profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/FrozenCow/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.

bobvanderlinden/distscraper 13

A scraper that retrieves install/live images (.iso files) from different distributions

FrozenCow/dynmap 10

A Minecraft Bukkit-plugin which implements a real time web-based map system. Ported from k-zed's hMod version.

bobvanderlinden/mbrfs 7

A FUSE-filesystem that provides the partitions from a disk device or image.

FrozenCow/drivedroid-image 6

Generates the test image that is used in DriveDroid

FrozenCow/10secondsminigames 2

A multiplayer game in pure Javascript and Node for Ludum Dare 27

FrozenCow/CouchPotato 2

Automatic Movie Downloading via NZBs & Torrents

FrozenCow/drivedroid-distrowatch-scraper 2

Scrapes the news of distrowatch periodically and accumulates a DriveDroid image repository

FrozenCow/android-gerrit-mass-patcher 1

Apply and submit patches of DriveDroid to all devices of a number of roms that use Gerrit to review patches

FrozenCow/android_kernel_sony_apq8064 1

This repo will contain the 3.4 kernel for Sony Xperia APQ8064 devices

FrozenCow/android_kernel_sony_msm8960 1

This repo will contain the 3.4 kernel for Sony Xperia MSM8960 devices

PR opened EventSource/eventsource

Bump hosted-git-info from 2.6.0 to 2.8.9

Bumps hosted-git-info from 2.6.0 to 2.8.9. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md">hosted-git-info's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9">2.8.9</a> (2021-04-07)</h2> <h3>Bug Fixes</h3> <ul> <li>backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a> (<a href="https://github.com/npm/hosted-git-info/commit/29adfe5">29adfe5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/84">#84</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.7...v2.8.8">2.8.8</a> (2020-02-29)</h2> <h3>Bug Fixes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed node 6 support (<a href="https://github.com/npm/hosted-git-info/commit/5038b18">5038b18</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/66">#66</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.6...v2.8.7">2.8.7</a> (2020-02-26)</h2> <h3>Bug Fixes</h3> <ul> <li>Do not attempt to use url.URL when unavailable (<a href="https://github.com/npm/hosted-git-info/commit/2d0bb66">2d0bb66</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/62">#62</a></li> <li>Do not pass scp-style URLs to the WhatWG url.URL (<a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf">f2cdfcf</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/60">#60</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.5...v2.8.6">2.8.6</a> (2020-02-25)</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.4...v2.8.5">2.8.5</a> (2019-10-07)</h2> <h3>Bug Fixes</h3> <ul> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/e8325b5">e8325b5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/51">#51</a></li> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/ffe056f">ffe056f</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.3...v2.8.4">2.8.4</a> (2019-08-12)</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/hosted-git-info/commit/8d4b3697d79bcd89cdb36d1db165e3696c783a01"><code>8d4b369</code></a> chore(release): 2.8.9</li> <li><a href="https://github.com/npm/hosted-git-info/commit/29adfe5ef789784c861b2cdeb15051ec2ba651a7"><code>29adfe5</code></a> fix: backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a></li> <li><a href="https://github.com/npm/hosted-git-info/commit/afeaefdd86ba9bb5044be3c1554a666d007cf19a"><code>afeaefd</code></a> chore(release): 2.8.8</li> <li><a href="https://github.com/npm/hosted-git-info/commit/5038b1891a61ca3cd7453acbf85d7011fe0086bb"><code>5038b18</code></a> fix: <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed nod...</li> <li><a href="https://github.com/npm/hosted-git-info/commit/7440afa859162051c191e55d8ecfaf69a193b026"><code>7440afa</code></a> chore(release): 2.8.7</li> <li><a href="https://github.com/npm/hosted-git-info/commit/2d0bb6615ecb8f9ef1019bc0737aab7f6449641f"><code>2d0bb66</code></a> fix: Do not attempt to use url.URL when unavailable</li> <li><a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf33ad2bd3bd1acdba0326281089f53c5b1"><code>f2cdfcf</code></a> fix: Do not pass scp-style URLs to the WhatWG url.URL</li> <li><a href="https://github.com/npm/hosted-git-info/commit/e1b83df5d9cb1f8bb220352e20565560548d2292"><code>e1b83df</code></a> chore(release): 2.8.6</li> <li><a href="https://github.com/npm/hosted-git-info/commit/ff259a6117c62df488e927820e30bec2f7ee453f"><code>ff259a6</code></a> Ensure passwords in hosted Git URLs are correctly escaped</li> <li><a href="https://github.com/npm/hosted-git-info/commit/624fd6f301dd5a1fd7ad1b333d6f8921a12ff98c"><code>624fd6f</code></a> chore(release): 2.8.5</li> <li>Additional commits viewable in <a href="https://github.com/npm/hosted-git-info/compare/v2.6.0...v2.8.9">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~nlf">nlf</a>, a new releaser for hosted-git-info since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -8

