A Flutter application for viewing a rich feed of GitHub activity.

Reuben Turner

Last update: Nov 24, 2022

Related tags

Templates GitHub-Activity-Feed

Overview

github_activity_feed

A Flutter application for viewing a rich feed of GitHub activity.

Project status:

Public Preview: Version 0.8.2

Supported platforms: Android, iOS (see notes)

Please note that apk's posted to releases are not signed during the public preview phase.

Please note that in order to use this application on iOS you will need to build it yourself. I do not yet have an Apple Developer Account and so I cannot put the app on Testflight.

Implemented Features:

View activity for all users you follow in one place. Tapping on the repository preview section of an activity card or a user will open that repository or user page in the browser (or another GitHub application installed on your device).
Search for users
Send direct feedback to the developer within the app

Initial Release Roadmap:

See the initial release project board

Contributing:

This project uses the GitHub api. It uses the v3 REST api for authentication through my fork of the github package on pub and the v4 graphql api for everything else. Consequently, you will need to do the following to use the API: 1. Create an OAuth app in the developer settings of your GitHub account 2. Create a keys.dart file in /lib with the following variables:
```
const clientId = 'yourClientId';
const clientSecret = 'yourClientSecret';
```
```
3. Depend on the `github` package from git via `https://github.com/GroovinChip/github.dart` like so:
```
```
github:
  git:
    url: [email protected]:GroovinChip/github.dart.git
```
This application uses wiredash.io for user feedback. As such you will need to create an application there and add your keys to keys.dart like so:
```
const wiredashProjectId = 'yourWiredashProjectId';
const wiredashSecret = 'yourWiredashSecret';
```
This project uses Firebase to handle authentication redirect so you will need to create a Firebase project, follow the instructions to configure Android and iOS projects, and download their respective google-services files.
File an issue or comment on an existing issue to report what you will be working to fix or add
When you are ready, open a pull request and request review from me, GroovinChip.

Comments

Error on feed page

GraphQL response field missing?

══════ Exception caught by widgets library ═══════════════════════════════════
The following NoSuchMethodError was thrown building FutureBuilder<dynamic>(dirty, state: _FutureBuilderState<dynamic>#fc754):
The method '[]' was called on null.
Receiver: null
Tried calling: []("user")

The relevant error-causing widget was
    FutureBuilder<dynamic> 
lib/widgets/activity_feed.dart:14
When the exception was thrown, this was the stack
#0      Object.noSuchMethod  (dart:core-patch/object_patch.dart:51:5)
#1      ActivityFeed.build.<anonymous closure> 
lib/widgets/activity_feed.dart:25
#2      _FutureBuilderState.build 
package:flutter/…/widgets/async.dart:732
#3      StatefulElement.build 
package:flutter/…/widgets/framework.dart:4623
#4      ComponentElement.performRebuild 
package:flutter/…/widgets/framework.dart:4506
...
════════════════════════════════════════════════════════════════════════════════

bug activity feed search

opened by lukepighetti 2

Discovery service
Have a tab where the user can view information of potential interest to them that does not appear in their activity feed.

Ideas:

Users to follow

Repos to star

Issues/pull requests of interest

discovery
opened by GroovinChip 2
Bump protobufjs from 6.9.0 to 6.11.3 in /firebase/functions
Bumps protobufjs from 6.9.0 to 6.11.3.

Release notes

Sourced from protobufjs's releases.

v6.11.3

6.11.3 (2022-05-20)

Bug Fixes

deps: use eslint 8.x (#1728) (a8681ce)

do not let setProperty change the prototype (#1731) (b5f1391)

v6.11.2

6.11.2 (2021-04-30)

regenerated index.d.ts to fix the unintended breaking change in types.

v6.11.1

6.11.1 (2021-04-29)

Bug Fixes

parse.js "parent.add(oneof)“ error (@leon776) (#1602)

v6.11.0

6.11.0 (2021-04-28)

Features

support for proto3 optional fields (@alexander-fenster) (#1584)

add --no-service option for pbjs (@mdouglass) (#1577)

Bug Fixes

do not assign oneof members to default values, use null instead (@alexander-fenster) (#1597)

Dependencies

set @types/node to >= 13.7.0 in dependencies (@indutny) (#1575)

protobuf.js v6.10.2

Bug Fixes

es6 export enum (#1446) (9f33784)

make parsedOptions appear in method JSON representation (#1506) (3d29969)

utf8 -> utf16 decoding bug on surrogate pairs (#1486) (75172cd)

protobuf.js v6.10.1

... (truncated)

Changelog

Sourced from protobufjs's changelog.

