profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/nisevi/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Nicolas Sebastian Vidal nisevi @insight-delta Argentina Software Engineer 👨🏽‍🚀

AgileVentures/AgileVentures 22

Contents for main AgileVentures website

AgileVentures/shf-project 22

Sveriges Hundföretagare (the Swedish Dog Industry association) membership management and website for finding dog-related companies with ethical practices. A project run with AgileVentures.org

nisevi/thanoscase 2

Randomly removes half the characters of a given string

nisevi/youtube-playlist-search 2

Searches over title and description of videos in an specific playlist.

AgileVentures/SocialPrescribingWiki 1

for the NHS HLP Social Prescribing and Self Care Wiki

nisevi/dollar_to_euro 1

Convert dollars to euros.

nisevi/paw 1

UNLu - 2019 - Programación en Ambiente Web (PAW) - 11086

nisevi/scrums 1

React APP for getting and displaying all scrum meetings on YouTuBe.

AgileVentures/mercury 0

Mercury Editor: The Rails HTML5 WYSIWYG editor

bcb37/WebsiteOne 0

A website for Agile Ventures

delete branch nisevi/primes_table

delete branch : dependabot/bundler/aruba-1.1.0

delete time in a day

PR closed nisevi/primes_table

Bump aruba from 1.0.2 to 1.1.0 dependencies

Bumps aruba from 1.0.2 to 1.1.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cucumber/aruba/blob/master/CHANGELOG.md">aruba's changelog</a>.</em></p> <blockquote> <h2>[1.1.0] / 2021-04-14</h2> <ul> <li>Add step and API to add whole lines to a file (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/780">#780</a> by [mvz])</li> <li>Deprecate file creation when using <code>append_to_file</code> (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/781">#781</a> by [mvz])</li> <li>Update dependencies to cucumber to allow working with incoming major versions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> by [mattwynne])</li> </ul> <h2>[1.0.4] / 2021-01-04</h2> <ul> <li>Update rubocop and fix new offenses (various pull requests)</li> <li>Turn off Cucumber publish warning in CI (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/737">#737</a> by [olleolleolle])</li> <li>Move CI from Travis CI to GitHub Actions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/738">#738</a> by [mvz])</li> <li>Remove superfluous :each from before hooks in RSpec-related cucumber scenarios (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/748">#748</a> by [mvz])</li> <li>Make disabling Bundler more robust (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/750">#750</a> by [mvz])</li> <li>Officially support Ruby 3.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/763">#763</a> by [mvz])</li> <li>Clean up hook methods in configuration (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/751">#751</a> by [mvz])</li> <li>Speed up RSpec suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/767">#767</a> by [mvz])</li> <li>Speed up Cucumber suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/766">#766</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/771">#771</a> by [mvz])</li> <li>Remove obsolete <code>String#strip_heredoc</code> monkey-patch (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/769">#769</a> by [mvz])</li> <li>Simplify configuration option specification (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/772">#772</a> by [mvz])</li> </ul> <h2>[1.0.3]</h2> <ul> <li>Loosen Cucumber dependency to allow Cucumber 5.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/727">#727</a> by [mvz])</li> <li>Update rubocop and fix new offenses (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/719">#719</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/724">#724</a> by [mvz])</li> <li>Rework gemspec to avoid dependency on git (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/721">#721</a> by [utkarsh2102], <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/725">#725</a> by [mvz])</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cucumber/aruba/commit/c604d2c05bd9bf5d6c11f559cefed4fb4031de92"><code>c604d2c</code></a> Prepare version 1.1.0 for release</li> <li><a href="https://github.com/cucumber/aruba/commit/7d2ed2752e5a34357bf03cd894c9b724d2549d4b"><code>7d2ed27</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> from cucumber/allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/d847194e5921bdb29714f0f5574552a6aea5a00f"><code>d847194</code></a> Set max cucumber version to 7.0</li> <li><a href="https://github.com/cucumber/aruba/commit/dae41c8a87877442bbf74712dfe627af92e17870"><code>dae41c8</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/cucumber/aruba/commit/13cced9c6481ade80f59f2ef24b72fb8e4d96a62"><code>13cced9</code></a> Merge remote-tracking branch 'origin/master' into allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/b81ee6dd7e18f994bfa3efe17e4685790da2b90a"><code>b81ee6d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/802">#802</a> from cucumber/stabilize-windows-build</li> <li><a href="https://github.com/cucumber/aruba/commit/fc2f876eb60ce5d29c5c54b3468186833a244337"><code>fc2f876</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/cucumber/aruba/commit/c4a620736216a251ed22cb6e6665736615d9b545"><code>c4a6207</code></a> Use ruby File.expand_path while setting-up Aruba::Command spec</li> <li><a href="https://github.com/cucumber/aruba/commit/170221b822957f45b5b773ab9cabcae5d3978c44"><code>170221b</code></a> Update README.md</li> <li><a href="https://github.com/cucumber/aruba/commit/a4028dd1edb1555beaeb7240e95c770600468d9d"><code>a4028dd</code></a> Allow newer versions of Cucumber</li> <li>Additional commits viewable in <a href="https://github.com/cucumber/aruba/compare/v1.0.2...v1.1.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+53 -50

