wesbos

wesbos

I create courses that make learning things like JavaScript easy and fun 🔥

Member Since 11 years ago

me, Hamilton, Ontario

Experience Points
2.6w
follower
Lessons Completed
31
follow
Lessons Completed
115
stars
Best Reply Awards
289
repos

761 contributions in the last year

Pinned
⚡ Slam Dunk JavaScript
⚡ 30 Day Vanilla JS Challenge
⚡ Starter files for learning React.js with React for Beginners
⚡ Ask me anything!
⚡ Starter Files and Solutions for Full Stack Advanced React and GraphQL
⚡ dad jokes
Activity
Oct
19
2 days ago
Activity icon
issue

wesbos issue comment wesbos/Advanced-React

wesbos
wesbos

Everyone canReadProducts.

In 68/69 an isSignedIn check was added to canReadProducts preventing users that are not logged in to the site from browsing products. This should probably be omitted. fix

wesbos
wesbos

Just gotta merge another big one first

Activity icon
issue

wesbos issue comment wesbos/Advanced-React

wesbos
wesbos

Everyone canReadProducts.

In 68/69 an isSignedIn check was added to canReadProducts preventing users that are not logged in to the site from browsing products. This should probably be omitted. fix

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Everyone canReadProducts.

In 68/69 an isSignedIn check was added to canReadProducts preventing users that are not logged in to the site from browsing products. This should probably be omitted. fix

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Everyone canReadProducts.

In 68/69 an isSignedIn check was added to canReadProducts preventing users that are not logged in to the site from browsing products. This should probably be omitted. fix

Activity icon
issue

wesbos issue comment wesbos/Advanced-React

wesbos
wesbos

Everyone canReadProducts.

In 68/69 an isSignedIn check was added to canReadProducts preventing users that are not logged in to the site from browsing products. This should probably be omitted. fix

wesbos
wesbos

thanks, you are right, will update this!

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump next from 10.0.3 to 11.1.1 in /sick-fits/frontend

Bumps next from 10.0.3 to 11.1.1.

Release notes

Sourced from next's releases.

v11.1.1

Core Changes

  • Next.js swc publish flow: #27984
  • Ensure config file message is only shown once: #28017
  • Add missing fields to NextConfig type: #27974
  • use a shared worker pool for collecting page data and static page generation: #27924
  • Use @​next scope for native packages: #28046
  • Fix generateBuildId type that can be async function: #28040
  • Fix image optimization encoding url: #28045
  • Clean up Document in preparation for streaming: #28032
  • Render as a concatenation of streams: #28082
  • Add support for dynamic HTML: #28085
  • Support suspense in next dynamic: #27611
  • Handle blob urls in image component: #27975
  • Bypass webpack compilation for precompiled @​next/polyfills-nomodule: #27596
  • Update util to 0.12.4: #27939
  • Remove duplicate doctypes: #28089
  • Fix revalidate for initial notFound: true paths: #28097
  • Add proper error when failing to load next.config.js: #28099
  • Fix: wrong link error message: #28127
  • Add support for Jaeger trace target: #28129
  • Enable pure client suspense in blocking rendering: #28165
  • Add entrypoint tracing: #25538
  • Add module type to build-module trace: #28128
  • Update to latest babel versions: #28174
  • Improve jaeger traces: #28168
  • fix development mode bug with pages with "+" and other special characters: #28122
  • let loaders automatically infer source map setting: #28204
  • Avoid fs write next-env.d.ts on read-only filesystems: #28206
  • Document usage of suspense option of next/dynamic: #28210
  • Add warning when parent styles break next/image: #28221
  • Use zen-observable library: #28214
  • Fix HMR when custom _app or _document is removed: #28227
  • Add relationship between issuer and module to traces: #28192
  • Update generating next-server dependencies: #28223
  • Fix next/image blur placeholder when JS is disabled: #28269
  • Ensure adding _app/_document HMRs correctly: #28279
  • upgrade webpack to 5.51.1: #28291
  • [ESLint] Adds process.exit to next lint success output: #28299
  • Fix next env vars injection in dynamic: #28309
  • Add layout to data-nimg attribute: #28312
  • Add data attribute to script component: #28310
  • Ensure @​babel/core is de-duped when nccing: #28384
  • Fix forked NODE_OPTIONS except for inspect: #28420
  • [ESLint] Enable caching by default: #28349
  • Update test config to leverage swc: #28400
  • Add missing typescript property to NextConfig: #28459
  • next/script fix duplicate scripts : #28428
  • Ensure error is shown correctly for empty headers field: #28430

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump url-parse from 1.4.7 to 1.5.3 in /finished-application/backend

Bumps url-parse from 1.4.7 to 1.5.3.

