profile
viewpoint

kayhide/bundler-gtags 1

GNU Global (gtags) utility. Create gtags for all bundled gems and manage direnv settings exporting GTAGSLIBPATH.

kayhide/active_model_serializers 0

ActiveModel::Serializer implementation and Rails hooks

kayhide/add-node-modules-path 0

Adds the node_modules/.bin directory to the buffer exec_path. E.g. support project local eslint installations.

kayhide/administrate-field-active_storage 0

support active storage in administrate

kayhide/administrate-field-jsonb 0

A plugin to show and edit JSON objects within Administrate.

push eventkayhide/enkuber

Hideaki Kawai

commit sha 20c2eecc34e08c08043eb51c5546efcf162090e6

wip

view details

push time in 2 days

push eventkayhide/dotfiles

Hideaki Kawai

commit sha 965b4cb86876d2671d40110bde3b2c964959a0f6

Update spacemacs settings

view details

push time in 2 days

push eventkayhide/enkuber

Hideaki Kawai

commit sha 2e8bb947a7f5b99aff691938bc54e9effd143544

wip

view details

push time in 2 days

push eventkayhide/enkuber

Hideaki Kawai

commit sha 8eed7258e0139c8497f8eeef600a8335bc8f5e6a

wip

view details

push time in 5 days

create barnchkayhide/enkuber

branch : master

created branch time in 5 days

created repositorykayhide/enkuber

created time in 5 days

push eventkayhide/arbash

Hideaki Kawai

commit sha 0f4acf17b78f6ef434528a6c91dbd27bf836f227

Split commands into separate files

view details

Hideaki Kawai

commit sha 31e503df794a4e42455df7d0b386a9afd4dddb7a

Create tests

view details

push time in 8 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha d1c749c7fb9925924679c9fb95cf68de125059bb

Create BackgroundPicture

view details

Hideaki Kawai

commit sha 6df7df7ede6c0b739a5ec9b1ca06aebcc3cade32

wip Create GamePage

view details

push time in 10 days

push eventkayhide/chotto-jigsaw

dependabot[bot]

commit sha 6943f81960f5a86ecaf806c92c9980fcd74cdf28

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha d489874fbd2b5983671f85f7420751e86a6d84e6

Merge pull request #12 from kayhide/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

dependabot[bot]

commit sha 5b3232a4f731f2653fae3efafc155cbf1f364b31

Bump puma from 3.12.4 to 3.12.6 Bumps [puma](https://github.com/puma/puma) from 3.12.4 to 3.12.6. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/commits) Signed-off-by: dependabot[bot] <support@github.com>

view details

dependabot[bot]

commit sha d039305e54dc5743cbbcdbee9e3ce7aaceeefa4b

Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha cc1d64533cbeb29d100266a50eea7770890b0d51

Merge pull request #13 from kayhide/dependabot/bundler/puma-3.12.6 Bump puma from 3.12.4 to 3.12.6

view details

Hideaki Kawai

commit sha 01bea483aebc819950263480cc412b6c17940c7b

Merge pull request #14 from kayhide/dependabot/npm_and_yarn/elliptic-6.5.3 Bump elliptic from 6.5.2 to 6.5.3

view details

dependabot[bot]

commit sha 66c1d0a870c5ee97c35b2569ac3955a233edbe2c

Bump rack from 2.0.8 to 2.1.4 Bumps [rack](https://github.com/rack/rack) from 2.0.8 to 2.1.4. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.8...2.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 53f9ca247c5b51065eea44d301651ba741802119

Merge pull request #11 from kayhide/dependabot/bundler/rack-2.1.4 Bump rack from 2.0.8 to 2.1.4

view details

Hideaki Kawai

commit sha 73fb88896f5e13f49bccb2193bac73badc1ca17a

Remove unused rails tests

view details

Hideaki Kawai

commit sha 675d79896ead7370cc0702ce88082a6e103313b9

Move files

view details

Hideaki Kawai

commit sha 7114c42ffa1a488ab4e23ded1112dfc004a65bcf

Make decoupled frontend and backend work

view details

Hideaki Kawai

commit sha de36c0fa98e0ae94c9b46dc6234e82b53110bf63

Update for deployment

view details

Hideaki Kawai

commit sha 38b3a54d3792583b0c0611977274af59446c7f32

Add password to users

view details

Hideaki Kawai

commit sha 961a13be1bfc5f8babf26505c08461b280c27fb9

Move Authenticator to WebAuthenticator

view details

Hideaki Kawai

commit sha 7e48c09a744d5bf0ac6185c7f359ca40324eea5b

Create auth api

view details

Hideaki Kawai

commit sha 7908f92026804ad8ee50ac938b169ea8f0667fbe

Create frontend layout

view details

Hideaki Kawai

commit sha 0af04f5e87ad1f2850ff3a93b7c3b23f302b1b23

Use html webpack plugin

view details

Hideaki Kawai

commit sha b7dd7ecfb99f8f728efbc84f468e1b98546b1d1e

Make webpack dev server colorful

view details

Hideaki Kawai

commit sha e38a1446b002d3636efc0e4616c4611c12d59296

Update games api covering crud

view details

Hideaki Kawai

commit sha 85768beee41eab4234d3b2940b151c8b235e9726

Move App.Model to App.Data

view details

push time in 11 days

delete branch kayhide/chotto-jigsaw

delete branch : games-api

delete time in 11 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha b9ae1521c3cbee57dd55f2e987fae6bc4d1c7ae0

Create PicturesPage

view details

Hideaki Kawai

commit sha 9249fe910ec641d8234dccfe0c99dee10fdb4469

Update games api

view details

Hideaki Kawai

commit sha 112d72f865eb14a097fe9069ddb1842152a357ec

Ceate GamesPage

view details

push time in 11 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha b9ae1521c3cbee57dd55f2e987fae6bc4d1c7ae0

Create PicturesPage

view details

Hideaki Kawai

commit sha 9249fe910ec641d8234dccfe0c99dee10fdb4469

Update games api

view details

Hideaki Kawai

commit sha 112d72f865eb14a097fe9069ddb1842152a357ec

Ceate GamesPage

view details

push time in 11 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha 0bd634e612c27921113c923fda245940b0f6a016

Create PicturesPage

view details

Hideaki Kawai

commit sha 0fdbd588644e0afc98b7c828a42344bb4c1cd29c

wip

view details

Hideaki Kawai

commit sha 3a99506fa6759470582081e63ebcd63862a32190

wip Update PicturesPage for start dialog

view details

push time in 12 days

push eventkayhide/try-pixijs

kayhide

commit sha 32831686f8be529675acd6d583b16d8e45c1963a

Automated deployment: Thu Jul 30 04:00:39 UTC 2020 083ac600db5fcd245aa9990cff1c8a4cd1b51940

view details

push time in 14 days

push eventkayhide/try-pixijs

Hideaki Kawai

commit sha 48c51ccbd06038277d551a4ff6dbb0f70261dfa4

Add shell.nix

view details

Hideaki Kawai

commit sha 083ac600db5fcd245aa9990cff1c8a4cd1b51940

Update yarn packages

view details

push time in 14 days

push eventkayhide/higaidar

dependabot[bot]

commit sha 5146beaa785636e0866cc1f0bf3acd5a85996b51

Bump loofah from 2.1.1 to 2.6.0 Bumps [loofah](https://github.com/flavorjones/loofah) from 2.1.1 to 2.6.0. - [Release notes](https://github.com/flavorjones/loofah/releases) - [Changelog](https://github.com/flavorjones/loofah/blob/master/CHANGELOG.md) - [Commits](https://github.com/flavorjones/loofah/compare/v2.1.1...v2.6.0) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha e5b935d9c69a0d2d71d3c9bba94d6d6bb1db5a0e

