profile
viewpoint

jhannah/odlug.org 20

DEPRECATED See this instead:

mattdsteele/arnoldc.js 7

A compiler which takes an .arnoldc file and output a javascript file

alexpgates/kitchencolors 6

Allow the internet to control your Hue lights via Twitter!

dblock/strava-ruby-cli 3

Strava command-line client.

mattdsteele/barcamp-tdd-slides 2

Slides from my talk Zen and the Art of TDD

mattdsteele/ancho-powder 1

Node wrapper around Paprika's recipe API

mattdsteele/barcamp-hardware-geocities 1

Hardware is the new Geocities, yo

issue commentgabek/owncast

Web sanity game plan

Nah; use whatever works for you. I don't like Redux much myself either, to be honest!

That said, I've found having some sort of structure in place to help make slices of my application's state available across components to be helpful. As apps get bigger I find it becomes more painful to make changes to data in one component, and have another part of the UI reflect those changes; especially if they're in disparate parts of the component tree. It's especially pronounced in React-y frameworks where "UI is a function of state".

But yeah, there's more than one way to do it. The last app I built was with Stencil and they had a nice state library which I haven't seen replicated elsewhere. I also do a fair amount of Angular development, and the approach there is to use RxJS Observables, with dependency injection.

That said, I'd love to find a simpler way to share state across components, so I'd be curious how you did it without a library.

On Thu, Aug 6, 2020 at 7:56 PM Gabe Kangas notifications@github.com wrote:

There are people who like redux? :). Are state management libraries required?

I've never used a state management library. The one time I built something with React I didn't use one and I still don't really get them. Making the entire state of an application a single global object and then relying on side effects of the object changes to update the UI goes against everything I've ever believed about software development. But then again, I'm not a web developer. My reaction to most Javascript things are "oh god that's awful, you do that?"

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/gabek/owncast/issues/103#issuecomment-670262685, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAC67VJ4HK34NR45T3ITECTR7NGNNANCNFSM4PUZVONQ .

gabek

comment created time in 2 days

issue commentgabek/owncast

Web sanity game plan

Yeah, let me know how it goes!

For state management you have a few approaches; if you like redux there are bindings for preact: https://www.pika.dev/npm/preact-redux

There are also plenty of other approaches out there. https://www.pika.dev/npm/unistore is another popular Flux-like option, but if you like mobx, immer, etc go for it!

Whatever you use, check if it's available via https://www.skypack.dev/ - it lets you link most NPM dependencies from their CDN via an import statement; no Webpack required :)

On Thu, Aug 6, 2020 at 11:56 AM gingervitis notifications@github.com wrote:

Yeah thank you for the insights Matt! The Preact/HTM stuff sounds interesting, I'll have to play around with it a bit. I've been mainly concerned about overall app state management; it feels brittle the way we have it now. And yeah, I'm definitely more familiar and actually quite enjoy React development and hoping using something like that could help me feel like I've got all the pieces of the app more organized here!

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/gabek/owncast/issues/103#issuecomment-670051390, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAC67VIVVMZSS53JJLGIWL3R7LOFJANCNFSM4PUZVONQ .

gabek

comment created time in 3 days

issue commentgabek/owncast

Web sanity game plan

Yeah, I get it.

Incidentally I wrote up a few of my thoughts last year: https://steele.blue/toolchainless/

I definitely agree that going full React + ecosystem brings a ton of drawbacks, on both the user experience and development side, so I'd steer clear of that and look for other approaches. But I think so long as you're comfortable only supporting evergreen browsers (i.e. ditching IE), you have some options for a modern development experience without buying into the whole Webkit ecosystem.

To be honest I haven't much looked at any of the code in webroot yet because my use case didn't require it; but after this weekend I'd be up for doing a general review to see if we can get it more structured.

So without going into specifics, here's the approaches I'd look into. All of these can be bootstrapped and run without a Webpack or other build step:

  • Continue using Vue - You'd have to learn idiomatic Vue, but for an app this size I don't think you've outgrown it yet. I've built similar-sized apps with it without feeling too overwhelmed at least. Some of the better developer experiences (such as single file components) do require additional Webpack tooling, which is a bummer.

  • Preact + htm - This gives you a React-style experience but works in a browser. htm is neat because it's a JSX-style syntax that uses vanilla JavaScript, so no build step required. You can write stuff like:

render({ page }) {
  return html`
    <div class="app">
      <${Header} name="ToDo's (${page})" />
      <button onClick=${() => this.addTodo()}>Add Todo</button>
      <${Footer}>footer content here<//>
    </div>
  `;

Example app that uses this model: https://github.com/mattdsteele/pizza-compass/tree/master/www

  • Web components (LitElement) - I really like Web Components; they feel like the way out of the userland morass. I also blogged about them a bit here. You could write parts of the app using the Custom Elements API, or use a library like LitElement for a more React-like experience. Some of the really fancy stuff (like the @property decorator) require a build step, but it's totally usable without it.

