profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/todrobbins/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.
Tod Robbins todrobbins @BONCOM Saratoga Springs, UT https://todrobbins.com friendly wizard 🏴

todrobbins/awesome-gedcom 118

GEDCOM utilities that will ease the pain

okfn/dataportals.org 96

Open Data Portals and Sites around the world

datproject/comm-comm 89

Community Communication

amiaopensource/open-workflows 82

List of open workflows and resources for A/V archiving

datproject/newsletter 13

Text of the newsletters

todrobbins/audio-digitization-toolkit 12

A list of resources for setting up an audio digitization workflow

amiaopensource/grabbags 7

grabbags is an enhanced usage of the LOC bagit Python Library

amiaopensource/linked-media-formats 6

Compilation of resources on Linked Open Data for film and media.

digidem/mapeo-docs 6

Docs site for mapeo

Pull request review commentmdn/browser-compat-data

adding File System Access API compat

+{+  "api": {+    "FileSystemAccess": {+      "__compat": {+        "mdn_url": "https://developer.mozilla.org/docs/Web/API/File_System_Access_API",+        "spec_url": "https://wicg.github.io/file-system-access/",+        "support": {

Thanks @connorshea! I'll work on that.

todrobbins

comment created time in 2 days

PullRequestReviewEvent

PR opened mdn/browser-compat-data

adding File System Access API compat

This is my first contribution, so I'd be happy to receive feedback/guidance. I just noticed compat was missing for this new/experimental API.

Cheers!

+20 -0

0 comment

1 changed file

pr created time in 8 days

create barnchtodrobbins/browser-compat-data

branch : add-filesystem-access-compat

created branch time in 8 days

fork todrobbins/browser-compat-data

This repository contains compatibility data for Web technologies as displayed on MDN

https://developer.mozilla.org

fork in 8 days

delete branch todrobbins/tutorial

delete branch : patch-1

delete time in 10 days

pull request commentokfn/publicbodies

fixes #117: run workflow only on main repo

Nice catch!

augusto-herrmann

comment created time in a month

startedAgregoreWeb/agregore-chat-example

started time in a month

issue commentokfn/dataportals.org

Javascript on the site not loading

No worries! Thanks for the reference!

augusto-herrmann

comment created time in a month

push eventokfn/publicbodies

Augusto Herrmann

commit sha 12c52efe9f069856fe9fb63b9812687b597bc0cd

dockerize nodejs and update some packages

view details

Augusto Herrmann

commit sha 847405a70e7b9399748b3067701d4ee731bc76e8

fix Dockerfile running instructions

view details

Augusto Herrmann

commit sha e50345e34f208c3180da5c1fe0ebd09ed049bc9e

update express to modern usage

view details

Augusto Herrmann

commit sha dcce0d024609f5aefd2b3ba7a2f8d5e414682950

update csv to modern usage

view details

Augusto Herrmann

commit sha e62eb5b34218371204684091347b5691dbedbc9c

fix remaining migration from jade to pug

view details

Augusto Herrmann

commit sha 6f954ffa31f8e07ad0f0164a5a9f2395e55b7341

fix less middleware usage

view details

Augusto Herrmann

commit sha a405bbc255f03ea6b1e4437ea22a5d8da8cd7001

refactor csv reading to use the new interface

view details

Augusto Herrmann

commit sha 3997c58993ffc38996a457d53c44c1d4a348abad

add docker config to expose port

view details

Augusto Herrmann

commit sha 58a58172af192f87b7d61deb62c2ce942cb9b782

fix more jade -> pug migration issues

view details

Augusto Herrmann

commit sha 2a62779d0787064aa131af2d8470260492cad9b0

add instructions for running with Docker

view details

Augusto Herrmann

commit sha 4e6f9c903248ebff4163f0f3483044beca5b374a

add heroku deployment config file

view details

Tod Robbins

commit sha e4675c6cb3723792b3dd2189156fa8cd93db8a71

Merge pull request #111 from augusto-herrmann/update_nodejs_packages Update nodejs packages

view details

push time in 2 months

issue closedokfn/publicbodies

Update website to use a modern / currently supported stack

The website uses very early node.js and express framework. Most libraries used are either deprecated, have been substituted for new versions (e.g. jade -> pug) or are no longer supported. npm reports that the package versions used have many vulnerabilities, some of which are classified as "high" and "critical".