Merge pull request #10 from kayhide/dependabot/bundler/loofah-2.6.0 Bump loofah from 2.1.1 to 2.6.0

view details

push time in 14 days

PR merged kayhide/higaidar

Bump loofah from 2.1.1 to 2.6.0 dependencies ruby

Bumps loofah from 2.1.1 to 2.6.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/flavorjones/loofah/releases">loofah's releases</a>.</em></p> <blockquote> <h2>2.6.0 / 2020-06-16</h2> <h3>Features</h3> <ul> <li>Allow CSS <code>border-style</code> keywords. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/188">#188</a>] (Thanks, <a href="https://github.com/tarcisiozf">@tarcisiozf</a>!)</li> </ul> <h2>2.5.0 / 2020-04-05</h2> <h3>Features</h3> <ul> <li>Allow more CSS length units: "ch", "vw", "vh", "Q", "lh", "vmin", "vmax". [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/178">#178</a>] (Thanks, <a href="https://github.com/JuanitoFatas">@JuanitoFatas</a>!)</li> </ul> <h3>Fixes</h3> <ul> <li>Remove comments from <code>Loofah::HTML::Document</code>s that exist outside the <code>html</code> element. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/80">#80</a>]</li> </ul> <h3>Other changes</h3> <ul> <li>Gem metadata being set [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/181">#181</a>] (Thanks, <a href="https://github.com/JuanitoFatas">@JuanitoFatas</a>!)</li> <li>Test files removed from gem file [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/180">#180</a>,<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/166">#166</a>,<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/159">#159</a>] (Thanks, <a href="https://github.com/JuanitoFatas">@JuanitoFatas</a> and <a href="https://github.com/greysteil">@greysteil</a>!)</li> </ul> <h2>2.4.0 / 2019-11-25</h2> <h3>Features</h3> <ul> <li>Allow CSS property <code>max-width</code> <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/175">#175</a> (Thanks, <a href="https://github.com/bchaney">@bchaney</a>!)</li> <li>Allow CSS sizes expressed in <code>rem</code> [#176, <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/177">#177</a>]</li> <li>Add <code>frozen_string_literal: true</code> magic comment to all <code>lib</code> files. <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/118">#118</a></li> </ul> <h2>2.3.1 / 2019-10-22</h2> <h3>Security</h3> <p>Address CVE-2019-15587: Unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.</p> <p>This CVE's public notice is at <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/171">flavorjones/loofah#171</a></p> <h2>2.3.0 / 2019-09-28</h2> <h3>Features</h3> <ul> <li>Expand set of allowed protocols to include <code>tel:</code> and <code>line:</code>. [#104, <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/147">#147</a>]</li> <li>Expand set of allowed CSS functions. [related to <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/122">#122</a>]</li> <li>Allow greater precision in shorthand CSS values. <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/149">#149</a> (Thanks, <a href="https://github.com/danfstucky">@danfstucky</a>!)</li> <li>Allow CSS property <code>list-style</code> <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/162">#162</a> (Thanks, <a href="https://github.com/jaredbeck">@jaredbeck</a>!)</li> <li>Allow CSS keywords <code>thick</code> and <code>thin</code> <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/168">#168</a> (Thanks, <a href="https://github.com/georgeclaghorn">@georgeclaghorn</a>!)</li> <li>Allow HTML property <code>contenteditable</code> <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/167">#167</a> (Thanks, <a href="https://github.com/andreynering">@andreynering</a>!)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/flavorjones/loofah/blob/master/CHANGELOG.md">loofah's changelog</a>.</em></p> <blockquote> <h2>2.6.0 / 2020-06-16</h2> <h3>Features</h3> <ul> <li>Allow CSS <code>border-style</code> keywords. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/188">#188</a>] (Thanks, <a href="https://github.com/tarcisiozf">@tarcisiozf</a>!)</li> </ul> <h2>2.5.0 / 2020-04-05</h2> <h3>Features</h3> <ul> <li>Allow more CSS length units: "ch", "vw", "vh", "Q", "lh", "vmin", "vmax". [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/178">#178</a>] (Thanks, <a href="https://github.com/JuanitoFatas">@JuanitoFatas</a>!)</li> </ul> <h3>Fixes</h3> <ul> <li>Remove comments from <code>Loofah::HTML::Document</code>s that exist outside the <code>html</code> element. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/80">#80</a>]</li> </ul> <h3>Other changes</h3> <ul> <li>Gem metadata being set [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/181">#181</a>] (Thanks, <a href="https://github.com/JuanitoFatas">@JuanitoFatas</a>!)</li> <li>Test files removed from gem file [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/180">#180</a>,<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/166">#166</a>,<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/159">#159</a>] (Thanks, <a href="https://github.com/JuanitoFatas">@JuanitoFatas</a> and <a href="https://github.com/greysteil">@greysteil</a>!)</li> </ul> <h2>2.4.0 / 2019-11-25</h2> <h3>Features</h3> <ul> <li>Allow CSS property <code>max-width</code> [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/175">#175</a>] (Thanks, <a href="https://github.com/bchaney">@bchaney</a>!)</li> <li>Allow CSS sizes expressed in <code>rem</code> [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/176">#176</a>, <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/177">#177</a>]</li> <li>Add <code>frozen_string_literal: true</code> magic comment to all <code>lib</code> files. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/118">#118</a>]</li> </ul> <h2>2.3.1 / 2019-10-22</h2> <h3>Security</h3> <p>Address CVE-2019-15587: Unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.</p> <p>This CVE's public notice is at <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/171">#171</a></p> <h2>2.3.0 / 2019-09-28</h2> <h3>Features</h3> <ul> <li>Expand set of allowed protocols to include <code>tel:</code> and <code>line:</code>. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/104">#104</a>, <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/147">#147</a>]</li> <li>Expand set of allowed CSS functions. [related to <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/122">#122</a>]</li> <li>Allow greater precision in shorthand CSS values. [<a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/149">#149</a>] (Thanks, <a href="https://github.com/danfstucky">@danfstucky</a>!)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/flavorjones/loofah/commit/e48f298e5a3d2dd85cf882e7ced720cc0ca32027"><code>e48f298</code></a> version bump to v2.6.0</li> <li><a href="https://github.com/flavorjones/loofah/commit/4e8a64ce9ff84054ad631a57082988ea151538a9"><code>4e8a64c</code></a> ci: update pipeline icon to "cog"</li> <li><a href="https://github.com/flavorjones/loofah/commit/c3d8a6d1dcfa96dc94f61221e0fa1f2f6b9e522b"><code>c3d8a6d</code></a> update CHANGELOG</li> <li><a href="https://github.com/flavorjones/loofah/commit/93289f2876bd097076bb7703fd57603f565767fe"><code>93289f2</code></a> dep: update to hoe-markdown ~> v1.2</li> <li><a href="https://github.com/flavorjones/loofah/commit/9ac6450bb09db54911ea9727de42eb90e3c5c49f"><code>9ac6450</code></a> ci: remove serial group on PR pipeline</li> <li><a href="https://github.com/flavorjones/loofah/commit/e14b903cafe5bd2beccf0b6fca80c94d338b632b"><code>e14b903</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flavorjones/loofah/issues/188">#188</a> from pipefy/add-css-keywords</li> <li><a href="https://github.com/flavorjones/loofah/commit/b519a4a85fab0b61d0bc3db28a6ef8ceaf1dfcf7"><code>b519a4a</code></a> order alphabeticaly</li> <li><a href="https://github.com/flavorjones/loofah/commit/6c329e861afb8a47e5098a5bb0a1a8d638ae529a"><code>6c329e8</code></a> ci: update github icons</li> <li><a href="https://github.com/flavorjones/loofah/commit/deb3fa3e7c22831a0b051280ec2cfee49c13aa76"><code>deb3fa3</code></a> maintenance: use hoe-markdown to manage markdown files</li> <li><a href="https://github.com/flavorjones/loofah/commit/296da9b47bfdf4cd2e426e314f0fa8686490120f"><code>296da9b</code></a> packaging: update gemspec changelog URL</li> <li>Additional commits viewable in <a href="https://github.com/flavorjones/loofah/compare/v2.1.1...v2.6.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+2 -2