The nice thing about all of these approaches is they don't have to take over the whole app; you could just build the chat section with a framework, and have the rest of the site be static HTML.

gabek

comment created time in 5 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

Did a final round of testing for my event tonight, and things are looking good! We streamed for about an hour at three different bitrates, and it was mostly solid.

There was one instance of buffering I saw as a stream viewer, but it resumed 6 seconds later. In the owncast stdout I saw this message:

time="2020-08-03T02:05:50Z" level=error msg="failed to save the file to the chunk storage. open hls/2/stream-1596420192.ts: no such file or directory"

I'm serving the video files via S3-compatible storage, so my guess is the upload to the bucket failed? I didn't catch any other logs.

Anyhow, we're on schedule for a production use next weekend. Tune in to https://steele-codr.wedding/ at 3:30pm Central time on 8/8 for the livestream!

mattdsteele

comment created time in 7 days

push eventmattdsteele/steele.blue

mattdsteele

commit sha 2683bae8d5bf1a810b9763a46aedd04952e50b87

Update deps

view details

mattdsteele

commit sha b640313bc9437af2b82b0ec009d5502f374ccdcf

Update deps

view details

push time in 9 days

push eventmattdsteele/gatsby-remark-embed-video-lite

mattdsteele

commit sha bbd53c892ff676c7d2769e366d138839f1eefc34

Remove version

view details

mattdsteele

commit sha 57e281bea8956e0a80b32accf1c1f464d01dab5e

Update lite-youtube

view details

push time in 9 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

Thanks for the info! Mostly I was hoping for a "compute-free" way to get an additional stream; I have no issues using the two transcoded ones I've configured.

mattdsteele

comment created time in 9 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

@gabek This isn't directly an Owncast question, but I noticed in this post you've used video passthrough for one of the streams.

What broadcaster and settings did you use for that? I've never been able to get a browser to connect with that stream. I'm using vanilla OBS and have tried both hardware (QSV) and software (x264) encoding.

Owncast settings:

    - full:
      videoPassthrough: true
      audioPassthrough: true
mattdsteele

comment created time in 9 days

push eventmattdsteele/steele.blue

dependabot[bot]

commit sha cb434dc83171b8421dc4db31877edc84faac6550

Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 10 days

PR merged mattdsteele/steele.blue

Bump elliptic from 6.5.2 to 6.5.3 dependencies

Bumps elliptic from 6.5.2 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 10 days

startedjgc234/optiburb

started time in 12 days

push eventmattdsteele/owncast

mattdsteele

commit sha 077d26cf87f5386066556618fae0cea8566afb7c

gofmt

view details

push time in 12 days

Pull request review commentgabek/owncast

Support separate S3 serving endpoint

 type files struct {  //s3 is for configuring the s3 integration type s3 struct {-	Enabled   bool   `yaml:"enabled"`-	Endpoint  string `yaml:"endpoint"`-	AccessKey string `yaml:"accessKey"`-	Secret    string `yaml:"secret"`-	Bucket    string `yaml:"bucket"`-	Region    string `yaml:"region"`-	ACL       string `yaml:"acl"`+	Enabled         bool   `yaml:"enabled"`+	Endpoint        string `yaml:"endpoint"`+	ServingEndpoint string `yaml:"servingEndpoint"`+	AccessKey       string `yaml:"accessKey"`+	Secret          string `yaml:"secret"`+	Bucket          string `yaml:"bucket"`+	Region          string `yaml:"region"`+  ACL             string `yaml:"acl"`

This is what I get for using the Web UI for merge 😶 I'll fix when I'm at my personal machine.

mattdsteele

comment created time in 12 days

push eventmattdsteele/owncast

Matt Steele

commit sha a20d2fce467ac5254fd44046803d70d5e840c9a5

Add ACL option to s3 config (#89)

