Ecosyste.ms: Timeline
Browse the timeline of events for every public repo on GitHub. Data updated hourly from GH Archive.
sschuberth closed a pull request on oss-review-toolkit/ort
deps: update actions/setup-node digest to 39370e3
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/setup-node](https://redirect.github.com/actions/setup-node) | action | digest | `0a44ba7` ...
sschuberth pushed 1 commit to main oss-review-toolkit/ort
- deps: update actions/setup-java digest to 8df1039 bc94e33
sschuberth closed a pull request on oss-review-toolkit/ort
deps: update actions/setup-java digest to 8df1039
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/setup-java](https://redirect.github.com/actions/setup-java) | action | digest | `b36c23c` ...
codecov[bot] created a comment on a pull request on oss-review-toolkit/ort
## [Codecov](https://app.codecov.io/gh/oss-review-toolkit/ort/pull/9332?dropdown=coverage&src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=os...
codecov[bot] created a comment on a pull request on oss-review-toolkit/ort
## [Codecov](https://app.codecov.io/gh/oss-review-toolkit/ort/pull/9333?dropdown=coverage&src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=os...
renovate[bot] opened a pull request on oss-review-toolkit/ort
deps: update actions/setup-node digest to 39370e3
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/setup-node](https://redirect.github.com/actions/setup-node) | action | digest | `0a44ba7` ...
renovate[bot] created a branch on oss-review-toolkit/ort
renovate/actions-setup-node-digest - A suite of tools to automate software compliance checks.
renovate[bot] opened a pull request on oss-review-toolkit/ort
deps: update actions/setup-java digest to 8df1039
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [actions/setup-java](https://redirect.github.com/actions/setup-java) | action | digest | `b36c23c` ...
renovate[bot] created a branch on oss-review-toolkit/ort
renovate/actions-setup-java-digest - A suite of tools to automate software compliance checks.
fviernau created a review comment on a pull request on oss-review-toolkit/ort
If the point is to showcase that the namespace needs to be different in order to obtain results, can we then drop all the details testing and just assert that "CVE-2023-4929" is amongst the return...
fviernau created a review comment on a pull request on oss-review-toolkit/ort
Would it make sense to turn these tests into require conditions, to make them more separate from real tests?
fviernau created a review comment on a pull request on oss-review-toolkit/ort
Why do these constructors get dropped?
fviernau created a review comment on a pull request on oss-review-toolkit/ort
Hm, I wonder for e.g. the Go packages, with this `v2` or `vn` at the end, if this is correct. See e.g. https://stackoverflow.com/questions/53344471/taking-a-repository-to-v2. Would that mean the p...
fviernau created a review comment on a pull request on oss-review-toolkit/ort
Shall we keep the check for `name.isNotBlank() && pkg.id.version.isNotBlank()` ?
fviernau pushed 1 commit to pnpm-rewrite oss-review-toolkit/ort
- refactor(pnpm): Make `Pnpm` separate from `Npm` Stop inheriting from `Npm` and rely entirely on the output of `pnpm`... 4d83590
fviernau pushed 1 commit to pnpm-rewrite oss-review-toolkit/ort
- refactor(pnpm): Make `Pnpm` separate from `Npm` Stop inheriting from `Npm` and rely entirely on the output of `pnpm`... bdc9df7
github-advanced-security[bot] created a review comment on a pull request on oss-review-toolkit/ort
## Reports files that do not follow ORT's order for imports Imports in file '/home/runner/work/ort/ort/plugins/package-managers/node/src/main/kotlin/pnpm/Pnpm.kt' are not sorted alphabetically or ...
fviernau created a review comment on a pull request on oss-review-toolkit/ort
I believe this topics has now been fully addressed by https://github.com/oss-review-toolkit/ort/pull/9328.
