini from 1.3.5 to 1.3.8. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/ini/commit/a2c5da86604bc2238fe393c5ff083bf23a9910eb"><code>a2c5da8</code></a> 1.3.8</li> <li><a href="https://github.com/npm/ini/commit/af5c6bb5dca6f0248c153aa87e25bddfc515ff6e"><code>af5c6bb</code></a> Do not use Object.create(null)</li> <li><a href="https://github.com/npm/ini/commit/8b648a1ac49e1b3b7686ea957e0b95e544bc6ec1"><code>8b648a1</code></a> don't test where our devdeps don't even work</li> <li><a href="https://github.com/npm/ini/commit/c74c8af35f32b801a7e82a8309eab792a95932f6"><code>c74c8af</code></a> 1.3.7</li> <li><a href="https://github.com/npm/ini/commit/024b8b55ac1c980c6225607b007714c54eb501ba"><code>024b8b5</code></a> update deps, add linting</li> <li><a href="https://github.com/npm/ini/commit/032fbaf5f0b98fce70c8cc380e0d05177a9c9073"><code>032fbaf</code></a> Use Object.create(null) to avoid default object property hazards</li> <li><a href="https://github.com/npm/ini/commit/2da90391ef70db41d10f013e3a87f9a8c5d01a72"><code>2da9039</code></a> 1.3.6</li> <li><a href="https://github.com/npm/ini/commit/cfea636f534b5ca7550d2c28b7d1a95d936d56c6"><code>cfea636</code></a> better git push script, before publish instead of after</li> <li><a href="https://github.com/npm/ini/commit/56d2805e07ccd94e2ba0984ac9240ff02d44b6f1"><code>56d2805</code></a> do not allow invalid hazardous string as section name</li> <li>See full diff in <a href="https://github.com/isaacs/ini/compare/v1.3.5...v1.3.8">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~isaacs">isaacs</a>, a new releaser for ini since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump node-fetch from 2.6.0 to 2.6.1 dependencies

Bumps node-fetch from 2.6.0 to 2.6.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/bitinn/node-fetch/releases">node-fetch's releases</a>.</em></p> <blockquote> <h2>v2.6.1</h2> <p><strong>This is an important security release. It is strongly recommended to update as soon as possible.</strong></p> <p>See <a href="https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md#v261">CHANGELOG</a> for details.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/node-fetch/node-fetch/blob/master/docs/CHANGELOG.md">node-fetch's changelog</a>.</em></p> <blockquote> <h2>v2.6.1</h2> <p><strong>This is an important security release. It is strongly recommended to update as soon as possible.</strong></p> <ul> <li>Fix: honor the <code>size</code> option after following a redirect.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/node-fetch/node-fetch/commit/b5e2e41b2b50bf2997720d6125accaf0dd68c0ab"><code>b5e2e41</code></a> update version number</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/2358a6c2563d1730a0cdaccc197c611949f6a334"><code>2358a6c</code></a> Honor the <code>size</code> option after following a redirect and revert data uri support</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/8c197f8982a238b3c345c64b17bfa92e16b4f7c4"><code>8c197f8</code></a> docs: Fix typos and grammatical errors in README.md (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/686">#686</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/1e99050f944ac435fce26a9549eadcc2419a968a"><code>1e99050</code></a> fix: Change error message thrown with redirect mode set to error (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/653">#653</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/244e6f63d42025465796e3ca4ce813bf2c31fc5b"><code>244e6f6</code></a> docs: Show backers in README</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/6a5d192034a0f438551dffb6d2d8df2c00921d16"><code>6a5d192</code></a> fix: Properly parse meta tag when parameters are reversed (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/682">#682</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/47a24a03eb49a49d81b768892aee10074ed54a91"><code>47a24a0</code></a> chore: Add opencollective badge</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/7b136627c537cb24430b0310638c9177a85acee1"><code>7b13662</code></a> chore: Add funding link</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/5535c2ed478d418969ecfd60c16453462de2a53f"><code>5535c2e</code></a> fix: Check for global.fetch before binding it (<a href="https://github-redirect.dependabot.com/bitinn/node-fetch/issues/674">#674</a>)</li> <li><a href="https://github.com/node-fetch/node-fetch/commit/1d5778ad0d910dbd1584fb407a186f5a0bc1ea22"><code>1d5778a</code></a> docs: Add Discord badge</li> <li>Additional commits viewable in <a href="https://github.com/bitinn/node-fetch/compare/v2.6.0...v2.6.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~akepinski">akepinski</a>, a new releaser for node-fetch since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump hosted-git-info from 2.8.8 to 2.8.9 dependencies