0 comment

1 changed file

pr created time in 6 days

PR closed EventSource/eventsource

Bump webpack from 3.12.0 to 5.36.2 dependencies javascript

Bumps webpack from 3.12.0 to 5.36.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p> <blockquote> <h2>v5.36.2</h2> <h1>Bugfixes</h1> <ul> <li>correctly handle errors thrown during parser/generator creation <ul> <li>e. g. validation errors for asset module options</li> </ul> </li> <li>use a better automatic runtime name for workers <ul> <li>not too long to cause filename problems</li> </ul> </li> <li>no longer assume assets do not get removed when the compiler is running <ul> <li>Using <code>output.clean</code> is against this assumption</li> <li>It fixes a bug where assets are missing, when removed and readded to the compilation</li> </ul> </li> <li>fix a problem when chained dependOn, which causes too many modules being included in entrypoints</li> </ul> <h2>v5.36.1</h2> <h1>Performance</h1> <ul> <li>add <code>cache.profile</code> (<code>type: "filesystem"</code> only) flag for more info about (de)serialization timings</li> <li>avoid complex "by exports" splitting for splitChunks in development mode</li> <li>faster hashing for the common case</li> <li>improve algorithmic complexity for merging InitFragments to solve performance in an edge case</li> </ul> <h2>v5.36.0</h2> <h1>Features</h1> <ul> <li>add support for class fields (stage 4)</li> </ul> <h1>Performance</h1> <ul> <li>improve (de)serialization performance of dependency locations</li> </ul> <h2>v5.35.1</h2> <h1>Bugfixes</h1> <ul> <li>fix an <code>webpack_exports is not defined</code> error with some library types</li> </ul> <h1>performance</h1> <ul> <li>improve stats grouping performance</li> <li>improve providedExports analysis performance</li> <li>improve hashing performance</li> <li>lazy merge dependencies from creating context modules</li> <li>improve dependency parents access performance</li> </ul> <h2>v5.35.0</h2> <h1>Bugfixes</h1> <ul> <li>fix handling of build dependencies with <code>#</code> in path</li> </ul> <h1>Performance</h1> <ul> <li>improve memory usage when using the filesystem cache</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack/commit/0e2e972a2d181c530bb7185278fe5cfc20724c22"><code>0e2e972</code></a> 5.36.2</li> <li><a href="https://github.com/webpack/webpack/commit/263a06a13c958a926f5847f85817a3e46c1fb51e"><code>263a06a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13279">#13279</a> from webpack/bugfix/depend-on-modules</li> <li><a href="https://github.com/webpack/webpack/commit/a36739a1776c8bece766969274b6276597646694"><code>a36739a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13276">#13276</a> from webpack/bugfix/emit-caching</li> <li><a href="https://github.com/webpack/webpack/commit/8467ae49857125ea892b76995c2c637169869408"><code>8467ae4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13274">#13274</a> from webpack/dependabot/npm_and_yarn/eslint-plugin-...</li> <li><a href="https://github.com/webpack/webpack/commit/fc3ec410201bb1f18fe64cdca631c723df1f614b"><code>fc3ec41</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13261">#13261</a> from webpack/dependabot/npm_and_yarn/mini-css-extra...</li> <li><a href="https://github.com/webpack/webpack/commit/81f244ba2eb51ab0cc09ee136d1765da5617270f"><code>81f244b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13277">#13277</a> from webpack/bugfix/worker-runtime-name</li> <li><a href="https://github.com/webpack/webpack/commit/027f9bd9299237198004ac7c85286969a65fe692"><code>027f9bd</code></a> fix too many modules are included in chunks when using chained dependOn</li> <li><a href="https://github.com/webpack/webpack/commit/e7e0f15555d1c0fa9d2fb78f5db4c26efa580f9f"><code>e7e0f15</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13266">#13266</a> from webpack/dependabot/npm_and_yarn/acorn-8.2.2</li> <li><a href="https://github.com/webpack/webpack/commit/f243907fe83c25d5797518eb80717cf823e85558"><code>f243907</code></a> emit assets even when they were cleaned from fs in the meantime</li> <li><a href="https://github.com/webpack/webpack/commit/e123bc08f2072bf8beea1f3fbd5cda90e05f1183"><code>e123bc0</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13270">#13270</a> from webpack/bugfix/parser-options-validation</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v3.12.0...v5.36.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+488 -2971

1 comment

2 changed files

dependabot[bot]

pr closed time in 7 days

delete branch EventSource/eventsource

delete branch : dependabot/npm_and_yarn/webpack-5.36.2

delete time in 7 days

pull request commentEventSource/eventsource

Bump webpack from 3.12.0 to 5.36.2

Superseded by #165.

dependabot[bot]

comment created time in 7 days

PR opened EventSource/eventsource

Bump webpack from 3.12.0 to 5.37.0

Bumps webpack from 3.12.0 to 5.37.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p> <blockquote> <h2>v5.37.0</h2> <h1>Features</h1> <ul> <li>add <code>output.trustedTypes</code></li> </ul> <h1>Bugfixes</h1> <ul> <li>fix inclusion of too many chunk in the filename function when using <code>dependOn</code></li> <li>allow errors to be <code>null</code> in fs callbacks</li> </ul> <h1>Developer Experiences</h1> <ul> <li>make ESM tracking info message less verbose</li> <li>add typings for loaders</li> </ul> <h2>v5.36.2</h2> <h1>Bugfixes</h1> <ul> <li>correctly handle errors thrown during parser/generator creation <ul> <li>e. g. validation errors for asset module options</li> </ul> </li> <li>use a better automatic runtime name for workers <ul> <li>not too long to cause filename problems</li> </ul> </li> <li>no longer assume assets do not get removed when the compiler is running <ul> <li>Using <code>output.clean</code> is against this assumption</li> <li>It fixes a bug where assets are missing, when removed and readded to the compilation</li> </ul> </li> <li>fix a problem when chained dependOn, which causes too many modules being included in entrypoints</li> </ul> <h2>v5.36.1</h2> <h1>Performance</h1> <ul> <li>add <code>cache.profile</code> (<code>type: "filesystem"</code> only) flag for more info about (de)serialization timings</li> <li>avoid complex "by exports" splitting for splitChunks in development mode</li> <li>faster hashing for the common case</li> <li>improve algorithmic complexity for merging InitFragments to solve performance in an edge case</li> </ul> <h2>v5.36.0</h2> <h1>Features</h1> <ul> <li>add support for class fields (stage 4)</li> </ul> <h1>Performance</h1> <ul> <li>improve (de)serialization performance of dependency locations</li> </ul> <h2>v5.35.1</h2> <h1>Bugfixes</h1> <ul> <li>fix an <code>webpack_exports is not defined</code> error with some library types</li> </ul> <h1>performance</h1> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack/commit/a5821c74568d59a330043900328a018c5d3a4af7"><code>a5821c7</code></a> 5.37.0</li> <li><a href="https://github.com/webpack/webpack/commit/84ae69ba1ffb98f6f386aac230a9143a452c3c21"><code>84ae69b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13334">#13334</a> from webpack/bugfix/depend-on-runtime-async-chunks</li> <li><a href="https://github.com/webpack/webpack/commit/81854de9367d763876b4dc43cae02228b618085b"><code>81854de</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13318">#13318</a> from webpack/dependabot/npm_and_yarn/webpack-cli-4.7.0</li> <li><a href="https://github.com/webpack/webpack/commit/b169d5df6834d9c21edc035e50643683a84be441"><code>b169d5d</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13272">#13272</a> from webpack/dependabot/npm_and_yarn/babel/core-7.14.0</li> <li><a href="https://github.com/webpack/webpack/commit/355b726ba57f2df6845bc1829f677621b910f129"><code>355b726</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13338">#13338</a> from webpack/dependabot/npm_and_yarn/eslint-plugin-...</li> <li><a href="https://github.com/webpack/webpack/commit/954cf75b4c2c8b19d73adb98a92dc64a409926bc"><code>954cf75</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13260">#13260</a> from webpack/dependabot/add-v2-config-file</li> <li><a href="https://github.com/webpack/webpack/commit/676df64d4f6e5b67ebcb4b0e3a7c7e1836df7aa2"><code>676df64</code></a> chore(deps-dev): bump eslint-plugin-jsdoc from 33.0.0 to 33.3.0</li> <li><a href="https://github.com/webpack/webpack/commit/e4ee4539b9c5a866d9ff99a36b0c916f196809e0"><code>e4ee453</code></a> deduplicate</li> <li><a href="https://github.com/webpack/webpack/commit/b58dad0a2932dd9316b18eead4596961ebce66b8"><code>b58dad0</code></a> chore(deps-dev): bump <code>@​babel/core</code> from 7.13.16 to 7.14.0</li> <li><a href="https://github.com/webpack/webpack/commit/7a99bce5ff200ce2554b548dc2c2f46691f2a09c"><code>7a99bce</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13298">#13298</a> from webpack/dependabot/npm_and_yarn/fork-ts-checke...</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v3.12.0...v5.37.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+488 -2971