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in a day

pull request commentnisevi/primes_table

Bump aruba from 1.0.2 to 1.1.0

Superseded by #63.

dependabot-preview[bot]

comment created time in a day

delete branch nisevi/dollar_to_euro

delete branch : dependabot/bundler/aruba-1.1.0

delete time in a day

PR opened nisevi/primes_table

Bump aruba from 1.0.2 to 1.1.1

Bumps aruba from 1.0.2 to 1.1.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cucumber/aruba/blob/main/CHANGELOG.md">aruba's changelog</a>.</em></p> <blockquote> <h2>[1.1.1] / 2021-05-14</h2> <ul> <li>Loosen dependency on the contracts gem (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/804">#804</a> by [mvz])</li> </ul> <h2>[1.1.0] / 2021-04-14</h2> <ul> <li>Add step and API to add whole lines to a file (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/780">#780</a> by [mvz])</li> <li>Deprecate file creation when using <code>append_to_file</code> (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/781">#781</a> by [mvz])</li> <li>Update dependencies to cucumber to allow working with incoming major versions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> by [mattwynne])</li> </ul> <h2>[1.0.4] / 2021-01-04</h2> <ul> <li>Update rubocop and fix new offenses (various pull requests)</li> <li>Turn off Cucumber publish warning in CI (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/737">#737</a> by [olleolleolle])</li> <li>Move CI from Travis CI to GitHub Actions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/738">#738</a> by [mvz])</li> <li>Remove superfluous :each from before hooks in RSpec-related cucumber scenarios (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/748">#748</a> by [mvz])</li> <li>Make disabling Bundler more robust (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/750">#750</a> by [mvz])</li> <li>Officially support Ruby 3.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/763">#763</a> by [mvz])</li> <li>Clean up hook methods in configuration (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/751">#751</a> by [mvz])</li> <li>Speed up RSpec suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/767">#767</a> by [mvz])</li> <li>Speed up Cucumber suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/766">#766</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/771">#771</a> by [mvz])</li> <li>Remove obsolete <code>String#strip_heredoc</code> monkey-patch (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/769">#769</a> by [mvz])</li> <li>Simplify configuration option specification (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/772">#772</a> by [mvz])</li> </ul> <h2>[1.0.3]</h2> <ul> <li>Loosen Cucumber dependency to allow Cucumber 5.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/727">#727</a> by [mvz])</li> <li>Update rubocop and fix new offenses (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/719">#719</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/724">#724</a> by [mvz])</li> <li>Rework gemspec to avoid dependency on git (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/721">#721</a> by [utkarsh2102], <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/725">#725</a> by [mvz])</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cucumber/aruba/commit/056df4a2d1df48fb7f4b081089d108f00c63131b"><code>056df4a</code></a> Prepare version 1.1.1 for release</li> <li><a href="https://github.com/cucumber/aruba/commit/49bff992f93e989588376d8fd553aef1e4836b1f"><code>49bff99</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/804">#804</a> from cucumber/update-contracts-dependency</li> <li><a href="https://github.com/cucumber/aruba/commit/c7d9771c1ddd69de544f438b7c18fd0b02c9f0d3"><code>c7d9771</code></a> Loosen dependency on the contracts gem</li> <li><a href="https://github.com/cucumber/aruba/commit/c604d2c05bd9bf5d6c11f559cefed4fb4031de92"><code>c604d2c</code></a> Prepare version 1.1.0 for release</li> <li><a href="https://github.com/cucumber/aruba/commit/7d2ed2752e5a34357bf03cd894c9b724d2549d4b"><code>7d2ed27</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> from cucumber/allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/d847194e5921bdb29714f0f5574552a6aea5a00f"><code>d847194</code></a> Set max cucumber version to 7.0</li> <li><a href="https://github.com/cucumber/aruba/commit/dae41c8a87877442bbf74712dfe627af92e17870"><code>dae41c8</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/cucumber/aruba/commit/13cced9c6481ade80f59f2ef24b72fb8e4d96a62"><code>13cced9</code></a> Merge remote-tracking branch 'origin/master' into allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/b81ee6dd7e18f994bfa3efe17e4685790da2b90a"><code>b81ee6d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/802">#802</a> from cucumber/stabilize-windows-build</li> <li><a href="https://github.com/cucumber/aruba/commit/fc2f876eb60ce5d29c5c54b3468186833a244337"><code>fc2f876</code></a> Update CHANGELOG.md</li> <li>Additional commits viewable in <a href="https://github.com/cucumber/aruba/compare/v1.0.2...v1.1.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+55 -52