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/api-takeover

dependabot[bot]

commit sha 30ee9372b25814a71caefa9a00ba7cb50a040c5f

Bump rack from 2.0.6 to 2.2.3 in /rb Bumps [rack](https://github.com/rack/rack) from 2.0.6 to 2.2.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.6...2.2.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha e27ea16132f2ee581ab23dc5e23ad00ad3d907b9

Merge pull request #2 from kayhide/dependabot/bundler/rb/rack-2.2.3 Bump rack from 2.0.6 to 2.2.3 in /rb

view details

push time in 14 days

PR merged kayhide/api-takeover

Bump rack from 2.0.6 to 2.2.3 in /rb dependencies

Bumps rack from 2.0.6 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.6...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/higaidar

dependabot[bot]

commit sha 2fdcc26ce92356f63cc4b22f30420f39d809c833

Bump rake from 12.3.0 to 12.3.3 Bumps [rake](https://github.com/ruby/rake) from 12.3.0 to 12.3.3. - [Release notes](https://github.com/ruby/rake/releases) - [Changelog](https://github.com/ruby/rake/blob/master/History.rdoc) - [Commits](https://github.com/ruby/rake/compare/v12.3.0...v12.3.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha f0bb4135e0433e7d24ef4380402f714db6413ebd

Merge pull request #9 from kayhide/dependabot/bundler/rake-12.3.3 Bump rake from 12.3.0 to 12.3.3

view details

push time in 14 days

PR merged kayhide/higaidar

Bump rake from 12.3.0 to 12.3.3 dependencies ruby

Bumps rake from 12.3.0 to 12.3.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/ruby/rake/blob/master/History.rdoc">rake's changelog</a>.</em></p> <blockquote> <p>=== 12.3.3</p> <p>==== Bug fixes</p> <ul> <li>Use the application's name in error message if a task is not found. Pull Request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/303">#303</a> by tmatilai</li> </ul> <p>==== Enhancements:</p> <ul> <li>Use File.open explicitly.</li> </ul> <p>=== 12.3.2</p> <p>==== Bug fixes</p> <ul> <li>Fixed test fails caused by 2.6 warnings. Pull Request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/297">#297</a> by hsbt</li> </ul> <p>==== Enhancements:</p> <ul> <li>Rdoc improvements. Pull Request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/293">#293</a> by colby-swandale</li> <li>Improve multitask performance. Pull Request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/273">#273</a> by jsm</li> <li>Add alias <code>prereqs</code>. Pull Request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/268">#268</a> by take-cheeze</li> </ul> <p>=== 12.3.1</p> <p>==== Bug fixes</p> <ul> <li>Support did_you_mean >= v1.2.0 which has a breaking change on formatters. Pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/262">#262</a> by FUJI Goro.</li> </ul> <p>==== Enhancements:</p> <ul> <li>Don't run task if it depends on already invoked but failed task. Pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/252">#252</a> by Gonzalo Rodriguez.</li> <li>Make space trimming consistent for all task arguments. Pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/259">#259</a> by Gonzalo Rodriguez.</li> <li>Removes duplicated inclusion of Rake::DSL in tests. Pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/254">#254</a> by Gonzalo Rodriguez.</li> <li>Re-raise a LoadError that didn't come from require in the test loader. Pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/250">#250</a> by Dylan Thacker-Smith.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ruby/rake/commit/5c87c462b64aad674ebb92b1f5b0ff2c911406cd"><code>5c87c46</code></a> Bump version to 12.3.3.</li> <li><a href="https://github.com/ruby/rake/commit/5b8f8fc41a5d7d7d6a5d767e48464c60884d3aee"><code>5b8f8fc</code></a> Use File.open explicitly.</li> <li><a href="https://github.com/ruby/rake/commit/6497ba4d94d12c123df48cc8ab40f0a4eb7fb337"><code>6497ba4</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/317">#317</a> from ruby/ignore-gitignore</li> <li><a href="https://github.com/ruby/rake/commit/be62efb6cdfc2cc00d660f8fc7d6c1c9de8014e2"><code>be62efb</code></a> Removed gitignore from gemspec files.</li> <li><a href="https://github.com/ruby/rake/commit/1c22b490ee6cb8bd614fa8d0d6145f671466206b"><code>1c22b49</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/309">#309</a> from RDIL/patch-1</li> <li><a href="https://github.com/ruby/rake/commit/496944a8febd51e20957e6833c7930286a0e9a25"><code>496944a</code></a> Remove deprecated travis ci option</li> <li><a href="https://github.com/ruby/rake/commit/489c7d863c666b6d287b760527acf3abe13aaf48"><code>489c7d8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/ruby/rake/issues/307">#307</a> from ruby/azure-pipelines</li> <li><a href="https://github.com/ruby/rake/commit/77eb6d87cb69c2cc531f72d4aa1948054e9d077f"><code>77eb6d8</code></a> Only enabled macOS environment</li> <li><a href="https://github.com/ruby/rake/commit/72ffa2ea89f96df2307158fa151825dbb2c28ddf"><code>72ffa2e</code></a> use realpath</li> <li><a href="https://github.com/ruby/rake/commit/77448726bb057c8ba90a8d12ab6e20ad60dac976"><code>7744872</code></a> Do not specify ruby version of macOS</li> <li>Additional commits viewable in <a href="https://github.com/ruby/rake/compare/v12.3.0...v12.3.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/kikitool

dependabot[bot]

commit sha 4c38f6d38f3f494cc2dcc3d5f1e7c795f102a300

Bump rack from 2.2.2 to 2.2.3 Bumps [rack](https://github.com/rack/rack) from 2.2.2 to 2.2.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/v2.2.2...2.2.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 2d1822185c03c8251b4b09bb83664eabcad9e7e1

Merge pull request #11 from kayhide/dependabot/bundler/rack-2.2.3 Bump rack from 2.2.2 to 2.2.3

view details

push time in 14 days

PR merged kayhide/kikitool

Bump rack from 2.2.2 to 2.2.3 dependencies ruby

Bumps rack from 2.2.2 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li>See full diff in <a href="https://github.com/rack/rack/compare/v2.2.2...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/timecard_kun

dependabot[bot]

commit sha 2875a867683afc62628f826d166fec7a1635d5d2

Bump rack from 2.0.8 to 2.2.3 Bumps [rack](https://github.com/rack/rack) from 2.0.8 to 2.2.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.8...2.2.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha d79eb4c41a364f46259dbe9771d4fa43557a7583

Merge pull request #11 from kayhide/dependabot/bundler/rack-2.2.3 Bump rack from 2.0.8 to 2.2.3

view details

push time in 14 days

PR merged kayhide/timecard_kun

Bump rack from 2.0.8 to 2.2.3 dependencies

Bumps rack from 2.0.8 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.8...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chottomir

dependabot[bot]

commit sha eaf1fb8e987c95e02f99118d4b242d6e561f75a6

Bump rack from 2.0.8 to 2.2.3 Bumps [rack](https://github.com/rack/rack) from 2.0.8 to 2.2.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.8...2.2.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 0dd472630c5a80bf250afbfeacc063cd5c9d4d30

