profile
viewpoint
Christopher Sexton csexton @RadiusNetworks McLean, VA http://www.codeography.com/

avdi/ppwm 216

A site to promote diverse pair-programming

bglusman/debt_ceiling 83

Get a grip on your technical debt

csexton/captured-ruby 62

Quick screen capture sharing utility for Mac OS X.

csexton/bai_si_bu_jie 9

jekyll source for fuzzymonk.com

csexton/codeography.com 9

jekyll source for codeography.com

csexton/captured-php 6

PHP Upload Destination for Captured.app

csexton/corporate-tool 4

Self hosted wiki and pastebin

csexton/annotated 2

The Annotate Image from Captured

delete branch csexton/debugger-action

delete branch : dependabot/npm_and_yarn/lodash-4.17.19

delete time in 16 days

push eventcsexton/debugger-action

dependabot[bot]

commit sha f4605ece75433764adb5512f262f125034ad56b0

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Christopher Sexton

commit sha 0de54ee5b983a6f5a84a5a0c1e708422059837e0

Merge pull request #5 from csexton/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 16 days

PR merged csexton/debugger-action

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 16 days

delete branch csexton/corporate-tool

delete branch : dependabot/bundler/rack-2.2.3

delete time in a month

push eventcsexton/corporate-tool

dependabot[bot]

commit sha 81f0ab7a2a940067ad5e5a602b240676ace61c4c

Bump rack from 2.0.8 to 2.2.3 Bumps [rack](https://github.com/rack/rack) from 2.0.8 to 2.2.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.8...2.2.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Christopher Sexton

commit sha 9446aac20fbe6509f9f17586d3ded0e067063eb2

Merge pull request #27 from csexton/dependabot/bundler/rack-2.2.3 Bump rack from 2.0.8 to 2.2.3

view details

push time in a month

PR merged csexton/corporate-tool

Bump rack from 2.0.8 to 2.2.3 dependencies

Bumps rack from 2.0.8 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.8...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in a month

delete branch csexton/corporate-tool

delete branch : select-to-upload

delete time in 2 months

delete branch csexton/corporate-tool

delete branch : google-oauth

delete time in 2 months

delete branch csexton/corporate-tool

delete branch : dependabot/bundler/puma-4.3.5

delete time in 2 months

push eventcsexton/corporate-tool

dependabot[bot]

commit sha 891ccd331ebcbc3cfd82440fec3275ece26a8ffa

Bump puma from 4.3.0 to 4.3.5 Bumps [puma](https://github.com/puma/puma) from 4.3.0 to 4.3.5. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/commits) Signed-off-by: dependabot[bot] <support@github.com>

view details

Christopher Sexton

commit sha 8e49749771cd848f8640b68bb72998ed92577753

Merge pull request #24 from csexton/dependabot/bundler/puma-4.3.5 Bump puma from 4.3.0 to 4.3.5

view details

push time in 2 months

PR merged csexton/corporate-tool

Bump puma from 4.3.0 to 4.3.5 dependencies

Bumps puma from 4.3.0 to 4.3.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/puma/puma/blob/master/History.md">puma's changelog</a>.</em></p> <blockquote> <h2>4.3.4/4.3.5 and 3.12.5/3.12.6 / 2020-05-22</h2> <p>Each patchlevel release contains a separate security fix. We recommend simply upgrading to 4.3.5/3.12.6.</p> <ul> <li>Security <ul> <li>Fix: Fixed two separate HTTP smuggling vulnerabilities that used the Transfer-Encoding header. CVE-2020-11076 and CVE-2020-11077.</li> </ul> </li> </ul> <h2>4.3.3 and 3.12.4 / 2020-02-28</h2> <ul> <li>Bugfixes <ul> <li>Fix: Fixes a problem where we weren't splitting headers correctly on newlines (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2132">#2132</a>)</li> </ul> </li> <li>Security <ul> <li>Fix: Prevent HTTP Response splitting via CR in early hints. CVE-2020-5249.</li> </ul> </li> </ul> <h2>4.3.2 and 3.12.3 / 2020-02-27 (YANKED)</h2> <ul> <li>Security <ul> <li>Fix: Prevent HTTP Response splitting via CR/LF in header values. CVE-2020-5247.</li> </ul> </li> </ul> <h2>4.3.1 and 3.12.2 / 2019-12-05</h2> <ul> <li>Security <ul> <li>Fix: a poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. CVE-2019-16770.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/puma/puma/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch csexton/corporate-tool

