profile
viewpoint
Miranda Wang mirandawang Etsy Brooklyn, NY http://linkedin.com/in/mirandawangx she/her <3 ruby <3 javascript <3

rubyforgood/voices-of-consent 34

Open source tracking and inventory management application for nonprofit, Voices of Consent (Ruby for Good 2019)

rubyforgood/doublehranch 3

Double H Ranch Project 2017

mirandawang/memory-match 1

A card matching memory game, Miranda's Memory Match!

DiversifiedInvestments/diversifiedinvestments.github.io 0

Website for Diversified Investments Company

kev-kev/lets-eat 0

recipe vault

mirandawang/blackjack 0

A simple Blackjack command line application to help me practice Ruby

mirandawang/blogger 0

A simple blogging platform built on Ruby on Rails, for learning purposes!

mirandawang/bloom 0

A habit tracking web application I built with a team of three others the at PennApps hackathon.

mirandawang/cardcaptor-costumes 0

A simple React/Redux app

GollumEvent
GollumEvent
GollumEvent
GollumEvent
GollumEvent

delete branch Terrastories/terrastories

delete branch : update-shapefiles-and-tileserver

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : 198-popup-updates

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : miranda/update-models

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : miranda/refactoring

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : points-to-places-2

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : miranda/remove-files

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : test-branch

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : update-setup

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : autocomment-pr-only

delete time in 22 days

delete branch Terrastories/terrastories

delete branch : fix-storage-yml-var

delete time in 22 days

push eventTerrastories/terrastories

Miranda Wang

commit sha 6d834874cc19380fe9487f2701f793d188919e63

Interpolate those variables

view details

push time in 22 days

create barnchTerrastories/terrastories

branch : fix-storage-yml-var

created branch time in 22 days

delete branch Terrastories/terrastories

delete branch : active-storage-s3

delete time in 22 days

push eventTerrastories/terrastories

Miranda Wang

commit sha fddf6c82d239197aeec08aeb755085dd426f7f89

Adding configuration to allow ActiveStorage to upload to/from amazon S3 bucket with ENV variable Active Storage SRC set to amazon

view details

Miranda Wang

commit sha d01feca788b1a91c86481309da2c6f862f1421d2

Set AWS region and bucket name configurable in env variables

view details

Miranda Wang

commit sha 8b054f6637ba45d231b9cb02a6f15d0942ec39cc

Removing manifest.json file

view details

push time in 22 days

PR merged Terrastories/terrastories

Allowing online image and video uploads to S3

This PR includes the configuration necessary to allow the app to use ActiveStorage to upload images and videos (and other media files) to the S3 bucket we have set up.

Its primary use is for the Heroku demo app, since Heroku does not support a local filesystem.

Generally, we expect development and in-field environments to use the local filesystem for ActiveStorage. You need the encrypted key in order to set the amazon configuration, and I've also included a comment saying not to switch it unless you're sure. So hopefully that dissuades most. :)

I've only included looking up the ENV variable in the production config file anyways, so in theory, you shouldn't be able to use the S3 bucket in development.

Current issue: In order for the images to show up properly in the admin dashboard, I needed to install imagemagick on the container itself. Is there a way I can get it to stay there permanently? I needed to run docker-compose exec web /bin/bash then apt-get update && apt-get install imagemagick for it to work.

This branch is currently deployed to Heroku if you'd like to see it in action without pulling! I didn't have to install imagemagick on Heroku -- it just worked there.

To test these changes: Pull this branch down.

Ask me to send you the secret keys for S3 config!

Then you'll need to create your Rails credentials (https://www.viget.com/articles/storing-secret-credentials-in-rails-5-2-and-up/)

After that, run these commands to install imagemagick on the container:

docker-compose exec web /bin/bash
apt-get update && apt-get install imagemagick

If you have media in your database currently, things will break if you change your ENV variable to amazon immediately. You will need to clear out all the rows first! You can do that by running the following commands:

docker-compose exec web /bin/bash 
rails console
Story.delete_all
Speaker.delete_all
Place.delete_all
SpeakerStory.delete_all

Next, copy the line in config/production.rb and place it in config/development.rb in the same spot for active storage.

Change your ENV variable for ACTIVE_STORAGE_SRC to amazon . Restart the rails container.

You can create some rows in the admin dashboard and upload images and videos! Things should show up in the map and sidebar, and the files should show up in the S3 bucket :sparkles:

Follow ups:

  • Rake task that can reset your DB for you (delete all rows)
  • Validation for the ENV variable is set to a value that exists in storage.yml
+35 -13

1 comment

7 changed files

mirandawang

pr closed time in 22 days

push eventTerrastories/terrastories

Miranda Wang

commit sha 4e9f50b0603ca881e3996b45980ab1a3649444bb

Removing manifest.json file

view details

push time in 23 days

push eventTerrastories/terrastories

kev-kev

commit sha 5d6e9a3599054cb57fbed06f224a91c5c7c90a5f

remove curriculum stories from attributes in curriculum_dashboard and remove files for curriculum story (#465)

view details

Ian Norris

commit sha d604da031b4741fcfd5921489fa0f2ef50dda08f

remove tileserver from main file, not needed unless going offline

view details

Miranda Wang

commit sha 93ec149d2b3a7c0ca6e54c3ea671e2d849203fac

Adding configuration to allow ActiveStorage to upload to/from amazon S3 bucket with ENV variable Active Storage SRC set to amazon

view details

Miranda Wang

commit sha 0d769e6d14435500784ae5ad778e42fc921f8024

Set AWS region and bucket name configurable in env variables

view details

push time in 23 days

push eventTerrastories/terrastories

Ian Norris

commit sha d604da031b4741fcfd5921489fa0f2ef50dda08f

remove tileserver from main file, not needed unless going offline

view details

push time in 23 days

push eventTerrastories/terrastories

Betsy Haibel

commit sha 13b4190542b7568a6eb607699e7cb74b2923fd37

Re-organize directories to prepare for restoring offline mode - moved all railsy files back into /rails directory - prep for restoring tileserver & other offline dependencies - prep for multi-stage docker builds - thought about restoring webpack-dev-server usage but punted - duplicated .gitignore & .dockerignore to cover all our bases quickly; there is probably some litter in them that another dev should clean up! - deleted package-lock.json (it was getting into a fight with yarn) Co-authored-by: feminismIsAwesome ian.norris.1991@gmail.com Co-authored-by: bhaibel betsy.haibel@gmail.com Co-authored-by: maebeale maebeale@gmail.com Co-authored-by: kendralockard kendra.lockard@teecom.com Co-authored-by: bransynluther bransynluther@gmail.com Co-authored-by: hayleysed hayleymsedlock@gmail.com Co-authored-by: slaloggia sarah.laloggia@gmail.com Co-authored-by: rudokemper rkemper@amazonteam.org