0 comment

1 changed file

pr created time in a day

create barnchnisevi/primes_table

branch : dependabot/bundler/aruba-1.1.1

created branch time in a day

PR closed nisevi/dollar_to_euro

Update aruba requirement from ~> 0.14.3 to ~> 1.1.0 dependencies

Updates the requirements on aruba to permit the latest version. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cucumber/aruba/blob/master/CHANGELOG.md">aruba's changelog</a>.</em></p> <blockquote> <h2>[1.1.0] / 2021-04-14</h2> <ul> <li>Add step and API to add whole lines to a file (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/780">#780</a> by [mvz])</li> <li>Deprecate file creation when using <code>append_to_file</code> (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/781">#781</a> by [mvz])</li> <li>Update dependencies to cucumber to allow working with incoming major versions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> by [mattwynne])</li> </ul> <h2>[1.0.4] / 2021-01-04</h2> <ul> <li>Update rubocop and fix new offenses (various pull requests)</li> <li>Turn off Cucumber publish warning in CI (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/737">#737</a> by [olleolleolle])</li> <li>Move CI from Travis CI to GitHub Actions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/738">#738</a> by [mvz])</li> <li>Remove superfluous :each from before hooks in RSpec-related cucumber scenarios (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/748">#748</a> by [mvz])</li> <li>Make disabling Bundler more robust (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/750">#750</a> by [mvz])</li> <li>Officially support Ruby 3.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/763">#763</a> by [mvz])</li> <li>Clean up hook methods in configuration (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/751">#751</a> by [mvz])</li> <li>Speed up RSpec suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/767">#767</a> by [mvz])</li> <li>Speed up Cucumber suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/766">#766</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/771">#771</a> by [mvz])</li> <li>Remove obsolete <code>String#strip_heredoc</code> monkey-patch (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/769">#769</a> by [mvz])</li> <li>Simplify configuration option specification (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/772">#772</a> by [mvz])</li> </ul> <h2>[1.0.3]</h2> <ul> <li>Loosen Cucumber dependency to allow Cucumber 5.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/727">#727</a> by [mvz])</li> <li>Update rubocop and fix new offenses (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/719">#719</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/724">#724</a> by [mvz])</li> <li>Rework gemspec to avoid dependency on git (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/721">#721</a> by [utkarsh2102], <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/725">#725</a> by [mvz])</li> </ul> <h2>[1.0.2]</h2> <ul> <li>Loosen childprocess dependency (<a href="https://github.com/cucumber/aruba/commit/00cb07897c9f99e59bea630ae164cf5aa78fa76c">00cb0789</a> by [mvz]).</li> <li>Various small code cleanups (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/717">#717</a> by [mvz])</li> </ul> <h2>[1.0.1]</h2> <h3>Bug fixes</h3> <ul> <li>Allow use of Aruba with Cucumber 4 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/715">#715</a> by [mvz])</li> </ul> <h3>Code quality and documentation improvements</h3> <ul> <li>Fix RuboCop offenses (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/693">#693</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/708">#708</a> by [luke-hill], <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/710">#710</a>, <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/711">#711</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/712">#712</a> by [mvz])</li> <li>Use recent Rake version in fixtures (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/709">#709</a> by [mvz])</li> <li>Repair YARD annotations (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/707">#707</a> by [olleolleolle])</li> </ul> <h2>[1.0.0]</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cucumber/aruba/commit/c604d2c05bd9bf5d6c11f559cefed4fb4031de92"><code>c604d2c</code></a> Prepare version 1.1.0 for release</li> <li><a href="https://github.com/cucumber/aruba/commit/7d2ed2752e5a34357bf03cd894c9b724d2549d4b"><code>7d2ed27</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> from cucumber/allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/d847194e5921bdb29714f0f5574552a6aea5a00f"><code>d847194</code></a> Set max cucumber version to 7.0</li> <li><a href="https://github.com/cucumber/aruba/commit/dae41c8a87877442bbf74712dfe627af92e17870"><code>dae41c8</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/cucumber/aruba/commit/13cced9c6481ade80f59f2ef24b72fb8e4d96a62"><code>13cced9</code></a> Merge remote-tracking branch 'origin/master' into allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/b81ee6dd7e18f994bfa3efe17e4685790da2b90a"><code>b81ee6d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/802">#802</a> from cucumber/stabilize-windows-build</li> <li><a href="https://github.com/cucumber/aruba/commit/fc2f876eb60ce5d29c5c54b3468186833a244337"><code>fc2f876</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/cucumber/aruba/commit/c4a620736216a251ed22cb6e6665736615d9b545"><code>c4a6207</code></a> Use ruby File.expand_path while setting-up Aruba::Command spec</li> <li><a href="https://github.com/cucumber/aruba/commit/170221b822957f45b5b773ab9cabcae5d3978c44"><code>170221b</code></a> Update README.md</li> <li><a href="https://github.com/cucumber/aruba/commit/a4028dd1edb1555beaeb7240e95c770600468d9d"><code>a4028dd</code></a> Allow newer versions of Cucumber</li> <li>Additional commits viewable in <a href="https://github.com/cucumber/aruba/compare/v0.14.10...v1.1.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+58 -36

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in a day

pull request commentnisevi/dollar_to_euro

Update aruba requirement from ~> 0.14.3 to ~> 1.1.0

Superseded by #102.