delete branch : dependabot/bundler/rack-2.0.8

delete time in 2 months

push eventcsexton/corporate-tool

dependabot[bot]

commit sha 97a893f8145f54e6650c5f76008452dcd73ada75

Bump rack from 2.0.7 to 2.0.8 Bumps [rack](https://github.com/rack/rack) from 2.0.7 to 2.0.8. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.7...2.0.8) Signed-off-by: dependabot[bot] <support@github.com>

view details

Christopher Sexton

commit sha 5d230dec0fb9003e6b07d66c91f50e87e982fc2f

Merge pull request #21 from csexton/dependabot/bundler/rack-2.0.8 Bump rack from 2.0.7 to 2.0.8

view details

push time in 2 months

PR merged csexton/corporate-tool

Bump rack from 2.0.7 to 2.0.8 dependencies

Bumps rack from 2.0.7 to 2.0.8. <details> <summary>Changelog</summary>

Sourced from rack's changelog.

Changelog

All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference Keep A Changelog.

Unreleased

Note: There are many unreleased changes in Rack (master is around 300 commits ahead of 2-0-stable), and below is not an exhaustive list. If you would like to help out and document some of the unreleased changes, PRs are welcome.

Added

Changed

  • Use Time#httpdate format for Expires, as proposed by RFC 7231. (@​nanaya)
  • Make Utils.status_code raise an error when the status symbol is invalid instead of 500.
  • Rename Request::SCHEME_WHITELIST to Request::ALLOWED_SCHEMES.
  • Make Multipart::Parser.get_filename accept files with + in their name.
  • Add Falcon to the default handler fallbacks. (@​ioquatix)
  • Update codebase to avoid string mutations in preparation for frozen_string_literals. (@​pat)
  • Change MockRequest#env_for to rely on the input optionally responding to #size instead of #length. (@​janko)
  • Rename Rack::File -> Rack::Files and add deprecation notice. (@​postmodern).

Removed

Documentation

  • Update broken example in Session::Abstract::ID documentation. (tonytonyjan)
  • Add Padrino to the list of frameworks implmenting Rack. (@​wikimatze)
  • Remove Mongrel from the suggested server options in the help output. (@​tricknotes)
  • Replace HISTORY.md and NEWS.md with CHANGELOG.md. (@​twitnithegirl)
  • Backfill CHANGELOG.md from 2.0.1 to 2.0.7 releases. (@​drenmi) </details> <details> <summary>Commits</summary>
  • e7ee459 Bumping version
  • f1a79b2 Introduce a new base class to avoid breaking when upgrading
  • 5b1cab6 Add a version prefix to the private id to make easier to migrate old values
  • 1e96e0f Fallback to the public id when reading the session in the pool adapter
  • 3ba123d Also drop the session with the public id when destroying sessions
  • 6a04bbf Fallback to the legacy id when the new id is not found
  • dc45a06 Add the private id
  • 73a5f79 revert conditionals to master
  • 4e32262 remove NullSession
  • 1c7e3b2 remove || raise and get closer to master
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch csexton/corporate-tool

delete branch : dependabot/bundler/kaminari-1.2.1

delete time in 2 months

push eventcsexton/corporate-tool

dependabot[bot]

commit sha 18880970444258ee161ab1d24000dc636668d0dc

Bump kaminari from 1.1.1 to 1.2.1 Bumps [kaminari](https://github.com/kaminari/kaminari) from 1.1.1 to 1.2.1. - [Release notes](https://github.com/kaminari/kaminari/releases) - [Changelog](https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md) - [Commits](https://github.com/kaminari/kaminari/compare/v1.1.1...v1.2.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

Christopher Sexton

commit sha bce86ca5084a772959afc57e46e9d7505d7623b8

Merge pull request #25 from csexton/dependabot/bundler/kaminari-1.2.1 Bump kaminari from 1.1.1 to 1.2.1