view details

Laura Mosher

commit sha 8fc9ad9f22050fb0a91f51f8531c72cbcc879154

Merge pull request #416 from bhaibel/re-dir-ify-rails Re-organize directories to prepare for restoring offline mode

view details

Ian Norris

commit sha fe4000a678f8c45f653dee397a58c150e298c3b2

Add tests for user model Co-authored-by: bhaibel <betsy.haibel@gmail.com> Co-authored-by: maebeale <maebeale@gmail.com> Co-authored-by: kendralockard <kendra.lockard@teecom.com> Co-authored-by: bransynluther <bransynluther@gmail.com> Co-authored-by: hayleysed <hayleymsedlock@gmail.com> Co-authored-by: slaloggia <sarah.laloggia@gmail.com> Co-authored-by: rudokemper <rkemper@amazonteam.org>

view details

Ian Norris

commit sha 6d4af71710f0a07f8cb85dc4966246300030fcd9

Merge pull request #415 from FeminismIsAwesome/master Add tests for user model

view details

Betsy Haibel

commit sha 9cb98f327c9de64bfaba220c1a30a48bf56e7aca

Minimum viable e2e test framework - run a separate test-only Rails server - e2e tests live in their own docker container - use Cucumber w/ page objects to focus e2e tests on user goals rather than developer implementation details Co-authored-by: slaloggia sarah.laloggia@gmail.com

view details

Sarah Laloggia

commit sha 145ae998008bfcc93044527cd5c08919fe2bf058

[#406] Add validation and attribute settings for Story model (#421) * Address issue #406 - Validate presence of speaker_stories for creation of Story - Make interview-location and interviewer optional for creation of Story * Add validation tests for Story model - Test validation of speakers, through speaker_stories - Make interviewer and interview_location optional in association tests - Create traits for interviewer/interview_location and speakers in the story factory

view details

dependabot[bot]

commit sha 43984e286b2f149a226509732281fd8f2ecab7af

Bump websocket-extensions from 0.1.3 to 0.1.4 in /rails Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Lucas Alcantara

commit sha 0df05b517c6739bc2db8d58c7c3cb85e419d45a5

Update seeds.rb (#444) Stories were not loading properly: They needed at least one associated speaker to pass validation. Co-authored-by: Ian <ian.norris.1991@gmail.com> Co-authored-by: Oliver <o.hamuy@wustl.edu> Co-authored-by: Katherine <kfhenry@wustl.edu> Co-authored-by: maebeale <maebeale@gmail.com>

view details

Lucas Alcantara

commit sha 262d12ff4a606627b51ddd3fa869754d4caea957

Addressed an issue with Place.rb (#449) * Update seeds.rb Stories were not loading properly: They needed at least one associated speaker to pass validation. Co-authored-by: Ian <ian.norris.1991@gmail.com> Co-authored-by: Oliver <o.hamuy@wustl.edu> Co-authored-by: Katherine <kfhenry@wustl.edu> Co-authored-by: maebeale <maebeale@gmail.com> * Added bounds to the lat and long variables This addresses issue #442, and prevents users from editing places such that their lat and long variables exceed the normal bounds to latitudinal and longitudinal coordinates Co-authored-by: Ian <ian.norris.1991@gmail.com> Co-authored-by: Oliver <o.hamuy@wustl.edu> Co-authored-by: Katherine <kfhenry@wustl.edu> Co-authored-by: maebeale <maebeale@gmail.com>

view details

ohamuy

commit sha 64ae0d2bfe1d94409c3e28752fd4579b7ef2aab5

Welcome languages fix issues Change color on hover over languages Change langauge selection. added "(selected)"

view details

ohamuy

commit sha fe3e6986b22ee1cdcb9c67090caa9d8655dc6175

Update Language Picker Alphebatized spansh translations Added "(selected)" for english, spanish, and japanese; other languages still need that translation. Added color change on hover

view details

Laura Mosher

commit sha 508b70b42524243ce7a293c4c355efa7fa31b367

Update gems - administrate 0.12.0 -> 0.13.0 - kaminari 1.1.1 -> 1.2.1 - nokogiri 1.10.5 -> 1.10.9 - puma 3.12.2 -> 3.12.6 - rack 2.0.7 -> 2.2.3 - websocket-extensions 0.1.4 -> 0.1.5 And all subdependencies of these gems

view details

Laura Mosher

commit sha ade0783459063b2277f5c89bb0422c1594bbc7b7

Merge pull request #453 from ohamuy/Language-Changes Language changes

view details

dependabot[bot]

commit sha 55932b222b60a2af1dd05da5558df86e295fbcc3

Merge pull request #443 from Terrastories/dependabot/npm_and_yarn/rails/websocket-extensions-0.1.4

view details

Rudo Kemper

commit sha d46a768c314d443165210b039654191dbb981f70

Update introPopup.css changing h2 and h3 to white (#429)

view details

Rudo Kemper

commit sha f11b9212bc975bc29099115ca74e46cbd460f00a

446 translating selected phrase (#460) * Update pt.yml, nl.yml, mat.yml, en.yml, es.yml, ja.yml to remove parentheses from `language_select` and provide translation for Portuguese, Dutch and Matawai. * Update application_helper.rb to add parentheses here.

view details

Rudo Kemper

commit sha e6eac0a691ee111e43741f6da06aaba7174e8e00

Update Map.jsx removing resetMapToCenter() (#431)

view details

Rudo Kemper

commit sha 35ffbf93218fe5661843ae7a291fd6de489600e9

Update Map.jsx with padding for fitBounds (#430)

view details

Laura Mosher

commit sha e5ed203666c252c51d6e5ca10a4f049a3adb44e0

Merge pull request #456 from Terrastories/update-gems Update gems

view details

Sarah Laloggia

commit sha ba4651559b60629df9fefdb842f765d569d39a33

409 curriculum feature clean (#454) * Add validation to Story to prevent creation of a story with no Speaker - Includes descriptive error message * Make interview_location and interviewer optional for Story creation per issue #406 * Implement Curriculum feature for admin users - Create Models and migrations for Curriculum and CurriculumStory - Create administrate dashboards for Curriculum and CurriculumStory - Add gem to manage has-many-through relationships in administrate framework * Delete manifest.json * Update story_dashboard.rb removed unnecessary whitespace

view details

push time in 23 days

Pull request review commentTerrastories/terrastories

Allowing online image and video uploads to S3

 yarn-debug.log* /node_modules yarn-debug.log* .yarn-integrity++# Ignore master key for decrypting credentials and more.+/config/master.key