fviernau pushed 13 commits to pnpm-rewrite oss-review-toolkit/ort
- docs(yarn): Re-align the docs with the function This is a fix-up for ad9a363. Signed-off-by: Frank Viernau <frank_v... 02192a3
- docs(yarn): Add information about the mentioned network issue Signed-off-by: Frank Viernau <[email protected]> 0460948
- refactor(npm): Allow `getRemotePackageDetails()` to return `null` Prepare for an upcoming change that signals that p... 771a6a5
- refactor(yarn): Use a more speaking name for `output` This function is not suitable for parsing the JSON objects on ... 8e90a79
- refactor(yarn): Extract `extractDataNodes()` Avoid code duplication in an upcoming change. Signed-off-by: Frank Vie... 26703f9
- fix(yarn): Fix up the error handling in `getRemotePackageDetails()` Previously, calling `parseYarnInfo(process.stder... 41d1c6f
- deps: update jetbrains/qodana-action action to v2024.2.5 31edf71
- refactor(npm): Make `getRemotePackageDetails()` handle unsucessful runs This way `getRemotePackageDetails()` shouldn... 155c97e
- refactor(npm): Remove a now unnecessary `runCatching()` All implementations of `getRemotePackageDetails()` by now re... 32ff2bb
- refactor(npm): Move `parsePackage()` outside of the `Npm` class Prepare for re-using this function from other child ... 06f5aa5
- refactor(npm): Move `parseProject()` out of the class Prepare for re-use in an upcoming change. Signed-off-by: Fran... d017a2c
- refactor(node)!: Move `Pnpm` into its own dedicated package Prepare for adding further `Pnpm` specific classes. Sig... bc40a42
- refactor(pnpm): Make `Pnpm` separate from `Npm` Stop inheriting from `Npm` and rely entirely on the output of `pnpm`... f590776
fviernau pushed 10 commits to yarn-simplifcations oss-review-toolkit/ort
- docs(yarn): Re-align the docs with the function This is a fix-up for ad9a363. Signed-off-by: Frank Viernau <frank_v... 02192a3
- docs(yarn): Add information about the mentioned network issue Signed-off-by: Frank Viernau <[email protected]> 0460948
- refactor(npm): Allow `getRemotePackageDetails()` to return `null` Prepare for an upcoming change that signals that p... 771a6a5
- refactor(yarn): Use a more speaking name for `output` This function is not suitable for parsing the JSON objects on ... 8e90a79
- refactor(yarn): Extract `extractDataNodes()` Avoid code duplication in an upcoming change. Signed-off-by: Frank Vie... 26703f9
- fix(yarn): Fix up the error handling in `getRemotePackageDetails()` Previously, calling `parseYarnInfo(process.stder... 41d1c6f
- deps: update jetbrains/qodana-action action to v2024.2.5 31edf71
- refactor(npm): Make `getRemotePackageDetails()` handle unsucessful runs This way `getRemotePackageDetails()` shouldn... 155c97e
- refactor(npm): Remove a now unnecessary `runCatching()` All implementations of `getRemotePackageDetails()` by now re... 32ff2bb
- refactor(npm): Move `parsePackage()` outside of the `Npm` class Prepare for re-using this function from other child ... 06f5aa5
fviernau pushed 74 commits to pnpm-rewrite oss-review-toolkit/ort
- deps: update dependency ch.qos.logback:logback-classic to v1.5.10 d67369d
- deps: Update the gradle-maven-publish-plugin to version 0.30.0 b4523c9
- fix(maven): Correctly convert repositories When resolving artifacts using a `ProjectBuilder`, remote repositories fr... acfb440
- test(pub): Update expected results Signed-off-by: Sebastian Schuberth <[email protected]> bb336f0
- deps: update dependency ch.qos.logback:logback-classic to v1.5.11 b54962b
- fix(gradle-plugin): Guard `dependencyResolutionManagement` usage Do not use that feature before it was added in Grad... 47f73b4
- fix(pub): Properly end the input structure when parsing specs Signed-off-by: Sebastian Schuberth <sebastian@doubleop... 0d99de2
- refactor(pub): Port the lockfile parsing to KxS Signed-off-by: Frank Viernau <[email protected]> Signed-off-by:... 831b113
- chore(clearly-defined)!: Make `CoordinatesSerializer` internal This is only used in `Coordinates.kt` of the same mod... 4470675
- chore: Align custom kotlinx-serializers to be objects Emphasize that there never will be multiple instances of these... 9607cd0
- deps: update dependency io.github.pdvrieze.xmlutil:serialization to v0.90.2 06537b2
- deps: update dependency org.cyclonedx:cyclonedx-core-java to v9.1.0 8c103c4
- fix(spdx-utils): Accept the "no patent" exception See e.g. [1], which is marked as an exception. [1]: https://scanc... 9d0873c
- feat(fossid): Make FossID sensitivity configurable Add the option for the user to specify the sensitivity for a Foss... e5c6e0c
- ci(release): Increase the timeout for creating the staging repository Creating the Sonatype staging repository occas... bac154a
- test(pub): Update expected results Signed-off-by: Sebastian Schuberth <[email protected]> 64dc2c1
- fix(cli): Remove credentials from environment variables Do not expose any credentials, e.g. when included in proxy U... 03b4ed9
- deps: update dependency com.github.jmongard.git-semver-plugin to v0.12.11 ed4bccf
- chore: Align custom kotlinx-serializers to be objects, part 2 This is a follow-up to 9607cd0 for code that was merge... d743b8a
- docs(pub): Add links to dependency types Signed-off-by: Sebastian Schuberth <[email protected]> 89f8422
- and 54 more ...
sschuberth pushed 1 commit to main oss-review-toolkit/ort
- deps: update jetbrains/qodana-action action to v2024.2.5 31edf71
sschuberth closed a pull request on oss-review-toolkit/ort
deps: update jetbrains/qodana-action action to v2024.2.5
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [JetBrains/qodana-action](https://redirect.github.com/JetBrains/qodana-action) | action | patch | `...