profile
viewpoint

sean-nicholas/parrot 13

Telegram Bot for transcribing voice messages via wit.ai

sean-nicholas/adblockradio 0

An adblocker for live radio streams and podcasts. Machine learning meets Shazam.

sean-nicholas/angular-resource-sails 0

Angular service for managing Sails socket.io connections

sean-nicholas/awesome-firebase 0

🔥 List of Firebase talks, tools, examples & articles! Translations in 🇬🇧 🇷🇺 contribs welcome!

sean-nicholas/awesome-firestore 0

🔥🔥🔥Curated list of Cloud Firestore🔥🔥🔥

startednlkl/Optional

started time in 5 days

created repositorythomasbrueggemann/dotnet5-csharp9-overview

Hands-on overview of .NET 5 / C#9 features

created time in 6 days

startedloadimpact/k6

started time in 7 days

startedjs-org/js.org

started time in 18 days

fork thomasbrueggemann/js.org

Dedicated to JavaScript and its awesome community since 2015

https://js.org

fork in 18 days

starteddotnet/tye

started time in 19 days

fork thomasbrueggemann/js.org

Dedicated to JavaScript and its awesome community since 2015

https://js.org

fork in 25 days

created repositorythomasbrueggemann/kody

🔗 Code sharing

created time in 25 days

startedsecuringsincity/react-ace

started time in 25 days

startedmartinblech/xmltodict

started time in a month

startedsean-nicholas/remote-screen-client

started time in a month

fork eGovCologne/dkan

DKAN Open Data Portal

https://getdkan.org

fork in a month

fork eGovCologne/dkan

DKAN Open Data Portal

https://getdkan.org

fork in a month

PR opened rechenberger/firestore-query-browser

Bump webpack-subresource-integrity from 1.0.4 to 1.5.1

Bumps webpack-subresource-integrity from 1.0.4 to 1.5.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/waysact/webpack-subresource-integrity/releases">webpack-subresource-integrity's releases</a>.</em></p> <blockquote> <h2>v1.5.1</h2> <ul> <li>Fix a security issue where dynamically loaded chunks were not protected from tampering. This issue was introduced in v1.5.0. (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/131">#131</a>)</li> </ul> <h2>v1.5.0</h2> <ul> <li>Compatibility with Webpack 5</li> </ul> <h2>v1.4.1</h2> <ul> <li>Ignore tags with null attributes (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/122">#122</a>)</li> </ul> <h2>v1.4.0</h2> <ul> <li>Add integrity to link preload tags (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/111">#111</a>)</li> </ul> <h2>v1.3.4</h2> <ul> <li>Fix warning when used with <a href="https://github.com/fqborges/webpack-fix-style-only-entries">webpack-fix-style-only-entries</a> (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/106">#106</a>)</li> </ul> <h2>v1.3.3</h2> <ul> <li>Fix source maps in projects with code splitting (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/113">#113</a>)</li> <li>Documentation tweaks: <ul> <li>Remove recommendation to use <code>require-sri</code></li> <li>Add warning about unreliable <code><link preload></code></li> </ul> </li> </ul> <h2>v1.3.2</h2> <ul> <li>Fix bug where in some cases runtime bundle contents changed needlessly and without contenthash changing (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/101">#101</a>)</li> </ul> <h2>v1.3.1</h2> <ul> <li>Fix bug when used alongside <a href="https://github.com/mmiller42/html-webpack-externals-plugin">html-webpack-externals-plugin</a> (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/97">#97</a>)</li> <li>Suppress warning about missing dependencies (requires package manager with support for <code>peerDependenciesMeta</code>) (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/90">#90</a>)</li> </ul> <h2>v1.3.0</h2> <ul> <li>Support for assets added in <code>html-webpack-plugin-before-html-generation</code> hook, for example by <code>add-asset-html-webpack-plugin</code> (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/51">#51</a>)</li> </ul> <h2>v1.2.0</h2> <ul> <li>Replace <a href="https://github.com/webpack/core">webpack-core</a> dependency by <a href="https://github.com/webpack/webpack-sources">webpack-sources</a> (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/93">#93</a>)</li> </ul> <h2>v1.1.0</h2> <ul> <li>Document <a href="https://github.com/webdeveric/webpack-assets-manifest">webpack-asset-manifest</a> integration (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/45">#45</a>)</li> </ul> <h2>v1.1.0-rc.7</h2> <ul> <li>Avoid duplicate error message on Webpack 4.20</li> <li>Fix crash in non-web builds, emit warning instead (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/87">#87</a>)</li> <li>Declare peer dependency on html-webpack-plugin (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/90">#90</a>)</li> </ul> <h2>v1.1.0-rc.6</h2> <ul> <li>Fix a bug occurring in a certain constellation (Webpack 4 with splitChunks optimization in production mode plus mini-css-extract-plugin) by simplifying chunk-to-asset mapping code (<a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/83">#83</a>)</li> </ul> <h2>v1.1.0-rc.5</h2> <ul> <li>Fix incompatibility with Webpack 4.13+ where the <code>crossOrigin</code> attribute wasn't always set.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/ed3c8cdc095cc3a5073db52f66514a89252303b6"><code>ed3c8cd</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/132">#132</a> from waysact/issue-131</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/3d7090c08c333fcfb10ad9e2d6cf72e2acb7d87f"><code>3d7090c</code></a> Fix hash lookup for dynamic chunks</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/1d6bfcdcce157c8daa42d0a056d4f3ee871c447a"><code>1d6bfcd</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/waysact/webpack-subresource-integrity/issues/130">#130</a> from waysact/webpack-5</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/1631ca6bb227546c62dd686dbca8e877b57d3e01"><code>1631ca6</code></a> Clean up dependency version ranges</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/00dd2bc58468db9a12cfbd32adc9feb1b1607fcc"><code>00dd2bc</code></a> Refactor hook setup</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/3cc27aae0bdf7f0b238571eae806e46b564c2bb9"><code>3cc27aa</code></a> Bump version to 1.5.0</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/9c5ca816e8a5749a5f15297199c4fe92c44dc530"><code>9c5ca81</code></a> Fix Travis exclusions</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/695be87724d284c1f2eb6b5be077b51296b28452"><code>695be87</code></a> Fix Webpack 5 deprecation warning</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/878afff9b518443562926e395df8cfd9e2a2913f"><code>878afff</code></a> Test against Webpack 5</li> <li><a href="https://github.com/waysact/webpack-subresource-integrity/commit/5f552111e73d2b7380c23b39cf94eb963c9c62c7"><code>5f55211</code></a> Stop testing Node 4 on Windows</li> <li>Additional commits viewable in <a href="https://github.com/waysact/webpack-subresource-integrity/compare/v1.0.4...v1.5.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+123 -65