Whoops missed that!

mirandawang

comment created time in 23 days

PR closed Terrastories/terrastories

Bump rack from 2.0.7 to 2.2.3 in /rails dependencies ruby

Bumps rack from 2.0.7 to 2.2.3. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/rack/rack/blob/master/CHANGELOG.md">rack's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <p>All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference <a href="https://keepachangelog.com/en/1.0.0/">Keep A Changelog</a>.</p> <h2>[3.0.0] - Unreleased</h2> <h3>Changed</h3> <ul> <li>BREAKING CHANGE: Require <code>status</code> to be an Integer. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1662">#1662</a>, <a href="https://github.com/olleolleolle">@olleolleolle</a>)</li> <li>Relax validations around <code>Rack::Request#host</code> and <code>Rack::Request#hostname</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1606">#1606</a>, <a href="https://github.com/pvande">@pvande</a>)</li> <li>Removed antiquated handlers: FCGI, LSWS, SCGI, Thin. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1658">#1658</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Removed options from <code>Rack::Builder.parse_file</code> and <code>Rack::Builder.load_file</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1663">#1663</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fix using Rack::Session::Cookie with coder: Rack::Session::Cookie::Base64::{JSON,Zip}. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1666">#1666</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Avoid NoMethodError when accessing Rack::Session::Cookie without requiring delegate first. (<a href="https://github-redirect.dependabot.com/rack/rack/issues/1610">#1610</a>, <a href="https://github.com/onigra">@onigra</a>)</li> <li>Handle cookies with values that end in '=' (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1645">#1645</a>, <a href="https://github.com/lukaso">@lukaso</a>)</li> </ul> <h2>[2.2.2] - 2020-02-11</h2> <h3>Fixed</h3> <ul> <li>Fix incorrect <code>Rack::Request#host</code> value. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1591">#1591</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> <li>Revert <code>Rack::Handler::Thin</code> implementation. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1583">#1583</a>, <a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Double assignment is still needed to prevent an "unused variable" warning. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1589">#1589</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> <li>Fix to handle same_site option for session pool. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1587">#1587</a>, <a href="https://github.com/kamipo">@kamipo</a>)</li> </ul> <h2>[2.2.1] - 2020-02-09</h2> <h3>Fixed</h3> <ul> <li>Rework <code>Rack::Request#ip</code> to handle empty <code>forwarded_for</code>. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1577">#1577</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h2>[2.2.0] - 2020-02-08</h2> <h3>SPEC Changes</h3> <ul> <li><code>rack.session</code> request environment entry must respond to <code>to_hash</code> and return unfrozen Hash. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Request environment cannot be frozen. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>CGI values in the request environment with non-ASCII characters must use ASCII-8BIT encoding. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li>Improve SPEC/lint relating to SERVER_NAME, SERVER_PORT and HTTP_HOST. (<a href="https://github-redirect.dependabot.com/rack/rack/pull/1561">#1561</a>, <a href="https://github.com/ioquatix">@ioquatix</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rackup</code> supports multiple <code>-r</code> options and will require all arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Server</code> supports an array of paths to require for the <code>:require</code> option. (<a href="https://github.com/khotta">@khotta</a>)</li> <li><code>Files</code> supports multipart range requests. (<a href="https://github.com/fatkodima">@fatkodima</a>)</li> <li><code>Multipart::UploadedFile</code> supports an IO-like object instead of using the filesystem, using <code>:filename</code> and <code>:io</code> options. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> <li><code>Multipart::UploadedFile</code> supports keyword arguments <code>:path</code>, <code>:content_type</code>, and <code>:binary</code> in addition to positional arguments. (<a href="https://github.com/jeremyevans">@jeremyevans</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/rack/rack/commit/1741c580d71cfca8e541e96cc372305c8892ee74"><code>1741c58</code></a> bump version</li> <li><a href="https://github.com/rack/rack/commit/5ccca4722668083732ea2d35c56565fcc25312f8"><code>5ccca47</code></a> When parsing cookies, only decode the values</li> <li><a href="https://github.com/rack/rack/commit/a5e80f01947954af76b14c1d1fdd8e79dd8337f3"><code>a5e80f0</code></a> Bump version.</li> <li><a href="https://github.com/rack/rack/commit/b0de37dc3b67d2fdcaa8b0236ff076a0a4db0b4f"><code>b0de37d</code></a> Remove trailing whitespace.</li> <li><a href="https://github.com/rack/rack/commit/1a784e54c867d42214d9e1f315651b1f2cea8591"><code>1a784e5</code></a> Prepare CHANGELOG for next patch release.</li> <li><a href="https://github.com/rack/rack/commit/a0d57d4a1d917596e03e0aa969aff7e890d2123c"><code>a0d57d4</code></a> Fix to handle same_site option for session pool</li> <li><a href="https://github.com/rack/rack/commit/a9b223b6781201ae8faa5d0a373cd1a24f6d97a3"><code>a9b223b</code></a> Ensure full match. Fixes <a href="https://github-redirect.dependabot.com/rack/rack/issues/1590">#1590</a>.</li> <li><a href="https://github.com/rack/rack/commit/f4c5645642ec99fa82a5a343a6c79d4aff8d6165"><code>f4c5645</code></a> Double assignment is still needed to prevent an "unused variable" warning</li> <li><a href="https://github.com/rack/rack/commit/5c121dd6853fa231d1b1253b6e8e7cfc927791ca"><code>5c121dd</code></a> Revert "Update Thin handler to better handle more options"</li> <li><a href="https://github.com/rack/rack/commit/961d9761bcb2bee17c80bba8b7bc9e285086d6c4"><code>961d976</code></a> Prepare point release.</li> <li>Additional commits viewable in <a href="https://github.com/rack/rack/compare/2.0.7...2.2.3">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