Merge pull request #9 from kayhide/dependabot/bundler/rack-2.2.3 Bump rack from 2.0.8 to 2.2.3

view details

push time in 14 days

PR merged kayhide/chottomir

Bump rack from 2.0.8 to 2.2.3 dependencies ruby

Bumps rack from 2.0.8 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.8...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/higaidar

dependabot[bot]

commit sha b31636b30bc72511533ff21045e53daa5fc446e6

Bump rack from 2.0.3 to 2.2.3 Bumps [rack](https://github.com/rack/rack) from 2.0.3 to 2.2.3. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.3...2.2.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha a5b88956ffadb298c5819a8183067f1b0d28f86b

Merge pull request #5 from kayhide/dependabot/bundler/rack-2.2.3 Bump rack from 2.0.3 to 2.2.3

view details

push time in 14 days

PR merged kayhide/higaidar

Bump rack from 2.0.3 to 2.2.3 dependencies ruby

Bumps rack from 2.0.3 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>HMAC argument for <code>Rack::Session::Cookie</code> doesn't accept a class constant anymore, but only a string recognized by OpenSSL (e.g. <code>"SHA256"</code>) or compatible instance (e.g. <code>OpenSSL::Digest.new("SHA256")</code>) (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1676">#1676</a>, <a href="https://github.com/bdewater">@bdewater</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.3...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/higaidar

dependabot[bot]

commit sha d0f96e6236d14efd5f54adf68c24e0e26712a576

Bump nokogiri from 1.8.1 to 1.10.10 Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.8.1 to 1.10.10. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md) - [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.8.1...v1.10.10) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 01986328d360550652fe7a8803293c2989db984d

Merge pull request #6 from kayhide/dependabot/bundler/nokogiri-1.10.10 Bump nokogiri from 1.8.1 to 1.10.10

view details

push time in 14 days

PR merged kayhide/higaidar

Bump nokogiri from 1.8.1 to 1.10.10 dependencies ruby

Bumps nokogiri from 1.8.1 to 1.10.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sparklemotion/nokogiri/releases">nokogiri's releases</a>.</em></p> <blockquote> <h2>1.10.10 / 2020-07-06</h2> <h3>Features</h3> <ul> <li>[MRI] Cross-built Windows gems now support Ruby 2.7 [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2029">#2029</a>]. Note that prior to this release, the v1.11.x prereleases provided this support.</li> </ul> <h2>1.10.9 / 2020-03-01</h2> <h3>Fixed</h3> <ul> <li>[MRI] Raise an exception when Nokogiri detects a specific libxml2 edge case involving blank Schema nodes wrapped by Ruby objects that would cause a segfault. Currently no fix is available upstream, so we're preventing a dangerous operation and informing users to code around it if possible. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1985">#1985</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2001">#2001</a>]</li> <li>[JRuby] Change <code>NodeSet#to_a</code> to return a RubyArray instead of Object, for compilation under JRuby 9.2.9 and later. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1968">#1968</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1969">#1969</a>] (Thanks, <a href="https://github.com/headius">@headius</a>!)</li> </ul> <h2>1.10.8 / 2020-02-10</h2> <h3>Security</h3> <p>[MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595. Full details are available in <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1992">#1992</a>. Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml.</p> <h2>1.10.7 / 2019-12-03</h2> <h3>Bug</h3> <ul> <li>[MRI] Ensure the patch applied in v1.10.6 works with GNU <code>patch</code>. <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1954">#1954</a></li> </ul> <h2>1.10.6 / 2019-12-03</h2> <h3>Bug</h3> <ul> <li>[MRI] Fix FreeBSD installation of vendored libxml2. [#1941, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1953">#1953</a>] (Thanks, <a href="https://github.com/nurse">@nurse</a>!)</li> </ul> <h2>1.10.5 / 2019-10-31</h2> <h3>Dependencies</h3> <ul> <li>[MRI] vendored libxml2 is updated from 2.9.9 to 2.9.10</li> <li>[MRI] vendored libxslt is updated from 1.1.33 to 1.1.34</li> </ul> <h2>1.10.4 / 2019-08-11</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md">nokogiri's changelog</a>.</em></p> <blockquote> <h2>1.10.10 / 2020-07-06</h2> <h3>Features</h3> <ul> <li>[MRI] Cross-built Windows gems now support Ruby 2.7 [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2029">#2029</a>]. Note that prior to this release, the v1.11.x prereleases provided this support.</li> </ul> <h2>1.10.9 / 2020-03-01</h2> <h3>Fixed</h3> <ul> <li>[MRI] Raise an exception when Nokogiri detects a specific libxml2 edge case involving blank Schema nodes wrapped by Ruby objects that would cause a segfault. Currently no fix is available upstream, so we're preventing a dangerous operation and informing users to code around it if possible. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1985">#1985</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2001">#2001</a>]</li> <li>[JRuby] Change <code>NodeSet#to_a</code> to return a RubyArray instead of Object, for compilation under JRuby 9.2.9 and later. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1968">#1968</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1969">#1969</a>] (Thanks, <a href="https://github.com/headius">@headius</a>!)</li> </ul> <h2>1.10.8 / 2020-02-10</h2> <h3>Security</h3> <p>[MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595. Full details are available in <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1992">#1992</a>. Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml.</p> <h2>1.10.7 / 2019-12-03</h2> <h3>Fixed</h3> <ul> <li>[MRI] Ensure the patch applied in v1.10.6 works with GNU <code>patch</code>. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1954">#1954</a>]</li> </ul> <h2>1.10.6 / 2019-12-03</h2> <h3>Fixed</h3> <ul> <li>[MRI] Fix FreeBSD installation of vendored libxml2. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1941">#1941</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1953">#1953</a>] (Thanks, <a href="https://github.com/nurse">@nurse</a>!)</li> </ul> <h2>1.10.5 / 2019-10-31</h2> <h3>Security</h3> <p>[MRI] Vendored libxslt upgraded to v1.1.34 which addresses three CVEs for libxslt:</p> <ul> <li>CVE-2019-13117</li> <li>CVE-2019-13118</li> <li>CVE-2019-18197</li> <li>CVE-2019-19956</li> </ul> <p>More details are available at <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1943">#1943</a>.</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sparklemotion/nokogiri/commit/a9a3717154bdb99ed6d0d785736eb471c9d6a954"><code>a9a3717</code></a> version bump to v1.10.10</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/d2d3c18a6c2db5b448381573c1248fe480198003"><code>d2d3c18</code></a> update CHANGELOG for v1.10.10</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/f0c324c1d93a2880a32dc46cf8766ff132409806"><code>f0c324c</code></a> Merge branch '2029-windows-support-for-ruby-27-on-v110x' into v1.10.x</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/c39e1b082e73557207db1468e4b567727a384579"><code>c39e1b0</code></a> Support fat binary gems for ruby-2.7</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/90916022e38fd48c3a9e3763b0f47f834261d399"><code>9091602</code></a> ci: only manage the v1.10.x pipeline on this branch</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/e2e191de387f854619bc8a3f9b39ca687fe0bf31"><code>e2e191d</code></a> version bump to v1.10.9</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/50f8fdeae4afb8582ff6347d7aa17822a1e11242"><code>50f8fde</code></a> update CHANGELOG</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/9b5deef76aeb5e3868cafb0b0956cca3708136f3"><code>9b5deef</code></a> Change return type to RubyArray</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/ae054f750283dccb1454d71dc00d0343dc2b1c60"><code>ae054f7</code></a> update CHANGELOG for <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1985">#1985</a></li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/71bcaf0bb1351c09e48f41f10314cb35bb4a4db4"><code>71bcaf0</code></a> Work around a bug in libxml2</li> <li>Additional commits viewable in <a href="https://github.com/sparklemotion/nokogiri/compare/v1.8.1...v1.10.10">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/higaidar

dependabot[bot]

commit sha eeb142a80ffab5e64c6ab659255d6ac52dcd5eaa

Bump lodash from 4.17.4 to 4.17.19 in /backend Bumps [lodash](https://github.com/lodash/lodash) from 4.17.4 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.4...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 643c11df5e34f88e6aa0bae36715b8bcc04f10f6