view details

Gabe Kangas

commit sha cb048261738b874b58adf0017a4e79844541d202

Fix the flickering status text. Closes #88

view details

Matt Steele

commit sha f7ca6e09b9fa71767c5b77e4d092e93c584e5256

Merge branch 'master' into cdn-s3

view details

push time in 12 days

push eventmattdsteele/owncast

mattdsteele

commit sha d561a9faba7330168f746082a88438d0ff118b18

Use config method

view details

push time in 12 days

push eventmattdsteele/owncast

mattdsteele

commit sha c924b14fd58a7e940a16f8529e7205be6e8bdd93

Prefer sprintf to string concatenation

view details

push time in 13 days

push eventmattdsteele/owncast

mattdsteele

commit sha c940dcd06bac316444a1a800958fe45c48a5e56b

Prefer sprintf to string concatenation

view details

push time in 13 days

PR opened gabek/owncast

Support separate S3 serving endpoint

Fixes #90

+21 -11

0 comment

4 changed files

pr created time in 13 days

push eventmattdsteele/owncast

mattdsteele

commit sha b7dbf3a95a103b36976ed555d6cb8c34b20e5bab

Add docs and config

view details

push time in 13 days

push eventmattdsteele/owncast

mattdsteele

commit sha a0562f5fcfb317ab958dacaec8161fa924085819

Include HLS path

view details

push time in 13 days

push eventmattdsteele/owncast

mattdsteele

commit sha dd3e4a45580b4bd011f9cbcf87557582b4400774

Include HLS path

view details

push time in 13 days

push eventmattdsteele/owncast

mattdsteele

commit sha f2e67076ebb03810daa7e5c273ac68e8424ee345

Move CDN endpoint generation to GenerateRemotePlaylist

view details

push time in 13 days

push eventmattdsteele/owncast

mattdsteele

commit sha fccf7be8c8d2c568c5c506926d51017fb1466ad9

Move CDN endpoint generation to GenerateRemotePlaylist

view details

push time in 13 days

issue commentgabek/owncast

Different S3 serving endpoint (e.g. CDN support)

Yup, I was just mucking around to see if I could get something working. I'll update the branch and open a PR

mattdsteele

comment created time in 13 days

create barnchmattdsteele/owncast

branch : both

created branch time in 14 days

push eventmattdsteele/owncast

mattdsteele

commit sha 04277fb90a5ef15a2c6924a326793c3b90726623

Add s3 serving endpoint config. Fixes #90

view details

push time in 14 days

create barnchmattdsteele/owncast

branch : cdn-s3

created branch time in 14 days

issue openedgabek/owncast

Different S3 serving endpoint (e.g. CDN support)

DigitalOcean supports a built-in CDN when using their S3-compatible Spaces storage. After enabling, use of the CDN just requires changing the endpoint; e.g.:

  • Origin: https://bucket.region.digitaloceanspaces.com
  • Edge: https://bucket.region.cdn.digitaloceanspaces.com

It's also possible to configure a custom domain (using a subdomain you own, for example).

I can try to add a new configuration parameter to support this (something like s3.servingHostname), but wanted to get your thoughts before making the change.

Simplest approach would be to just generate and return the custom URL within s3Storage.Save, but if you think there's value in pulling this up more generally, we could probably move it into monitor.go. This would potentially let other storage providers use the same param. I don't think this would be valuable for local serving, but maybe for other providers in the future? I dunno.

created time in 14 days

PR opened gabek/owncast

Add ACL option to s3 config

Using DO's Spaces, it appears that one must set the canned ACL explicitly, or it will always get set as private and be inaccessible via HTTP.

This adds a new config option, which can be used like:

# Read https://github.com/gabek/owncast/blob/master/doc/S3.md for S3 config details.
s3:
  enabled: false
  endpoint: https://sfo2.digitaloceanspaces.com
  accessKey: ABC12342069
  secret: lolomgqwtf49583949
  region: us-west-2
  bucket: myvideo
  acl: public-read

I'm not sure if this is useful beyond my use case; but I can document this in s3.md it and put it in the example config if you think it'd be more useful generally.

+9 -3

0 comment

2 changed files

pr created time in 14 days

push eventmattdsteele/owncast

mattdsteele

commit sha ebd98710e5a0328d33ee23b850c1ebaba0a505e1

Add ACL option to s3 config

view details

push time in 14 days

fork mattdsteele/owncast

Take control over your live stream video by running it yourself. Streaming + chat out of the box.

http://owncast.online

fork in 14 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

Did some testing on my instance tonight; we watched a movie over it with a few folks (stats show it maxed at 5 viewers), all in the same city. Unfortunately it doesn't look like KeyCDN did a great job limiting the requests to the origin server:

image

I pretty quickly saw a maxing out of bandwidth, and the feed got choppy for everyone:

image

I reconfigured down to a single low-quality stream for the rest of the movie and it got through, but I'm wondering if I just happened to hit the limit for what local serving can support on my little VPS.

So I'm thinking I'll be trying the S3 approach next. DigitalOcean has an S3-compatible storage offering, so I'll give that a whirl and let you know how it goes.

Kind of a bummer that KeyCDN didn't do what it says on the tin, but I think switching storage providers will be easier than trying to debug the CDN 🤷

mattdsteele

comment created time in 15 days

issue commentmattdsteele/strava-segment-trends

Better understand and handle Strava segment spikes

Discussed with someone else, here's his thoughts:

Had a friend with a subscription look at one of the segments and the rides were not showing up on Strava. I assume if rides were 'private' they wouldn't though. Wonder if there would be a way to 'validate' a segment ride based on looking up the full ride in which that segment was ridden.

mattdsteele

comment created time in 18 days

issue commentmattdsteele/strava-segment-trends

Static maps with Mapbox

Ooh this is neat!