2 comments

1 changed file

dependabot[bot]

pr closed time in 25 days

pull request commentTerrastories/terrastories

Bump rack from 2.0.7 to 2.2.3 in /rails

Closed by https://github.com/Terrastories/terrastories/pull/456

dependabot[bot]

comment created time in 25 days

PR closed Terrastories/terrastories

Bump websocket-extensions from 0.1.4 to 0.1.5 in /rails dependencies ruby

Bumps websocket-extensions from 0.1.4 to 0.1.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-ruby/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.5 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7663)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/8108e77333026634eda1a6a32f32da3a7a1da8c4"><code>8108e77</code></a> Bump version to 0.1.5</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/c36eb3e010dce9eabc7415dbe05cafaa0ae83cd4"><code>c36eb3e</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/8174a4a0f95b8f35ea42595d9d4d88debf492521"><code>8174a4a</code></a> Test on JRuby 9.{0,1,2} rather than "head"</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/96059802a6649ad3ca63625ffc5b5dbcd9ea91d9"><code>9605980</code></a> Update Ruby versions 2.4 to 2.7 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/bd6d0acc01fa985f014d37183f0c7854b86b60f9"><code>bd6d0ac</code></a> Mention license change in the changelog</li> <li><a href="https://github.com/faye/websocket-extensions-ruby/commit/a8c847876b2242d562e6186b6fd90dd073b9fcd2"><code>a8c8478</code></a> Formatting change: {...} should have spaces inside the braces</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-ruby/compare/0.1.4...0.1.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

2 comments

1 changed file

dependabot[bot]

pr closed time in 25 days

pull request commentTerrastories/terrastories

Bump websocket-extensions from 0.1.4 to 0.1.5 in /rails

Closed by https://github.com/Terrastories/terrastories/pull/456

dependabot[bot]

comment created time in 25 days

PR closed Terrastories/terrastories

Bump kaminari from 1.1.1 to 1.2.1 in /rails dependencies ruby

Bumps kaminari from 1.1.1 to 1.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/kaminari/kaminari/releases">kaminari's releases</a>.</em></p> <blockquote> <h2>v1.2.0</h2> <h3>Deprecations:</h3> <ul> <li>Deprecated <code>current_per_page</code> in favor of <code>limit_value</code></li> </ul> <h3>Enhancements:</h3> <ul> <li>Added <code>#url_to_next_page</code> and <code>#url_to_prev_page</code> helper methods: <a href="https://github.com/kaminari/kaminari/commit/38e95a262a210548c4f892aaa69d09ca8ecdce7f">38e95a2</a></li> <li>Extracted url helper methods and packed them in <code>Kaminari::Helpers::UrlHelper</code>: <a href="https://github.com/kaminari/kaminari/commit/ff38bee54b5be1a948f1118c0bfd829a72a1a502">ff38bee</a></li> <li>Improved performance of <code>total_count</code> for grouped queries by explicitly giving SQL <code>select</code> clause <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> [<a href="https://github.com/MmKolodziej">@MmKolodziej</a>]</li> <li>Added <code>LIMIT</code> to <code>total_count</code> query when <code>max_pages</code> presents <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/981">#981</a> [<a href="https://github.com/rymai">@rymai</a>]</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a bug where the <code>kaminari-mongoid</code> gem was not loaded properly: <a href="https://github-redirect.dependabot.com/kaminari/kaminari-mongoid/issues/9">kaminari/kaminari-mongoid#9</a> [<a href="https://github.com/DenniJensen">@DenniJensen</a>]</li> <li>Fixed a bug where the <code>#total_count</code> method incorrectly calculates the total count: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/932">#932</a> [<a href="https://github.com/tumayun">@tumayun</a>]</li> <li>Fixed a bug where <code>empty?</code> breaks subsequent <code>last_page?</code> in without_count mode <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1009">#1009</a> [<a href="https://github.com/montdidier">@montdidier</a>]</li> <li>Fixed kwargs warnings on Ruby 2.7 <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1010">#1010</a> [<a href="https://github.com/connorshea">@connorshea</a>]</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/kaminari/kaminari/blob/master/CHANGELOG.md">kaminari's changelog</a>.</em></p> <blockquote> <h2>1.2.1</h2> <h3>Security Fixes:</h3> <ul> <li>Added <code>original_script_name</code> parameter to the ignore list: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1020">#1020</a> [<a href="https://github.com/viseztrance">@viseztrance</a>] See CVE-2020-11082 for full details.</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a couple of grouped <code>total_count</code> regressions by reverting <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a></li> </ul> <h2>1.2.0</h2> <h3>Deprecations:</h3> <ul> <li>Deprecated <code>current_per_page</code> in favor of <code>limit_value</code></li> </ul> <h3>Enhancements:</h3> <ul> <li>Added <code>#url_to_next_page</code> and <code>#url_to_prev_page</code> helper methods: <a href="https://github.com/kaminari/kaminari/commit/38e95a262a210548c4f892aaa69d09ca8ecdce7f">38e95a2</a></li> <li>Extracted url helper methods and packed them in <code>Kaminari::Helpers::UrlHelper</code>: <a href="https://github.com/kaminari/kaminari/commit/ff38bee54b5be1a948f1118c0bfd829a72a1a502">ff38bee</a></li> <li>Improved performance of <code>total_count</code> for grouped queries by explicitly giving SQL <code>select</code> clause <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> [<a href="https://github.com/MmKolodziej">@MmKolodziej</a>]</li> <li>Added <code>LIMIT</code> to <code>total_count</code> query when <code>max_pages</code> presents <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/981">#981</a> [<a href="https://github.com/rymai">@rymai</a>]</li> </ul> <h3>Bug Fixes:</h3> <ul> <li>Fixed a bug where the <code>kaminari-mongoid</code> gem was not loaded properly: <a href="https://github-redirect.dependabot.com/kaminari/kaminari-mongoid/issues/9">kaminari/kaminari-mongoid#9</a> [<a href="https://github.com/DenniJensen">@DenniJensen</a>]</li> <li>Fixed a bug where the <code>#total_count</code> method incorrectly calculates the total count: <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/932">#932</a> [<a href="https://github.com/tumayun">@tumayun</a>]</li> <li>Fixed a bug where <code>empty?</code> breaks subsequent <code>last_page?</code> in without_count mode <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1009">#1009</a> [<a href="https://github.com/montdidier">@montdidier</a>]</li> <li>Fixed kwargs warnings on Ruby 2.7 <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1010">#1010</a> [<a href="https://github.com/connorshea">@connorshea</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/kaminari/kaminari/commit/ab8b1118bd721edc520a7cd32e0a72dc6d0d3608"><code>ab8b111</code></a> Version 1.2.1</li> <li><a href="https://github.com/kaminari/kaminari/commit/674aeecbb38612f5914c8b659570ce6a51a85bfe"><code>674aeec</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/1020">#1020</a> from viseztrance/fix/add-entry-to-blacklist</li> <li><a href="https://github.com/kaminari/kaminari/commit/8dd52a1aed3d2fa2835d836de23fc0d8c4ff5db8"><code>8dd52a1</code></a> Blacklist "original_script_name" get param</li> <li><a href="https://github.com/kaminari/kaminari/commit/04d86ed3f2537aff620941413e5fca254e87aebe"><code>04d86ed</code></a> Revert "Merge pull request <a href="https://github-redirect.dependabot.com/kaminari/kaminari/issues/979">#979</a> from MmKolodziej/better_total_count_for_group...</li> <li><a href="https://github.com/kaminari/kaminari/commit/73472921a234e687bf25495f8265d0676736c766"><code>7347292</code></a> kaminari supports Ruby 2.8 (or 3.0 or whatever comes next) and Rails 6.1</li> <li><a href="https://github.com/kaminari/kaminari/commit/a2f262ec43d0f5e456831db7e1d31fa0d89e7d1e"><code>a2f262e</code></a> Actually, let's call it 1.2.0</li> <li><a href="https://github.com/kaminari/kaminari/commit/f901ad46d1cea5764ff19244f0b6f8781036ddf5"><code>f901ad4</code></a> Version 1.1.2</li> <li><a href="https://github.com/kaminari/kaminari/commit/c3114fac51d3735f5a901a4c905eaff6a75cc9f5"><code>c3114fa</code></a> Changes for version 1.1.2</li> <li><a href="https://github.com/kaminari/kaminari/commit/b21c1daffb7a99106c9e75ac0ffaef6d7f56416d"><code>b21c1da</code></a> using has to be called from the toplevel in Ruby 2.0</li> <li><a href="https://github.com/kaminari/kaminari/commit/795b2b74526a75bed1d3e286650b9fc04837d12a"><code>795b2b7</code></a> Let this plugin internal method be super private within this file</li> <li>Additional commits viewable in <a href="https://github.com/kaminari/kaminari/compare/v1.1.1...v1.2.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+20 -20

