profile
viewpoint
Masato Ohba ohbarye Unemployed Japan https://ohbarye.github.io/ Web developer, mainly working on server-side with Rails and front-end with React.

ohbarye/automaildoc 5

📧 Generate email preview from your mail spec

ohbarye/choka-scraper 1

This is a script to fetch catches of fishing by scraping https://www.fishing-v.jp/.

ohbarye/colorful-contributions 1

Chrome extension to color GitHub contributions with your favorite color.

ohbarye/3D-logo-generator 0

3D Logo Generator with three.js.

ohbarye/apollo-link 0

:link: Interface for fetching and modifying control flow of GraphQL requests

ohbarye/asyncInNode 0

A sample of server side asynchronized process.

ohbarye/atelier-proto 0

Prototype of Palody Artwork Atelier.

ohbarye/autodoc 0

Generate documentation from your rack application & request-spec.

delete branch ohbarye/goofi

delete branch : dependabot/npm_and_yarn/next-9.3.2

delete time in 35 minutes

push eventohbarye/goofi

dependabot-preview[bot]

commit sha 7f9ebde7d58262bbafacb2454fc34bf915420cef

Bump next from 9.1.1 to 9.3.2 Bumps [next](https://github.com/zeit/next.js) from 9.1.1 to 9.3.2. - [Release notes](https://github.com/zeit/next.js/releases) - [Commits](https://github.com/zeit/next.js/compare/v9.1.1...v9.3.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha f5e3300ea533b80905f7461b61f35f0282c14eea

Merge pull request #280 from ohbarye/dependabot/npm_and_yarn/next-9.3.2 [Security] Bump next from 9.1.1 to 9.3.2