This also ties into #7 - I figure the script you're using to generate these images could be part of the general orchestration to add new segments to the system

mattdsteele

comment created time in 18 days

issue commentgabek/owncast

Web Player Uses Lowest Bitrate

One more data point: with my own videojs implementation (I'm embedding the stream on my own website) appears to be using the right stream for the amount of bandwidth it's got (I've been testing with Edge's built-in network throttling to "Fast 3G" and it goes to my lower-quality stream.

My videojs setup:

  const player = videojs(video, {
    controls: true,
    autoplay: true,
    preload: 'auto',
    liveui: true,
    liveTracker: {
      trackingThreshold: 30,
      liveTolerance: 5,
    },
    fluid: true,
    fill: true,
    responsive: true,
  });
  player.src({ type: 'application/x-mpegURL', src: videoSrc });
};

And my stream config:

  streamQualities:
    # Transcode the video to a lower bitrate and resize
    - low:
      # Higher the bitrate, the better it looks, but it requires more bandwidth to consume.
      videoBitrate: 400
      # Resize the width to something smaller.  scaledHeight is also an option.  Don't use both at once
      # unless you want to chang the aspect ratio of your video.
      scaledWidth: 600
      # Don't re-encode the audio.
      audioPassthrough: true
      # The slower the preset the higher quality the video is.
      # Select a preset from https://trac.ffmpeg.org/wiki/Encode/H.264
      # "superfast" and "ultrafast" are generally not recommended since they look bad.
      encoderPreset: veryfast
    - medium:
      videoBitrate: 800
      encoderPreset: fast
graywolf336

comment created time in 19 days

push eventmattdsteele/acnh-birthdays

dependabot[bot]

commit sha a246a85e540244570cadfbdec6bf06aeed52b76d

Bump lodash from 4.17.15 to 4.17.19 in /site Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 19 days

PR merged mattdsteele/acnh-birthdays

Bump lodash from 4.17.15 to 4.17.19 in /site dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

push eventmattdsteele/strava-segment-trends

dependabot[bot]

commit sha ba2d9020c8ebde4e518e3423a67bf17e4c7a49d9

Bump lodash from 4.17.15 to 4.17.19 in /frontend Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 19 days

PR merged mattdsteele/strava-segment-trends

Bump lodash from 4.17.15 to 4.17.19 in /frontend dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

1 comment

1 changed file

dependabot[bot]

pr closed time in 19 days

issue commentgabek/owncast

Next round of testing!

Yup, August 8 is my deadline; I'll send a link to y'all when it's ready to go :)

I'll do some more testing, but the main things I need are to have the RTMP ingress and HLS streams be solid, and thus far I've experienced zero issues so far, so I'm feeling good!

gabek

comment created time in 19 days

issue openedmattdsteele/strava-segment-trends

Better understand and handle Strava segment spikes

Every once in a while there are big spikes of rides recorded:

image

It appears to happen across multiple trails, which makes me think it's not just a batch upload of someone's Garmin. But I'm not sure what causes it, or how to smooth out the data.

We've also seen Strava's numbers actually go down when collecting measurements; I'm guessing they're cleaning up spammy data or something. We currently protect against that by filtering negative values out from the chart (https://github.com/mattdsteele/strava-segment-trends/blob/main/frontend/src/charts.js#L14)

created time in 19 days

push eventmattdsteele/ancho-powder

dependabot[bot]

commit sha 6ac1ff8c95e2d3fbda1b70d2890a22e0f78a7670

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 20 days

PR merged mattdsteele/ancho-powder

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 20 days

push eventmattdsteele/bt-device

dependabot[bot]

commit sha e20501a9a7a09945c65daaf901a5893a32f8fc54

build(deps): bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 20 days

PR merged mattdsteele/bt-device

build(deps): bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+4 -5

0 comment

1 changed file

dependabot[bot]

pr closed time in 20 days

issue commentgabek/owncast

Building is failing due to resource limitations

@gabek I pulled the latest changes, and can successfully build on the 1GB box, both natively and containerized.

Bummer about losing IPFS, but I think this is the right tradeoff. Thanks!

gabek

comment created time in 20 days

issue commentgabek/owncast

Building is failing due to resource limitations

I tried a few values from 1 to 8 but all got the same signal killed response.

For posterity I tried creating a fresh $5 droplet (1GB RAM, Ubuntu 20.04 LTS) and got the same error there. If you're interested in poking around yourself DM me and I can send you the credentials.

gabek

comment created time in 21 days

issue commentgabek/owncast

Building is failing due to resource limitations

I first checked out and successfully built at 965c213d5916c5c5db333328a29a863a82c64570. which it looks like was just before cgo was added to build.sh?