2 comments

1 changed file

dependabot[bot]

pr closed time in 25 days

pull request commentTerrastories/terrastories

Bump kaminari from 1.1.1 to 1.2.1 in /rails

Closed by https://github.com/Terrastories/terrastories/pull/456

dependabot[bot]

comment created time in 25 days

PR closed Terrastories/terrastories

Bump nokogiri from 1.10.5 to 1.10.9 in /rails dependencies ruby

Bumps nokogiri from 1.10.5 to 1.10.9. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sparklemotion/nokogiri/releases">nokogiri's releases</a>.</em></p> <blockquote> <h2>1.10.9 / 2020-03-01</h2> <h3>Fixed</h3> <ul> <li>[MRI] Raise an exception when Nokogiri detects a specific libxml2 edge case involving blank Schema nodes wrapped by Ruby objects that would cause a segfault. Currently no fix is available upstream, so we're preventing a dangerous operation and informing users to code around it if possible. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1985">#1985</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2001">#2001</a>]</li> <li>[JRuby] Change <code>NodeSet#to_a</code> to return a RubyArray instead of Object, for compilation under JRuby 9.2.9 and later. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1968">#1968</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1969">#1969</a>] (Thanks, <a href="https://github.com/headius">@headius</a>!)</li> </ul> <h2>1.10.8 / 2020-02-10</h2> <h3>Security</h3> <p>[MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595. Full details are available in <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1992">#1992</a>. Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml.</p> <h2>1.10.7 / 2019-12-03</h2> <h3>Bug</h3> <ul> <li>[MRI] Ensure the patch applied in v1.10.6 works with GNU <code>patch</code>. <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1954">#1954</a></li> </ul> <h2>1.10.6 / 2019-12-03</h2> <h3>Bug</h3> <ul> <li>[MRI] Fix FreeBSD installation of vendored libxml2. [#1941, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1953">#1953</a>] (Thanks, <a href="https://github.com/nurse">@nurse</a>!)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md">nokogiri's changelog</a>.</em></p> <blockquote> <h2>1.10.9 / 2020-03-01</h2> <h3>Fixed</h3> <ul> <li>[MRI] Raise an exception when Nokogiri detects a specific libxml2 edge case involving blank Schema nodes wrapped by Ruby objects that would cause a segfault. Currently no fix is available upstream, so we're preventing a dangerous operation and informing users to code around it if possible. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1985">#1985</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/2001">#2001</a>]</li> <li>[JRuby] Change <code>NodeSet#to_a</code> to return a RubyArray instead of Object, for compilation under JRuby 9.2.9 and later. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1968">#1968</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1969">#1969</a>] (Thanks, <a href="https://github.com/headius">@headius</a>!)</li> </ul> <h2>1.10.8 / 2020-02-10</h2> <h3>Security</h3> <p>[MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595. Full details are available in <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1992">#1992</a>. Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml.</p> <h2>1.10.7 / 2019-12-03</h2> <h3>Fixed</h3> <ul> <li>[MRI] Ensure the patch applied in v1.10.6 works with GNU <code>patch</code>. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1954">#1954</a>]</li> </ul> <h2>1.10.6 / 2019-12-03</h2> <h3>Fixed</h3> <ul> <li>[MRI] Fix FreeBSD installation of vendored libxml2. [<a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1941">#1941</a>, <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1953">#1953</a>] (Thanks, <a href="https://github.com/nurse">@nurse</a>!)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sparklemotion/nokogiri/commit/e2e191de387f854619bc8a3f9b39ca687fe0bf31"><code>e2e191d</code></a> version bump to v1.10.9</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/50f8fdeae4afb8582ff6347d7aa17822a1e11242"><code>50f8fde</code></a> update CHANGELOG</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/9b5deef76aeb5e3868cafb0b0956cca3708136f3"><code>9b5deef</code></a> Change return type to RubyArray</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/ae054f750283dccb1454d71dc00d0343dc2b1c60"><code>ae054f7</code></a> update CHANGELOG for <a href="https://github-redirect.dependabot.com/sparklemotion/nokogiri/issues/1985">#1985</a></li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/71bcaf0bb1351c09e48f41f10314cb35bb4a4db4"><code>71bcaf0</code></a> Work around a bug in libxml2</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/6ce10d15d7af6ad65813a495eaf168f73eba211c"><code>6ce10d1</code></a> version bump to v1.10.8</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/2320f5bd6319dca9c68d85bbf41629bbf8052a49"><code>2320f5b</code></a> update CHANGELOG for v1.10.8</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/4a77fdb789aefed7ca65c7c7f57ad4dca0d3b209"><code>4a77fdb</code></a> remove patches from the hoe Manifest</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/570b6cbc5fbc5ee7ef969332c587b951ae35bcd0"><code>570b6cb</code></a> update to use rake-compiler ~1.1.0</li> <li><a href="https://github.com/sparklemotion/nokogiri/commit/2cdb68e95aa075ac36a08d4d82d9b410a950a051"><code>2cdb68e</code></a> backport libxml2 patch for CVE-2020-7595</li> <li>Additional commits viewable in <a href="https://github.com/sparklemotion/nokogiri/compare/v1.10.5...v1.10.9">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