0 comment

2 changed files

pr created time in 7 days

delete branch bobvanderlinden/distscraper

delete branch : dependabot/npm_and_yarn/lodash-4.17.19

delete time in 7 days

PR closed bobvanderlinden/distscraper

build(deps): bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

1 comment

1 changed file

dependabot[bot]

pr closed time in 7 days

PR opened bobvanderlinden/distscraper

build(deps): bump lodash from 4.17.15 to 4.17.21

Bumps lodash from 4.17.15 to 4.17.21. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/f299b52f39486275a9e6483b60a410e06520c538"><code>f299b52</code></a> Bump to v4.17.21</li> <li><a href="https://github.com/lodash/lodash/commit/c4847ebe7d14540bb28a8b932a9ce1b9ecbfee1a"><code>c4847eb</code></a> Improve performance of <code>toNumber</code>, <code>trim</code> and <code>trimEnd</code> on large input strings</li> <li><a href="https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"><code>3469357</code></a> Prevent command injection through <code>_.template</code>'s <code>variable</code> option</li> <li><a href="https://github.com/lodash/lodash/commit/ded9bc66583ed0b4e3b7dc906206d40757b4a90a"><code>ded9bc6</code></a> Bump to v4.17.20.</li> <li><a href="https://github.com/lodash/lodash/commit/63150ef7645ac07961b63a86490f419f356429aa"><code>63150ef</code></a> Documentation fixes.</li> <li><a href="https://github.com/lodash/lodash/commit/00f0f62a979d2f5fa0287c06eae70cf9a62d8794"><code>00f0f62</code></a> test.js: Remove trailing comma.</li> <li><a href="https://github.com/lodash/lodash/commit/846e434c7a5b5692c55ebf5715ed677b70a32389"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/5d046f39cbd27f573914768e3b36eeefcc4f1229"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li> <li><a href="https://github.com/lodash/lodash/commit/aa816b36d402a1ad9385142ce7188f17dae514fd"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.21">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

pr created time in 7 days

pull request commentbobvanderlinden/distscraper

build(deps): bump lodash from 4.17.15 to 4.17.19

Superseded by #18.

dependabot[bot]

comment created time in 7 days

created tagnodegit/libgit2

tagnodegit-fork/nodegit/v0.28.0-alpha.8

The Library

created time in 7 days

push eventnodegit/libgit2

Tyler Ang-Wanek

commit sha a807e37df4ca3f60df7e9675e3c8049a21dd6283

Merge pull request #5852 from implausible/httpclient/skip-entire-body

view details

push time in 7 days

pull request commentEventSource/eventsource

adjust readme badges

I don't want to debate my proposal right now, and I don't want to cause any problems here, so I'm closing this PR.

You can of course copy/paste the change(s) you like into your README. 😉

HonkingGoose

comment created time in 8 days

PR closed EventSource/eventsource

adjust readme badges

Changes:

  • Move badges so that they're under the h1 of EventSource
  • Make badges look like the GitHub build status badge
  • Improve the alt text for the badges
  • Create fresh badges from img.shield.io
  • Add a npm license badge
  • Remove "dependencies up to date" badge

Context:

I think it looks a lot nicer this way, but feel free to disagree. 😄

+5 -2

1 comment

1 changed file

HonkingGoose

pr closed time in 8 days

pull request commentEventSource/eventsource

adjust readme badges

Can you restore the links? And why did you removed the "dependencies up to date" badge?