0 comment

1 changed file

pr created time in a month

startedkeyth72/SmartGuitarAmp

started time in 2 months

startedjamalex/notion-py

started time in 2 months

startedPolygeneLubricants/planning-poker

started time in 2 months

startedc-bata/kube-prompt

started time in 3 months

startedjakedeichert/mask

started time in 3 months

PR opened rechenberger/firestore-query-browser

Bump http-proxy from 1.16.2 to 1.18.1

Bumps http-proxy from 1.16.2 to 1.18.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/http-party/node-http-proxy/releases">http-proxy's releases</a>.</em></p> <blockquote> <h2>Long overdue maintenance</h2> <p>Due to some great contributions I'm happy to announce a new release of <code>http-proxy</code> containing numerous bug fixes, feature additions and documentation improvements. Thanks to all who contributed for their patience and willingness to contribute despite perceived stagnation in activity in the project. I welcome all contributions and those who are interested in getting more involved with the project. Below I will highlight the changes that landed in the latest version but you can find the full diff of the changes in <a href="https://github-redirect.dependabot.com/nodejitsu/node-http-proxy/pull/1251">nodejitsu/node-http-proxy#1251</a></p> <ul> <li>Add option to rewrite path of set-cookie headers. <a href="https://github.com/swillis12">@swillis12</a></li> <li>Add option for overriding http METHOD when proxying request <a href="https://github.com/AydinChavez">@AydinChavez</a></li> <li>Feature: selfHandleResponse for taking responsibility in returning your own response when listening on the <code>proxyRes</code> event. <a href="https://github.com/cpd0101">@cpd0101</a> <a href="https://github.com/guoxiangyang">@guoxiangyang</a></li> <li>Add <code>followRedirects</code> option <a href="https://github.com/n30n0v">@n30n0v</a></li> <li>Document <code>timeout</code> option <a href="https://github.com/jlaamanen">@jlaamanen</a></li> <li>Fix documentation typos <a href="https://github.com/carpsareokiguess">@carpsareokiguess</a></li> <li>Document <code>buffer</code> option <a href="https://github.com/jonhunter1977">@jonhunter1977</a></li> <li>Include websocket non-upgrade response instead of just closing the socket. Allows auth schemes to be possible with websocket proxying. <a href="https://github.com/Tigge">@Tigge</a></li> <li>Stop using the <code>writeHead</code> method explicitly and let node handle it internally to prevent thrown errors <a href="https://github.com/jakefurler">@jakefurler</a></li> <li>Be more defensive in handling of detecting response state when proxying <a href="https://github.com/thiagobustamante">@thiagobustamante</a></li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/http-party/node-http-proxy/blob/master/CHANGELOG.md">http-proxy's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/http-party/node-http-proxy/compare/1.18.0...v1.18.1">v1.18.1</a> - 2020-05-17</h2> <h3>Merged</h3> <ul> <li>Skip sending the proxyReq event when the expect header is present <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1447"><code>#1447</code></a></li> <li>Remove node6 support, add node12 to build <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1397"><code>#1397</code></a></li> </ul> <h2><a href="https://github.com/http-party/node-http-proxy/compare/1.17.0...1.18.0">1.18.0</a> - 2019-09-18</h2> <h3>Merged</h3> <ul> <li>Added in auto-changelog module set to keepachangelog format <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1373"><code>#1373</code></a></li> <li>fix 'Modify Response' readme section to avoid unnecessary array copying <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1300"><code>#1300</code></a></li> <li>Fix incorrect target name for reverse proxy example <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1135"><code>#1135</code></a></li> <li>Fix modify response middleware example <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1139"><code>#1139</code></a></li> <li>[dist] Update dependency async to v3 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1359"><code>#1359</code></a></li> <li>Fix path to local http-proxy in examples. <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1072"><code>#1072</code></a></li> <li>fix reverse-proxy example require path <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1067"><code>#1067</code></a></li> <li>Update README.md <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/970"><code>#970</code></a></li> <li>[dist] Update dependency request to ~2.88.0 [SECURITY] <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1357"><code>#1357</code></a></li> <li>[dist] Update dependency eventemitter3 to v4 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1365"><code>#1365</code></a></li> <li>[dist] Update dependency colors to v1 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1360"><code>#1360</code></a></li> <li>[dist] Update all non-major dependencies <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1356"><code>#1356</code></a></li> <li>[dist] Update dependency agentkeepalive to v4 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1358"><code>#1358</code></a></li> <li>[dist] Update dependency nyc to v14 