2 comments

1 changed file

dependabot[bot]

pr closed time in 25 days

pull request commentTerrastories/terrastories

Bump nokogiri from 1.10.5 to 1.10.9 in /rails

Closed by https://github.com/Terrastories/terrastories/pull/456

dependabot[bot]

comment created time in 25 days

PR closed Terrastories/terrastories

Bump administrate from 0.12.0 to 0.13.0 in /rails dependencies ruby

Bumps administrate from 0.12.0 to 0.13.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/thoughtbot/administrate/releases">administrate's releases</a>.</em></p> <blockquote> <h2>0.13.0</h2> <p><strong>NOTE:</strong> This release contains the fix for <a href="https://github.com/thoughtbot/administrate/security/advisories/GHSA-2p5p-m353-833w"><code>CVE-2020-5257</code></a>, which fixes a potential SQL injection on dashboard sorting.</p> <ul> <li>[SECURITY] Fix Sort order SQL injection.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1561">#1561</a> Fix very narrow nested fields.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1565">#1565</a> Fix unterminated single quote.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1537">#1537</a> Provide <title> tags for doc pages.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1552">#1552</a> Use the correct foreign key when sorting belongs_to associations.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1551">#1551</a> More readable warnings.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1512">#1512</a> Avoid confusion with class methods and protected/private modifiers.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1513">#1513</a> Accessible from templates; avoids having to create new field types.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1536">#1536</a> Declare doctype, language and charset.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1540">#1540</a> Add new Date field to docs.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1530">#1530</a> Include Date Field.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1522">#1522</a> Align label and data on show page.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1521">#1521</a> Expose required fields on form.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1531">#1531</a> Remove project level rubocop.yml.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1534">#1534</a> Move documentation of how to disable some actions on controller.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1524">#1524</a> Hide resources without index in the navigation.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1523">#1523</a> Update screenshot.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1376">#1376</a> Add a "back" link to the navigation.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1187">#1187</a> Update comment with new namespace.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1514">#1514</a> Rewrite the contributing guide.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1495">#1495</a> Attempt to fix random CI failures.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1507">#1507</a> Remove query from link, to avoid triggering banned params.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1479">#1479</a> Document controller APIs.</li> <li>[COMPAT] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1475">#1475</a> Allows running specs individually.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1484">#1484</a> Double-click to select attribute text.</li> <li>[DOC] Configure GitHub Sponsors.</li> <li>[COMPAT] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1457">#1457</a> Fix PhantomJS test behaviour on Linux.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/920">#920</a> Remove NameError rescue in page base.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1447">#1447</a> Don't pass raw SQL when changing sort order.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1452">#1452</a> Support Sprockets 4.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1426">#1426</a> Add issue templates.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/thoughtbot/administrate/blob/master/CHANGELOG.md">administrate's changelog</a>.</em></p> <blockquote> <h3>0.13.0 (March 13, 2020)</h3> <p><strong>NOTE:</strong> This release contains the fix for <a href="https://github.com/thoughtbot/administrate/security/advisories/GHSA-2p5p-m353-833w"><code>CVE-2020-5257</code></a>, which fixes a potential SQL injection on dashboard sorting.</p> <ul> <li>[SECURITY] Fix Sort order SQL injection.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1561">#1561</a> Fix very narrow nested fields.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1565">#1565</a> Fix unterminated single quote.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1537">#1537</a> Provide <title> tags for doc pages.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1552">#1552</a> Use the correct foreign key when sorting belongs_to associations.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1551">#1551</a> More readable warnings.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1512">#1512</a> Avoid confusion with class methods and protected/private modifiers.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1513">#1513</a> Accessible from templates; avoids having to create new field types.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1536">#1536</a> Declare doctype, language and charset.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1540">#1540</a> Add new Date field to docs.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1530">#1530</a> Include Date Field.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1522">#1522</a> Align label and data on show page.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1521">#1521</a> Expose required fields on form.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1531">#1531</a> Remove project level rubocop.yml.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1534">#1534</a> Move documentation of how to disable some actions on controller.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1524">#1524</a> Hide resources without index in the navigation.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1523">#1523</a> Update screenshot.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1376">#1376</a> Add a "back" link to the navigation.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1187">#1187</a> Update comment with new namespace.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1514">#1514</a> Rewrite the contributing guide.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1495">#1495</a> Attempt to fix random CI failures.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1507">#1507</a> Remove query from link, to avoid triggering banned params.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1479">#1479</a> Document controller APIs.</li> <li>[COMPAT] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1475">#1475</a> Allows running specs individually.</li> <li>[UI] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1484">#1484</a> Double-click to select attribute text.</li> <li>[DOC] Configure GitHub Sponsors.</li> <li>[COMPAT] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1457">#1457</a> Fix PhantomJS test behaviour on Linux.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/920">#920</a> Remove NameError rescue in page base.</li> <li>[BUGFIX] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1447">#1447</a> Don't pass raw SQL when changing sort order.</li> <li>[FEATURE] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1452">#1452</a> Support Sprockets 4.</li> <li>[DOC] <a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1426">#1426</a> Add issue templates.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/thoughtbot/administrate/commit/70a2778169a8b922788bca1994beeda51a90abb7"><code>70a2778</code></a> Release version 0.13.0</li> <li><a href="https://github.com/thoughtbot/administrate/commit/61f94d68c2a18546583eee400ab0d997cc559fe8"><code>61f94d6</code></a> Update Appraisal's gemfiles</li> <li><a href="https://github.com/thoughtbot/administrate/commit/3ab838b83c5f565fba50e0c6f66fe4517f98eed3"><code>3ab838b</code></a> Merge pull request from GHSA-2p5p-m353-833w</li> <li><a href="https://github.com/thoughtbot/administrate/commit/decf6292520464ea7e6ca9ba99a0936a6b7dd593"><code>decf629</code></a> Bump webmock from 3.8.2 to 3.8.3 (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1568">#1568</a>)</li> <li><a href="https://github.com/thoughtbot/administrate/commit/9e9b83153c4b09ea6c19eb6f8f15199283d66715"><code>9e9b831</code></a> Bump i18n-tasks from 0.9.30 to 0.9.31 (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1567">#1567</a>)</li> <li><a href="https://github.com/thoughtbot/administrate/commit/7546a4b8341841b7b8a074c3a4dcc878576d1517"><code>7546a4b</code></a> Fix very narrow nested fields (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1561">#1561</a>)</li> <li><a href="https://github.com/thoughtbot/administrate/commit/cdb27de8d9f19d4eac63ebe68d342e3cc7b5a42e"><code>cdb27de</code></a> Fix unterminated single quote (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1565">#1565</a>)</li> <li><a href="https://github.com/thoughtbot/administrate/commit/55d5b51007857396343bfc8da3bdf5a7f045cb12"><code>55d5b51</code></a> Bump sentry-raven from 2.13.0 to 3.0.0 (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1564">#1564</a>)</li> <li><a href="https://github.com/thoughtbot/administrate/commit/cc90542503dad981af12f77b6e188c68337ed51b"><code>cc90542</code></a> Bump launchy from 2.4.3 to 2.5.0 (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1562">#1562</a>)</li> <li><a href="https://github.com/thoughtbot/administrate/commit/6cc36970f02093da913fdb9c0dd2d49e19bb3d7b"><code>6cc3697</code></a> [Security] Bump nokogiri from 1.10.7 to 1.10.8 (<a href="https://github-redirect.dependabot.com/thoughtbot/administrate/issues/1558">#1558</a>)</li> <li>Additional commits viewable in <a href="https://github.com/thoughtbot/administrate/compare/v0.12.0...v0.13.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+26 -26