view details

push time in 35 minutes

PR merged ohbarye/goofi

[Security] Bump next from 9.1.1 to 9.3.2 dependencies security

Bumps next from 9.1.1 to 9.3.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/zeit/next.js/releases">next's releases</a>.</em></p> <blockquote> <h2>v9.3.2</h2> <p><strong>This upgrade is <em>completely backwards compatible and recommended for all users on versions below 9.3.2.</em> For future security related communications of our OSS projects, please <a href="https://zeit.co/security">join this mailing list</a>.</strong></p> <p>Next.js has just been audited by one of the top security firms in the world.</p> <p>They found that attackers could craft special requests to access files in the dist directory (<code>.next</code>).</p> <p><strong>This does not affect files outside of the dist directory (<code>.next</code>).</strong></p> <p>In general, the dist directory only holds build assets unless your application intentionally stores other assets under this directory.</p> <p>We recommend upgrading to the latest version of Next.js to improve the overall security of your application.</p> <h2>How to Upgrade</h2> <ul> <li>We have released patch versions for both the stable and canary channels of Next.js.</li> <li>To upgrade run <code>npm install next@latest --save</code></li> </ul> <h2>Impact</h2> <ul> <li><strong>Not affected</strong>: Deployments on ZEIT Now v2 (<a href="https://zeit.co/">https://zeit.co</a>) are not affected</li> <li><strong>Not affected</strong>: Deployments using the <code>serverless</code> target</li> <li><strong>Not affected</strong>: Deployments using <code>next export</code></li> <li><strong>Affected</strong>: Users of Next.js below 9.3.2 that use <code>next start</code></li> </ul> <p>We recommend everyone to upgrade regardless of whether you can reproduce the issue or not.</p> <h3>How to Assess Impact</h3> <p>If you think sensitive code or data could have been exposed, you can filter logs of affected sites by <code>../</code> with a 200 response.</p> <h2>What is Being Done</h2> <p>As Next.js has grown in popularity, it has received the attention of security researchers and auditors. We are thankful to Luca Carettoni from Doyensec for their investigation and discovery of the original bug and subsequent responsible disclosure.</p> <p>We've landed a patch that ensures only known filesystem paths of <code>.next/static</code> are made available under <code>/_next/static</code>. Regression tests for this attack were added to the <a href="https://github.com/zeit/next.js/blob/canary/test/integration/production/test/security.js">security</a> integration test suite.</p> <ul> <li>We have notified known Next.js users in advance of this publication.</li> <li>A public CVE is in progress.</li> <li>If you want to stay on top of our security related news impacting Next.js or other ZEIT projects, please <a href="https://zeit.co/security">join this mailing list</a>.</li> <li>We encourage responsible disclosure of future issues. Please email us at <strong><a href="https://github.com/zeit/next.js/blob/HEAD/mailto:security@zeit.co">security@zeit.co</a></strong>. We are actively monitoring this mailbox.</li> </ul> <hr /> <h3>Patches</h3> <ul> <li>Add Numeric Separator Support for TypeScript: <a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11308">#11308</a></li> <li>Update CLI custom config documentation link: <a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11152">#11152</a></li> <li>Add error when attempting to export GSSP page: <a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11154">#11154</a></li> </ul> </tr></table> ... (truncated) </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/zeit/next.js/commit/ee0081356d7ea166dfed4765f134730c11ecaecf"><code>ee00813</code></a> v9.3.2</li> <li><a href="https://github.com/zeit/next.js/commit/dd4cee724590892ff4939f7682601c867dc23537"><code>dd4cee7</code></a> v9.3.2-canary.9</li> <li><a href="https://github.com/zeit/next.js/commit/e02b66a52c0a9bb837845e6ec4e6356b3ee1697f"><code>e02b66a</code></a> Add with-redux-toolkit example (<a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11358">#11358</a>)</li> <li><a href="https://github.com/zeit/next.js/commit/044ddf44216f848a0a6641e2471eb67dffc71f93"><code>044ddf4</code></a> [Example] Use .jpg for images in blog-starter (<a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11176">#11176</a>)</li> <li><a href="https://github.com/zeit/next.js/commit/ee249ee6cd3c7987496e256b7fdd9db171c821d7"><code>ee249ee</code></a> v9.3.2-canary.8</li> <li><a href="https://github.com/zeit/next.js/commit/1d6ffc39f7b2da55aec02da8dc53a24eab8a6c5d"><code>1d6ffc3</code></a> Fix <code>static/</code> file name encoding (<a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11373">#11373</a>)</li> <li><a href="https://github.com/zeit/next.js/commit/e83cd4aa967e8b49ff32f9fe12713d9dd436a2dd"><code>e83cd4a</code></a> v9.3.2-canary.7</li> <li><a href="https://github.com/zeit/next.js/commit/d8155b22ffbd2e64ca1aca6a7a843481a4f1c913"><code>d8155b2</code></a> Add initial support for new env handling (<a href="https://github-redirect.dependabot.com/zeit/next.js/issues/10525">#10525</a>)</li> <li><a href="https://github.com/zeit/next.js/commit/a391d328ae5606282d99513c6330d78512d2e203"><code>a391d32</code></a> Add docs for multi zones (<a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11348">#11348</a>)</li> <li><a href="https://github.com/zeit/next.js/commit/4801dcdd15132f485f2701101e4c2ee77b8666c3"><code>4801dcd</code></a> Update AMP docs (<a href="https://github-redirect.dependabot.com/zeit/next.js/issues/11353">#11353</a>)</li> <li>Additional commits viewable in <a href="https://github.com/zeit/next.js/compare/v9.1.1...v9.3.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1474 -554

4 comments

2 changed files

dependabot-preview[bot]

pr closed time in 36 minutes

delete branch ohbarye/goofi

delete branch : dependabot/npm_and_yarn/lodash-4.17.19

delete time in 37 minutes

push eventohbarye/goofi

dependabot-preview[bot]

commit sha a6830c0a565be45d59c490b62cf947d60ca3d9d0

[Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha 51ac27b98253cd1134f8df68679e76b6fac7a838

Merge pull request #331 from ohbarye/dependabot/npm_and_yarn/lodash-4.17.19 [Security] Bump lodash from 4.17.15 to 4.17.19

view details

push time in 37 minutes

PR merged ohbarye/goofi

[Security] Bump lodash from 4.17.15 to 4.17.19 dependencies security

Bumps lodash from 4.17.15 to 4.17.19. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 37 minutes

delete branch ohbarye/goofi

delete branch : dependabot/npm_and_yarn/elliptic-6.5.3

delete time in 37 minutes

push eventohbarye/goofi

dependabot-preview[bot]

commit sha 8a2528fbdd4eb9010ae3c6971a8c7825a63a7337

[Security] Bump elliptic from 6.5.1 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.1 to 6.5.3. **This update includes a security fix.** - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.1...v6.5.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha 7438fc77f47f7d9d2d47ea8e740ccc41710bb4f5