dependabot-preview[bot]

comment created time in a day

PR opened nisevi/dollar_to_euro

Update aruba requirement from ~> 0.14.3 to ~> 1.1.1

Updates the requirements on aruba to permit the latest version. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/cucumber/aruba/blob/main/CHANGELOG.md">aruba's changelog</a>.</em></p> <blockquote> <h2>[1.1.1] / 2021-05-14</h2> <ul> <li>Loosen dependency on the contracts gem (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/804">#804</a> by [mvz])</li> </ul> <h2>[1.1.0] / 2021-04-14</h2> <ul> <li>Add step and API to add whole lines to a file (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/780">#780</a> by [mvz])</li> <li>Deprecate file creation when using <code>append_to_file</code> (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/781">#781</a> by [mvz])</li> <li>Update dependencies to cucumber to allow working with incoming major versions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> by [mattwynne])</li> </ul> <h2>[1.0.4] / 2021-01-04</h2> <ul> <li>Update rubocop and fix new offenses (various pull requests)</li> <li>Turn off Cucumber publish warning in CI (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/737">#737</a> by [olleolleolle])</li> <li>Move CI from Travis CI to GitHub Actions (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/738">#738</a> by [mvz])</li> <li>Remove superfluous :each from before hooks in RSpec-related cucumber scenarios (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/748">#748</a> by [mvz])</li> <li>Make disabling Bundler more robust (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/750">#750</a> by [mvz])</li> <li>Officially support Ruby 3.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/763">#763</a> by [mvz])</li> <li>Clean up hook methods in configuration (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/751">#751</a> by [mvz])</li> <li>Speed up RSpec suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/767">#767</a> by [mvz])</li> <li>Speed up Cucumber suite (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/766">#766</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/771">#771</a> by [mvz])</li> <li>Remove obsolete <code>String#strip_heredoc</code> monkey-patch (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/769">#769</a> by [mvz])</li> <li>Simplify configuration option specification (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/772">#772</a> by [mvz])</li> </ul> <h2>[1.0.3]</h2> <ul> <li>Loosen Cucumber dependency to allow Cucumber 5.0 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/727">#727</a> by [mvz])</li> <li>Update rubocop and fix new offenses (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/719">#719</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/724">#724</a> by [mvz])</li> <li>Rework gemspec to avoid dependency on git (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/721">#721</a> by [utkarsh2102], <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/725">#725</a> by [mvz])</li> </ul> <h2>[1.0.2]</h2> <ul> <li>Loosen childprocess dependency (<a href="https://github.com/cucumber/aruba/commit/00cb07897c9f99e59bea630ae164cf5aa78fa76c">00cb0789</a> by [mvz]).</li> <li>Various small code cleanups (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/717">#717</a> by [mvz])</li> </ul> <h2>[1.0.1]</h2> <h3>Bug fixes</h3> <ul> <li>Allow use of Aruba with Cucumber 4 (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/715">#715</a> by [mvz])</li> </ul> <h3>Code quality and documentation improvements</h3> <ul> <li>Fix RuboCop offenses (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/693">#693</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/708">#708</a> by [luke-hill], <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/710">#710</a>, <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/711">#711</a> and <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/712">#712</a> by [mvz])</li> <li>Use recent Rake version in fixtures (<a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/709">#709</a> by [mvz])</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cucumber/aruba/commit/056df4a2d1df48fb7f4b081089d108f00c63131b"><code>056df4a</code></a> Prepare version 1.1.1 for release</li> <li><a href="https://github.com/cucumber/aruba/commit/49bff992f93e989588376d8fd553aef1e4836b1f"><code>49bff99</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/804">#804</a> from cucumber/update-contracts-dependency</li> <li><a href="https://github.com/cucumber/aruba/commit/c7d9771c1ddd69de544f438b7c18fd0b02c9f0d3"><code>c7d9771</code></a> Loosen dependency on the contracts gem</li> <li><a href="https://github.com/cucumber/aruba/commit/c604d2c05bd9bf5d6c11f559cefed4fb4031de92"><code>c604d2c</code></a> Prepare version 1.1.0 for release</li> <li><a href="https://github.com/cucumber/aruba/commit/7d2ed2752e5a34357bf03cd894c9b724d2549d4b"><code>7d2ed27</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/801">#801</a> from cucumber/allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/d847194e5921bdb29714f0f5574552a6aea5a00f"><code>d847194</code></a> Set max cucumber version to 7.0</li> <li><a href="https://github.com/cucumber/aruba/commit/dae41c8a87877442bbf74712dfe627af92e17870"><code>dae41c8</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/cucumber/aruba/commit/13cced9c6481ade80f59f2ef24b72fb8e4d96a62"><code>13cced9</code></a> Merge remote-tracking branch 'origin/master' into allow-new-cucumbers</li> <li><a href="https://github.com/cucumber/aruba/commit/b81ee6dd7e18f994bfa3efe17e4685790da2b90a"><code>b81ee6d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/cucumber/aruba/issues/802">#802</a> from cucumber/stabilize-windows-build</li> <li><a href="https://github.com/cucumber/aruba/commit/fc2f876eb60ce5d29c5c54b3468186833a244337"><code>fc2f876</code></a> Update CHANGELOG.md</li> <li>Additional commits viewable in <a href="https://github.com/cucumber/aruba/compare/v0.14.10...v1.1.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+59 -37