2 comments

1 changed file

dependabot[bot]

pr closed time in 25 days

pull request commentTerrastories/terrastories

Bump administrate from 0.12.0 to 0.13.0 in /rails

Closed by https://github.com/Terrastories/terrastories/pull/456

dependabot[bot]

comment created time in 25 days

PR closed Terrastories/terrastories

Bump puma from 3.12.2 to 3.12.6 in /rails dependencies ruby

Bumps puma from 3.12.2 to 3.12.6. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/puma/puma/blob/master/History.md">puma's changelog</a>.</em></p> <blockquote> <h2>4.3.4/4.3.5 and 3.12.5/3.12.6 / 2020-05-22</h2> <p>Each patchlevel release contains a separate security fix. We recommend simply upgrading to 4.3.5/3.12.6.</p> <ul> <li>Security <ul> <li>Fix: Fixed two separate HTTP smuggling vulnerabilities that used the Transfer-Encoding header. CVE-2020-11076 and CVE-2020-11077.</li> </ul> </li> </ul> <h2>4.3.3 and 3.12.4 / 2020-02-28</h2> <ul> <li>Bugfixes <ul> <li>Fix: Fixes a problem where we weren't splitting headers correctly on newlines (<a href="https://github-redirect.dependabot.com/puma/puma/issues/2132">#2132</a>)</li> </ul> </li> <li>Security <ul> <li>Fix: Prevent HTTP Response splitting via CR in early hints. CVE-2020-5249.</li> </ul> </li> </ul> <h2>4.3.2 and 3.12.3 / 2020-02-27 (YANKED)</h2> <ul> <li>Security <ul> <li>Fix: Prevent HTTP Response splitting via CR/LF in header values. CVE-2020-5247.</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/puma/puma/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

2 comments

1 changed file

dependabot[bot]

pr closed time in 25 days

pull request commentTerrastories/terrastories

Bump puma from 3.12.2 to 3.12.6 in /rails

Closed by https://github.com/Terrastories/terrastories/pull/456

dependabot[bot]

comment created time in 25 days

pull request commentTerrastories/terrastories

Update to ReadMe Setup, Added Development section, fixed issue #446

Hello! Thanks for your contribution!! :D

Could you split up this into two separate PRs to keep each one scoped -- One for the documentation updates & one that fixes #446 ?

This will help us review the changes more easily and merge them in separately as well. We prefer to keep things separated into merge commits in case there ever needs to be a rollback.

ohamuy

comment created time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha 9a41052dd39f79ea3e9680cc1f6b7d0a6db9d9d6

Creating form for submitting new recipes

view details

Miranda Wang

commit sha 1d13024ef5aeb5f02043a42b1f185b1abaac5d54

redirect to home on succesful login

view details

push time in a month

PR merged mirandawang/lets-eat

New recipe form
+109 -2

0 comment

4 changed files

mirandawang

pr closed time in a month

PR opened mirandawang/lets-eat

New recipe form
+109 -2

0 comment

4 changed files

pr created time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha cd0dad59a4a992a8de5989398b0d524522e2f3fc

redirect to home on succesful login

view details

push time in a month

create barnchmirandawang/lets-eat

branch : new-recipe-form

created branch time in a month

delete branch mirandawang/lets-eat

delete branch : recipe-grid

delete time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha e16f3d3e1d57dbcdf9740792f04e534cdd4e8be8

recipe grid and recipe inbox grid with recipe cards (#7) * setting up initial recipe card component * styling updates for the recipe card and put in placeholder object data * Finishing up recipe grid component * Clean up * Set up recipe inbox grid and vote body * Link up sidebar with recipe index and recipe inbox Co-authored-by: Miranda Wang <mswang@etsy.com>

view details

push time in a month

PR merged mirandawang/lets-eat

Recipe grid
+233 -16

0 comment

8 changed files

mirandawang

pr closed time in a month

PR opened mirandawang/lets-eat

Recipe grid
+233 -16

0 comment

8 changed files

pr created time in a month

create barnchmirandawang/lets-eat

branch : recipe-grid

created branch time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha 6ad78aa88ea02a389989feca3d8ce41ed598753f