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1367"><code>#1367</code></a></li> <li>[dist] Update dependency concat-stream to v2 <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1363"><code>#1363</code></a></li> <li>x-forwarded-host overwrite for mutli level proxies <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1267"><code>#1267</code></a></li> <li>[refactor doc] Complete rename to http-party org. <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1362"><code>#1362</code></a></li> <li>Highlight correct lines for createProxyServer <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1117"><code>#1117</code></a></li> <li>Fix docs for rewrite options - 201 also handled <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1147"><code>#1147</code></a></li> <li>Update .nyc_output <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1339"><code>#1339</code></a></li> <li>Configure Renovate <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1355"><code>#1355</code></a></li> <li>[examples] Restream body before proxying, support for Content-Type of application/x-www-form-urlencoded <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1264"><code>#1264</code></a></li> </ul> <h3>Commits</h3> <ul> <li>[dist] New test fixtures. <a href="https://github.com/http-party/node-http-proxy/commit/7e4a0e511bc30c059216860153301de2cdd1e97f"><code>7e4a0e5</code></a></li> <li>[dist] End of an era. <a href="https://github.com/http-party/node-http-proxy/commit/a9b09cce43f072db99fb5170030a05536177ccb7"><code>a9b09cc</code></a></li> <li>[dist] Version bump. 1.18.0 <a href="https://github.com/http-party/node-http-proxy/commit/9bbe486c5efcc356fb4d189ef38eee275bbde345"><code>9bbe486</code></a></li> <li>[fix] Latest versions. <a href="https://github.com/http-party/node-http-proxy/commit/59c4403e9dc15ab9b19ee2a3f4aecbfc6c3d94c4"><code>59c4403</code></a></li> <li>[fix test] Update tests. <a href="https://github.com/http-party/node-http-proxy/commit/dd1d08b6319d1def729554446a5b0176978a8dad"><code>dd1d08b</code></a></li> <li>[dist] Update dependency ws to v3 [SECURITY] <a href="https://github.com/http-party/node-http-proxy/commit/b00911c93740a00c5cfbacbb91565cb6912ed255"><code>b00911c</code></a></li> <li>[dist] .gitattributes all the things. <a href="https://github.com/http-party/node-http-proxy/commit/fc93520d741ec80be8ae31ca005f3e9c199e330e"><code>fc93520</code></a></li> <li>[dist] Regenerate package-lock.json. <a href="https://github.com/http-party/node-http-proxy/commit/16d4f8a95162b2e2e4ee6657c500f1208c044b2d"><code>16d4f8a</code></a></li> </ul> <h2><a href="https://github.com/http-party/node-http-proxy/compare/1.16.2...1.17.0">1.17.0</a> - 2018-04-20</h2> <h3>Merged</h3> <ul> <li>Fix overwriting of global options <a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/pull/1074"><code>#1074</code></a></li> </ul> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/http-party/node-http-proxy/commit/9b96cd725127a024dabebec6c7ea8c807272223d"><code>9b96cd7</code></a> 1.18.1</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/335aeeba2f0c286dc89c402eeb76af47834c89a3"><code>335aeeb</code></a> Skip sending the proxyReq event when the expect header is present (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1447">#1447</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/dba39668ba4c9ad461316e834b2d64b77e1ca88e"><code>dba3966</code></a> Remove node6 support, add node12 to build (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1397">#1397</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/9bbe486c5efcc356fb4d189ef38eee275bbde345"><code>9bbe486</code></a> [dist] Version bump. 1.18.0</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/6e4bef4d1cd96e7a284717941e0fc274acbd3712"><code>6e4bef4</code></a> Added in auto-changelog module set to keepachangelog format (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1373">#1373</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/d05624167ce75e860770c13afeacec2ce0f67add"><code>d056241</code></a> fix 'Modify Response' readme section to avoid unnecessary array copying (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1300">#1300</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/244303b994525684e1ec8dff2e8055f89b62b1ee"><code>244303b</code></a> Fix incorrect target name for reverse proxy example (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1135">#1135</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/b4028ba78bc4616e6969e0e66b0fe4634849b68b"><code>b4028ba</code></a> Fix modify response middleware example (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1139">#1139</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/77a98159d2da0f20a03e2819c79662f36069f234"><code>77a9815</code></a> [dist] Update dependency async to v3 (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1359">#1359</a>)</li> <li><a href="https://github.com/http-party/node-http-proxy/commit/c662f9ebcd8d623db374dbc7bef231b2b0af0c3a"><code>c662f9e</code></a> Fix path to local http-proxy in examples. (<a href="https://github-redirect.dependabot.com/http-party/node-http-proxy/issues/1072">#1072</a>)</li> <li>Additional commits viewable in <a href="https://github.com/http-party/node-http-proxy/compare/1.16.2...1.18.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+115 -46