HonkingGoose

comment created time in 8 days

PR opened EventSource/eventsource

adjust readme badges

Changes:

  • Move badges so that they're under the h1 of EventSource`
  • Make badges look like the GitHub build status badge
  • Improve the alt text for the badge
  • Create fresh badges from img.shield.io
  • Add a npm license badge
  • Remove "dependencies up to date" badge

Context:

I think it looks a lot nicer this way, but feel free to disagree. 😄

+5 -2

0 comment

1 changed file

pr created time in 10 days

PR opened EventSource/eventsource

Bump nyc from 11.9.0 to 15.1.0

Bumps nyc from 11.9.0 to 15.1.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/istanbuljs/nyc/blob/master/CHANGELOG.md">nyc's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/istanbuljs/nyc/compare/v15.0.1...v15.1.0">15.1.0</a> (2020-06-01)</h2> <h3>Features</h3> <ul> <li><strong>experimental:</strong> Support using <code>--all</code> with node.js ESM (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1320">#1320</a>) (<a href="https://github.com/istanbuljs/nyc/commit/992359a1e2108906e28324058008f28aa1052dc1">992359a</a>)</li> </ul> <h2><a href="https://github.com/istanbuljs/nyc/compare/v15.0.0...v15.0.1">15.0.1</a> (2020-04-02)</h2> <h3>Bug Fixes</h3> <ul> <li>Data merge concurrency limit to prevent OOM (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1293">#1293</a>) (<a href="https://github.com/istanbuljs/nyc/commit/df34c1c71e74468fd67287caad2ac987176ae503">df34c1c</a>), closes <a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1263">#1263</a></li> <li>Ignore insignificant lines when coalesce text report (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1300">#1300</a>) (<a href="https://github.com/istanbuljs/nyc/commit/3a577f0ddc4799d0334f7c154b612653a46b532f">3a577f0</a>), closes <a href="https://github-redirect.dependabot.com/istanbuljs/istanbuljs/issues/525">istanbuljs/istanbuljs#525</a></li> </ul> <h2><a href="https://github.com/istanbuljs/nyc/compare/v14.1.1...v15.0.0">15.0.0</a> (2019-12-20)</h2> <h3>⚠ BREAKING CHANGES</h3> <ul> <li>The <code>flow</code> and <code>jsx</code> parser plugins are no longer enabled by default.</li> <li>Node.js 8 is now required to run nyc</li> <li>Remove NYC_ROOT_ID and NYC_INSTRUMENTER environmental variables.</li> <li>The <code>root</code> field has been removed from processinfo files.</li> </ul> <h3>Features</h3> <ul> <li>Add <code>--use-spawn-wrap=true</code> option (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1169">#1169</a>) (<a href="https://github.com/istanbuljs/nyc/commit/df4de4d490f8cd32204fba66a810ed0444c26d0d">df4de4d</a>)</li> <li>Add <code>.cjs</code>, <code>.mjs</code>, <code>.ts</code>, <code>.tsx</code>, <code>.jsx</code> to default extensions (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1110">#1110</a>) (<a href="https://github.com/istanbuljs/nyc/commit/914b776215ad3ea54f0e46b4ba2904a8a9d4dfdd">914b776</a>), closes <a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1103">#1103</a></li> <li>Allow <code>nyc instrument</code> to instrument code in place (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1149">#1149</a>) (<a href="https://github.com/istanbuljs/nyc/commit/77832845b85134d21eca3a23c812c4f21f36713f">7783284</a>)</li> <li>Drop node.js 6, upgrade dependencies (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1134">#1134</a>) (<a href="https://github.com/istanbuljs/nyc/commit/00c3b3440a5b2ffe11b9c19ae4e08ad2f5b70e33">00c3b34</a>)</li> <li>Filenames relative to project cwd in coverage reports (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1212">#1212</a>) (<a href="https://github.com/istanbuljs/nyc/commit/5258e9fdb1d9e3d4abd4cc9768bc09cd8040a6be">5258e9f</a>)</li> <li>Use <code>@​istanbuljs/schema</code> for yargs setup (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1194">#1194</a>) (<a href="https://github.com/istanbuljs/nyc/commit/fd40d49331665d936b86f30e9a873ba80071b770">fd40d49</a>)</li> <li>Use istanbul-lib-processinfo (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1145">#1145</a>) (<a href="https://github.com/istanbuljs/nyc/commit/7943413dc032f8f98a164fdde88d7344e817bb5e">7943413</a>)</li> <li>Use source base name to prefix cache files (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1144">#1144</a>) (<a href="https://github.com/istanbuljs/nyc/commit/5c1b7a9c43771f3439af44a1104e5426519e1123">5c1b7a9</a>)</li> </ul> <h3>Bug Fixes</h3> <ul> <li>Avoid <code>source-map</code> module during <code>signal-exit</code> handler (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1191">#1191</a>) (<a href="https://github.com/istanbuljs/nyc/commit/83eb6294f9492bf98405ee9fdf6281c3bc199a3d">83eb629</a>)</li> <li>Better error handling for main execution, reporting (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1229">#1229</a>) (<a href="https://github.com/istanbuljs/nyc/commit/dfd629d95716e6159aa7216c03e28a7fbbb161e7">dfd629d</a>)</li> <li>Correct handling of source-maps for pre-instrumented files (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1216">#1216</a>) (<a href="https://github.com/istanbuljs/nyc/commit/8411a26c9e520c66251cc8044cde2c81f33f1c5f">8411a26</a>), closes <a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1208">#1208</a></li> <li>Drop coverage produced by <code>nyc --all</code> for files that were tested (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1155">#1155</a>) (<a href="https://github.com/istanbuljs/nyc/commit/fc1bbbf490f6ab0272359ce10ceb4987d1716256">fc1bbbf</a>), closes <a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1113">#1113</a> <a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1124">#1124</a> <a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1148">#1148</a></li> <li>Honor eager setting (false by default) (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1179">#1179</a>) (<a href="https://github.com/istanbuljs/nyc/commit/c18fb0a9a8eae5904298d87c62d9934243de8674">c18fb0a</a>)</li> <li>Remove vestigial environment variables (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1078">#1078</a>) (<a href="https://github.com/istanbuljs/nyc/commit/cfd3da05156b98952f03f7be2dd3d23ba328073f">cfd3da0</a>)</li> </ul> <h2><a href="https://github.com/istanbuljs/nyc/compare/v14.1.0...v14.1.1">14.1.1</a> (2019-05-09)</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/istanbuljs/nyc/commit/de7baa4d765f8b8c184a62090ad1bb2118638b13"><code>de7baa4</code></a> chore(release): 15.1.0</li> <li><a href="https://github.com/istanbuljs/nyc/commit/992359a1e2108906e28324058008f28aa1052dc1"><code>992359a</code></a> feat(experimental): Support using <code>--all</code> with node.js ESM (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1320">#1320</a>)</li> <li><a href="https://github.com/istanbuljs/nyc/commit/086fd20c7af9e959d75b9a4f6940220f5304de8f"><code>086fd20</code></a> chore: Regenerate package-lock, update source-map-support test (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1314">#1314</a>)</li> <li><a href="https://github.com/istanbuljs/nyc/commit/b20f7514c999f2a502ecbe9a278a8dd8d010e1ef"><code>b20f751</code></a> chore: add <code>bugs</code> (used, e.g., by npmjs) (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1313">#1313</a>)</li> <li><a href="https://github.com/istanbuljs/nyc/commit/6898e88245bb8f9c530166e9b121519ec5963554"><code>6898e88</code></a> chore: Fix CHANGELOG.md version header</li> <li><a href="https://github.com/istanbuljs/nyc/commit/d9a76d5f9c1df5920684f5e43abe95ded361075e"><code>d9a76d5</code></a> chore(release): 15.0.1</li> <li><a href="https://github.com/istanbuljs/nyc/commit/3a577f0ddc4799d0334f7c154b612653a46b532f"><code>3a577f0</code></a> fix: Ignore insignificant lines when coalesce text report (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1300">#1300</a>)</li> <li><a href="https://github.com/istanbuljs/nyc/commit/df34c1c71e74468fd67287caad2ac987176ae503"><code>df34c1c</code></a> fix: Data merge concurrency limit to prevent OOM (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1293">#1293</a>)</li> <li><a href="https://github.com/istanbuljs/nyc/commit/befbf08e140d82f93724a0f73881fd6a4ae6f4d8"><code>befbf08</code></a> chore: A test where nyc output help text to stderr was flaky (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1269">#1269</a>)</li> <li><a href="https://github.com/istanbuljs/nyc/commit/9260a70a72c690befebab714e788b12499e9d955"><code>9260a70</code></a> docs: Remove <code>nyc</code> containing object in json config examples (<a href="https://github-redirect.dependabot.com/istanbuljs/nyc/issues/1276">#1276</a>)</li> <li>Additional commits viewable in <a href="https://github.com/istanbuljs/nyc/compare/v11.9.0...v15.1.0">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~coreyfarrell">coreyfarrell</a>, a new releaser for nyc since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+1309 -2569