Commits
  • ad44493 [dist] 1.5.3
  • c798461 [fix] Fix host parsing for file URLs (#210)
  • 201034b [dist] 1.5.2
  • 2d9ac2c [fix] Sanitize only special URLs (#209)
  • fb128af [fix] Use 'null' as origin for non special URLs
  • fed6d9e [fix] Add a leading slash only if the URL is special
  • 94872e7 [fix] Do not incorrectly set the slashes property to true
  • 81ab967 [fix] Ignore slashes after the protocol for special URLs
  • ee22050 [ci] Use GitHub Actions
  • d2979b5 [fix] Special case the file: protocol (#204)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump next from 10.0.5 to 11.1.1 in /finished-application/frontend

Bumps next from 10.0.5 to 11.1.1.

Release notes

Sourced from next's releases.

v11.1.1

Core Changes

  • Next.js swc publish flow: #27984
  • Ensure config file message is only shown once: #28017
  • Add missing fields to NextConfig type: #27974
  • use a shared worker pool for collecting page data and static page generation: #27924
  • Use @​next scope for native packages: #28046
  • Fix generateBuildId type that can be async function: #28040
  • Fix image optimization encoding url: #28045
  • Clean up Document in preparation for streaming: #28032
  • Render as a concatenation of streams: #28082
  • Add support for dynamic HTML: #28085
  • Support suspense in next dynamic: #27611
  • Handle blob urls in image component: #27975
  • Bypass webpack compilation for precompiled @​next/polyfills-nomodule: #27596
  • Update util to 0.12.4: #27939
  • Remove duplicate doctypes: #28089
  • Fix revalidate for initial notFound: true paths: #28097
  • Add proper error when failing to load next.config.js: #28099
  • Fix: wrong link error message: #28127
  • Add support for Jaeger trace target: #28129
  • Enable pure client suspense in blocking rendering: #28165
  • Add entrypoint tracing: #25538
  • Add module type to build-module trace: #28128
  • Update to latest babel versions: #28174
  • Improve jaeger traces: #28168
  • fix development mode bug with pages with "+" and other special characters: #28122
  • let loaders automatically infer source map setting: #28204
  • Avoid fs write next-env.d.ts on read-only filesystems: #28206
  • Document usage of suspense option of next/dynamic: #28210
  • Add warning when parent styles break next/image: #28221
  • Use zen-observable library: #28214
  • Fix HMR when custom _app or _document is removed: #28227
  • Add relationship between issuer and module to traces: #28192
  • Update generating next-server dependencies: #28223
  • Fix next/image blur placeholder when JS is disabled: #28269
  • Ensure adding _app/_document HMRs correctly: #28279
  • upgrade webpack to 5.51.1: #28291
  • [ESLint] Adds process.exit to next lint success output: #28299
  • Fix next env vars injection in dynamic: #28309
  • Add layout to data-nimg attribute: #28312
  • Add data attribute to script component: #28310
  • Ensure @​babel/core is de-duped when nccing: #28384
  • Fix forked NODE_OPTIONS except for inspect: #28420
  • [ESLint] Enable caching by default: #28349
  • Update test config to leverage swc: #28400
  • Add missing typescript property to NextConfig: #28459
  • next/script fix duplicate scripts : #28428
  • Ensure error is shown correctly for empty headers field: #28430

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump next from 10.0.5 to 11.1.1 in /finished-application/backend

Bumps next from 10.0.5 to 11.1.1.