0 comment

1 changed file

pr created time in 3 months

PR opened rechenberger/firestore-query-browser

Bump tree-kill from 1.2.0 to 1.2.2

Bumps tree-kill from 1.2.0 to 1.2.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pkrumins/node-tree-kill/releases">tree-kill's releases</a>.</em></p> <blockquote> <h2>v1.2.1</h2> <p>Changelog:</p> <ul> <li>add missing LICENSE file</li> <li>fix TypeScript definitions</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/cb478381547107f5c53362668533f634beff7e6e"><code>cb47838</code></a> 1.2.2</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/deee138a8cbc918463d8af5ce8c2bec33c3fd164"><code>deee138</code></a> fix: handle sanitising better, add tests</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/ff73dbf144c4c2daa67799a50dfff59cd455c63c"><code>ff73dbf</code></a> fix: sanitise pid parameter (<a href="https://github-redirect.dependabot.com/pkrumins/node-tree-kill/issues/31">#31</a>)</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/3b5b8feeb3175a3e16ea7e0e09fdf5b8d2b87b08"><code>3b5b8fe</code></a> update Changelog</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/d408f04316d8656cf520f35799518d5838d53955"><code>d408f04</code></a> 1.2.1</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/32624c18b8ae42bb0c093b6024044de515b0802c"><code>32624c1</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pkrumins/node-tree-kill/issues/24">#24</a> from LinusU/patch-1</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/c784c3d538f117fdf4fbbce1c783c88678f3bd87"><code>c784c3d</code></a> Add callback-as-second-argument support to typings</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/6d6843c68aa0353813f259103ca1ead72d1a3d20"><code>6d6843c</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pkrumins/node-tree-kill/issues/21">#21</a> from orodley/patch-1</li> <li><a href="https://github.com/pkrumins/node-tree-kill/commit/d515c804963d495fbe7e24a693682f3f9f931e51"><code>d515c80</code></a> Add LICENSE file</li> <li>See full diff in <a href="https://github.com/pkrumins/node-tree-kill/compare/v1.2.0...v1.2.2">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+104 -37