Merge pull request #8 from kayhide/dependabot/npm_and_yarn/backend/lodash-4.17.19 Bump lodash from 4.17.4 to 4.17.19 in /backend

view details

push time in 14 days

PR merged kayhide/higaidar

Bump lodash from 4.17.4 to 4.17.19 in /backend dependencies javascript

Bumps lodash from 4.17.4 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.4...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+2 -6

0 comment

2 changed files

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chotto-jigsaw

dependabot[bot]

commit sha 66c1d0a870c5ee97c35b2569ac3955a233edbe2c

Bump rack from 2.0.8 to 2.1.4 Bumps [rack](https://github.com/rack/rack) from 2.0.8 to 2.1.4. - [Release notes](https://github.com/rack/rack/releases) - [Changelog](https://github.com/rack/rack/blob/master/CHANGELOG.md) - [Commits](https://github.com/rack/rack/compare/2.0.8...2.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 53f9ca247c5b51065eea44d301651ba741802119

Merge pull request #11 from kayhide/dependabot/bundler/rack-2.1.4 Bump rack from 2.0.8 to 2.1.4

view details

push time in 14 days

PR merged kayhide/chotto-jigsaw

Bump rack from 2.0.8 to 2.1.4 dependencies ruby

Bumps rack from 2.0.8 to 2.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/52808700e0ade4225625c6729529e13a6b31cc2f"><code>5280870</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/a2435106dc1216d8785fcac68ef53030bb484b92"><code>a243510</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/e7ba1b0557d3ad97af1ef113bbeb5f27417983fa"><code>e7ba1b0</code></a> fix directory listing</li> <li><a href="https://github.com/rack/rack/commit/b9b8652334e833e32b5fb8627463632867b5d6a8"><code>b9b8652</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/775c836bdd25b63340399fea739532d746860a94"><code>775c836</code></a> adding a test for directory traversal</li> <li><a href="https://github.com/rack/rack/commit/dddb7ad18ed79ca6ab06ccc417a169fde451246e"><code>dddb7ad</code></a> Use Dir.entries instead of Dir[glob] to prevent user-specified glob metachara...</li> <li><a href="https://github.com/rack/rack/commit/16a51d8e0b64964323c3719b8154106af5cc0feb"><code>16a51d8</code></a> Bump for 2.1.2 release</li> <li><a href="https://github.com/rack/rack/commit/0a2c9273b5ab93f56cc636fec5bf0dc35e607fe0"><code>0a2c927</code></a> Update changelog in preparation for 2.1.2</li> <li><a href="https://github.com/rack/rack/commit/b50bc8b5c48a6cad298befffc7a66189d79e6aef"><code>b50bc8b</code></a> Fix multipart parser for special files <a href="https://github-redirect.dependabot.com/rack/rack/issues/1308">#1308</a></li> <li><a href="https://github.com/rack/rack/commit/f9ef9a02a1264d032dbfe4fe5b0fe79241d93cb2"><code>f9ef9a0</code></a> Fix <code>use</code> with kwargs</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.8...2.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

2 changed files

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chotto-jigsaw

dependabot[bot]

commit sha d039305e54dc5743cbbcdbee9e3ce7aaceeefa4b

Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 01bea483aebc819950263480cc412b6c17940c7b

Merge pull request #14 from kayhide/dependabot/npm_and_yarn/elliptic-6.5.3 Bump elliptic from 6.5.2 to 6.5.3

view details

push time in 14 days

PR merged kayhide/chotto-jigsaw

Bump elliptic from 6.5.2 to 6.5.3 dependencies javascript

Bumps elliptic from 6.5.2 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chotto-jigsaw

dependabot[bot]

commit sha 5b3232a4f731f2653fae3efafc155cbf1f364b31

Bump puma from 3.12.4 to 3.12.6 Bumps [puma](https://github.com/puma/puma) from 3.12.4 to 3.12.6. - [Release notes](https://github.com/puma/puma/releases) - [Changelog](https://github.com/puma/puma/blob/master/History.md) - [Commits](https://github.com/puma/puma/commits) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha cc1d64533cbeb29d100266a50eea7770890b0d51

Merge pull request #13 from kayhide/dependabot/bundler/puma-3.12.6 Bump puma from 3.12.4 to 3.12.6

view details

push time in 14 days

PR merged kayhide/chotto-jigsaw

Bump puma from 3.12.4 to 3.12.6 dependencies ruby

Bumps puma from 3.12.4 to 3.12.6. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/puma/puma/blob/master/History.md">puma's changelog</a>.</em></p> <blockquote> <h2>4.3.4/4.3.5 and 3.12.5/3.12.6 / 2020-05-22</h2> <p>Each patchlevel release contains a separate security fix. We recommend simply upgrading to 4.3.5/3.12.6.</p> <ul> <li>Security <ul> <li>Fix: Fixed two separate HTTP smuggling vulnerabilities that used the Transfer-Encoding header. CVE-2020-11076 and CVE-2020-11077.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/puma/puma/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chottomir

dependabot[bot]

commit sha 8e9ff0cfe3bafbc97921820a6311b3bb2206da77

Bump elliptic from 6.5.1 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.1 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.1...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha dad9f1ddd5209bf26d2e406d2e8e117343d2632c

Merge pull request #11 from kayhide/dependabot/npm_and_yarn/elliptic-6.5.3 Bump elliptic from 6.5.1 to 6.5.3

view details

push time in 14 days

PR merged kayhide/chottomir

Bump elliptic from 6.5.1 to 6.5.3 dependencies javascript

Bumps elliptic from 6.5.1 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li><a href="https://github.com/indutny/elliptic/commit/60489415e545efdfd3010ae74b9726facbf08ca8"><code>6048941</code></a> 6.5.2</li> <li><a href="https://github.com/indutny/elliptic/commit/9984964457c9f8a63b91b01ea103260417eca237"><code>9984964</code></a> package: bump dependencies</li> <li><a href="https://github.com/indutny/elliptic/commit/ec735edde187a43693197f6fa3667ceade751a3a"><code>ec735ed</code></a> utils: leak less information in <code>getNAF()</code></li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.1...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/piece-maker

dependabot[bot]

commit sha d29a3004037b0311d791ceb57d74d03cf71684af

Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 2ffcc94144154d5866f74f0cf06abfc6699552ee

Merge pull request #4 from kayhide/dependabot/npm_and_yarn/elliptic-6.5.3 Bump elliptic from 6.5.2 to 6.5.3

view details

push time in 14 days

PR merged kayhide/piece-maker

Bump elliptic from 6.5.2 to 6.5.3 dependencies

Bumps elliptic from 6.5.2 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/kikitool

dependabot[bot]

commit sha d8e23e29d8486a4ae91bc0bb6a6f444b721e3b84

Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha b55e58e35eee7068593125f99623671bbe5c172b