As per the log when trying to run it on node.js 12:

npm WARN deprecated less-middleware@0.1.15: Updated API and improved functionality.
npm WARN deprecated mkdirp@0.3.5: Legacy versions of mkdirp are no longer supported. Please update to mkdirp 1.x. (Note that the API surface has changed to use Promises in 1.x.)
npm WARN deprecated request@2.88.2: request has been deprecated, see https://github.com/request/request/issues/3142
npm WARN deprecated har-validator@5.1.5: this library is no longer supported

> leveldown@6.0.0 install /home/node/portal/node_modules/leveldown
> node-gyp-build

npm notice created a lockfile as package-lock.json. You should commit this file.
npm WARN publicbodies@0.1.0 license should be a valid SPDX license expression

added 159 packages from 149 contributors and audited 160 packages in 11.598s

13 packages are looking for funding
  run `npm fund` for details

found 29 vulnerabilities (10 low, 11 moderate, 7 high, 1 critical)
  run `npm audit fix` to fix them, or `npm audit` for details

We need to port the website to current javascript and node.js. Alternatively, it could also could be reimplemented on another language and framework that is currently supported.

closed time in 2 months

augusto-herrmann

PR merged okfn/publicbodies

Reviewers
Update nodejs packages

Fixes #110. I've updated the packages and code to get the site running on modern node.js, and using Docker.

To test the site, first build the container using

docker build --rm -t publicbodies .

then run the container with

docker run --rm --volume="$PWD:/home/node/portal" -p 3000:3000 -it publicbodies node index.js

The site should appear on localhost:3000 .

+114 -62

15 comments

13 changed files

augusto-herrmann

pr closed time in 2 months

startedatek-cloud/adb-api

started time in 2 months

startedatek-cloud/lonestar

started time in 2 months

startedatek-cloud/atek

started time in 2 months

startedatek-cloud/atek.cloud

started time in 2 months

startedatek-cloud/statek

started time in 2 months

push eventwasatchtenants/website

dependabot[bot]

commit sha 4c2facd80e73b5faa262336ad2741b331a15b193

Bump rexml from 3.2.4 to 3.2.5 Bumps [rexml](https://github.com/ruby/rexml) from 3.2.4 to 3.2.5. - [Release notes](https://github.com/ruby/rexml/releases) - [Changelog](https://github.com/ruby/rexml/blob/master/NEWS.md) - [Commits](https://github.com/ruby/rexml/compare/v3.2.4...v3.2.5) --- updated-dependencies: - dependency-name: rexml dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

view details

Tod Robbins

commit sha b8de65091b935f88c5a50edbdf4da258f8a57990

Merge pull request #3 from wasatchtenants/dependabot/bundler/rexml-3.2.5 Bump rexml from 3.2.4 to 3.2.5

view details

push time in 2 months

PR merged wasatchtenants/website

Bump rexml from 3.2.4 to 3.2.5 dependencies

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.