Bumps hosted-git-info from 2.8.8 to 2.8.9. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md">hosted-git-info's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9">2.8.9</a> (2021-04-07)</h2> <h3>Bug Fixes</h3> <ul> <li>backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a> (<a href="https://github.com/npm/hosted-git-info/commit/29adfe5">29adfe5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/84">#84</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/hosted-git-info/commit/8d4b3697d79bcd89cdb36d1db165e3696c783a01"><code>8d4b369</code></a> chore(release): 2.8.9</li> <li><a href="https://github.com/npm/hosted-git-info/commit/29adfe5ef789784c861b2cdeb15051ec2ba651a7"><code>29adfe5</code></a> fix: backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a></li> <li>See full diff in <a href="https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~nlf">nlf</a>, a new releaser for hosted-git-info since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump lodash from 4.17.15 to 4.17.21 dependencies

Bumps lodash from 4.17.15 to 4.17.21. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/f299b52f39486275a9e6483b60a410e06520c538"><code>f299b52</code></a> Bump to v4.17.21</li> <li><a href="https://github.com/lodash/lodash/commit/c4847ebe7d14540bb28a8b932a9ce1b9ecbfee1a"><code>c4847eb</code></a> Improve performance of <code>toNumber</code>, <code>trim</code> and <code>trimEnd</code> on large input strings</li> <li><a href="https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"><code>3469357</code></a> Prevent command injection through <code>_.template</code>'s <code>variable</code> option</li> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.21">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump y18n from 4.0.0 to 4.0.3 dependencies

Bumps y18n from 4.0.0 to 4.0.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/yargs/y18n/blob/y18n-v4.0.3/CHANGELOG.md">y18n's changelog</a>.</em></p> <blockquote> <h3><a href="https://www.github.com/yargs/y18n/compare/y18n-v4.0.2...y18n-v4.0.3">4.0.3</a> (2021-04-07)</h3> <h3>Bug Fixes</h3> <ul> <li><strong>release:</strong> 4.x.x should not enforce Node 10 (<a href="https://github-redirect.dependabot.com/yargs/y18n/issues/126">#126</a>) (<a href="https://www.github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde">1e21a53</a>)</li> </ul> <h3>4.0.1 (2020-11-30)</h3> <h3>Bug Fixes</h3> <ul> <li>address prototype pollution issue (<a href="https://github-redirect.dependabot.com/yargs/y18n/issues/108">#108</a>) (<a href="https://www.github.com/yargs/y18n/commit/a9ac604abf756dec9687be3843e2c93bfe581f25">a9ac604</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/yargs/y18n/commit/0aa97c508ea31efadd2a27f98fed6873eefc963e"><code>0aa97c5</code></a> chore: release 4.x.x (<a href="https://github-redirect.dependabot.com/yargs/y18n/issues/128">#128</a>)</li> <li><a href="https://github.com/yargs/y18n/commit/a8e7f04f8011423ce526e9b9f7ceea190c032733"><code>a8e7f04</code></a> build(release-please): configure branch properly (<a href="https://github-redirect.dependabot.com/yargs/y18n/issues/127">#127</a>)</li> <li><a href="https://github.com/yargs/y18n/commit/1e21a536e9135d8403a47be88922157a706b7cde"><code>1e21a53</code></a> fix(release): 4.x.x should not enforce Node 10 (<a href="https://github-redirect.dependabot.com/yargs/y18n/issues/126">#126</a>)</li> <li><a href="https://github.com/yargs/y18n/commit/8dc75802f3aa944bf9a827213969d64834621215"><code>8dc7580</code></a> docs: update CHANGELOG</li> <li><a href="https://github.com/yargs/y18n/commit/7de58ca0d315990cdb38234e97fc66254cdbcd71"><code>7de58ca</code></a> fix: address prototype pollution issue</li> <li>See full diff in <a href="https://github.com/yargs/y18n/compare/v4.0.0...y18n-v4.0.3">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~oss-bot">oss-bot</a>, a new releaser for y18n since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