Merge pull request #13 from kayhide/dependabot/npm_and_yarn/elliptic-6.5.3 Bump elliptic from 6.5.2 to 6.5.3

view details

push time in 14 days

PR merged kayhide/kikitool

Bump elliptic from 6.5.2 to 6.5.3 dependencies javascript

Bumps elliptic from 6.5.2 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/nengramma

dependabot[bot]

commit sha 8f0826f8af060d339419860ce3cb1724b440f547

Bump elliptic from 6.5.2 to 6.5.3 Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.2 to 6.5.3. - [Release notes](https://github.com/indutny/elliptic/releases) - [Commits](https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 65ce82c1d5f0ae46220092099696787d86e532c9

Merge pull request #4 from kayhide/dependabot/npm_and_yarn/elliptic-6.5.3 Bump elliptic from 6.5.2 to 6.5.3

view details

push time in 14 days

PR merged kayhide/nengramma

Bump elliptic from 6.5.2 to 6.5.3 dependencies

Bumps elliptic from 6.5.2 to 6.5.3. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/indutny/elliptic/commit/8647803dc3d90506aa03021737f7b061ba959ae1"><code>8647803</code></a> 6.5.3</li> <li><a href="https://github.com/indutny/elliptic/commit/856fe4d99fe7b6200556e6400b3bf585b1721bec"><code>856fe4d</code></a> signature: prevent malleability and overflows</li> <li>See full diff in <a href="https://github.com/indutny/elliptic/compare/v6.5.2...v6.5.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chotto-jigsaw

dependabot[bot]

commit sha 6943f81960f5a86ecaf806c92c9980fcd74cdf28

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha d489874fbd2b5983671f85f7420751e86a6d84e6

Merge pull request #12 from kayhide/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 14 days

PR merged kayhide/chotto-jigsaw

Bump lodash from 4.17.15 to 4.17.19 dependencies javascript

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+5 -5

0 comment

2 changed files

dependabot[bot]

pr closed time in 14 days

push eventkayhide/chottomir

dependabot[bot]

commit sha 00be228686869daa2eefa5b71c1d1a06012c4fc1

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha d2bf30eaa6d97998d47812d4940790d7b76968c7

Merge pull request #10 from kayhide/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 14 days

PR merged kayhide/chottomir

Bump lodash from 4.17.15 to 4.17.19 dependencies javascript

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/piece-maker

dependabot[bot]

commit sha b93fcd60c313a76e693ba7ac0b2dc712c1853449

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 91bc102185ba0c9ed2ee79fc94cdffb619b79009

Merge pull request #3 from kayhide/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 14 days

PR merged kayhide/piece-maker

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

PR merged kayhide/kikitool

Bump lodash from 4.17.15 to 4.17.19 dependencies javascript

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/kikitool

dependabot[bot]

commit sha 1e6fdbf8ab91bf4d2c7f3e50010718acecb2c3bb

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 6154540d5fc1f7ef04c750b4555b4f1c48f37a07

Merge pull request #12 from kayhide/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 14 days

push eventkayhide/nengramma

dependabot[bot]

commit sha 58c1472a0b8ef692f60acc743211570142e03e6c

Bump lodash from 4.17.15 to 4.17.19 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 93dc472914b981d8e31e6b851090fefdedd9ba59

Merge pull request #3 from kayhide/dependabot/npm_and_yarn/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19

view details

push time in 14 days

PR merged kayhide/nengramma

Bump lodash from 4.17.15 to 4.17.19 dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/exercism-reasonml

dependabot[bot]

commit sha 4fff333f2542e797fc20654befd1105a8d490169

Bump lodash from 4.17.15 to 4.17.19 in /acronym Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha e2e426f5883fe2ae9d1a32c3e2fb292194cb1131

Merge pull request #5 from kayhide/dependabot/npm_and_yarn/acronym/lodash-4.17.19 Bump lodash from 4.17.15 to 4.17.19 in /acronym

view details

push time in 14 days

PR merged kayhide/exercism-reasonml

Bump lodash from 4.17.15 to 4.17.19 in /acronym dependencies

Bumps lodash from 4.17.15 to 4.17.19. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/lodash/lodash/releases">lodash's releases</a>.</em></p> <blockquote> <h2>4.17.16</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/lodash/lodash/commit/d7fbc52ee0466a6d248f047b5d5c3e6d1e099056"><code>d7fbc52</code></a> Bump to v4.17.19</li> <li><a href="https://github.com/lodash/lodash/commit/2e1c0f22f425e9c013815b2cd7c2ebd51f49a8d6"><code>2e1c0f2</code></a> Add npm-package</li> <li><a href="https://github.com/lodash/lodash/commit/1b6c282299f4e0271f932b466c67f0f822aa308e"><code>1b6c282</code></a> Bump to v4.17.18</li> <li><a href="https://github.com/lodash/lodash/commit/a370ac81408de2da77a82b3c4b61a01a3b9c2fac"><code>a370ac8</code></a> Bump to v4.17.17</li> <li><a href="https://github.com/lodash/lodash/commit/1144918f3578a84fcc4986da9b806e63a6175cbb"><code>1144918</code></a> Rebuild lodash and docs</li> <li><a href="https://github.com/lodash/lodash/commit/3a3b0fd339c2109563f7e8167dc95265ed82ef3e"><code>3a3b0fd</code></a> Bump to v4.17.16</li> <li><a href="https://github.com/lodash/lodash/commit/c84fe82760fb2d3e03a63379b297a1cc1a2fce12"><code>c84fe82</code></a> fix(zipObjectDeep): prototype pollution (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4759">#4759</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/e7b28ea6cb17b4ca021e7c9d66218c8c89782f32"><code>e7b28ea</code></a> Sanitize sourceURL so it cannot affect evaled code (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4518">#4518</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/0cec225778d4ac26c2bac95031ecc92a94f08bbb"><code>0cec225</code></a> Fix lodash.isEqual for circular references (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4320">#4320</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4515">#4515</a>)</li> <li><a href="https://github.com/lodash/lodash/commit/94c3a8133cb4fcdb50db72b4fd14dd884b195cd5"><code>94c3a81</code></a> Document matches* shorthands for over* methods (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4510">#4510</a>) (<a href="https://github-redirect.dependabot.com/lodash/lodash/issues/4514">#4514</a>)</li> <li>Additional commits viewable in <a href="https://github.com/lodash/lodash/compare/4.17.15...4.17.19">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~mathias">mathias</a>, a new releaser for lodash since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+6 -6

0 comment

2 changed files

dependabot[bot]

pr closed time in 14 days

push eventkayhide/reatech

dependabot[bot]

commit sha b98773c4c334cfe0c226ae7b36fff76cc5f4c87c

Bump json from 1.8.1 to 2.3.1 Bumps [json](https://github.com/flori/json) from 1.8.1 to 2.3.1. - [Release notes](https://github.com/flori/json/releases) - [Changelog](https://github.com/flori/json/blob/master/CHANGES.md) - [Commits](https://github.com/flori/json/compare/v1.8.1...v2.3.1) Signed-off-by: dependabot[bot] <support@github.com>

view details

Hideaki Kawai

commit sha 76772e40f5f1ffa8d65c461f0fc9c5b1f43f9ea8

Merge pull request #10 from kayhide/dependabot/bundler/json-2.3.1 Bump json from 1.8.1 to 2.3.1