0 comment

2 changed files

pr created time in 10 days

create barnchEventSource/eventsource

branch : dependabot/npm_and_yarn/nyc-15.1.0

created branch time in 10 days

PR opened EventSource/eventsource

Bump webpack from 3.12.0 to 5.36.2

Bumps webpack from 3.12.0 to 5.36.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/webpack/webpack/releases">webpack's releases</a>.</em></p> <blockquote> <h2>v5.36.2</h2> <h1>Bugfixes</h1> <ul> <li>correctly handle errors thrown during parser/generator creation <ul> <li>e. g. validation errors for asset module options</li> </ul> </li> <li>use a better automatic runtime name for workers <ul> <li>not too long to cause filename problems</li> </ul> </li> <li>no longer assume assets do not get removed when the compiler is running <ul> <li>Using <code>output.clean</code> is against this assumption</li> <li>It fixes a bug where assets are missing, when removed and readded to the compilation</li> </ul> </li> <li>fix a problem when chained dependOn, which causes too many modules being included in entrypoints</li> </ul> <h2>v5.36.1</h2> <h1>Performance</h1> <ul> <li>add <code>cache.profile</code> (<code>type: "filesystem"</code> only) flag for more info about (de)serialization timings</li> <li>avoid complex "by exports" splitting for splitChunks in development mode</li> <li>faster hashing for the common case</li> <li>improve algorithmic complexity for merging InitFragments to solve performance in an edge case</li> </ul> <h2>v5.36.0</h2> <h1>Features</h1> <ul> <li>add support for class fields (stage 4)</li> </ul> <h1>Performance</h1> <ul> <li>improve (de)serialization performance of dependency locations</li> </ul> <h2>v5.35.1</h2> <h1>Bugfixes</h1> <ul> <li>fix an <code>webpack_exports is not defined</code> error with some library types</li> </ul> <h1>performance</h1> <ul> <li>improve stats grouping performance</li> <li>improve providedExports analysis performance</li> <li>improve hashing performance</li> <li>lazy merge dependencies from creating context modules</li> <li>improve dependency parents access performance</li> </ul> <h2>v5.35.0</h2> <h1>Bugfixes</h1> <ul> <li>fix handling of build dependencies with <code>#</code> in path</li> </ul> <h1>Performance</h1> <ul> <li>improve memory usage when using the filesystem cache</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/webpack/webpack/commit/0e2e972a2d181c530bb7185278fe5cfc20724c22"><code>0e2e972</code></a> 5.36.2</li> <li><a href="https://github.com/webpack/webpack/commit/263a06a13c958a926f5847f85817a3e46c1fb51e"><code>263a06a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13279">#13279</a> from webpack/bugfix/depend-on-modules</li> <li><a href="https://github.com/webpack/webpack/commit/a36739a1776c8bece766969274b6276597646694"><code>a36739a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13276">#13276</a> from webpack/bugfix/emit-caching</li> <li><a href="https://github.com/webpack/webpack/commit/8467ae49857125ea892b76995c2c637169869408"><code>8467ae4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13274">#13274</a> from webpack/dependabot/npm_and_yarn/eslint-plugin-...</li> <li><a href="https://github.com/webpack/webpack/commit/fc3ec410201bb1f18fe64cdca631c723df1f614b"><code>fc3ec41</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13261">#13261</a> from webpack/dependabot/npm_and_yarn/mini-css-extra...</li> <li><a href="https://github.com/webpack/webpack/commit/81f244ba2eb51ab0cc09ee136d1765da5617270f"><code>81f244b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13277">#13277</a> from webpack/bugfix/worker-runtime-name</li> <li><a href="https://github.com/webpack/webpack/commit/027f9bd9299237198004ac7c85286969a65fe692"><code>027f9bd</code></a> fix too many modules are included in chunks when using chained dependOn</li> <li><a href="https://github.com/webpack/webpack/commit/e7e0f15555d1c0fa9d2fb78f5db4c26efa580f9f"><code>e7e0f15</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13266">#13266</a> from webpack/dependabot/npm_and_yarn/acorn-8.2.2</li> <li><a href="https://github.com/webpack/webpack/commit/f243907fe83c25d5797518eb80717cf823e85558"><code>f243907</code></a> emit assets even when they were cleaned from fs in the meantime</li> <li><a href="https://github.com/webpack/webpack/commit/e123bc08f2072bf8beea1f3fbd5cda90e05f1183"><code>e123bc0</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/webpack/webpack/issues/13270">#13270</a> from webpack/bugfix/parser-options-validation</li> <li>Additional commits viewable in <a href="https://github.com/webpack/webpack/compare/v3.12.0...v5.36.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+488 -2971