Merge pull request #335 from ohbarye/dependabot/npm_and_yarn/elliptic-6.5.3 [Security] Bump elliptic from 6.5.1 to 6.5.3

view details

push time in 38 minutes

PR merged ohbarye/goofi

[Security] Bump elliptic from 6.5.1 to 6.5.3 dependencies security

Bumps elliptic from 6.5.1 to 6.5.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-vh7m-p724-62c2">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Signature Malleabillity in elliptic</strong> The Elliptic package before version 6.5.3 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or integer overflows. This could conceivably have a security-relevant impact if an application relied on a single canonical signature.</p> <p>Affected versions: < 6.5.3</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li><a href="https://github.com/indutny/elliptic/commit/60489415e545efdfd3010ae74b9726facbf08ca8"><code>6048941</code></a> 6.5.2</li> <li><a href="https://github.com/indutny/elliptic/commit/9984964457c9f8a63b91b01ea103260417eca237"><code>9984964</code></a> package: bump dependencies</li> <li><a href="https://github.com/indutny/elliptic/commit/ec735edde187a43693197f6fa3667ceade751a3a"><code>ec735ed</code></a> utils: leak less information in <code>getNAF()</code></li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.1...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+6 -6

1 comment

1 changed file

dependabot-preview[bot]

pr closed time in 38 minutes

push eventohbarye/rails-react-typescript-docker-example

dependabot-preview[bot]

commit sha 137d7adeff9a0e259bc4447bd04705ef9aaa797d

Bump rails from 6.0.3.1 to 6.0.3.2 in /backend Bumps [rails](https://github.com/rails/rails) from 6.0.3.1 to 6.0.3.2. - [Release notes](https://github.com/rails/rails/releases) - [Commits](https://github.com/rails/rails/compare/v6.0.3.1...v6.0.3.2) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha 6dd6970d111f94dace4696d284c6d61f4bd44a07

Merge pull request #319 from ohbarye/dependabot/bundler/backend/rails-6.0.3.2 Bump rails from 6.0.3.1 to 6.0.3.2 in /backend

view details

push time in 41 minutes

delete branch ohbarye/rails-react-typescript-docker-example

delete branch : dependabot/bundler/backend/rails-6.0.3.2

delete time in 41 minutes

PR merged ohbarye/rails-react-typescript-docker-example

Bump rails from 6.0.3.1 to 6.0.3.2 in /backend dependencies ruby

Bumps rails from 6.0.3.1 to 6.0.3.2. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rails/rails/commit/fbe2433be6e052a1acac63c7faf287c52ed3c5ba"><code>fbe2433</code></a> Preparing for 6.0.3.2 release</li> <li><a href="https://github.com/rails/rails/commit/11052e0091a69d5566624101deb98e4db70e97eb"><code>11052e0</code></a> Update changelog</li> <li><a href="https://github.com/rails/rails/commit/2121b9d20b60ed503aa041ef7b926d331ed79fc2"><code>2121b9d</code></a> Only allow ActionableErrors if show_detailed_exceptions is enabled</li> <li>See full diff in <a href="https://github.com/rails/rails/compare/v6.0.3.1...v6.0.3.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+53 -53