6.11.3 (2022-05-20)

Bug Fixes

deps: use eslint 8.x (#1728) (a8681ce)

do not let setProperty change the prototype (#1731) (b5f1391)

6.11.2 (2021-04-30)

regenerated index.d.ts to fix the unintended breaking change in types.

6.11.1 (2021-04-29)

Bug Fixes

parse.js "parent.add(oneof)“ error (@leon776) (#1602)

6.11.0 (2021-04-28)

Features

support for proto3 optional fields (@alexander-fenster) (#1584)

add --no-service option for pbjs (@mdouglass) (#1577)

Bug Fixes

do not assign oneof members to default values, use null instead (@alexander-fenster) (#1597)

Dependencies

set @types/node to >= 13.7.0 in dependencies (@indutny) (#1575)

6.10.2 (2020-11-13)

Bug Fixes

es6 export enum (#1446) (9f33784)

make parsedOptions appear in method JSON representation (#1506) (3d29969)

utf8 -> utf16 decoding bug on surrogate pairs (#1486) (75172cd)

6.10.1 (2020-07-16)

Bug Fixes

... (truncated)

Commits

b130dfd chore(6.x): release 6.11.3 (#1737)

c2c17ae build: publish to main

b2c6a5c build: run tests if ci label added (#1734)

a8681ce fix(deps): use eslint 8.x (#1728)

b5f1391 fix: do not let setProperty change the prototype (#1731)

7afd0a3 build: configure 6.x as default branch

37285d0 build: configure backports

d127871 fix: rebuild type, release v6.11.2

da9fdd2 fix(types): bring back Field.rule to .d.ts

a2ccda1 chore: release v6.11.1

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump minimist from 1.2.5 to 1.2.6 in /firebase/functions
Bumps minimist from 1.2.5 to 1.2.6.

Commits

7efb22a 1.2.6

ef88b93 security notice for additional prototype pollution issue

c2b9819 isConstructorOrProto adapted from PR

bc8ecee test from prototype pollution PR

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump ajv from 6.12.2 to 6.12.6 in /firebase/functions
Bumps ajv from 6.12.2 to 6.12.6.

Release notes

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

Commits

fe59143 6.12.6

d580d3e Merge pull request #1298 from ajv-validator/fix-url

fd36389 fix: regular expression for "url" format

490e34c docs: link to v7-beta branch

9cd93a1 docs: note about v7 in readme

877d286 Merge pull request #1262 from b4h0-c4t/refactor-opt-object-type

f1c8e45 6.12.5

764035e Merge branch 'ChALkeR-chalker/fix-comma'

3798160 Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...

a3c7eba Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump node-fetch from 2.6.0 to 2.6.7 in /firebase/functions
Bumps node-fetch from 2.6.0 to 2.6.7.

Release notes

Sourced from node-fetch's releases.

v2.6.7

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

fix: don't forward secure headers to 3th party by @jimmywarting in node-fetch/node-fetch#1453

Full Changelog: https://github.com/node-fetch/node-fetch/compare/v2.6.6...v2.6.7

v2.6.6

What's Changed

fix(URL): prefer built in URL version when available and fallback to whatwg by @jimmywarting in node-fetch/node-fetch#1352

Full Changelog: https://github.com/node-fetch/node-fetch/compare/v2.6.5...v2.6.6

v2.6.2

fixed main path in package.json

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

Changelog

Sourced from node-fetch's changelog.