view details

push time in 2 months

PR merged csexton/corporate-tool

Bump kaminari from 1.1.1 to 1.2.1 dependencies

Bumps kaminari from 1.1.1 to 1.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/kaminari/kaminari/releases">kaminari's releases</a>.</em></p> <blockquote> <h2>v1.2.0</h2> <h3>Deprecations:</h3> <ul> <li>Deprecated <code>current_per_page</code> in favor of <code>limit_value</code></li> </ul> <h3>Enhancements:</h3> <ul> <li>Added <code>#url_to_next_page</code> and <code>#url_to_prev_page</code> helper methods: <a href="https://github.com/kaminari/kaminari/commit/38e95a262a210548c4f892aaa69d09ca8ecdce7f">38e95a2</a></li> <li>Extracted url helper methods and packed them in <code>Kaminari::Helpers::UrlHelper</code>: <a href="https://github.com/kaminari/kaminari/commit/ff38bee54b5be1a948f1118c0bfd829a72a1a502">ff38bee</a></li> <li>Improved performance of <code>total_count</code> for grouped queries by explicitly giving SQL <code>select</code> clause <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> [<a href="https://github.com/MmKolodziej">@MmKolodziej</a>]</li> <li>Added <code>LIMIT</code> to <code>total_count</code> query when <code>max_pages</code> presents <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/981">#981</a> [<a href="https://github.com/rymai">@rymai</a>]</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a bug where the <code>kaminari-mongoid</code> gem was not loaded properly: <a href="https://github-redirect.dependabot.com/kaminari/kaminari-mongoid/issues/9">kaminari/kaminari-mongoid#9</a> [<a href="https://github.com/DenniJensen">@DenniJensen</a>]</li> <li>Fixed a bug where the <code>#total_count</code> method incorrectly calculates the total count: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/932">#932</a> [<a href="https://github.com/tumayun">@tumayun</a>]</li> <li>Fixed a bug where <code>empty?</code> breaks subsequent <code>last_page?</code> in without_count mode <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1009">#1009</a> [<a href="https://github.com/montdidier">@montdidier</a>]</li> <li>Fixed kwargs warnings on Ruby 2.7 <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1010">#1010</a> [<a href="https://github.com/connorshea">@connorshea</a>]</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md">kaminari's changelog</a>.</em></p> <blockquote> <h2>1.2.1</h2> <h3>Security Fixes:</h3> <ul> <li>Added <code>original_script_name</code> parameter to the ignore list: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1020">#1020</a> [<a href="https://github.com/viseztrance">@viseztrance</a>] See CVE-2020-11082 for full details.</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a couple of grouped <code>total_count</code> regressions by reverting <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a></li> </ul> <h2>1.2.0</h2> <h3>Deprecations:</h3> <ul> <li>Deprecated <code>current_per_page</code> in favor of <code>limit_value</code></li> </ul> <h3>Enhancements:</h3> <ul> <li>Added <code>#url_to_next_page</code> and <code>#url_to_prev_page</code> helper methods: <a href="https://github.com/kaminari/kaminari/commit/38e95a262a210548c4f892aaa69d09ca8ecdce7f">38e95a2</a></li> <li>Extracted url helper methods and packed them in <code>Kaminari::Helpers::UrlHelper</code>: <a href="https://github.com/kaminari/kaminari/commit/ff38bee54b5be1a948f1118c0bfd829a72a1a502">ff38bee</a></li> <li>Improved performance of <code>total_count</code> for grouped queries by explicitly giving SQL <code>select</code> clause <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> [<a href="https://github.com/MmKolodziej">@MmKolodziej</a>]</li> <li>Added <code>LIMIT</code> to <code>total_count</code> query when <code>max_pages</code> presents <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/981">#981</a> [<a href="https://github.com/rymai">@rymai</a>]</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a bug where the <code>kaminari-mongoid</code> gem was not loaded properly: <a href="https://github-redirect.dependabot.com/kaminari/kaminari-mongoid/issues/9">kaminari/kaminari-mongoid#9</a> [<a href="https://github.com/DenniJensen">@DenniJensen</a>]</li> <li>Fixed a bug where the <code>#total_count</code> method incorrectly calculates the total count: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/932">#932</a> [<a href="https://github.com/tumayun">@tumayun</a>]</li> <li>Fixed a bug where <code>empty?</code> breaks subsequent <code>last_page?</code> in without_count mode <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1009">#1009</a> [<a href="https://github.com/montdidier">@montdidier</a>]</li> <li>Fixed kwargs warnings on Ruby 2.7 <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1010">#1010</a> [<a href="https://github.com/connorshea">@connorshea</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kaminari/kaminari/commit/ab8b1118bd721edc520a7cd32e0a72dc6d0d3608"><code>ab8b111</code></a> Version 1.2.1</li> <li><a href="https://github.com/kaminari/kaminari/commit/674aeecbb38612f5914c8b659570ce6a51a85bfe"><code>674aeec</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1020">#1020</a> from viseztrance/fix/add-entry-to-blacklist</li> <li><a href="https://github.com/kaminari/kaminari/commit/8dd52a1aed3d2fa2835d836de23fc0d8c4ff5db8"><code>8dd52a1</code></a> Blacklist "original_script_name" get param</li> <li><a href="https://github.com/kaminari/kaminari/commit/04d86ed3f2537aff620941413e5fca254e87aebe"><code>04d86ed</code></a> Revert "Merge pull request <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> from MmKolodziej/better_total_count_for_group...</li> <li><a href="https://github.com/kaminari/kaminari/commit/73472921a234e687bf25495f8265d0676736c766"><code>7347292</code></a> kaminari supports Ruby 2.8 (or 3.0 or whatever comes next) and Rails 6.1</li> <li><a href="https://github.com/kaminari/kaminari/commit/a2f262ec43d0f5e456831db7e1d31fa0d89e7d1e"><code>a2f262e</code></a> Actually, let's call it 1.2.0</li> <li><a href="https://github.com/kaminari/kaminari/commit/f901ad46d1cea5764ff19244f0b6f8781036ddf5"><code>f901ad4</code></a> Version 1.1.2</li> <li><a href="https://github.com/kaminari/kaminari/commit/c3114fac51d3735f5a901a4c905eaff6a75cc9f5"><code>c3114fa</code></a> Changes for version 1.1.2</li> <li><a href="https://github.com/kaminari/kaminari/commit/b21c1daffb7a99106c9e75ac0ffaef6d7f56416d"><code>b21c1da</code></a> using has to be called from the toplevel in Ruby 2.0</li> <li><a href="https://github.com/kaminari/kaminari/commit/795b2b74526a75bed1d3e286650b9fc04837d12a"><code>795b2b7</code></a> Let this plugin internal method be super private within this file</li> <li>Additional commits viewable in <a href="https://github.com/kaminari/kaminari/compare/v1.1.1...v1.2.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+18 -18