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 41 minutes

startedRubyMoney/money-rails

started time in 4 days

push eventohbarye/dotfiles

ohbarye

commit sha 6fc97be898228a7fa8181ee08de4528737d17b72

Add ams-mfa shorthand

view details

push time in 5 days

push eventohbarye/dotfiles

ohbarye

commit sha 5d9018f1b75143ac79b748aaded3737dda032ad1

Add docker commands

view details

push time in 5 days

startedapache/airflow

started time in 5 days

startedmarmelab/react-admin

started time in 6 days

startedsj26/mailcatcher

started time in 6 days

push eventohbarye/dotfiles

ohbarye

commit sha a96421dc99b6c1d3ab4f0f710bf1a1d03fbf404c

Add handy launcher for editor

view details

ohbarye

commit sha 38e3c6778f7dee5daa59460a7faa57e7403f967f

No longer using prezto

view details

push time in 6 days

push eventohbarye/dotfiles

ohbarye

commit sha ea8ee197d9e9c264331c08b2f82c55206c51cb97

Fix broken function setrepo

view details

push time in 7 days

push eventohbarye/dotfiles

ohbarye

commit sha f152e2d22710689ed802e063e510127cec3fca48

Update Brewfile

view details

push time in 7 days

push eventohbarye/dotfiles

ohbarye

commit sha 88c3cd8600cb44a8f1d54812516cdaa6b7d396ff

Update README

view details

push time in 7 days

push eventohbarye/dotfiles

ohbarye

commit sha 17b916f9b86f8c6293fa699e2417dbc04cace09d

Add permission to execute

view details

push time in 7 days

push eventohbarye/dotfiles

ohbarye

commit sha a4f7e724a6d5cc1a2bec21b8f86a38e7a9d0a8ef

remove dup

view details

ohbarye

commit sha 80bca20b43b19b7954bf2fcd03f87c67f0dcce4b

Update Brewfile

view details

push time in 9 days

startedmpon/tf-ecs-fargate-pipeline-example

started time in 10 days

delete branch ohbarye/rails-react-typescript-docker-example

delete branch : dependabot/npm_and_yarn/frontend/elliptic-6.5.3

delete time in 11 days

push eventohbarye/rails-react-typescript-docker-example

dependabot-preview[bot]

commit sha a0bd227e383170aa434b19818e2d1a74d5423593

[Security] Bump elliptic from 6.5.2 to 6.5.3 in /frontend Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. **This update includes a security fix.** - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha 583965b3ab812be66fef416eb7c31f31006453da

Merge pull request #346 from ohbarye/dependabot/npm_and_yarn/frontend/elliptic-6.5.3 [Security] Bump elliptic from 6.5.2 to 6.5.3 in /frontend

view details

push time in 11 days

PR merged ohbarye/rails-react-typescript-docker-example

[Security] Bump elliptic from 6.5.2 to 6.5.3 in /frontend dependencies javascript javascript security

Bumps elliptic from 6.5.2 to 6.5.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-vh7m-p724-62c2">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Signature Malleabillity in elliptic</strong> The Elliptic package before version 6.5.3 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or integer overflows. This could conceivably have a security-relevant impact if an application relied on a single canonical signature.</p> <p>Affected versions: < 6.5.3</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 11 days

delete branch ohbarye/ohbarye.github.io

delete branch : dependabot/npm_and_yarn/elliptic-6.5.3

delete time in 11 days

push eventohbarye/ohbarye.github.io

dependabot-preview[bot]

commit sha 41a1b80aa31f1c86627d774e2b07a0944d78bc5c

[Security] Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. **This update includes a security fix.** - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha 5b18b54343d208922e3aba1e5995974217f4e3cf

Merge pull request #74 from ohbarye/dependabot/npm_and_yarn/elliptic-6.5.3 [Security] Bump elliptic from 6.5.2 to 6.5.3

view details

push time in 11 days

PR merged ohbarye/ohbarye.github.io

[Security] Bump elliptic from 6.5.2 to 6.5.3 dependencies security

Bumps elliptic from 6.5.2 to 6.5.3. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-vh7m-p724-62c2">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Signature Malleabillity in elliptic</strong> The Elliptic package before version 6.5.3 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or integer overflows. This could conceivably have a security-relevant impact if an application relied on a single canonical signature.</p> <p>Affected versions: < 6.5.3</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 11 days

startedanuraghazra/github-readme-stats

started time in 12 days

startedgithub/roadmap

started time in 12 days

delete branch ohbarye/react-use-kana

delete branch : dependabot/npm_and_yarn/lodash-4.17.19

delete time in 13 days

push eventohbarye/react-use-kana

dependabot-preview[bot]

commit sha 02e988ae87b699116c7c8ec2fd9d2ae6a8b64984

[Security] Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha 29c8923b1aecf31d043aed3a365979d2d91caf31