Bumps rexml from 3.2.4 to 3.2.5. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/ruby/rexml/blob/master/NEWS.md">rexml's changelog</a>.</em></p> <blockquote> <h2>3.2.5 - 2021-04-05 {#version-3-2-5}</h2> <h3>Improvements</h3> <ul> <li> <p>Add more validations to XPath parser.</p> </li> <li> <p><code>require "rexml/document"</code> by default. [GitHub#36][Patch by Koichi ITO]</p> </li> <li> <p>Don't add <code>#dclone</code> method to core classes globally. [GitHub#37][Patch by Akira Matsuda]</p> </li> <li> <p>Add more documentations. [Patch by Burdette Lamar]</p> </li> <li> <p>Added <code>REXML::Elements#parent</code>. [GitHub#52][Patch by Burdette Lamar]</p> </li> </ul> <h3>Fixes</h3> <ul> <li> <p>Fixed a bug that <code>REXML::DocType#clone</code> doesn't copy external ID information.</p> </li> <li> <p>Fixed round-trip vulnerability bugs. See also: <a href="https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/">https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/</a> [HackerOne#1104077][CVE-2021-28965][Reported by Juho Nurminen]</p> </li> </ul> <h3>Thanks</h3> <ul> <li> <p>Koichi ITO</p> </li> <li> <p>Akira Matsuda</p> </li> <li> <p>Burdette Lamar</p> </li> <li> <p>Juho Nurminen</p> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/ruby/rexml/commit/a622645e980ea5b91ad7b4d6fec32d113f15df88"><code>a622645</code></a> Add 3.2.5 entry</li> <li><a href="https://github.com/ruby/rexml/commit/3c137eb119550874b2b3e27d12b733ca67033377"><code>3c137eb</code></a> Fix a parser bug that some data may be ignored before DOCTYPE</li> <li><a href="https://github.com/ruby/rexml/commit/9b311e59ae05749e082eb6bbefa1cb620d1a786e"><code>9b311e5</code></a> Fix a bug that invalid document declaration may be accepted</li> <li><a href="https://github.com/ruby/rexml/commit/f9d88e4948b4a43294c25dc0edb16815bd9d8618"><code>f9d88e4</code></a> Fix a bug that invalid document declaration may be generated</li> <li><a href="https://github.com/ruby/rexml/commit/f7bab8937513b1403cea5aff874cbf32fd5e8551"><code>f7bab89</code></a> Fix a bug that invalid element end may be accepted</li> <li><a href="https://github.com/ruby/rexml/commit/6a250d2cd1194c2be72becbdd9c3e770aa16e752"><code>6a250d2</code></a> Fix a bug that invalid element start may be accepted</li> <li><a href="https://github.com/ruby/rexml/commit/2fe62e29094d95921d7e19abbd2e26b23d78dc5b"><code>2fe62e2</code></a> Fix a bug that invalid notation declaration may be accepted</li> <li><a href="https://github.com/ruby/rexml/commit/a659c63e37414506dfb0d4655e031bb7a2e73fc8"><code>a659c63</code></a> Fix a bug that invalid notation declaration may be generated</li> <li><a href="https://github.com/ruby/rexml/commit/790dd113ce693ce831cbbc53f2f990a317643f75"><code>790dd11</code></a> Use ruby/setup-ruby (<a href="https://github-redirect.dependabot.com/ruby/rexml/issues/66">#66</a>)</li> <li><a href="https://github.com/ruby/rexml/commit/eda1b2007dd8751f381bf741f16c9e33c5d3e52a"><code>eda1b20</code></a> Clean up and enhance high-level RDoc (<a href="https://github-redirect.dependabot.com/ruby/rexml/issues/65">#65</a>)</li> <li>Additional commits viewable in <a href="https://github.com/ruby/rexml/compare/v3.2.4...v3.2.5">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+1 -1

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

push eventwasatchtenants/website

dependabot[bot]

commit sha 66d553e6d49a8459653fe4ce69c8dc8597a6708b

Bump kramdown from 2.3.0 to 2.3.1 Bumps [kramdown](https://github.com/gettalong/kramdown) from 2.3.0 to 2.3.1. - [Release notes](https://github.com/gettalong/kramdown/releases) - [Changelog](https://github.com/gettalong/kramdown/blob/master/doc/news.page) - [Commits](https://github.com/gettalong/kramdown/commits) --- updated-dependencies: - dependency-name: kramdown dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

view details

Tod Robbins

commit sha 7b3045860732dfca8c5309066475344468b1b297

Merge pull request #2 from wasatchtenants/dependabot/bundler/kramdown-2.3.1 Bump kramdown from 2.3.0 to 2.3.1

view details

push time in 2 months

PR merged wasatchtenants/website

Bump kramdown from 2.3.0 to 2.3.1 dependencies

Bumps kramdown from 2.3.0 to 2.3.1. <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/gettalong/kramdown/commits">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+2 -2

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

push eventwasatchtenants/website

dependabot[bot]

commit sha b9ca43206cf7a551282f17296aad2177d70263af

Bump addressable from 2.7.0 to 2.8.0 Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.7.0 to 2.8.0. - [Release notes](https://github.com/sporkmonger/addressable/releases) - [Changelog](https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md) - [Commits](https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.8.0) --- updated-dependencies: - dependency-name: addressable dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

view details

Tod Robbins

commit sha 5151765151577549c4c7c701f101192b9daf6612

Merge pull request #1 from wasatchtenants/dependabot/bundler/addressable-2.8.0 Bump addressable from 2.7.0 to 2.8.0