PR closed Khan/jest-action

Bump highlight.js from 9.18.1 to 9.18.5 dependencies

Bumps highlight.js from 9.18.1 to 9.18.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/highlightjs/highlight.js/blob/9.18.5/CHANGES.md">highlight.js's changelog</a>.</em></p> <blockquote> <h2>Release v9.18.5</h2> <p><strong>Version 9 has reached end-of-support and will not receive future updates or fixes.</strong></p> <p>Please see <a href="https://github.com/highlightjs/highlight.js/blob/master/VERSION_10_UPGRADE.md">VERSION_10_UPGRADE.md</a> and perhaps <a href="https://github.com/highlightjs/highlight.js/blob/master/SECURITY.md">SECURITY.md</a>.</p> <ul> <li>enh: Post-install script can be disabled with <code>HLJS_HIDE_UPGRADE_WARNING=yes</code></li> <li>fix: Deprecation notice logged at library startup a <code>console.log</code> vs <code>console.warn</code>. <ul> <li>Notice only shown if actually highlighting code, not just requiring the library.</li> <li>Node.js treats <code>warn</code> the same as <code>error</code> and that was problematic.</li> <li>You (or perhaps your indirect dependency) may disable the notice with the <code>hideUpgradeWarningAcceptNoSupportOrSecurityUpdates</code> option</li> <li>You can also set <code>HLJS_HIDE_UPGRADE_WARNING=yes</code> in your envionment to disable the warning</li> </ul> </li> </ul> <p>Example:</p> <pre lang="js"><code>hljs.configure({ hideUpgradeWarningAcceptNoSupportOrSecurityUpdates: true }) </code></pre> <p>Reference: <a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2877">highlightjs/highlight.js#2877</a></p> <h2>Release v9.18.4</h2> <p><strong>Version 9 has reached end-of-support and will not receive future updates or fixes.</strong></p> <p>Please see <a href="https://github.com/highlightjs/highlight.js/blob/master/VERSION_10_UPGRADE.md">VERSION_10_UPGRADE.md</a> and perhaps <a href="https://github.com/highlightjs/highlight.js/blob/master/SECURITY.md">SECURITY.md</a>.</p> <ul> <li>fix(livescript) fix potential catastrophic backtracking (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/pull/2852">#2852</a>) [<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/pull/2852/commits/ebaf171d2b3a21961b605aa6173a6a4c57346194">commit</a>]</li> </ul> <h2>Version 9.18.3</h2> <ul> <li>fix(parser) Freezing issue with illegal 0 width illegals (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2524">#2524</a>) <ul> <li>backported from v10.x</li> </ul> </li> </ul> <h2>Version 9.18.2</h2> <p>Fixes:</p> <ul> <li>fix(night) Prevent object prototype values from being returned by <code>getLanguage</code> (<a href="https://github-redirect.dependabot.com/highlightjs/highlight.js/issues/2636">#2636</a>) <a href="https://github.com/night">night</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/highlightjs/highlight.js/commit/f54e96c24325f077a027bb950dcd9f8f3ef48b16"><code>f54e96c</code></a> 9.18.5</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/c34318b6a720a0852d27cd13dc55ca896e1292ec"><code>c34318b</code></a> fix the link since i saw it</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/d2e9bdd7597e308534fc2b0fc4aa2f935895a45d"><code>d2e9bdd</code></a> include date of last release</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/f5e06454216644cf20d7c9275d42e37707281a8e"><code>f5e0645</code></a> typos and tweaks</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/2e0e8ee996eb5b3f5c4ab25b60d910690a0e7258"><code>2e0e8ee</code></a> changelog</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/dc45f7cd21fe51a4cbb23fb36459982d1e06a6d5"><code>dc45f7c</code></a> fix(livescript) fix potential catastrophic backtracking</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/0a2624afb8dc71ef01815b49709481f06914474a"><code>0a2624a</code></a> update readme</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/d571b235c0c079ef971965a5a540eec5d68b531c"><code>d571b23</code></a> add warning</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/ec0bfd5490ca1ec667c9c2b528b364f10b9ea71d"><code>ec0bfd5</code></a> 9.18.4</li> <li><a href="https://github.com/highlightjs/highlight.js/commit/2a04835c959f0adb18e7a3649aa68350c0286101"><code>2a04835</code></a> bump v9.18.3</li> <li>Additional commits viewable in <a href="https://github.com/highlightjs/highlight.js/compare/9.18.1...9.18.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 8 days

issue commentfacebook/react-native

Diff in Podfile.lock when runs in different machines

thanks @martintreurnicht , that worked for me! I applied it to the 0.64.2 release here, in case it helps anyone else. I'll probably make a PR against master soon. https://github.com/Khan/react-native/tree/fix-abspath

franciscomorais

comment created time in 8 days

create barnchKhan/react-native

branch : fix-abspath

created branch time in 8 days

PullRequestReviewEvent

Pull request review commentKhan/eslint-action

Fix issue with paths when using a custom working directory

 async function run() {         return;     } -    const current = path.resolve(workingDirectory || '');+    const current = path.resolve('');     const files = await gitChangedFiles(baseRef, '.');     const shouldRunAll = runAllIfChanged.some(name =>-        files.some(file => path.relative(current, file) === name),+        files.some(file => {+            console.log(`${path.relative(current, file)} === ${name}`);

did you want to remove this logging to?

kevinbarabash

comment created time in 9 days

PullRequestReviewEvent