Attaching build.txt

gabek

comment created time in 21 days

PR opened gabek/owncast

Set Content-Type on status endpoint

Just noticed this was serving as text/plain

+1 -0

0 comment

1 changed file

pr created time in 21 days

push eventmattdsteele/owncast

Matt Steele

commit sha c0780a656e5d54633a7081ee764b753e37a6d8a6

Set Content-Type on status endpoint

view details

push time in 21 days

push eventmattdsteele/owncast

Matt Steele

commit sha 75ca3793006bde565e334717d8593b3caa495324

Add Content-Type to status endpoint

view details

push time in 21 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

One other note: I fetched the latest changes and attempted to rebuild the Docker container, and at least on my $5 DigitalOcean VPS it's now unable to build the container:

//snip
go: downloading github.com/huin/goupnp v1.0.0
go: downloading github.com/jackpal/go-nat-pmp v1.0.2
go: downloading github.com/cheekybits/genny v1.0.0
go: downloading github.com/francoispqt/gojay v1.2.13
go: downloading golang.org/x/text v0.3.2
go: downloading github.com/marten-seemann/qtls v0.9.1
go: downloading github.com/jmespath/go-jmespath v0.3.0
/usr/local/go/pkg/tool/linux_amd64/link: signal: killed
The command '/bin/sh -c CGO_ENABLED=1 GOOS=linux go build -a -installsuffix cgo -ldflags '-extldflags "-static"' -o owncast .' returned a non-zero code: 1

I'm using it outside a container and it builds fine; so no worries. But probably worth noting if anyone else tries to build the container on a 1GB instance.

mattdsteele

comment created time in 21 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

@graywolf336 I setup KeyCDN and it seems to work OK, though I haven't found a good way to load test to see cache hits.

My naive approach has been to connect up a few browsers and watch the bandwidth charts on my VPS. Any better approaches? I've seen one post using JMeter but want to see if there's any better tooling... https://www.ubik-ingenierie.com/blog/easy-and-realistic-load-testing-of-http-live-streaming-hls-with-apache-jmeter/

mattdsteele

comment created time in 21 days

issue openedmattdsteele/strava-segment-trends

Additional cycling segments/trails

A few folks have asked for:

  • [ ] Walnut Creek addition https://www.strava.com/segments/12350909
  • [ ] Oxbow
  • [ ] Platte

Maybe others?

For each, need to:

  • Insert entry into FaunaDB
  • Generate image map and upload to GCP
  • Associate with weather station

Entry looks like:

{
  segmentId: 10815130,
  trail: "Tranquility",
  weatherStationId: "C8198"
}

GQL mutation would be something like:

# Write your query or mutation here
mutation {
  createSegment(
    data: {
      segmentId: 1234
      trail: "Foo"
      sport: "cycling"
      weatherStationId: "Bar"
    }
  ) {
    _id
  }
}

Would be nice to have a script that does this!

created time in 22 days

push eventmattdsteele/dominos-action

dependabot[bot]

commit sha d2265ca97a7acd97c0e4e63e489c250213886425

chore(deps): bump acorn from 5.7.3 to 5.7.4 Bumps [acorn](https://github.com/acornjs/acorn) from 5.7.3 to 5.7.4. - [Release notes](https://github.com/acornjs/acorn/releases) - [Commits](https://github.com/acornjs/acorn/compare/5.7.3...5.7.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 22 days

PR merged mattdsteele/dominos-action

chore(deps): bump acorn from 5.7.3 to 5.7.4 dependencies

Bumps acorn from 5.7.3 to 5.7.4. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/acornjs/acorn/commit/6370e90067552022710190319cbbbd8c43001957"><code>6370e90</code></a> Mark version 5.7.4</li> <li><a href="https://github.com/acornjs/acorn/commit/fbc15b1344f6dfb992f67b4bbf1357436247c8a0"><code>fbc15b1</code></a> More rigorously check surrogate pairs in regexp validator</li> <li>See full diff in <a href="https://github.com/acornjs/acorn/compare/5.7.3...5.7.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 22 days

push eventmattdsteele/dominos-action

dependabot[bot]

commit sha 3fa0d13ac263939b0f5378a77b1267ffd4dac69e

chore(deps): bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 22 days

PR merged mattdsteele/dominos-action

chore(deps): bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 22 days

push eventmattdsteele/github-actions

dependabot[bot]

commit sha 175bf5ca4c2d1d4d7b3d10c64f159a13cb889bc4

Bump yarn from 1.19.1 to 1.22.0 Bumps [yarn](https://github.com/yarnpkg/yarn) from 1.19.1 to 1.22.0. - [Release notes](https://github.com/yarnpkg/yarn/releases) - [Changelog](https://github.com/yarnpkg/yarn/blob/master/CHANGELOG.md) - [Commits](https://github.com/yarnpkg/yarn/compare/v1.19.1...v1.22.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 22 days

PR merged mattdsteele/github-actions

Bump yarn from 1.19.1 to 1.22.0 dependencies

Bumps yarn from 1.19.1 to 1.22.0. <details> <summary>Changelog</summary>

Sourced from yarn's changelog.