Setting up Dashboard + creating Sidebar component and link up to some routes

view details

Miranda Wang

commit sha bcb1d5a4110ab9d06b8e8e7e4d9c7c8b433461c5

fix a couplea things

view details

Miranda Wang

commit sha fe6221785753352bc760cf1c478f797d0dfb4628

Merge pull request #5 from mirandawang/sidebar-dashboard Setting up Dashboard + creating Sidebar component

view details

push time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha bcb1d5a4110ab9d06b8e8e7e4d9c7c8b433461c5

fix a couplea things

view details

push time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha 868b4ca76dc4bdb8fbe3f336babd3bcf56f16991

Adding global css and themeing with new icon and color palette

view details

Miranda Wang

commit sha 6ad78aa88ea02a389989feca3d8ce41ed598753f

Setting up Dashboard + creating Sidebar component and link up to some routes

view details

push time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha 868b4ca76dc4bdb8fbe3f336babd3bcf56f16991

Adding global css and themeing with new icon and color palette

view details

push time in a month

PR opened mirandawang/lets-eat

Setting up Dashboard + creating Sidebar component

… routes

+164 -3

0 comment

5 changed files

pr created time in a month

create barnchmirandawang/lets-eat

branch : sidebar-dashboard

created branch time in a month

delete branch mirandawang/lets-eat

delete branch : dependabot/npm_and_yarn/lets-eat-frontend/websocket-extensions-0.1.4

delete time in a month

push eventmirandawang/lets-eat

dependabot[bot]

commit sha 07a559d6c370fd884f40c180b27d308cbfa3be89

Bump websocket-extensions from 0.1.3 to 0.1.4 in /lets-eat-frontend Bumps [websocket-extensions](https://github.com/faye/websocket-extensions-node) from 0.1.3 to 0.1.4. - [Release notes](https://github.com/faye/websocket-extensions-node/releases) - [Changelog](https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md) - [Commits](https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4) Signed-off-by: dependabot[bot] <support@github.com>

view details

Miranda Wang

commit sha b0d10b504a3cc8cf19cf1150a17eadbb4ff047f8

Merge pull request #2 from mirandawang/dependabot/npm_and_yarn/lets-eat-frontend/websocket-extensions-0.1.4 Bump websocket-extensions from 0.1.3 to 0.1.4 in /lets-eat-frontend

view details

push time in a month

PR merged mirandawang/lets-eat

Bump websocket-extensions from 0.1.3 to 0.1.4 in /lets-eat-frontend dependencies

Bumps websocket-extensions from 0.1.3 to 0.1.4. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/faye/websocket-extensions-node/blob/master/CHANGELOG.md">websocket-extensions's changelog</a>.</em></p> <blockquote> <h3>0.1.4 / 2020-06-02</h3> <ul> <li>Remove a ReDoS vulnerability in the header parser (CVE-2020-7662, reported by Robert McLaughlin)</li> <li>Change license from MIT to Apache 2.0</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/faye/websocket-extensions-node/commit/8efd0cd6e35faf9bb9cb08759be1e27082177d43"><code>8efd0cd</code></a> Bump version to 0.1.4</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/3dad4ad44a8c5f74d4f8f4efd3f9d6e0b5df3051"><code>3dad4ad</code></a> Remove ReDoS vulnerability in the Sec-WebSocket-Extensions header parser</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/4a76c75efb1c5d6a2f60550e9501757458d19533"><code>4a76c75</code></a> Add Node versions 13 and 14 on Travis</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/44a677a9c0631daed0b0f4a4b68c095b624183b8"><code>44a677a</code></a> Formatting change: {...} should have spaces inside the braces</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/f6c50aba0c20ff45b0f87cea33babec1217ec3f5"><code>f6c50ab</code></a> Let npm reformat package.json</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/2d211f3705d52d9efb4f01daf5a253adf828592e"><code>2d211f3</code></a> Change markdown formatting of docs.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/0b620834cc1e1f2eace1d55ab17f71d90d88271d"><code>0b62083</code></a> Update Travis target versions.</li> <li><a href="https://github.com/faye/websocket-extensions-node/commit/729a4653073fa8dd020561113513bfa2e2119415"><code>729a465</code></a> Switch license to Apache 2.0.</li> <li>See full diff in <a href="https://github.com/faye/websocket-extensions-node/compare/0.1.3...0.1.4">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+3 -3

0 comment

1 changed file

dependabot[bot]

pr closed time in a month

delete branch mirandawang/lets-eat

delete branch : set-up-react-hooks-context

delete time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha 578a40c23ff0db8e2a526f09379b889c918e5a3d

set up app dir structure for react context + hooks, include function placeholder for logging in user

view details

Miranda Wang

commit sha cf4d78c178cf50b8b399e9f475722ea2eab3cbff

Setting up material ui, creating login form and home components

view details

Miranda Wang

commit sha 92402cb165a41dcc99f605a473722d0dfcb8d4bf

Merge pull request #4 from mirandawang/set-up-react-hooks-context Set up react hooks context and material UI Create new component for Home Create new component for Login Form Add user + isLoggingIn to state Set up skeleton of login action

view details

push time in a month

PR opened mirandawang/lets-eat

Set up react hooks context
+512 -29

0 comment

8 changed files

pr created time in a month

create barnchmirandawang/lets-eat

branch : set-up-react-hooks-context

created branch time in a month

delete branch mirandawang/lets-eat

delete branch : set-up-react

delete time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha 8e507e5d29809fcddfe53dc37ae21ec988567404

Setting up initial React files + include react router dom

view details

Miranda Wang

commit sha cc5e2eb8f85f3027c80c0ceb190abb35f8085a81

Merge pull request #1 from mirandawang/set-up-react Setting up initial React files + include react router dom

view details

push time in a month

PublicEvent

create barnchmirandawang/lets-eat

branch : set-up-react

created branch time in a month

push eventmirandawang/lets-eat

Miranda Wang

commit sha df9f7ff4d61932c776a8af02b13816615dc97f8e

adding more spacing to the README

view details

push time in a month

MemberEvent

push eventmirandawang/lets-eat

Miranda Wang

commit sha e84f76aeea660b0b426a3f3c892497285517a040

updating README.md

view details

push time in a month

more