0 comment

1 changed file

pr created time in 3 months

PR opened rechenberger/firestore-query-browser

Bump papaparse from 4.5.0 to 5.2.0

Bumps papaparse from 4.5.0 to 5.2.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mholt/PapaParse/releases">papaparse's releases</a>.</em></p> <blockquote> <h2>Release 5.2.0</h2> <p>We are happy to announce version 5.2.0.</p> <p>This version contains a new feature that allows to perform post request when downloading files.</p> <p>It also fixes a ReDOS vulnerability issue. See <a href="https://github-redirect.dependabot.com/mholt/PapaParse/issues/777">mholt/PapaParse#777</a> for more details.</p> <h2>5.1.0</h2> <p>The release brings a the option to use a function to determine the fields that will be quoted. This function accepts the cell value and column index as parameters. Thanks to <a href="https://github.com/Puzzleton">@Puzzleton</a> for contributing this feature.</p> <p>This release also includes some bug fixes. Thanks to all who contributed.</p> <h2>Version 5.0.0</h2> <p>We are happy to announce a new major release of PapaParse.</p> <p>This relase (5.0.0) introduces the following changes:</p> <ul> <li>We drop support for Node 6.x branch.</li> <li>Workers are now loaded with inline blobs, which means that is only needed to specify the worker: true option and Paparse will load it's code from a blob</li> <li>Step function returns only a single row</li> <li>A function to transform header columns is added. The trimheader option is removed as it can be achieved with this new transform function.</li> <li>The API throws now Error objects instead of using error Strings.</li> <li>Handle delimiter guessing, when not all of the fields are quoted</li> <li>Add ability to support escapeChar on unparse</li> <li>Allow to specify the columns used for unparse</li> <li>Add DelimitersToGuess config option</li> </ul> <p>Happy parsing!</p> <h2>5.0.0-beta.0</h2> <p>This is the first beta version of the 5 major version, which introduces the following changes:</p> <ul> <li>We drop support for Node 6.x branch.</li> <li>Workers are now loaded with inline blobs, which means that is only needed to specify the worker: true option and Paparse will load it's code from a blob</li> <li>Step function returns only a single row</li> <li>A function to transform header columns is added. The trimheader option is removed as it can be achieved with this new transform function.</li> <li>The API throws now Error objects instead of using error Strings.</li> </ul> <p>Please test it and report issues if you have on it. As this is a beta version it should be installed with the following command:</p> <p><code>npm install papaparse@beta</code></p> <h2>4.6.0</h2> <p>The release brings a the option to skip lines with no content but with separators.</p> <p>Thanks to <a href="https://github.com/MonkeyDZeke">@MonkeyDZeke</a> for it's contribution</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/mholt/PapaParse/commit/4b192deef192e8025eabf0ac4a77f3c559b85baa"><code>4b192de</code></a> Minor version bump</li> <li><a href="https://github.com/mholt/PapaParse/commit/235a12758cd77266d2e98fd715f53536b34ad621"><code>235a127</code></a> Avoid ReDOS on float dynamic typing (<a href="https://github-redirect.dependabot.com/mholt/PapaParse/issues/779">#779</a>)</li> <li><a href="https://github.com/mholt/PapaParse/commit/a4cf371ff291ccb6b269a2a5872317fe83c31267"><code>a4cf371</code></a> Improve downloadRequestBody documentation</li> <li><a href="https://github.com/mholt/PapaParse/commit/e934deb1f61e2df8cdf6878513ada051b526d620"><code>e934deb</code></a> Support POST method when download is true</li> <li><a href="https://github.com/mholt/PapaParse/commit/7ec146cbc412189cfa2af87376f75cec961cc390"><code>7ec146c</code></a> Using self instead of this to preserve binding. (<a href="https://github-redirect.dependabot.com/mholt/PapaParse/issues/769">#769</a>)</li> <li><a href="https://github.com/mholt/PapaParse/commit/3497ded575f329095fad38c48e2196dd0e87ae4b"><code>3497ded</code></a> Patch version bump</li> <li><a href="https://github.com/mholt/PapaParse/commit/ae73d2a96639beec58a83326de6bd8e8ca0c02b3"><code>ae73d2a</code></a> Use chunk size to determine the processed length</li> <li><a href="https://github.com/mholt/PapaParse/commit/a318396c9d7ac9baab4731c39e6ee748048f3eac"><code>a318396</code></a> Reword newline docs</li> <li><a href="https://github.com/mholt/PapaParse/commit/47b356d6e06cdc2fc7d65c3710a2b5f7cd048b1a"><code>47b356d</code></a> <a href="https://github-redirect.dependabot.com/mholt/PapaParse/issues/727">#727</a> update delimiter and newline index if they are earlier than the current ...</li> <li><a href="https://github.com/mholt/PapaParse/commit/7ad8dda68c6bbfd0e1115dd99b997b2997f836da"><code>7ad8dda</code></a> Address deepEqual using compare by JSON strings. (<a href="https://github-redirect.dependabot.com/mholt/PapaParse/issues/724">#724</a>)</li> <li>Additional commits viewable in <a href="https://github.com/mholt/PapaParse/compare/4.5.0...5.2.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+105 -38