Changelog

Please add one entry in this file for each change in Yarn's behavior. Use the same format for all entries, including the third-person verb. Make sure you don't add more than one line of text to keep it clean. Thanks!

Master

1.19.2

  • Folders like .cache won't be pruned from the node_modules after each install.

    #7699 - Maël Nison

  • Correctly installs workspace child dependencies when workspace child not symlinked to root.

    #7289 - Daniel Tschinder

  • Makes running scripts with Plug'n Play possible on node 13.

</tr></table> ... (truncated) </details> <details> <summary>Commits</summary>

This version was pushed to npm by daniel15, a new releaser for yarn since your current version. </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 22 days

push eventmattdsteele/github-actions

dependabot[bot]

commit sha 63bcb7b2e12d15f49e3e7ad089fd755b10c11b76

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 22 days

PR merged mattdsteele/github-actions

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 22 days

push eventmattdsteele/blumhouse

dependabot[bot]

commit sha 38035ed0997d914b3f2bcc3b8e91a924aa1ce1ea

Bump lodash from 4.17.15 to 4.17.19 in /static Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 23 days

push eventmattdsteele/steele.blue

dependabot[bot]

commit sha d772b09468e3f6048f3e08c841e258793ef5c27d

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 23 days

PR merged mattdsteele/steele.blue

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 23 days

push eventmattdsteele/java-properties

dependabot[bot]

commit sha 0e1df2935bdcaa5e5a165b036e7220395c7d6335

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

push time in 23 days

PR merged mattdsteele/java-properties

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 23 days

PR merged mattdsteele/blumhouse

Bump lodash from 4.17.15 to 4.17.19 in /static dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 23 days

push eventmattdsteele/particle-function-cloud-function

Matt Steele

commit sha 2f036caa69da8e80996000ecbe1285295d8bdaee

Update gcloud.yml

view details

push time in 23 days

push eventmattdsteele/advent-of-code

Matt Steele

commit sha a28308dcb1d80809ef27e98403f5b058c6f20d68

Update deploy-fn.sh

view details

push time in 23 days

push eventmattdsteele/acnh-birthdays

Matt Steele

commit sha 79cc9a191d635a36c4d1ed47cbfd4f648ff38bcf

Update main.go

view details

push time in 23 days

push eventmattdsteele/acnh-birthdays

Matt Steele

commit sha e94c8b79cf4ce94e8cb50bd4d9544e01fe6b135a

Update fns.yml

view details

push time in 23 days

push eventmattdsteele/strava-segment-trends

Matt Steele

commit sha b752b9a964565cd47f693ff01b8f8ef18b99f41d

Trigger CI

view details

push time in 23 days

push eventmattdsteele/strava-segment-trends

Matt Steele

commit sha eeb1223daddb1e39823848df551e6ec45ca4280e

Update backend.yml

view details

push time in 23 days

push eventmattdsteele/blumhouse

Matt Steele

commit sha b25a85fa8e2b0c6de05f695359f31326fbe2f20e

Update cloudbuild.yaml

view details

push time in 23 days

push eventmattdsteele/pizza-compass

Matt Steele

commit sha 87dd1c5e10d31a7c037d79e0f507ab4d6f944042

Update cloudbuild.yaml

view details

push time in 23 days

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

Just making a note; while testing streaming today I noticed Cloudflare was recording essentially 0% cache hits; nearly all requests for data files were being sent to the owncast instance.

Cloudflare's got a good post describing the problem with caching live video, as well as a solution they provide, but only for their paid Stream Delivery product.

Not sure what to do with this other than maybe note the limitations with CDNing live video in the README? I'll probably end up using S3 or the like, after making sure the egress charges are advantageous...

mattdsteele

comment created time in a month

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

Got it! I presume since I'm running in Docker it'll also get wiped when I rebuild the container. I'll probably pull that off into a volume just so it persists.

I'll be focused on live for this use case as well; after my event we may host an edited replay on the site, but that'll probably require some additional tweaks anyhow.

So far embedding has worked great! I'm using hls.js with their quickstart instructions, without any issues. Main gotcha was using native HLS on mobile Safari, which I should have caught. I'll write something up as I learn more.

mattdsteele

comment created time in a month

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required` (and other mattdsteele questions)

From Cloudflare's perspective, I believe the only files I need to exclude from the CDN and disable caching are /hls/**/*.m3u8?

mattdsteele

comment created time in a month

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required`

General question as I'm provisioning hardware; about how much disk is required to serve locally? I'd prefer not to have to use cloud storage just to keep things simple, and I've got Cloudflare in front so bandwidth isn't as much of an issue.

Say I set two stream qualities, with bitrates at 1200 and 600. Out of the box my VPS has 17GB available; is that enough for a few hours of streaming?