0 comment

2 changed files

pr created time in a day

create barnchnisevi/dollar_to_euro

branch : dependabot/bundler/aruba-1.1.1

created branch time in a day

PR closed nisevi/scrums

Bump dotenv from 5.0.1 to 9.0.1 dependencies

Bumps dotenv from 5.0.1 to 9.0.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/motdotla/dotenv/compare/v9.0.0...v9.0.1">9.0.1</a> (2021-05-08)</h2> <h3>Changed</h3> <ul> <li>Updates to README</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.0.0...v9.0.0">9.0.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> <li>TypeScript types</li> <li>point to exact types file to work with VS Code</li> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.1...v8.6.0">8.6.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.0...v8.5.1">8.5.1</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.4.0...v8.5.0">8.5.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.3.0...v8.4.0">8.4.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>point to exact types file to work with VS Code</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.2.0...v8.3.0">8.3.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/motdotla/dotenv/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 7 days

pull request commentnisevi/scrums

Bump dotenv from 5.0.1 to 9.0.1

Superseded by #133.

dependabot-preview[bot]

comment created time in 7 days

delete branch nisevi/scrums

delete branch : dependabot/npm_and_yarn/dotenv-9.0.1

delete time in 7 days

PR opened nisevi/scrums

Bump dotenv from 5.0.1 to 9.0.2

Bumps dotenv from 5.0.1 to 9.0.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/motdotla/dotenv/compare/v9.0.1...v9.0.2">9.0.2</a> (2021-05-10)</h2> <h3>Changed</h3> <ul> <li>Support windows newlines with debug mode</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v9.0.0...v9.0.1">9.0.1</a> (2021-05-08)</h2> <h3>Changed</h3> <ul> <li>Updates to README</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.0.0...v9.0.0">9.0.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> <li>TypeScript types</li> <li>point to exact types file to work with VS Code</li> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.1...v8.6.0">8.6.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.0...v8.5.1">8.5.1</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.4.0...v8.5.0">8.5.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.3.0...v8.4.0">8.4.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>point to exact types file to work with VS Code</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/motdotla/dotenv/commit/b0bf66367362a5f18f6628d25f997b30f3205d0a"><code>b0bf663</code></a> Bump 9.0.2</li> <li><a href="https://github.com/motdotla/dotenv/commit/6d6b792906343c45846a2af344da44c5521d9979"><code>6d6b792</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/motdotla/dotenv/issues/523">#523</a> from motdotla/windows-debug</li> <li><a href="https://github.com/motdotla/dotenv/commit/5dfa02a7ae6b5fa0fda0ce0520c3804cec4ba9aa"><code>5dfa02a</code></a> Update CHANGELOG</li> <li><a href="https://github.com/motdotla/dotenv/commit/e79d2dd037cdb02c4c66672dee46adb71525c4d1"><code>e79d2dd</code></a> Bump 0.9.1</li> <li><a href="https://github.com/motdotla/dotenv/commit/cef55ded0cf347a929725be6c53e9734546e839a"><code>cef55de</code></a> Update README</li> <li><a href="https://github.com/motdotla/dotenv/commit/0df48439cd2cf682bf1e7d4da1cf490c10d1002a"><code>0df4843</code></a> Update README</li> <li><a href="https://github.com/motdotla/dotenv/commit/3214bf46ebef0d2d48be2bddc196808e336c5940"><code>3214bf4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/motdotla/dotenv/issues/526">#526</a> from motdotla/nine-o</li> <li><a href="https://github.com/motdotla/dotenv/commit/fdd8d086008898d358b32e8deb88328cce875748"><code>fdd8d08</code></a> Version bump 9.0.0</li> <li><a href="https://github.com/motdotla/dotenv/commit/f7f7df4ff2de97f39d22de8170e33666bdb69338"><code>f7f7df4</code></a> Show as 'added' in changelog</li> <li><a href="https://github.com/motdotla/dotenv/commit/aa52d543a7791de1ec15846c0600199dfa78f77c"><code>aa52d54</code></a> Bump version 8.6.0</li> <li>Additional commits viewable in <a href="https://github.com/motdotla/dotenv/compare/v5.0.1...v9.0.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