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

delete branch csexton/corporate-tool

delete branch : dependabot/bundler/websocket-extensions-0.1.5

delete time in 2 months

push eventcsexton/corporate-tool

dependabot[bot]

commit sha 8a8298c6e62e33fe111a6c4647500b734141fdec

Bump websocket-extensions from 0.1.4 to 0.1.5 Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-ruby) from 0.1.4 to 0.1.5. - [Release notes](https://github.com/faye/websocket-extensions-ruby/releases) - [Changelog](https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-ruby/compare/0.1.4...0.1.5) Signed-off-by: dependabot[bot] <support@github.com>

view details

Christopher Sexton

commit sha 74f1619adf4d97b5902b72db3955517732a8fb5b

Merge pull request #26 from csexton/dependabot/bundler/websocket-extensions-0.1.5 Bump websocket-extensions from 0.1.4 to 0.1.5

view details

push time in 2 months

PR merged csexton/corporate-tool

Bump websocket-extensions from 0.1.4 to 0.1.5 dependencies

Bumps websocket-extensions from 0.1.4 to 0.1.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.5 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7663)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/8108e77333026634eda1a6a32f32da3a7a1da8c4"><code>8108e77</code></a> Bump version to 0.1.5</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/c36eb3e010dce9eabc7415dbe05cafaa0ae83cd4"><code>c36eb3e</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/8174a4a0f95b8f35ea42595d9d4d88debf492521"><code>8174a4a</code></a> Test on JRuby 9.{0,1,2} rather than "head"</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/96059802a6649ad3ca63625ffc5b5dbcd9ea91d9"><code>9605980</code></a> Update Ruby versions 2.4 to 2.7 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/bd6d0acc01fa985f014d37183f0c7854b86b60f9"><code>bd6d0ac</code></a> Mention license change in the changelog</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/a8c847876b2242d562e6186b6fd90dd073b9fcd2"><code>a8c8478</code></a> Formatting change: {...} should have spaces inside the braces</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-ruby/compare/0.1.4...0.1.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

issue commentmaebeale/mutual-aid

sass-loader error when deploying to Heroku

Is this deploy running off master? Looking at package.json I see you still have "sass-loader" under devDependencies. You could try moving that to dependencies and see if the default build pack will work with that.

https://github.com/maebeale/mutual-aid/blob/master/package.json#L31

maebeale

comment created time in 2 months

issue commentmaebeale/mutual-aid

sass-loader error when deploying to Heroku

Yay! Glad it was helpful 😀

maebeale

comment created time in 2 months

startedjuliancheal/code-extractor

started time in 2 months

more