view details

push time in 14 days

PR merged kayhide/reatech

Bump json from 1.8.1 to 2.3.1 dependencies

Bumps json from 1.8.1 to 2.3.1. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/flori/json/blob/master/CHANGES.md">json's changelog</a>.</em></p> <blockquote> <h2>2020-06-30 (2.3.1)</h2> <ul> <li>Spelling and grammar fixes for comments. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/191">#191</a> by Josh Kline.</li> <li>Enhance generic JSON and #generate docs. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/347">#347</a> by Victor Shepelev.</li> <li>Add :nodoc: for GeneratorMethods. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/349">#349</a> by Victor Shepelev.</li> <li>Baseline changes to help (JRuby) development. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/371">#371</a> by Karol Bucek.</li> <li>Add metadata for rubygems.org. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/379">#379</a> by Alexandre ZANNI.</li> <li>Remove invalid JSON.generate description from JSON module rdoc. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/384">#384</a> by Jeremy Evans.</li> <li>Test with TruffleRuby in CI. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/402">#402</a> by Benoit Daloze.</li> <li>Rdoc enhancements. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/413">#413</a> by Burdette Lamar.</li> <li>Fixtures/ are not being tested... Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/416">#416</a> by Marc-André Lafortune.</li> <li>Use frozen string for hash key. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/420">#420</a> by Marc-André Lafortune.</li> <li>Added :call-seq: to RDoc for some methods. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/422">#422</a> by Burdette Lamar.</li> <li>Small typo fix. Pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/423">#423</a> by Marc-André Lafortune.</li> </ul> <h2>2019-12-11 (2.3.0)</h2> <ul> <li>Fix default of <code>create_additions</code> to always be <code>false</code> for <code>JSON(user_input)</code> and <code>JSON.parse(user_input, nil)</code>. Note that <code>JSON.load</code> remains with default <code>true</code> and is meant for internal serialization of trusted data. [CVE-2020-10663]</li> <li>Fix passing args all #to_json in json/add/*.</li> <li>Fix encoding issues</li> <li>Fix issues of keyword vs positional parameter</li> <li>Fix JSON::Parser against bigdecimal updates</li> <li>Bug fixes to JRuby port</li> </ul> <h2>2019-02-21 (2.2.0)</h2> <ul> <li>Adds support for 2.6 BigDecimal and ruby standard library Set datetype.</li> </ul> <h2>2017-04-18 (2.1.0)</h2> <ul> <li>Allow passing of <code>decimal_class</code> option to specify a class as which to parse JSON float numbers.</li> </ul> <h2>2017-03-23 (2.0.4)</h2> <ul> <li>Raise exception for incomplete unicode surrogates/character escape sequences. This problem was reported by Daniel Gollahon (dgollahon).</li> <li>Fix arbitrary heap exposure problem. This problem was reported by Ahmad Sherif (ahmadsherif).</li> </ul> <h2>2017-01-12 (2.0.3)</h2> <ul> <li>Set <code>required_ruby_version</code> to 1.9</li> <li>Some small fixes</li> </ul> <h2>2016-07-26 (2.0.2)</h2> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/flori/json/commit/0951d7719c3ee7e35b4e1ae80613ce02fb6f20da"><code>0951d77</code></a> Bump version to 2.3.1</li> <li><a href="https://github.com/flori/json/commit/ddc29e20c1c05bc96ede665ad066cbf0617a6c93"><code>ddc29e2</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/429">#429</a> from flori/remove-generate-task-for-gemspec</li> <li><a href="https://github.com/flori/json/commit/cee8020dc8a3c33936149667ada3f017d396ade7"><code>cee8020</code></a> Removed gemspec task from default task on Rakefile</li> <li><a href="https://github.com/flori/json/commit/9fd637107f1267726acee108e88e21dc773f137e"><code>9fd6371</code></a> Use VERSION file instead of hard-coded value</li> <li><a href="https://github.com/flori/json/commit/dc90bcf240fe8059157e6e37cd52944e64523266"><code>dc90bcf</code></a> Removed explicitly date field in gemspec, it will assign by rubygems.org</li> <li><a href="https://github.com/flori/json/commit/4c11a40c1f0de83b5c39877f40143fe8a5e512cd"><code>4c11a40</code></a> Removed task for json_pure.gemspec</li> <li><a href="https://github.com/flori/json/commit/e794ec959121e868808e333fdeddd8261f1d5844"><code>e794ec9</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/426">#426</a> from marcandre/indent</li> <li><a href="https://github.com/flori/json/commit/7cc9301acae27438b32b0cb21d7ff8c3cb07792c"><code>7cc9301</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/428">#428</a> from marcandre/change_fix</li> <li><a href="https://github.com/flori/json/commit/9e2a1fb7d8193dfae67ed70a6f531dd4e4b5f0d5"><code>9e2a1fb</code></a> Make changes more precise <a href="https://github-redirect.dependabot.com/flori/json/issues/424">#424</a></li> <li><a href="https://github.com/flori/json/commit/f8fa987de568b11cfea27d44486b0377d83d0e4b"><code>f8fa987</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/flori/json/issues/424">#424</a> from marcandre/update_changes</li> <li>Additional commits viewable in <a href="https://github.com/flori/json/compare/v1.8.1...v2.3.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 14 days

push eventkayhide/where-this-python-from

Hideaki Kawai

commit sha b9531b48f4f69050780bdedc0280398b90255612

Fix better-shell

view details

push time in 14 days

push eventkayhide/where-this-python-from

Hideaki Kawai

commit sha b9b36afaebb299ad33c5c152dbffea9709f17873

Tips

view details

push time in 15 days

push eventkayhide/where-this-python-from

Hideaki Kawai

commit sha 5786490bff48c635fb4a29cf644a99d56ba845ed

Solve

view details

Hideaki Kawai

commit sha 32170ea5673e4cfc4ba8d3593563e4b0baf37e5b

Where now

view details

push time in 15 days

push eventkayhide/where-this-python-from

Hideaki Kawai

commit sha e40f0dd3489e43c381ae0d427ac146080f13475b

Solve

view details

Hideaki Kawai

commit sha 012c88ec58a135770a69f57c1b333b53a708492f

Where now

view details

push time in 15 days

push eventkayhide/where-this-python-from

Hideaki Kawai

commit sha 38f74673aefddf636ecb32a379b47155b2e202eb

Solve

view details

push time in 16 days

PR opened id3as/demo-ps

Fix typo
+3 -3

0 comment

2 changed files

pr created time in 16 days

create barnchkayhide/demo-ps

branch : fix-typo

created branch time in 16 days

fork kayhide/demo-ps

Skeleton app with contrived client/server examples

fork in 16 days

create barnchkayhide/cleanup-gke-remnants

branch : master

created branch time in 16 days

created repositorykayhide/cleanup-gke-remnants

created time in 16 days

push eventkayhide/where-this-python-from

Hideaki Kawai

commit sha f1129e63220c202e641db6185126c1839702e498

Init

view details

push time in 16 days

create barnchkayhide/where-this-python-from

branch : master

created branch time in 16 days

created repositorykayhide/where-this-python-from

created time in 16 days

pull request commentcommercialhaskell/stackage

Add wakame

Sounds good, thanks!

kayhide

comment created time in 16 days

push eventkayhide/stackage

Hideaki Kawai

commit sha 0b4136c40e4bf411b55b28ee27eec03ee923c33c

Create verify-package script

view details

Hideaki Kawai

commit sha 07c4bbeacda7e515043661a69dcfaf77d4c444f7

Update github PR template

view details

push time in 17 days

push eventkayhide/stackage

Hideaki Kawai

commit sha 5e5fe98373cef550070d2ffd00be38dfb2a78177

Update github PR template

view details

push time in 17 days

push eventkayhide/stackage

Hideaki Kawai

commit sha 5747daa1f9376b566570988522565a22b431908e

Create verify-package script

view details

push time in 17 days

PR opened commercialhaskell/stackage

Create verify-package script

I have written a script which runs suggested commands when opening a PR.