view details

push time in 2 months

PR merged wasatchtenants/website

Bump addressable from 2.7.0 to 2.8.0 dependencies

Bumps addressable from 2.7.0 to 2.8.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sporkmonger/addressable/blob/main/CHANGELOG.md">addressable's changelog</a>.</em></p> <blockquote> <h1>Addressable 2.8.0</h1> <ul> <li>fixes ReDoS vulnerability in Addressable::Template#match</li> <li>no longer replaces <code>+</code> with spaces in queries for non-http(s) schemes</li> <li>fixed encoding ipv6 literals</li> <li>the <code>:compacted</code> flag for <code>normalized_query</code> now dedupes parameters</li> <li>fix broken <code>escape_component</code> alias</li> <li>dropping support for Ruby 2.0 and 2.1</li> <li>adding Ruby 3.0 compatibility for development tasks</li> <li>drop support for <code>rack-mount</code> and remove Addressable::Template#generate</li> <li>performance improvements</li> <li>switch CI/CD to GitHub Actions</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sporkmonger/addressable/commit/6469a232c0f1892809ff66737370c765d574e16c"><code>6469a23</code></a> Updating gemspec again</li> <li><a href="https://github.com/sporkmonger/addressable/commit/24336385de0261571b3adaad0431459edb420c79"><code>2433638</code></a> Merge branch 'main' of github.com:sporkmonger/addressable into main</li> <li><a href="https://github.com/sporkmonger/addressable/commit/e9c76b889789c75d7073c17b0ab557635d3f6704"><code>e9c76b8</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/sporkmonger/addressable/issues/378">#378</a> from ashmaroli/flat-map</li> <li><a href="https://github.com/sporkmonger/addressable/commit/56c5cf7ece9223ff4240e07078cc26d3adbbbd30"><code>56c5cf7</code></a> Update the gemspec</li> <li><a href="https://github.com/sporkmonger/addressable/commit/c1fed1ca0a44c448e74d761fd44ed94869199807"><code>c1fed1c</code></a> Require a non-vulnerable rake</li> <li><a href="https://github.com/sporkmonger/addressable/commit/0d8a3127e35886ce9284810a7f2438bff6b43cbc"><code>0d8a312</code></a> Adding note about ReDoS vulnerability</li> <li><a href="https://github.com/sporkmonger/addressable/commit/89c76130ce255c601f642a018cb5fb5a80e679a7"><code>89c7613</code></a> Merge branch 'template-regexp' into main</li> <li><a href="https://github.com/sporkmonger/addressable/commit/cf8884f815c96b646c796f707bf768cf6eb65543"><code>cf8884f</code></a> Note about alias fix</li> <li><a href="https://github.com/sporkmonger/addressable/commit/bb03f7112e8e478240a0f96e1cc7428159b41586"><code>bb03f71</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/sporkmonger/addressable/issues/371">#371</a> from charleystran/add_missing_encode_component_doc_entry</li> <li><a href="https://github.com/sporkmonger/addressable/commit/6d1d8094a66cbf932ecf69db6850bc9edaf86de0"><code>6d1d809</code></a> Adding note about :compacted normalization</li> <li>Additional commits viewable in <a href="https://github.com/sporkmonger/addressable/compare/addressable-2.7.0...addressable-2.8.0">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

</details>

+2 -2

0 comment

1 changed file

dependabot[bot]

pr closed time in 2 months

issue commentokfn/publicbodies

Automate deployment of website / continuous delivery

Screen Shot 2021-09-08 at 11 30 24 AM

I connected the repo and enabled automatic deployment and also just kicked off a manual deploy.

augusto-herrmann

comment created time in 2 months

push eventdigidem/mapeo-docs

Kira Oakley

commit sha c52a902a169220a8e73d51a75cd43797730bdc17

Add missing links for presets & fields schema.

view details

Kira Oakley

commit sha 3e5359ff9c7069741e30b0b989ce5237f0e257dd

Make it clear that 7zip can also handle tar files.

view details

Tod Robbins

commit sha d7b79e8d52c7ef0def1ca256a4ace7b7db88b897

Merge pull request #16 from hackergrrl/patch-1 Small improvements

view details

push time in 2 months

PR merged digidem/mapeo-docs

Small improvements
  • Add missing links for presets & fields schema.
  • Make it clear that 7zip can also handle tar files.
+2 -2

0 comment

2 changed files

hackergrrl

pr closed time in 2 months

PullRequestReviewEvent

push eventdigidem/mapeo-docs

Kira Oakley

commit sha d3deced36bb883b06fa6b84cf8b0dbd11146180e

Typo + formatting

view details

Tod Robbins

commit sha e9a430e53ad729910bb3e9a541ab48779c6e1ac7

Merge pull request #18 from hackergrrl/patch-3 Typo + formatting

view details

push time in 2 months

PR merged digidem/mapeo-docs

Typo + formatting
+2 -2

0 comment

1 changed file

hackergrrl

pr closed time in 2 months

PullRequestReviewEvent