Changelog

All notable changes will be recorded here.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

What's Changed

core: update fetch-blob by @jimmywarting in node-fetch/node-fetch#1371

docs: Fix typo around sending a file by @jimmywarting in node-fetch/node-fetch#1381

core: (http.request): Cast URL to string before sending it to NodeJS core by @jimmywarting in node-fetch/node-fetch#1378

core: handle errors from the request body stream by @mdmitry01 in node-fetch/node-fetch#1392

core: Better handle wrong redirect header in a response by @tasinet in node-fetch/node-fetch#1387

core: Don't use buffer to make a blob by @jimmywarting in node-fetch/node-fetch#1402

docs: update readme for TS @types/node-fetch by @adamellsworth in node-fetch/node-fetch#1405

core: Fix logical operator priority to disallow GET/HEAD with non-empty body by @maxshirshin in node-fetch/node-fetch#1369

core: Don't use global buffer by @jimmywarting in node-fetch/node-fetch#1422

ci: fix main branch by @dnalborczyk in node-fetch/node-fetch#1429

core: use more node: protocol imports by @dnalborczyk in node-fetch/node-fetch#1428

core: Warn when using data by @jimmywarting in node-fetch/node-fetch#1421

docs: Create SECURITY.md by @JamieSlome in node-fetch/node-fetch#1445

core: don't forward secure headers to 3th party by @jimmywarting in node-fetch/node-fetch#1449

New Contributors

@mdmitry01 made their first contribution in node-fetch/node-fetch#1392

@tasinet made their first contribution in node-fetch/node-fetch#1387

@adamellsworth made their first contribution in node-fetch/node-fetch#1405

@maxshirshin made their first contribution in node-fetch/node-fetch#1369

@JamieSlome made their first contribution in node-fetch/node-fetch#1445

Full Changelog: https://github.com/node-fetch/node-fetch/compare/v3.1.0...v3.1.2

3.1.0

What's Changed

fix(Body): Discourage form-data and buffer() by @jimmywarting in node-fetch/node-fetch#1212

fix: Pass url string to http.request by @serverwentdown in node-fetch/node-fetch#1268

Fix octocat image link by @lakuapik in node-fetch/node-fetch#1281

fix(Body.body): Normalize Body.body into a node:stream by @jimmywarting in node-fetch/node-fetch#924

docs(Headers): Add default Host request header to README.md file by @robertoaceves in node-fetch/node-fetch#1316

Update CHANGELOG.md by @jimmywarting in node-fetch/node-fetch#1292

Add highWaterMark to cloned properties by @davesidious in node-fetch/node-fetch#1162

Update README.md to fix HTTPResponseError by @thedanfernandez in node-fetch/node-fetch#1135

docs: switch url to URL by @dhritzkiv in node-fetch/node-fetch#1318

fix(types): declare buffer() deprecated by @dnalborczyk in node-fetch/node-fetch#1345

chore: fix lint by @dnalborczyk in node-fetch/node-fetch#1348

refactor: use node: prefix for imports by @dnalborczyk in node-fetch/node-fetch#1346

Bump data-uri-to-buffer from 3.0.1 to 4.0.0 by @dependabot in node-fetch/node-fetch#1319

Bump mocha from 8.4.0 to 9.1.3 by @dependabot in node-fetch/node-fetch#1339

Referrer and Referrer Policy by @tekwiz in node-fetch/node-fetch#1057

Add typing for Response.redirect(url, status) by @c-w in node-fetch/node-fetch#1169

... (truncated)

Commits

1ef4b56 backport of #1449 (#1453)

8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)

f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (...

b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)

18193c5 fix v2.6.3 that did not sending query params (#1301)

ace7536 fix: properly encode url with unicode characters (#1291)

152214c Fix(package.json): Corrected main file path in package.json (#1274)

b5e2e41 update version number

2358a6c Honor the size option after following a redirect and revert data uri support

8c197f8 docs: Fix typos and grammatical errors in README.md (#686)

Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump lodash from 4.17.15 to 4.17.21 in /firebase/functions
Bumps lodash from 4.17.15 to 4.17.21.