With this script, you can just tell a PR opener to run:

$ ./verify-package <package-name>

instead of a series of commands.

Please take a look. Thanks!

+41 -0

0 comment

1 changed file

pr created time in 17 days

create barnchkayhide/stackage

branch : create-verify-package-script

created branch time in 17 days

PR opened commercialhaskell/stackage

Add wakame

Checklist:

  • [x] Meaningful commit message, eg add my-cool-package (please not mention build-constraints.yml)

  • [x] At least 30 minutes have passed since uploading to Hackage

  • [x] On your own machine, in a new directory, you have successfully run the following set of commands (replace $package with the name of the package that is submitted, and $version with the version of the package you want to get into Stackage):

    stack unpack $package-$version  # $version is optional
    cd $package-$version
    rm -f stack.yaml && stack init --resolver nightly
    stack build --resolver nightly --haddock --test --bench --no-run-benchmarks
    
+3 -0

0 comment

1 changed file

pr created time in 17 days

create barnchkayhide/stackage

branch : add-wakame

created branch time in 17 days

fork kayhide/stackage

"Stable Hackage": vetted consistent packages from Hackage

https://www.stackage.org/

fork in 17 days

PR opened purerl/nixpkgs-purerl

Create readme

Hi, thanks for your nice work!

I added some instruction to introduce these overlays. It would be helpful to those who are not familiar with overlays.

Please take a look. Thanks!

+20 -0

0 comment

1 changed file

pr created time in 18 days

push eventkayhide/nixpkgs-purerl

Hideaki Kawai

commit sha bb4d7ff0075e5d72fb70c63562ab60650e425cd3

Create readme

view details

push time in 18 days

create barnchkayhide/nixpkgs-purerl

branch : add-readme

created branch time in 18 days

push eventkayhide/dotfiles

Hideaki Kawai

commit sha 9f8e4a21ef79b41f2d1f5fb982bc5c14712d3d44

Update home packages

view details

push time in 20 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha 29bd9f30bd42c3866740b7a67108d525e0b85821

Create frontend layout

view details

Hideaki Kawai

commit sha 8d56b823f14262453b314e27c20f89d102112927

Use html webpack plugin

view details

Hideaki Kawai

commit sha 5830549b2795faeac787b553cb9d2178f8c09495

Make webpack dev server colorful

view details

Hideaki Kawai

commit sha 7f40417303028ae7805f2961bc954f1d677faaed

Update games api covering crud

view details

Hideaki Kawai

commit sha 4fe30e30c18f8a38ac3c0e0fbc895ceb1a11e0d8

Move App.Model to App.Data

view details

Hideaki Kawai

commit sha 1844fb0dc3117f1d851e7c341d2aabec5baef5e5

Move styles and images

view details

Hideaki Kawai

commit sha 8c042967174c0fbd94cd4ac78550d4c319fd7bde

Update Game data

view details

Hideaki Kawai

commit sha 734da90a5e10fc58ddc95006d8ce77dfb31050c6

Create pictures api

view details

Hideaki Kawai

commit sha a1dfabd795be2c2a72fb2e6cf67307373e70b533

Update AppPrelude

view details

Hideaki Kawai

commit sha 5e487546d1e653ceebb2924c3558aba1239514bd

Create PictresAgent

view details

Hideaki Kawai

commit sha d16b3589669ec67c15f2c4cbc1b5467e3fe4ef74

Update layout style

view details

Hideaki Kawai

commit sha accbc100198ee2254fce90d9df2136e57e525b44

Create PicturesPage

view details

Hideaki Kawai

commit sha c21a1d0f2013c96af7583b959ea937c30478582e

wip

view details

push time in 20 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha 29bd9f30bd42c3866740b7a67108d525e0b85821

Create frontend layout

view details

Hideaki Kawai

commit sha 8d56b823f14262453b314e27c20f89d102112927

Use html webpack plugin

view details

Hideaki Kawai

commit sha 5830549b2795faeac787b553cb9d2178f8c09495

Make webpack dev server colorful

view details

Hideaki Kawai

commit sha 7f40417303028ae7805f2961bc954f1d677faaed

Update games api covering crud

view details

Hideaki Kawai

commit sha 4fe30e30c18f8a38ac3c0e0fbc895ceb1a11e0d8

Move App.Model to App.Data

view details

Hideaki Kawai

commit sha 1844fb0dc3117f1d851e7c341d2aabec5baef5e5

Move styles and images

view details

Hideaki Kawai

commit sha 8c042967174c0fbd94cd4ac78550d4c319fd7bde

Update Game data

view details

Hideaki Kawai

commit sha 734da90a5e10fc58ddc95006d8ce77dfb31050c6

Create pictures api

view details

Hideaki Kawai

commit sha a1dfabd795be2c2a72fb2e6cf67307373e70b533

Update AppPrelude

view details

Hideaki Kawai

commit sha 5e487546d1e653ceebb2924c3558aba1239514bd

Create PictresAgent

view details

Hideaki Kawai

commit sha d16b3589669ec67c15f2c4cbc1b5467e3fe4ef74

Update layout style

view details

Hideaki Kawai

commit sha accbc100198ee2254fce90d9df2136e57e525b44

Create PicturesPage

view details

push time in 20 days

push eventkayhide/arbash

Hideaki Kawai

commit sha bbafff1428e0d3b405c9584f9022b4d8825918bb

Create info command

view details

Hideaki Kawai

commit sha ac69066dfe8e36fed974536676ffed2434fca640

Bump version to 0.2.0

view details

push time in 21 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha 353fae8b157afeb2677f3733dc5d5c2c9aa6234c

Update games api covering crud

view details

Hideaki Kawai

commit sha 44167e7d0949d62c9c3b287c708e9c5a5cf70548

Move App.Model to App.Data

view details

Hideaki Kawai

commit sha 599758916efcdcbb68b6a1d0ffecc7e494e807be

Move styles and images

view details

Hideaki Kawai

commit sha b6fd10cb4c344ca7730a56c3eadf0514c83f6e7b

Update Game data

view details

Hideaki Kawai

commit sha 886192c6068289639ae9b1de660380e9f9fb790a

wip

view details

push time in 21 days

startedcdepillabout/break-time

started time in 23 days

push eventkayhide/higaidar

Hideaki Kawai

commit sha 1f375aaa354cca3465a8dc482c965451e148ccf1

Update readme

view details

push time in 23 days

push eventkayhide/higaidar

Hideaki Kawai

commit sha 127c90270a7f5b6d6e1681e0e4f89c8a1c50319b

Add is_editor to users

view details

Hideaki Kawai

commit sha 9bff92352510c193732b51c51389e72a7b04bbf0

Update authorize handler for policy of editor user

view details

Hideaki Kawai

commit sha 35ff7be90265b2b4f4e0ae6751e9d3936086cf40

Separate Client out from Api

view details

Hideaki Kawai

commit sha 34c5c402794eeb2734ca1c669c97191b4d0b742a

Update frontend for editor user

view details

push time in 23 days

create barnchkayhide/chotto-jigsaw

branch : games-api

created branch time in 25 days

delete branch kayhide/chotto-jigsaw

delete branch : separate-frontend

delete time in 25 days

delete branch kayhide/chotto-jigsaw

delete branch : react-basic

delete time in 25 days

push eventkayhide/chotto-jigsaw

Hideaki Kawai

commit sha 97c25c99c20b57ef874bf10613dc86558b1f6a26

Update games api covering crud

view details

Hideaki Kawai

commit sha 01b28c6d5bb3110bf2fb1bfa2ae6736210a90405

Move App.Model to App.Data

view details

push time in 25 days

push eventkayhide/chotto-jigsaw

push time in 25 days

more