Release notes

Sourced from next's releases.

v11.1.1

Core Changes

  • Next.js swc publish flow: #27984
  • Ensure config file message is only shown once: #28017
  • Add missing fields to NextConfig type: #27974
  • use a shared worker pool for collecting page data and static page generation: #27924
  • Use @​next scope for native packages: #28046
  • Fix generateBuildId type that can be async function: #28040
  • Fix image optimization encoding url: #28045
  • Clean up Document in preparation for streaming: #28032
  • Render as a concatenation of streams: #28082
  • Add support for dynamic HTML: #28085
  • Support suspense in next dynamic: #27611
  • Handle blob urls in image component: #27975
  • Bypass webpack compilation for precompiled @​next/polyfills-nomodule: #27596
  • Update util to 0.12.4: #27939
  • Remove duplicate doctypes: #28089
  • Fix revalidate for initial notFound: true paths: #28097
  • Add proper error when failing to load next.config.js: #28099
  • Fix: wrong link error message: #28127
  • Add support for Jaeger trace target: #28129
  • Enable pure client suspense in blocking rendering: #28165
  • Add entrypoint tracing: #25538
  • Add module type to build-module trace: #28128
  • Update to latest babel versions: #28174
  • Improve jaeger traces: #28168
  • fix development mode bug with pages with "+" and other special characters: #28122
  • let loaders automatically infer source map setting: #28204
  • Avoid fs write next-env.d.ts on read-only filesystems: #28206
  • Document usage of suspense option of next/dynamic: #28210
  • Add warning when parent styles break next/image: #28221
  • Use zen-observable library: #28214
  • Fix HMR when custom _app or _document is removed: #28227
  • Add relationship between issuer and module to traces: #28192
  • Update generating next-server dependencies: #28223
  • Fix next/image blur placeholder when JS is disabled: #28269
  • Ensure adding _app/_document HMRs correctly: #28279
  • upgrade webpack to 5.51.1: #28291
  • [ESLint] Adds process.exit to next lint success output: #28299
  • Fix next env vars injection in dynamic: #28309
  • Add layout to data-nimg attribute: #28312
  • Add data attribute to script component: #28310
  • Ensure @​babel/core is de-duped when nccing: #28384
  • Fix forked NODE_OPTIONS except for inspect: #28420
  • [ESLint] Enable caching by default: #28349
  • Update test config to leverage swc: #28400
  • Add missing typescript property to NextConfig: #28459
  • next/script fix duplicate scripts : #28428
  • Ensure error is shown correctly for empty headers field: #28430

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump tar from 6.1.0 to 6.1.11 in /finished-application/backend

Bumps tar from 6.1.0 to 6.1.11.

Commits
  • e573aee 6.1.11
  • edb8e9a fix: perf regression on hot string munging path
  • a9d9b05 chore(test): Avoid spurious failures packing node_modules/.cache
  • 24b8bda fix(test): use posix path for testing path reservations
  • e5a223c fix(test): make unpack test pass on case-sensitive fs
  • 188badd 6.1.10
  • 23312ce drop dirCache for symlink on all platforms
  • 4f1f4a2 6.1.9
  • 875a37e fix: prevent path escape using drive-relative paths
  • b6162c7 fix: reserve paths properly for unicode, windows
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump path-parse from 1.0.6 to 1.0.7 in /finished-application/backend

Bumps path-parse from 1.0.6 to 1.0.7.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump color-string from 1.5.4 to 1.5.5 in /finished-application/backend

Bumps color-string from 1.5.4 to 1.5.5.

Release notes

Sourced from color-string's releases.

1.5.5 (Patch/Security Release) - hwb() ReDos patch (low-severity)

Release notes copied verbatim from the commit message, which can be found here: 0789e21284c33d89ebc4ab4ca6f759b9375ac9d3

Discovered by Yeting Li, c/o Colin Ife via Snyk.io.

A ReDos (Regular Expression Denial of Service) vulnerability was responsibly disclosed to me via email by Colin on Mar 5 2021 regarding an exponential time complexity for linearly increasing input lengths for hwb() color strings.

Strings reaching more than 5000 characters would see several milliseconds of processing time; strings reaching more than 50,000 characters began seeing 1500ms (1.5s) of processing time.

The cause was due to a the regular expression that parses hwb() strings - specifically, the hue value - where the integer portion of the hue value used a 0-or-more quantifier shortly thereafter followed by a 1-or-more quantifier.

This caused excessive backtracking and a cartesian scan, resulting in exponential time complexity given a linear increase in input length.

Thank you Yeting Li and Colin Ife for bringing this to my attention in a secure, responsible and professional manner.

A CVE will not be assigned for this vulnerability.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump ws from 5.2.2 to 5.2.3 in /finished-application/backend

Bumps ws from 5.2.2 to 5.2.3.

Release notes

Sourced from ws's releases.