0 comment

2 changed files

pr created time in 10 days

create barnchEventSource/eventsource

branch : dependabot/npm_and_yarn/webpack-5.36.2

created branch time in 10 days

PR opened EventSource/eventsource

Bump mocha from 3.5.3 to 8.4.0

Bumps mocha from 3.5.3 to 8.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mochajs/mocha/releases">mocha's releases</a>.</em></p> <blockquote> <h2>v8.4.0</h2> <h1>8.4.0 / 2021-05-07</h1> <h2>:tada: Enhancements</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4502">#4502</a>: CLI file parsing errors now have error codes (<a href="https://github.com/evaline-ju"><strong><code>@​evaline-ju</code></strong></a>)</li> </ul> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4614">#4614</a>: Watch: fix crash when reloading files (<a href="https://github.com/outsideris"><strong><code>@​outsideris</code></strong></a>)</li> </ul> <h2>:book: Documentation</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4630">#4630</a>: Add <code>options.require</code> to Mocha constructor for <code>root hook</code> plugins on parallel runs (<a href="https://github.com/juergba"><strong><code>@​juergba</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4617">#4617</a>: Dynamically generating tests with <code>top-level await</code> and ESM test files (<a href="https://github.com/juergba"><strong><code>@​juergba</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4608">#4608</a>: Update default file extensions (<a href="https://github.com/outsideris"><strong><code>@​outsideris</code></strong></a>)</li> </ul> <p>Also thanks to <a href="https://github.com/outsideris"><strong><code>@​outsideris</code></strong></a> for various improvements on our GH actions workflows.</p> <h2>v8.3.2</h2> <h1>8.3.2 / 2021-03-12</h1> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4599">#4599</a>: Fix regression in <code>require</code> interface (<a href="https://github.com/alexander-fenster"><strong><code>@​alexander-fenster</code></strong></a>)</li> </ul> <h2>:book: Documentation</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4601">#4601</a>: Add build to GH actions run (<a href="https://github.com/christian-bromann"><strong><code>@​christian-bromann</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4596">#4596</a>: Filter active sponsors/backers (<a href="https://github.com/juergba"><strong><code>@​juergba</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4225">#4225</a>: Update config file examples (<a href="https://github.com/pkuczynski"><strong><code>@​pkuczynski</code></strong></a>)</li> </ul> <h2>v8.3.1</h2> <h1>8.3.1 / 2021-03-06</h1> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4577">#4577</a>: Browser: fix <code>EvalError</code> caused by regenerator-runtime (<a href="https://github.com/snoack"><strong><code>@​snoack</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4574">#4574</a>: ESM: allow <code>import</code> from mocha in parallel mode (<a href="https://github.com/nicojs"><strong><code>@​nicojs</code></strong></a>)</li> </ul> <h2>v8.3.0</h2> <h1>8.3.0 / 2021-02-11</h1> <h2>:tada: Enhancements</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4506">#4506</a>: Add error code for test timeout errors (<a href="https://github.com/boneskull"><strong><code>@​boneskull</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4112">#4112</a>: Add BigInt support to stringify util function (<a href="https://github.com/JosejeSinohui"><strong><code>@​JosejeSinohui</code></strong></a>)</li> </ul> <h2>:bug: Fixes</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/mochajs/mocha/blob/master/CHANGELOG.md">mocha's changelog</a>.</em></p> <blockquote> <h1>8.4.0 / 2021-05-07</h1> <h2>:tada: Enhancements</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4502">#4502</a>: CLI file parsing errors now have error codes (<a href="https://github.com/evaline-ju"><strong><code>@​evaline-ju</code></strong></a>)</li> </ul> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4614">#4614</a>: Watch: fix crash when reloading files (<a href="https://github.com/outsideris"><strong><code>@​outsideris</code></strong></a>)</li> </ul> <h2>:book: Documentation</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4630">#4630</a>: Add <code>options.require</code> to Mocha constructor for <code>root hook</code> plugins on parallel runs (<a href="https://github.com/juergba"><strong><code>@​juergba</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4617">#4617</a>: Dynamically generating tests with <code>top-level await</code> and ESM test files (<a href="https://github.com/juergba"><strong><code>@​juergba</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4608">#4608</a>: Update default file extensions (<a href="https://github.com/outsideris"><strong><code>@​outsideris</code></strong></a>)</li> </ul> <p>Also thanks to <a href="https://github.com/outsideris"><strong><code>@​outsideris</code></strong></a> for various improvements on our GH actions workflows.</p> <h1>8.3.2 / 2021-03-12</h1> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4599">#4599</a>: Fix regression in <code>require</code> interface (<a href="https://github.com/alexander-fenster"><strong><code>@​alexander-fenster</code></strong></a>)</li> </ul> <h2>:book: Documentation</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4601">#4601</a>: Add build to GH actions run (<a href="https://github.com/christian-bromann"><strong><code>@​christian-bromann</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4596">#4596</a>: Filter active sponsors/backers (<a href="https://github.com/juergba"><strong><code>@​juergba</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4225">#4225</a>: Update config file examples (<a href="https://github.com/pkuczynski"><strong><code>@​pkuczynski</code></strong></a>)</li> </ul> <h1>8.3.1 / 2021-03-06</h1> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4577">#4577</a>: Browser: fix <code>EvalError</code> caused by regenerator-runtime (<a href="https://github.com/snoack"><strong><code>@​snoack</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4574">#4574</a>: ESM: allow <code>import</code> from mocha in parallel mode (<a href="https://github.com/nicojs"><strong><code>@​nicojs</code></strong></a>)</li> </ul> <h1>8.3.0 / 2021-02-11</h1> <h2>:tada: Enhancements</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4506">#4506</a>: Add error code for test timeout errors (<a href="https://github.com/boneskull"><strong><code>@​boneskull</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4112">#4112</a>: Add BigInt support to stringify util function (<a href="https://github.com/JosejeSinohui"><strong><code>@​JosejeSinohui</code></strong></a>)</li> </ul> <h2>:bug: Fixes</h2> <ul> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4557">#4557</a>: Add file location when SyntaxError happens in ESM (<a href="https://github.com/giltayar"><strong><code>@​giltayar</code></strong></a>)</li> <li><a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4521">#4521</a>: Fix <code>require</code> error when bundling Mocha with Webpack (<a href="https://github.com/devhazem"><strong><code>@​devhazem</code></strong></a>)</li> </ul> <h2>:book: Documentation</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mochajs/mocha/commit/5064c282d13259925af05845026686bbe435d763"><code>5064c28</code></a> Release v8.4.0</li> <li><a href="https://github.com/mochajs/mocha/commit/9cbcc8b9852c8c2151b2455b8a49d2bd3d8b158d"><code>9cbcc8b</code></a> update CHANGELOG for v8.4.0 [ci skip]</li> <li><a href="https://github.com/mochajs/mocha/commit/0079ae703c4b3eefc024c360d76b9bac5ad34957"><code>0079ae7</code></a> Change CLI file parsing errors to use an error code (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4502">#4502</a>)</li> <li><a href="https://github.com/mochajs/mocha/commit/d35eb9debd437a0a88281e11fb390934848940b3"><code>d35eb9d</code></a> docs: add "options.require" to Mocha constructor (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4630">#4630</a>) [ci skip]</li> <li><a href="https://github.com/mochajs/mocha/commit/908aa05478c3a9d9ba0da9c3d35e1f914992a61f"><code>908aa05</code></a> GH actions: add Node v16 (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4629">#4629</a>)</li> <li><a href="https://github.com/mochajs/mocha/commit/8285910c4d4efc0f1e4a22d14939d103815b7fa5"><code>8285910</code></a> Watch for test files are crashed (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4614">#4614</a>)</li> <li><a href="https://github.com/mochajs/mocha/commit/34643e4c0821aeb8d6977c1942bc106c9363789a"><code>34643e4</code></a> Run browser tests on forked PRs by a dedicated label (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4616">#4616</a>)</li> <li><a href="https://github.com/mochajs/mocha/commit/8a2da76001142005826e544e4fb702ae2a77797f"><code>8a2da76</code></a> docs: dynamic tests with top-level await (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4617">#4617</a>) [ci skip]</li> <li><a href="https://github.com/mochajs/mocha/commit/d7ed5c24c1904a15d9f841149ba0cc5a5c2c2e2b"><code>d7ed5c2</code></a> Remove unused test.retries(n) (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4611">#4611</a>)</li> <li><a href="https://github.com/mochajs/mocha/commit/a41f18a4cea45cecb708eb675905d1ef72931592"><code>a41f18a</code></a> GH actions: stale workflow (<a href="https://github-redirect.dependabot.com/mochajs/mocha/issues/4613">#4613</a>) [ci skip]</li> <li>Additional commits viewable in <a href="https://github.com/mochajs/mocha/compare/v3.5.3...v8.4.0">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~juergba">juergba</a>, a new releaser for mocha since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+401 -123