Merge pull request #205 from ohbarye/dependabot/npm_and_yarn/lodash-4.17.19 [Security] Bump lodash from 4.17.15 to 4.17.19

view details

push time in 13 days

PR merged ohbarye/react-use-kana

[Security] Bump lodash from 4.17.15 to 4.17.19 dependencies security

Bumps lodash from 4.17.15 to 4.17.19. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

  • Update frequency
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 13 days

push eventohbarye/ansible-isucon9-qualify

Masato Ohba

commit sha 368d8f050d1f2c05981dbb61c2cec2064c060333

Skip perl, php, python, nodejs

view details

push time in 14 days

startedmatsuu/ansible-isucon9-qualify

started time in 14 days

PublicEvent

starteddocker-library/mysql

started time in 15 days

startedhirotakan/go-cleanarchitecture-sample

started time in 15 days

startedlabstack/echo

started time in 15 days

startedgoldmansachs/reladomo

started time in 17 days

startedkufu/activerecord-bitemporal

started time in 17 days

PublicEvent

push eventohbarye/isucon9-qualify

Masato Ohba

commit sha 4a090ae367f27d7c2f2701ad378ba76af461001c

Create README.md

view details

push time in 18 days

startedtakonomura/isucon9-qualify

started time in 18 days

push eventohbarye/ohbarye.github.io

ohbarye

commit sha 0bdaf208f03ced6160e44f01764568bc0d8bdf5d

Update balloon message

view details

push time in 19 days

delete branch ohbarye/rails-react-typescript-docker-example

delete branch : dependabot/npm_and_yarn/frontend/lodash-4.17.19

delete time in 20 days

push eventohbarye/rails-react-typescript-docker-example

dependabot-preview[bot]

commit sha 7aa2fc50bebaee5c91795baa22d37c4dc050465e

[Security] Bump lodash from 4.17.15 to 4.17.19 in /frontend Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. **This update includes a security fix.** - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot-preview[bot] <support@dependabot.com>

view details

Masato Ohba

commit sha e9556b8c274cb7e7777b18ceec07281bcd24eede

Merge pull request #334 from ohbarye/dependabot/npm_and_yarn/frontend/lodash-4.17.19 [Security] Bump lodash from 4.17.15 to 4.17.19 in /frontend

view details

push time in 20 days

PR merged ohbarye/rails-react-typescript-docker-example

[Security] Bump lodash from 4.17.15 to 4.17.19 in /frontend dependencies javascript javascript security

Bumps lodash from 4.17.15 to 4.17.19. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-p6mc-m468-83gw">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Prototype Pollution in lodash</strong> Versions of lodash prior to 4.17.19 are vulnerable to Prototype Pollution. The function zipObjectDeep allows a malicious user to modify the prototype of Object if the property identifiers are user-supplied. Being affected by this issue requires zipping objects based on user-provided property arrays.</p> <p>This vulnerability causes the addition or modification of an existing property that will exist on all objects and may lead to Denial of Service or Code Execution under specific circumstances.</p> <p>Affected versions: < 4.17.19</p> </blockquote> </details> <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 20 days

startedisucon/isucon9-qualify

started time in 21 days

PR opened matsuu/vagrant-isucon

Add EPEL repository before installing ansible

Without installing epel-release, it fails to install ansible with the error message "No package ansible available.".

$ vagrant provision
==> webapp: Running provisioner: shell...
    webapp: Running: inline script
    webapp: Loaded plugins: fastestmirror
    webapp: Loading mirror speeds from cached hostfile
    webapp:  * base: ftp-srv2.kddilabs.jp
    webapp:  * extras: ftp-srv2.kddilabs.jp
    webapp:  * updates: ftp-srv2.kddilabs.jp
    webapp: No packages marked for update
    webapp: Loaded plugins: fastestmirror
    webapp: Loading mirror speeds from cached hostfile
    webapp:  * base: ftp-srv2.kddilabs.jp
    webapp:  * extras: ftp-srv2.kddilabs.jp
    webapp:  * updates: ftp-srv2.kddilabs.jp
    webapp: No package ansible available.
    webapp: Package git-1.8.3.1-23.el7_8.x86_64 already installed and latest version
    webapp: Nothing to do
    webapp: Cloning into '/tmp/torb'...
    webapp: /tmp/vagrant-shell: line 15: ansible-playbook: command not found
The SSH command responded with a non-zero exit status. Vagrant
assumes that this means the command failed. The output for this command
should be in the log above. Please read the output to determine what
went wrong.