Also, do the files in hls/ get purged automatically? I was looking at some from yesterday, but check again and they were gone 😮

mattdsteele

comment created time in a month

issue openedmattdsteele/strava-segment-trends

Static maps with Mapbox

https://www.mapbox.com/static-maps

Replace the map generation code with images generated with this tool. https://docs.mapbox.com/help/glossary/static-images-api/

Use the same style (Outdoors) as Strava, and overlay segment polylines. We already have polylines in both GeoJSON and Google Maps encoded format; not sure which Mapbox uses.

Generate for existing segments, and upload to GCP bucket; Matt will take care of this.

We don't have it yet, but we should also have a script which instantiates everything for a new segment. i.e. drop a segment ID in and it creates the field in Fauna, finds the nearest weather station ID, and generates and uploads a map.

/cc @sbuscher for any other details

created time in a month

pull request commentmattdsteele/strava-segment-trends

Current weather conditions

@sbuscher Made a few changes, feel free to make sure I didn't muck anything up, if not I'll merge it in and push it live tomorrow.

Thanks again for putting this together!

sbuscher

comment created time in a month

push eventmattdsteele/strava-segment-trends

mattdsteele

commit sha 257a1672892baa1cdee0f9c6a0cda8f43c06928a

Move weather station relation to Fauna

view details

push time in a month

push eventmattdsteele/strava-segment-trends

mattdsteele

commit sha e700743947dc1c8026c8f9ffeff6e9ab74a50012

Add caching to weather observations

view details

push time in a month

Pull request review commentmattdsteele/strava-segment-trends

Current weather conditions

 const allSegmentData = async () => {       }     })   );++  await addObservations(segmentData);

Don't worry about it, I'll take care of it after merging; the API is kinda nonintuitive

sbuscher

comment created time in a month

Pull request review commentmattdsteele/strava-segment-trends

Current weather conditions

 const allSegmentData = async () => {       }     })   );++  await addObservations(segmentData);

question: How long does it take for this to run? If it takes a significant amount of time and we want to speed up builds, or if we're rate-limited by weather.gov, would it be worth adding this to the cache?

If it's worth it, we can wrap this code in the checkOrGet() function, similar to the code a few lines above.

sbuscher

comment created time in a month

Pull request review commentmattdsteele/strava-segment-trends

Current weather conditions

+const axios = require('axios').default;+const convert = require('convert-units');+const d2d = require('degrees-to-direction');++const observations = async stations => {+  const results = stations.map(async station => {+    return await axios.get(+      `https://api.weather.gov/stations/${station}/observations/latest`, {+      transformResponse: data => { return transform(station, data) }+    });+  }, transform);++  return Promise.all(results);+}++const transform = (station, data) => {+  const d = JSON.parse(data)++  d.properties.stationId = station;+  d.properties.temperature.value =+    convert(d.properties.temperature.value).from('C').to('F');

This is a cool package, I will need to remember it in the future!

sbuscher

comment created time in a month

Pull request review commentmattdsteele/strava-segment-trends

Current weather conditions

 const allSegmentData = async () => {       }     })   );++  await addObservations(segmentData);+   saveCache();   return augmentedSegmentData; }; +const addObservations = async (segmentData) => {

suggestion: Maybe this would be better named addWeatherObservations or something similar? observations is a little too generic IMO especially when we're observing Strava counts elsewhere in the code

sbuscher

comment created time in a month

Pull request review commentmattdsteele/strava-segment-trends

Current weather conditions

+const axios = require('axios').default;+const convert = require('convert-units');+const d2d = require('degrees-to-direction');++const observations = async stations => {+  const results = stations.map(async station => {+    return await axios.get(+      `https://api.weather.gov/stations/${station}/observations/latest`, {+      transformResponse: data => { return transform(station, data) }

nit: This can be shortened to:

transformResponse: data => transform(station, data)

I like this syntax for short one-liners, though opinions vary!

sbuscher

comment created time in a month

Pull request review commentmattdsteele/strava-segment-trends

Current weather conditions

 const allSegmentData = async () => {       }     })   );++  await addObservations(segmentData);+   saveCache();   return augmentedSegmentData; }; +const addObservations = async (segmentData) => {+  const uniqueStations = new Set();++  for (const segment of segmentData) {+    segment.stationId = stations.find(station => {+      return segment.segmentId === station.segmentId;+    }).stationId;+    uniqueStations.add(segment.stationId);+  }++  uniqueStations.delete(null);+  const obs = await observations([...uniqueStations]);++  for (const segment of segmentData) {+    segment.observations = obs.find(o => {+      return o.data.properties.stationId === segment.stationId;+    }).data.properties;+    delete segment.stationId;+  }+}++// TODO: remove when adding stationId to data store

I'll take care of this

sbuscher

comment created time in a month

pull request commentmattdsteele/strava-segment-trends

Current weather conditions

I stopped getting ride stat data several days ago that populates the chart and whatnot.