5.2.3

Bug fixes

  • Backported 00c425ec to the 5.x release line (76d47c14).
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump trim-newlines from 3.0.0 to 3.0.1 in /finished-application/backend

Bumps trim-newlines from 3.0.0 to 3.0.1.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump ssri from 6.0.1 to 6.0.2 in /finished-application/backend

Bumps ssri from 6.0.1 to 6.0.2.

Changelog

Sourced from ssri's changelog.

6.0.2 (2021-04-07)

Bug Fixes

  • backport regex change from 8.0.1 (b30dfdb), closes #19

Commits
Maintainer changes

This version was pushed to npm by nlf, a new releaser for ssri since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump hosted-git-info from 2.8.8 to 2.8.9 in /sick-fits/backend

Bumps hosted-git-info from 2.8.8 to 2.8.9.

Changelog

Sourced from hosted-git-info's changelog.

2.8.9 (2021-04-07)

Bug Fixes

Commits
Maintainer changes

This version was pushed to npm by nlf, a new releaser for hosted-git-info since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump elliptic from 6.5.3 to 6.5.4 in /finished-application/backend

Bumps elliptic from 6.5.3 to 6.5.4.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump hosted-git-info from 2.8.8 to 2.8.9 in /finished-application/backend

Bumps hosted-git-info from 2.8.8 to 2.8.9.

Changelog

Sourced from hosted-git-info's changelog.

2.8.9 (2021-04-07)

Bug Fixes

Commits
Maintainer changes

This version was pushed to npm by nlf, a new releaser for hosted-git-info since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump lodash from 4.17.20 to 4.17.21 in /sick-fits/backend

Bumps lodash from 4.17.20 to 4.17.21.

Commits
  • f299b52 Bump to v4.17.21
  • c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
  • 3469357 Prevent command injection through _.template's variable option
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

pull request

wesbos pull request wesbos/Advanced-React

wesbos
wesbos

Bump lodash from 4.17.20 to 4.17.21 in /finished-application/backend

Bumps lodash from 4.17.20 to 4.17.21.

Commits
  • f299b52 Bump to v4.17.21
  • c4847eb Improve performance of toNumber, trim and trimEnd on large input strings
  • 3469357 Prevent command injection through _.template's variable option
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Oct
18
3 days ago
push

wesbos push wesbos/eslint-config-wesbos

wesbos
wesbos

add missing @babel/core npm package

wesbos
wesbos

revert my editor sorting packages by name which is causing a big diff

wesbos
wesbos

Merge pull request #99 from Asjas/wesbos

add missing @babel/core npm package

commit sha: 91e55174ed57f115c436938b7e8fe31d017ad114

push time in 3 days ago
pull request

wesbos pull request wesbos/eslint-config-wesbos

wesbos
wesbos

add missing @babel/core npm package

Hey @wesbos 👋

This closes issue #98.

A few people in Slack have been coming across this Failed to load parser '@babel/eslint-parser' declared in '.eslintrc » eslint-config-wesbos': error as well and when I ask them to install the @babel/core package it start to work.

I checked the @babel/eslint-parser docs and they mention that @babel/core is a necessary dependent. I added it to both peerDependencies and devDependencies.

Could you merge this and publish a new version of eslint-config-wesbos? 🙂

Oct
13
1 week ago
push

wesbos push wesbos/wesbos

wesbos
wesbos

Update 16-debugging-tools.mdx

Add heading for the last 2 of 6 types of debugging — Network Request and Break On Attribute

wesbos
wesbos

Merge pull request #266 from tomMobileDev123/patch-1

Update 16-debugging-tools.mdx

commit sha: 96988cc64df4039500833969017b2da877f698f2

push time in 1 week ago
pull request

wesbos pull request wesbos/wesbos

wesbos
wesbos

Update 16-debugging-tools.mdx

Add heading for the last 2 of 6 types of debugging — Network Request and Break On Attribute

Activity icon
issue

wesbos issue comment wesbos/wesbos

wesbos
wesbos

Update 16-debugging-tools.mdx

Add heading for the last 2 of 6 types of debugging — Network Request and Break On Attribute

Sep
17
1 month ago
Sep
13
1 month ago
Activity icon
issue

wesbos issue comment wesbos/Wes-Bos-Captions

wesbos
wesbos

Captions not matched the all videos of RFB (captions are outdated)

Please match captions to all videos of RFB. I think, these captions are outdated

wesbos
wesbos

thanks for the heads up - they are up to date on the videos, will get them into this repo

Previous