0 comment

2 changed files

pr created time in 10 days

create barnchEventSource/eventsource

branch : dependabot/npm_and_yarn/mocha-8.4.0

created branch time in 10 days

PR opened EventSource/eventsource

Bump standard from 10.0.3 to 16.0.3

Bumps standard from 10.0.3 to 16.0.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/standard/standard/blob/master/CHANGELOG.md">standard's changelog</a>.</em></p> <blockquote> <h2>[16.0.3] - 2020-11-17</h2> <ul> <li>Update <code>eslint</code> from <code>~7.12.1</code> to <code>~7.13.0</code></li> <li>Relax rule: Enforce default parameters to be last <a href="https://github-redirect.dependabot.com/standard/standard/issues/1414">#1414</a></li> </ul> <h2>[16.0.2] - 2020-11-11</h2> <ul> <li>Allow <code>standard</code> to run on Node 11, even though it's not officially supported <a href="https://github-redirect.dependabot.com/standard/standard/pull/1597">#1597</a></li> </ul> <h2>[16.0.1] - 2020-10-30</h2> <ul> <li>Introduce "warning" system for disruptive rules (read more below)</li> <li>Change rule to a "warning": Require let or const instead of var (<a href="https://eslint.org/docs/rules/no-var">no-var</a>) <a href="https://github-redirect.dependabot.com/standard/standard/issues/633">#633</a></li> </ul> <p><code>standard</code> treats all rule violations as errors, which means that <code>standard</code> will exit with a non-zero (error) exit code.</p> <p>However, we may occasionally release a new major version of <code>standard</code> which changes a rule that affects the majority of <code>standard</code> users (for example, transitioning from <code>var</code> to <code>let</code>/<code>const</code>). We do this only when we think the advantage is worth the cost and only when the rule is <a href="https://standardjs.com/#is-there-an-automatic-formatter">auto-fixable</a>.</p> <p>In these situations, we have a "transition period" where the rule change is only a "warning". Warnings don't cause <code>standard</code> to return a non-zero (error) exit code. However, a warning message will still print to the console. During the transition period, <code>using standard --fix</code> will update your code so that it's ready for the next major version.</p> <p>The slow and careful approach is what we strive for with <code>standard</code>. We're generally extremely conservative in enforcing the usage of new language features. We want using <code>standard</code> to be light and fun and so we're careful about making changes that may get in your way. As always, you can <a href="https://standardjs.com/#how-do-i-disable-a-rule">disable a rule</a> at any time, if necessary.</p> <h2>[16.0.0] - 2020-10-28</h2> <p>We're super excited to announce <code>standard</code> 16!</p> <p>As with every new major release, there are lots of new rules in 16.0.0 designed to help catch bugs and make programmer intent more explicit. This release brings better performance, tons of bug fixes, improved JSX, React ⚛️, and Next.js support!</p> <p>When you upgrade, consider running <code>standard --fix</code> to automatically format your code to match the newly added rules.</p> <p>❤️ If you enjoy StandardJS and want to support future releases, please <a href="https://github.com/users/feross/sponsorship">support Feross</a>!</p> <h3>New features</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/standard/standard/commit/7b30583c2229b8bcdd3341974622a4ac91de836f"><code>7b30583</code></a> 16.0.3</li> <li><a href="https://github.com/standard/standard/commit/de8a3901daae8350f43a2d7bb6dbb7f0d651bf10"><code>de8a390</code></a> changelog</li> <li><a href="https://github.com/standard/standard/commit/66a83900e3645b061de404deaace13ee955827ff"><code>66a8390</code></a> eslint@7.13</li> <li><a href="https://github.com/standard/standard/commit/4eb38d7745919eaca8137e1b925598f40fb36236"><code>4eb38d7</code></a> eslint-config-standard@16.0.2</li> <li><a href="https://github.com/standard/standard/commit/9f139496223a9efdab607a49c98ba38bde643d61"><code>9f13949</code></a> Update CHANGELOG.md</li> <li><a href="https://github.com/standard/standard/commit/5937e954bc143af521e7dc5e461e67649fcae767"><code>5937e95</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/standard/standard/issues/1600">#1600</a> from standard/dependabot/npm_and_yarn/hallmark-tw-3.1.0</li> <li><a href="https://github.com/standard/standard/commit/63c8aba23ff08eb91493ebb8e72f9a78f31fe0c6"><code>63c8aba</code></a> Update hallmark requirement from ^3.0.0 to ^3.1.0</li> <li><a href="https://github.com/standard/standard/commit/ddff89a37978a6aa514ee8e48887e6acfd9b14a8"><code>ddff89a</code></a> Update stale.yml</li> <li><a href="https://github.com/standard/standard/commit/e228c05f6fca56451b49cb3cc2b285f3b9b8b22c"><code>e228c05</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/standard/standard/issues/1596">#1596</a> from thclark/master</li> <li><a href="https://github.com/standard/standard/commit/e7f22a970d6c722019f150e804e7364dc88ef3ea"><code>e7f22a9</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/standard/standard/issues/1598">#1598</a> from om4csaba/feature/macos-xargs-r</li> <li>Additional commits viewable in <a href="https://github.com/standard/standard/compare/v10.0.3...v16.0.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

+905 -697

0 comment

2 changed files

pr created time in 10 days

pull request commentEventSource/eventsource

Create dependabot configuration

Merged.

HonkingGoose

comment created time in 10 days

push eventEventSource/eventsource

HonkingGoose

commit sha d12de19bc5ff082f62527a306efa1d5977d0c288

Create dependabot.yml

view details

Jesús Leganés-Combarro

commit sha 82e034389bd2c08d532c63172b8e858c5b185338

Merge pull request #150 from HonkingGoose/patch-2 Create dependabot configuration

view details

push time in 10 days

PR merged EventSource/eventsource

Create dependabot configuration

Changes:

  • Check for npm package updates (runs on every weekday, Monday to Friday)
  • Check for github-actions updates (runs on every weekday, Monday to Friday)

Context:

It's a good idea to check for updates for your packages and actions on a regular basis. If you don't want to get bothered by Dependabot daily, I can also set the schedule to weekly or monthly checks.

I'm starting with a "default" Dependabot configuration so that you can tune it to your liking via suggestions.

Read the GitHub docs, Configuration options for dependency updates to learn more about the available configuration options.

The most likely things you'll want to change are probably:

  • The schedule
  • If it should check for production or dev updates only, or just all dependencies, or even just the lockfile
  • If the PR should be assigned to somebody or ask for a review from somebody
  • The timezone in which Dependabot runs
  • Whether you want to use the default labels (dependencies + github_actions or npm) or set your own, or not use labels at all

So let me know what you want me to change to the configuration.

After you merge the PR, Dependabot will be activated for this repository automatically, and it will start checking for updates right away.

+11 -0

1 comment

1 changed file

HonkingGoose

pr closed time in 10 days

pull request commentEventSource/eventsource

Create dependabot configuration

Rebased this branch so that it's current with master again, squashed the previous 2 commits into one nice commit.

@piranna Can you review this PR? The basic idea is to use the GitHub-native Dependabot to get automatic update PRs for the npm packages and for the GitHub Action runners.

HonkingGoose

comment created time in 10 days