0 comment

2 changed files

pr created time in 3 months

delete branch rechenberger/firestore-query-browser

delete branch : dependabot/npm_and_yarn/handlebars-4.5.3

delete time in 3 months

PR closed rechenberger/firestore-query-browser

Bump handlebars from 4.0.11 to 4.5.3 dependencies

Bumps handlebars from 4.0.11 to 4.5.3. <details> <summary>Changelog</summary>

Sourced from handlebars's changelog.

v4.5.3 - November 18th, 2019

Bugfixes:

  • fix: add "no-prototype-builtins" eslint-rule and fix all occurences - f7f05d7
  • fix: add more properties required to be enumerable - 1988878

Chores / Build:

  • fix: use !== 0 instead of != 0 - c02b05f
  • add chai and dirty-chai and sinon, for cleaner test-assertions and spies, deprecate old assertion-methods - 93e284e, 886ba86, 0817dad, 93516a0

Security:

  • The properties __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ have been added to the list of "properties that must be enumerable". If a property by that name is found and not enumerable on its parent, it will silently evaluate to undefined. This is done in both the compiled template and the "lookup"-helper. This will prevent new Remote-Code-Execution exploits that have been published recently.

Compatibility notes:

  • Due to the security-fixes. The semantics of the templates using __proto__, __defineGetter__, __defineSetter__ and __lookupGetter__ in the respect that those expression now return undefined rather than their actual value from the proto.
  • The semantics have not changed in cases where the properties are enumerable, as in:
{
  __proto__: 'some string'
}
  • The change may be breaking in that respect, but we still only increase the patch-version, because the incompatible use-cases are not intended, undocumented and far less important than fixing Remote-Code-Execution exploits on existing systems.

Commits

v4.5.2 - November 13th, 2019

Bugfixes

  • fix: use String(field) in lookup when checking for "constructor" - d541378
  • test: add fluent API for testing Handlebars - c2ac79c

Compatibility notes:

  • no incompatibility are to be expected </tr></table> ... (truncated) </details> <details> <summary>Commits</summary>
  • c819c8b v4.5.3
  • 827c9d0 Update release notes
  • f7f05d7 fix: add "no-prototype-builtins" eslint-rule and fix all occurences
  • 1988878 fix: add more properties required to be enumerable
  • 886ba86 test/chore: add chai/expect and sinon to "runtime"-environment
  • 0817dad test: add sinon as global variable to eslint in the specs
  • 93516a0 test: add sinon.js for spies, deprecate current assertions
  • 93e284e chore: add chai and dirty-chai for better test assertions
  • c02b05f fix: use !== 0 instead of != 0
  • 8de121d v4.5.2
  • Additional commits viewable in compare view </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+117 -106