pr created time in 7 days

create barnchnisevi/scrums

branch : dependabot/npm_and_yarn/dotenv-9.0.2

created branch time in 7 days

delete branch nisevi/scrums

delete branch : dependabot/npm_and_yarn/dotenv-9.0.0

delete time in 8 days

PR closed nisevi/scrums

Bump dotenv from 5.0.1 to 9.0.0 dependencies

Bumps dotenv from 5.0.1 to 9.0.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.0.0...v9.0.0">9.0.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> <li>TypeScript types</li> <li>point to exact types file to work with VS Code</li> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.1...v8.6.0">8.6.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.0...v8.5.1">8.5.1</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.4.0...v8.5.0">8.5.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.3.0...v8.4.0">8.4.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>point to exact types file to work with VS Code</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.2.0...v8.3.0">8.3.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.1.0...v8.2.0">8.2.0</a> (2019-10-16)</h2> <h3>Added</h3> <ul> <li>TypeScript types</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/motdotla/dotenv/commit/3214bf46ebef0d2d48be2bddc196808e336c5940"><code>3214bf4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/motdotla/dotenv/issues/526">#526</a> from motdotla/nine-o</li> <li><a href="https://github.com/motdotla/dotenv/commit/fdd8d086008898d358b32e8deb88328cce875748"><code>fdd8d08</code></a> Version bump 9.0.0</li> <li><a href="https://github.com/motdotla/dotenv/commit/f7f7df4ff2de97f39d22de8170e33666bdb69338"><code>f7f7df4</code></a> Show as 'added' in changelog</li> <li><a href="https://github.com/motdotla/dotenv/commit/aa52d543a7791de1ec15846c0600199dfa78f77c"><code>aa52d54</code></a> Bump version 8.6.0</li> <li><a href="https://github.com/motdotla/dotenv/commit/2c1534e55705a85694ad6cc20c5cfba05bab84e4"><code>2c1534e</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/motdotla/dotenv/issues/525">#525</a> from MrSnoozles/patch-1</li> <li><a href="https://github.com/motdotla/dotenv/commit/264c3d60021ca431487fa9e8c98fed89f0430010"><code>264c3d6</code></a> Add package.json to exports</li> <li><a href="https://github.com/motdotla/dotenv/commit/0275932c66a7a02e453d4de0811fc4f8e47a3c8d"><code>0275932</code></a> Shorten link to join text</li> <li><a href="https://github.com/motdotla/dotenv/commit/ff555922c7381368bbbac0388f94ef0d24b10388"><code>ff55592</code></a> Add announcement</li> <li><a href="https://github.com/motdotla/dotenv/commit/a74c220a5bbf4e4355f090204f772b9769a21b13"><code>a74c220</code></a> Bump version 8.5.1</li> <li><a href="https://github.com/motdotla/dotenv/commit/09de4868c4ee055fd167730a703161617aa2f9e2"><code>09de486</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/motdotla/dotenv/issues/522">#522</a> from motdotla/npm-audit</li> <li>Additional commits viewable in <a href="https://github.com/motdotla/dotenv/compare/v5.0.1...v9.0.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

1 comment

2 changed files

dependabot-preview[bot]

pr closed time in 8 days

pull request commentnisevi/scrums

Bump dotenv from 5.0.1 to 9.0.0

Superseded by #132.

dependabot-preview[bot]

comment created time in 8 days

PR opened nisevi/scrums

Bump dotenv from 5.0.1 to 9.0.1

Bumps dotenv from 5.0.1 to 9.0.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md">dotenv's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/motdotla/dotenv/compare/v9.0.0...v9.0.1">9.0.1</a> (2021-05-08)</h2> <h3>Changed</h3> <ul> <li>Updates to README</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.0.0...v9.0.0">9.0.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> <li>TypeScript types</li> <li>point to exact types file to work with VS Code</li> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.1...v8.6.0">8.6.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>define package.json in exports</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.5.0...v8.5.1">8.5.1</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>updated dev dependencies via npm audit</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.4.0...v8.5.0">8.5.0</a> (2021-05-05)</h2> <h3>Added</h3> <ul> <li>allow for <code>import "dotenv/config"</code></li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.3.0...v8.4.0">8.4.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li>point to exact types file to work with VS Code</li> </ul> <h2><a href="https://github.com/motdotla/dotenv/compare/v8.2.0...v8.3.0">8.3.0</a> (2021-05-05)</h2> <h3>Changed</h3> <ul> <li><em>Breaking:</em> drop support for Node v8</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/motdotla/dotenv/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+5 -5

0 comment

2 changed files

pr created time in 8 days

create barnchnisevi/scrums

branch : dependabot/npm_and_yarn/dotenv-9.0.1

created branch time in 8 days

pull request commentnisevi/scrums

Bump lodash from 4.17.5 to 4.17.19

Superseded by #131.

dependabot[bot]

comment created time in 8 days

delete branch nisevi/scrums

delete branch : dependabot/npm_and_yarn/lodash-4.17.19

delete time in 8 days

PR closed nisevi/scrums

Bump lodash from 4.17.5 to 4.17.19 dependencies

Bumps lodash from 4.17.5 to 4.17.19. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.5...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+5 -5

1 comment

2 changed files

dependabot[bot]

pr closed time in 8 days

PR opened nisevi/scrums

Bump lodash from 4.17.5 to 4.17.21

Bumps lodash from 4.17.5 to 4.17.21. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/f299b52f39486275a9e6483b60a410e06520c538"><code>f299b52</code></a> Bump to v4.17.21</li> <li><a href="https://github.com/lodash/lodash/commit/c4847ebe7d14540bb28a8b932a9ce1b9ecbfee1a"><code>c4847eb</code></a> Improve performance of <code>toNumber</code>, <code>trim</code> and <code>trimEnd</code> on large input strings</li> <li><a href="https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"><code>3469357</code></a> Prevent command injection through <code>_.template</code>'s <code>variable</code> option</li> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.5...4.17.21">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+5 -5