After adding those lines, vagrant provision works fine on my end.

+3 -0

0 comment

2 changed files

pr created time in 22 days

create barnchohbarye/vagrant-isucon

branch : enable-to-find-ansible-package

created branch time in 22 days

fork ohbarye/vagrant-isucon

ISUCON過去問を構築するためのVagrantfile集

http://d.hatena.ne.jp/tmatsuu/20150815/1439643715

fork in 22 days

startedtagomoris/xbuild

started time in 22 days

starteddocker/awesome-compose

started time in 22 days

startedvyperlang/vyper

started time in 22 days

startedethereum/solidity

started time in 23 days

startedethereum/go-ethereum

started time in 23 days

startedkaraage0703/vscode-dotfiles

started time in 23 days

startedhashicorp/terraform-cdk

started time in 24 days

startedaws/aws-cli

started time in 25 days

PR opened aws/aws-cli

Fix typo in awscli/examples/s3/_concepts.rst

Description of changes:

This pull request just fixes a typo in awscli/examples/s3/_concepts.rst.

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

+1 -1

0 comment

1 changed file

pr created time in 25 days

push eventohbarye/aws-cli

Masato Ohba

commit sha bc06bec9117868b956d0256ca07b7a33aa31820c

Fix typo

view details

push time in 25 days

fork ohbarye/aws-cli

Universal Command Line Interface for Amazon Web Services

fork in 25 days

startedaws/aws-cdk

started time in 25 days

PR opened hnakamur/vim-go-tutorial-ja

Fix broken backquotes

just fixed broken backquotes.

+2 -2

0 comment

1 changed file

pr created time in a month

push eventohbarye/vim-go-tutorial-ja

Masato Ohba

commit sha aca0295eb78adcfd33d1a530ecfb736ea64ce7fc

Fix broken backquotes

view details

push time in a month

push eventohbarye/dotfiles

ohbarye

commit sha 7da62118c209257b2fda63945027fda0b0b56047

Update Vim with Vim Go Tutorial https://github.com/hnakamur/vim-go-tutorial-ja

view details

push time in a month

startedfatih/vim-go

started time in a month

startedfatih/vim-go-tutorial

started time in a month

startedhnakamur/vim-go-tutorial-ja

started time in a month

push eventohbarye/dotfiles

ohbarye

commit sha f7ff80d10880f22b63e840c2c541a6cff0cab882

Prefer https rather than git protocol

view details

ohbarye

commit sha d01756ddf742aa84e1938abe14309c689df4d365

Merge remote-tracking branch 'refs/remotes/origin/master'