You should be able to get fresh data by running npm run clean, then running a build again. The tooling caches service calls to speed up builds, but I don't think there's any eviction strategies setup 🙃

sbuscher

comment created time in a month

PR opened gabek/owncast

Correct indenting

Ran into this when trying to use the example config directly

+2 -2

0 comment

1 changed file

pr created time in a month

push eventmattdsteele/owncast

Matt Steele

commit sha 711f653468fbc0eb9700f2fe2bc5b9b5c4a60b34

Correct indenting

view details

push time in a month

pull request commentmattdsteele/strava-segment-trends

Current weather conditions

This is awesome 💪

I'll check it out later tonight hopefully!

sbuscher

comment created time in a month

PR opened gabek/owncast

Add gcc dependency to build process
+1 -0

0 comment

1 changed file

pr created time in a month

push eventmattdsteele/owncast

Matt Steele

commit sha 75714b4ea6b815de353383d726464282b94a22af

Add gcc dependnecy to build process

view details

push time in a month

fork mattdsteele/owncast

Take control over your video live stream by running it yourself.

http://owncast.online

fork in a month

issue closedgabek/owncast

Quickstart fails, `valid config/config.yaml is required`

Ran through the Dockerized setup in the quickstart, and I was able to successfully build the container, but starting it I'm encountering this error:

root@ubuntu-s-1vcpu-1gb-sfo2-01:~/owncast# docker run -p 8080:8080 -p 1935:1935 -it owncast
INFO[2020-07-12T19:20:21Z] Owncast v0.0.0-localdev (unknown)
FATA[2020-07-12T19:20:21Z] ERROR: valid config/config.yaml is required.  Copy config-example.yaml to config.yaml and edit

I copied the sample config into config/config.yaml before building the container:

root@ubuntu-s-1vcpu-1gb-sfo2-01:~/owncast# ls -l config
total 16
-rw-r--r-- 1 root root 4941 Jul 12 19:10 config.go
-rw-r--r-- 1 root root 1441 Jul 12 19:18 config.yaml
-rw-r--r-- 1 root root  842 Jul 12 19:10 configUtils.go

The only line I changed was updating streamingKey to a different value. I also tried copying config-example.yaml directly, and that also failed.

I'll try the non-Docker approach next, but would definitely like to have this running in a container as an option!

For context, this is a stock DigitalOcean VPS running Ubuntu 20.04

closed time in a month

mattdsteele

issue commentgabek/owncast

Quickstart fails, `valid config/config.yaml is required`

Success!

image

I'll close this out and maybe submit a few PRs for what I mentioned above. We can then use this ticket for any other questions I run into. Thanks!

mattdsteele

comment created time in a month

issue commentgabek/owncast

Docker quickstart fails, `valid config/config.yaml is required`

After building from source and running, I'm getting the same error as when running Dockerized:

root@ubuntu-s-1vcpu-1gb-sfo2-01:~/owncast# go run main.go
INFO[2020-07-12T19:40:54Z] Owncast v0.0.0-localdev (unknown)
FATA[2020-07-12T19:40:54Z] ERROR: valid config/config.yaml is required.  Copy config-example.yaml to config.yaml and edit
exit status 1

Which makes me think the issue is in my config file; I'm just not sure what's causing it.

<details> <summary>The full file I'm testing in config/config.yaml:</summary> root@ubuntu-s-1vcpu-1gb-sfo2-01:~/owncast# cat config/config.yaml

publicHLSPath: webroot/hls
privateHLSPath: hls
ffmpegPath: /usr/bin/ffmpeg
webServerPort: 8080

instanceDetails:
  name: Owncast
  title: Owncast Demo Server
  summary: "This is brief summary of whom you are or what your stream is. You can read more about it at owncast.online.  You can edit this description in your config file."
  extraUserInfoFileName: "/static/content.md"

  logo:
    small: /img/logo128.png
    large: /img/logo128.png

  tags:
    - music
    - software
    - animal crossing

  # See documentation for full list of supported social links.  All optional.
  socialHandles:
    - platform: twitter
      url: http://twitter.com/owncast
    - platform: instagram
      url: http://instagram.biz/owncast
    - platform: facebook
      url: http://facebook.gov/owncast
    - platform: tiktok
      url: http://tiktok.cn/owncast
    - platform: soundcloud
      url: http://soundcloud.com/owncast

videoSettings:
  chunkLengthInSeconds: 4
  streamingKey: abc123
  offlineContent: static/offline.m4v # Is displayed when a stream ends

  streamQualities:
    # Transcode the video to a lower bitrate and resize
    - medium:
    videoBitrate: 800
    encoderPreset: superfast

files:
  maxNumberInPlaylist: 30

ipfs:
  enabled: false
  gateway: https://ipfs.io

s3:
  enabled: false
  endpoint: https://s3.us-west-2.amazonaws.com
  accessKey: ABC12342069
  secret: lolomgqwtf49583949
  region: us-west-2
  bucket: myvideo

</details>

mattdsteele

comment created time in a month

more