0 comment

2 changed files

pr created time in 8 days

create barnchnisevi/scrums

branch : dependabot/npm_and_yarn/lodash-4.17.21

created branch time in 8 days

PR opened nisevi/scrums

[Security] Bump hosted-git-info from 2.6.0 to 2.8.9

Bumps hosted-git-info from 2.6.0 to 2.8.9. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-43f8-2h32-f4cj">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Regular Expression Denial of Service in hosted-git-info</strong> The npm package <code>hosted-git-info</code> before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity</p> <p>Affected versions: < 2.8.9</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md">hosted-git-info's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9">2.8.9</a> (2021-04-07)</h2> <h3>Bug Fixes</h3> <ul> <li>backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a> (<a href="https://github.com/npm/hosted-git-info/commit/29adfe5">29adfe5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/84">#84</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.7...v2.8.8">2.8.8</a> (2020-02-29)</h2> <h3>Bug Fixes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed node 6 support (<a href="https://github.com/npm/hosted-git-info/commit/5038b18">5038b18</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/66">#66</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.6...v2.8.7">2.8.7</a> (2020-02-26)</h2> <h3>Bug Fixes</h3> <ul> <li>Do not attempt to use url.URL when unavailable (<a href="https://github.com/npm/hosted-git-info/commit/2d0bb66">2d0bb66</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/62">#62</a></li> <li>Do not pass scp-style URLs to the WhatWG url.URL (<a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf">f2cdfcf</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/60">#60</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.5...v2.8.6">2.8.6</a> (2020-02-25)</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.4...v2.8.5">2.8.5</a> (2019-10-07)</h2> <h3>Bug Fixes</h3> <ul> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/e8325b5">e8325b5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/51">#51</a></li> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/ffe056f">ffe056f</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.3...v2.8.4">2.8.4</a> (2019-08-12)</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/hosted-git-info/commit/8d4b3697d79bcd89cdb36d1db165e3696c783a01"><code>8d4b369</code></a> chore(release): 2.8.9</li> <li><a href="https://github.com/npm/hosted-git-info/commit/29adfe5ef789784c861b2cdeb15051ec2ba651a7"><code>29adfe5</code></a> fix: backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a></li> <li><a href="https://github.com/npm/hosted-git-info/commit/afeaefdd86ba9bb5044be3c1554a666d007cf19a"><code>afeaefd</code></a> chore(release): 2.8.8</li> <li><a href="https://github.com/npm/hosted-git-info/commit/5038b1891a61ca3cd7453acbf85d7011fe0086bb"><code>5038b18</code></a> fix: <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed nod...</li> <li><a href="https://github.com/npm/hosted-git-info/commit/7440afa859162051c191e55d8ecfaf69a193b026"><code>7440afa</code></a> chore(release): 2.8.7</li> <li><a href="https://github.com/npm/hosted-git-info/commit/2d0bb6615ecb8f9ef1019bc0737aab7f6449641f"><code>2d0bb66</code></a> fix: Do not attempt to use url.URL when unavailable</li> <li><a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf33ad2bd3bd1acdba0326281089f53c5b1"><code>f2cdfcf</code></a> fix: Do not pass scp-style URLs to the WhatWG url.URL</li> <li><a href="https://github.com/npm/hosted-git-info/commit/e1b83df5d9cb1f8bb220352e20565560548d2292"><code>e1b83df</code></a> chore(release): 2.8.6</li> <li><a href="https://github.com/npm/hosted-git-info/commit/ff259a6117c62df488e927820e30bec2f7ee453f"><code>ff259a6</code></a> Ensure passwords in hosted Git URLs are correctly escaped</li> <li><a href="https://github.com/npm/hosted-git-info/commit/624fd6f301dd5a1fd7ad1b333d6f8921a12ff98c"><code>624fd6f</code></a> chore(release): 2.8.5</li> <li>Additional commits viewable in <a href="https://github.com/npm/hosted-git-info/compare/v2.6.0...v2.8.9">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~nlf">nlf</a>, a new releaser for hosted-git-info since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