1 comment

1 changed file

dependabot[bot]

pr closed time in 3 months

pull request commentrechenberger/firestore-query-browser

Bump handlebars from 4.0.11 to 4.5.3

Superseded by #11.

dependabot[bot]

comment created time in 3 months

PR opened rechenberger/firestore-query-browser

Bump handlebars from 4.0.11 to 4.7.6

Bumps handlebars from 4.0.11 to 4.7.6. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/handlebars-lang/handlebars.js/blob/master/release-notes.md">handlebars's changelog</a>.</em></p> <blockquote> <h2>v4.7.6 - April 3rd, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1672">#1672</a> - Switch cmd parser to latest minimist (<a href="https://api.github.com/users/dougwilson">@dougwilson</a></li> </ul> <p>Compatibility notes:</p> <ul> <li>Restored Node.js compatibility</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.5...v4.7.6">Commits</a></p> <h2>v4.7.5 - April 2nd, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><del>Node.js version support has been changed to v6+</del> Reverted in 4.7.6</li> </ul> <p>Compatibility notes:</p> <ul> <li><del>Node.js < v6 is no longer supported</del> Reverted in 4.7.6</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.4...v4.7.5">Commits</a></p> <h2>v4.7.4 - April 1st, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1666">#1666</a> - Replaced minimist with yargs for handlebars CLI (<a href="https://api.github.com/users/aorinevo">@aorinevo</a>, <a href="https://api.github.com/users/AviVahl">@AviVahl</a> & <a href="https://api.github.com/users/fabb">@fabb</a>)</li> </ul> <p>Compatibility notes:</p> <ul> <li>No incompatibilities are to be expected</li> </ul> <p><a href="https://github.com/wycats/handlebars.js/compare/v4.7.3...v4.7.4">Commits</a></p> <h2>v4.7.3 - February 5th, 2020</h2> <p>Chore/Housekeeping:</p> <ul> <li><a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1644">#1644</a> - Download links to aws broken on handlebarsjs.com - access denied (<a href="https://api.github.com/users/Tea56">@Tea56</a>)</li> <li>Fix spelling and punctuation in changelog - d78cc73</li> </ul> <p>Bugfixes:</p> <ul> <li>Add Type Definition for Handlebars.VERSION, Fixes <a href="https://github-redirect.dependabot.com/wycats/handlebars.js/issues/1647">#1647</a> - 4de51fe</li> <li>Include Type Definition for runtime.js in Package - a32d05f</li> </ul> <p>Compatibility notes:</p> <!-- raw HTML omitted --> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/e6ad93ea01bcde1f8ddaa4b4ebe572dd616abfaa"><code>e6ad93e</code></a> v4.7.6</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/2bf4fc6fd3ae3d8f076d628653f284d85faebeb4"><code>2bf4fc6</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/b64202bc9197307bd785a58693e3820eb9bb41a8"><code>b64202b</code></a> Update release-notes.md</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/c2f1e6203178918569f085e12afdb762cae17fb0"><code>c2f1e62</code></a> Switch cmd parser to latest minimist</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/08e9a11a34c3ad8387a0b85b1334f97cab85191a"><code>08e9a11</code></a> Revert "chore: set Node.js compatibility to v6+"</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/1fd2edee2a12fb228061fcde807905c6b14339c4"><code>1fd2ede</code></a> v4.7.5</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/3c9c2f5cf29cf10f54d5fe4daca6b24b65f0adcf"><code>3c9c2f5</code></a> Update release notes</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/16487a088e13f4d52c6fd6610b9ec71c4a51be8a"><code>16487a0</code></a> chore: downgrade yargs to v14</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/309d2b49a11628d2a8f052c5587e7459968cd705"><code>309d2b4</code></a> chore: set Node.js compatibility to v6+</li> <li><a href="https://github.com/handlebars-lang/handlebars.js/commit/645ac73844918668f9a2f41e49b7cb18ce5abf36"><code>645ac73</code></a> test: fix integration tests</li> <li>Additional commits viewable in <a href="https://github.com/wycats/handlebars.js/compare/v4.0.11...v4.7.6">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~erisds">erisds</a>, a new releaser for handlebars since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+128 -104

0 comment

1 changed file

pr created time in 3 months

more