Commits

f299b52 Bump to v4.17.21

c4847eb Improve performance of toNumber, trim and trimEnd on large input strings

3469357 Prevent command injection through _.template's variable option

ded9bc6 Bump to v4.17.20.

63150ef Documentation fixes.

00f0f62 test.js: Remove trailing comma.

846e434 Temporarily use a custom fork of lodash-cli.

5d046f3 Re-enable Travis tests on 4.17 branch.

aa816b3 Remove /npm-package.

d7fbc52 Bump to v4.17.19

Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by bnjmnt4n, a new releaser for lodash since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1

Null name or login during search

Search can sometimes return a user with a null login or name.

Stack trace:

======== Exception caught by widgets library =======================================================
The following assertion was thrown building UserInfoRow(dirty):
A non-null String must be provided to a Text widget.
'package:flutter/src/widgets/text.dart':
Failed assertion: line 378 pos 10: 'data != null'

The relevant error-causing widget was: 
  UserInfoRow file:///Users/groov/development/flutter_projects/apps/GitHub-Activity-Feed/lib/widgets/user_widgets/user_tile.dart:26:14
When the exception was thrown, this was the stack: 
#2      new Text (package:flutter/src/widgets/text.dart:378:10)
#3      UserInfoRow.build (package:github_activity_feed/widgets/user_widgets/user_tile.dart:86:15)
#4      StatelessElement.build (package:flutter/src/widgets/framework.dart:4755:28)
#5      ComponentElement.performRebuild (package:flutter/src/widgets/framework.dart:4681:15)
#6      Element.rebuild (package:flutter/src/widgets/framework.dart:4375:5)
...
====================================================================================================

Code in question:

Text(
  user.name ?? user.login,
  style: TextStyle(
    fontWeight: FontWeight.bold,
    fontSize: 16,
  ),
),

users search data UI

opened by GroovinChip 1

Bump node-fetch from 2.6.0 to 2.6.1 in /firebase/functions
Bumps node-fetch from 2.6.0 to 2.6.1.

Release notes

Sourced from node-fetch's releases.

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

See CHANGELOG for details.

Changelog

Sourced from node-fetch's changelog.

v2.6.1

This is an important security release. It is strongly recommended to update as soon as possible.

Fix: honor the size option after following a redirect.

Commits

b5e2e41 update version number

2358a6c Honor the size option after following a redirect and revert data uri support

8c197f8 docs: Fix typos and grammatical errors in README.md (#686)

1e99050 fix: Change error message thrown with redirect mode set to error (#653)

244e6f6 docs: Show backers in README

6a5d192 fix: Properly parse meta tag when parameters are reversed (#682)

47a24a0 chore: Add opencollective badge

7b13662 chore: Add funding link

5535c2e fix: Check for global.fetch before binding it (#674)

1d5778a docs: Add Discord badge

Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by akepinski, a new releaser for node-fetch since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump lodash from 4.17.15 to 4.17.19 in /firebase/functions
Bumps lodash from 4.17.15 to 4.17.19.

Release notes

Sourced from lodash's releases.

4.17.16

Commits

d7fbc52 Bump to v4.17.19

2e1c0f2 Add npm-package

1b6c282 Bump to v4.17.18

a370ac8 Bump to v4.17.17

1144918 Rebuild lodash and docs

3a3b0fd Bump to v4.17.16

c84fe82 fix(zipObjectDeep): prototype pollution (#4759)

e7b28ea Sanitize sourceURL so it cannot affect evaled code (#4518)

0cec225 Fix lodash.isEqual for circular references (#4320) (#4515)

94c3a81 Document matches* shorthands for over* methods (#4510) (#4514)

Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by mathias, a new releaser for lodash since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Paginate activity feed on scroll

Implement the pagination when scrolling through the activity feed. Off the top of my head this will entail using a ScrollController and loading another page of the query response when reading the end of the list
activity feed performance

opened by GroovinChip 1