pr created time in 10 days

PR opened nisevi/commits

[Security] Bump hosted-git-info from 2.6.0 to 2.8.9

Bumps hosted-git-info from 2.6.0 to 2.8.9. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-43f8-2h32-f4cj">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Regular Expression Denial of Service in hosted-git-info</strong> The npm package <code>hosted-git-info</code> before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity</p> <p>Affected versions: < 2.8.9</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md">hosted-git-info's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9">2.8.9</a> (2021-04-07)</h2> <h3>Bug Fixes</h3> <ul> <li>backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a> (<a href="https://github.com/npm/hosted-git-info/commit/29adfe5">29adfe5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/84">#84</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.7...v2.8.8">2.8.8</a> (2020-02-29)</h2> <h3>Bug Fixes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed node 6 support (<a href="https://github.com/npm/hosted-git-info/commit/5038b18">5038b18</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/66">#66</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.6...v2.8.7">2.8.7</a> (2020-02-26)</h2> <h3>Bug Fixes</h3> <ul> <li>Do not attempt to use url.URL when unavailable (<a href="https://github.com/npm/hosted-git-info/commit/2d0bb66">2d0bb66</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/62">#62</a></li> <li>Do not pass scp-style URLs to the WhatWG url.URL (<a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf">f2cdfcf</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/60">#60</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.5...v2.8.6">2.8.6</a> (2020-02-25)</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.4...v2.8.5">2.8.5</a> (2019-10-07)</h2> <h3>Bug Fixes</h3> <ul> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/e8325b5">e8325b5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/51">#51</a></li> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/ffe056f">ffe056f</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.3...v2.8.4">2.8.4</a> (2019-08-12)</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/hosted-git-info/commit/8d4b3697d79bcd89cdb36d1db165e3696c783a01"><code>8d4b369</code></a> chore(release): 2.8.9</li> <li><a href="https://github.com/npm/hosted-git-info/commit/29adfe5ef789784c861b2cdeb15051ec2ba651a7"><code>29adfe5</code></a> fix: backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a></li> <li><a href="https://github.com/npm/hosted-git-info/commit/afeaefdd86ba9bb5044be3c1554a666d007cf19a"><code>afeaefd</code></a> chore(release): 2.8.8</li> <li><a href="https://github.com/npm/hosted-git-info/commit/5038b1891a61ca3cd7453acbf85d7011fe0086bb"><code>5038b18</code></a> fix: <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed nod...</li> <li><a href="https://github.com/npm/hosted-git-info/commit/7440afa859162051c191e55d8ecfaf69a193b026"><code>7440afa</code></a> chore(release): 2.8.7</li> <li><a href="https://github.com/npm/hosted-git-info/commit/2d0bb6615ecb8f9ef1019bc0737aab7f6449641f"><code>2d0bb66</code></a> fix: Do not attempt to use url.URL when unavailable</li> <li><a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf33ad2bd3bd1acdba0326281089f53c5b1"><code>f2cdfcf</code></a> fix: Do not pass scp-style URLs to the WhatWG url.URL</li> <li><a href="https://github.com/npm/hosted-git-info/commit/e1b83df5d9cb1f8bb220352e20565560548d2292"><code>e1b83df</code></a> chore(release): 2.8.6</li> <li><a href="https://github.com/npm/hosted-git-info/commit/ff259a6117c62df488e927820e30bec2f7ee453f"><code>ff259a6</code></a> Ensure passwords in hosted Git URLs are correctly escaped</li> <li><a href="https://github.com/npm/hosted-git-info/commit/624fd6f301dd5a1fd7ad1b333d6f8921a12ff98c"><code>624fd6f</code></a> chore(release): 2.8.5</li> <li>Additional commits viewable in <a href="https://github.com/npm/hosted-git-info/compare/v2.6.0...v2.8.9">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~nlf">nlf</a>, a new releaser for hosted-git-info since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

pr created time in 10 days

create barnchnisevi/scrums

branch : dependabot/npm_and_yarn/hosted-git-info-2.8.9

created branch time in 10 days

create barnchnisevi/commits

branch : dependabot/npm_and_yarn/hosted-git-info-2.8.9

created branch time in 10 days

PR opened nisevi/scrums

[Security] Bump ua-parser-js from 0.7.17 to 0.7.28

Bumps ua-parser-js from 0.7.17 to 0.7.28. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-78cj-fxph-m83p">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Regular Expression Denial of Service (ReDoS) in ua-parser-js</strong> ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression which is vulnerable to denial of service. If an attacker sends a malicious User-Agent header, ua-parser-js will get stuck processing it for an extended period of time.</p> <p>Affected versions: >= 0.7.14 < 0.7.24</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faisalman/ua-parser-js/commit/1d3c98a10c23915046a362c4e3b3b503fb40d611"><code>1d3c98a</code></a> Revert breaking fix <a href="https://github-redirect.dependabot.com/faisalman/ua-parser-js/issues/279">#279</a> and release as 0.7.28</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/535f11bd2403910f29dabe6f90adb014ad016747"><code>535f11b</code></a> Delete redundant code</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/642c0399e831e27c5c86c3b7afee02e876250d01"><code>642c039</code></a> Fix <a href="https://github-redirect.dependabot.com/faisalman/ua-parser-js/issues/492">#492</a> LG TV WebOS detection</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/3edacddb2474429c55fa39d1e6222d50bbf9266f"><code>3edacdd</code></a> Merge branch 'master' into develop</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/acc0b91ff5defa2ca9a722874e27277879292907"><code>acc0b91</code></a> Update contributor list</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/f726dcd1ae4fea51e99b8ca574a1be51fbd70e1a"><code>f726dcd</code></a> Merge branch 'master' into develop</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/383ca587ef9b8daffcf652ac39fc9b8f3708572e"><code>383ca58</code></a> More test for tablet devices</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/7c8aa435b26cb14537423cd5fe4ce077e0661db2"><code>7c8aa43</code></a> Minor rearrangement</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/09aa9105dc370ded9275f70eae1f4eb67394966c"><code>09aa910</code></a> Add new device & browser: Tesla</li> <li><a href="https://github.com/faisalman/ua-parser-js/commit/557cc2198d88068892eec6b61f2b2f4fe6e96314"><code>557cc21</code></a> More test for latest phones with unique form factor (fold/flip/qwerty/swivel)</li> <li>Additional commits viewable in <a href="https://github.com/faisalman/ua-parser-js/compare/0.7.17...0.7.28">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

pr created time in 11 days