view details

push time in a month

delete branch ohbarye/hello-github-actions

delete branch : first-action

delete time in a month

push eventohbarye/hello-github-actions

Masato Ohba

commit sha 04fe3c7a55228c3fc6acdce9e4c3fc91eda43936

Create Dockerfile

view details

Masato Ohba

commit sha 1762c74f6296c41fe262caa1905a097c31d12279

Create entrypoint.sh

view details

Masato Ohba

commit sha 02c75bd86c1ac219a25e293c6e98b75e516c7e71

Create action.yml

view details

Masato Ohba

commit sha 7063305c7958a8a6550fd680fb305b88ffedbc47

Create main.yml

view details

Masato Ohba

commit sha 43faf07c10ce7345aba3b58460422be04cacabc4

Update main.yml

view details

Masato Ohba

commit sha 0733a984f9abfa3d6955a7593349e04605d82e26

Merge pull request #2 from ohbarye/first-action Create Dockerfile

view details

push time in a month

push eventohbarye/hello-github-actions

Masato Ohba

commit sha 43faf07c10ce7345aba3b58460422be04cacabc4

Update main.yml

view details

push time in a month

push eventohbarye/hello-github-actions

Masato Ohba

commit sha 7063305c7958a8a6550fd680fb305b88ffedbc47

Create main.yml

view details

push time in a month

push eventohbarye/hello-github-actions

Masato Ohba

commit sha 02c75bd86c1ac219a25e293c6e98b75e516c7e71

Create action.yml

view details

push time in a month

push eventohbarye/hello-github-actions

Masato Ohba

commit sha 1762c74f6296c41fe262caa1905a097c31d12279

Create entrypoint.sh

view details

push time in a month

PR opened ohbarye/hello-github-actions

Create Dockerfile

#1

+5 -0

0 comment

1 changed file

pr created time in a month

create barnchohbarye/hello-github-actions

branch : first-action

created branch time in a month

create barnchohbarye/hello-github-actions

branch : master

created branch time in a month

created repositoryohbarye/hello-github-actions

created time in a month

starteditchyny/gojq

started time in a month

push eventohbarye/ohbarye.github.io

Kenta Suzuki

commit sha ac92acb0f770a3c6566a1a1758d53f2d8edb2964

fix typo

view details

Masato Ohba

commit sha 0cbf015014f626eddb9c76339c7b361dddf41f7e

Merge pull request #61 from suusan2go/patch-1 fix typo

view details

push time in a month

PR merged ohbarye/ohbarye.github.io

fix typo
+1 -1

0 comment

1 changed file

suusan2go

pr closed time in a month

startedshibayu36/vscode-search-in-current-file

started time in a month

push eventohbarye/dapp-on-ethereum

ohbarye

commit sha 8f03a9584a74c8d9d950e7ba8db866a663990302

Read contract address from JSON

view details

push time in a month

push eventohbarye/dapp-on-ethereum

ohbarye

commit sha d4de10133e7b109293a1da23c891abe505a68d78

rephrase

view details

push time in a month

create barnchohbarye/dapp-on-ethereum

branch : master

created branch time in a month

created repositoryohbarye/dapp-on-ethereum

Just for fun

created time in a month

startedCovid-19Radar/Covid19Radar

started time in 2 months

push eventohbarye/nand2tetris

ohbarye

commit sha 02e7f9988ab980b09a6f27db629f8569dc7aa960

chapter 11: just copy from chapter 10

view details

push time in 2 months

push eventohbarye/nand2tetris

ohbarye

commit sha d4bf9476e018cfdb13b159ab43fc50416d933260

tweak

view details

push time in 2 months

push eventohbarye/nand2tetris

ohbarye

commit sha c14b27a8e5fcff677df3dab88d41cbc1f237e108

bundle install

view details

ohbarye

commit sha 8fd6b0c371ecd42050cd7cfbb607e697e7c092e6

Set up RSpec

view details

ohbarye

commit sha 1a8f211b6b7bbff81f9c27eb552ec9e819aa8276

chapter 10: write entrypoint

view details

ohbarye

commit sha 455e6171bcc012acb47450fd98c0d72483698b7f

chapter 10: prepare files

view details

ohbarye

commit sha bbb73fce6d8ec14849eb1607f713dd8c4f8ed738

chapter 10: implement tokenizer

view details

ohbarye

commit sha 627beed49771e19b63b60ae044bd7c53e7108418

chapter 10: compile before term

view details

ohbarye

commit sha 94cdfc5590797c017ed1127440b8113233628f0c

chapter 10: able to compile ArrayTest

view details

ohbarye

commit sha 277b15864214a3bd7d3f3ea781b0d120de9f6bd6

chapter 10: able to compile ExpressionLessSquare

view details

ohbarye

commit sha c9739a4f3e50c9e561039a0273a4aafbd7652d4b

chapter 10: able to compile Square

view details

push time in 2 months

push eventohbarye/nand2tetris

ohbarye

commit sha ea6a74261accd140f7c1f742a2d96903d75be486

Chapter 11: Copy files from chapter 10

view details

ohbarye

commit sha f8777e5e0fdfef0d69412ab29cdf741192dfa1b7

Chapter 11: implement symboltable

view details

push time in 2 months

more