1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/6477ae054a5885f8170f9a97217d80c449fe2dd5|6477ae05>

- docs: Update instructions for apt-key deprecation (#275) osquery/osquery-site

#275 docs: Update instructions for apt-key deprecation Pull request opened by lengau Fixes #274 osquery/osquery-site ✅ All checks have passed 3/3 successful checks

#274 `apt-key` is deprecated on Debian-based systems Issue created by lengau The `apt-key` command is deprecated as of apt v2.4.0. (This currently affects Debian testing and unstable, Ubuntu 22.04+ and any dsitributions based on those.) The most straightforward way to change the documentation would be to have it request the following commands:

export OSQUERY_KEY=1484120AC4E9F8A1A577AEEE97A80C63C9D8B80B
sudo gpg --no-default-keyring --keyring /etc/apt/keyrings/osquery.gpg --keyserver <hkp://keyserver.ubuntu.com> $OSQUERY_KEY
sudo add-apt-repository 'deb [arch=amd64 signed-by=/etc/apt/keyrings/osquery.gpg] <https://pkg.osquery.io/deb> deb main'
sudo apt install osquery

Other changes to this block: 1. Removed

apt-get update

step, since

add-apt-repository

does this automatically 2. Changed

apt-get

to the newer

apt

command. osquery/osquery-site

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/03fdfb96b566f0f3cd8d5c62b1bdb49b077ec172|03fdfb96>

- Release 5.8.2 and update runner version (#277) osquery/osquery-site

Deployment to github-pages by directionless osquery/osquery-site

#278 Fix schema page visual jumping #49 Pull request opened by hirohe toggle 'noscroll' style on body will cause #49 issue in some browsers this pr instead use

overscroll-behavior: none

to prevent over scrolling on side list that causing scrolling chain osquery/osquery-site ✅ All checks have passed 3/3 successful checks

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/b30a59634e91286a0738e8ec6d2533a6b4a39da6|b30a5963>

- Fix schema page visual jumping #49 (#278) osquery/osquery-site

#279 Fix slack invite links Pull request opened by directionless I don't really understand what happened, but the prior link seems to have expired. This is a new one. Nominally not expiring osquery/osquery-site ✅ All checks have passed 3/3 successful checks

Anyone around for https://github.com/osquery/osquery-site/pull/279 ?

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by sharvilshah

<https://github.com/osquery/osquery-site/commit/029cbc33fb78c9a4e70d09752295d9159299a325|029cbc33>

- Fix slack invite links (#279) osquery/osquery-site

Deployment to github-pages by directionless osquery/osquery-site

#280 Rough in GHA workflow to generate website builds Pull request opened by directionless This roughs in running the website release in GitHub Actions. It's not totally clear what kind of permissions need to be in place. Maybe this will work osquery/osquery-site ✅ All checks have passed 3/3 successful checks

Anyone around to review or thumb ^^^? I can run the workflow until it’s merged in.

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/291939d2c2ae354f6606c62ed5088935464d5d02|291939d2>

- Rough in GHA workflow to generate website builds (#280) osquery/osquery-site

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/952532453d4c56470bd60bd6659c5609800b7424|95253245>

- Bump ua-parser-js from 0.7.28 to 0.7.33 (#273) osquery/osquery-site

#273 Bump ua-parser-js from 0.7.28 to 0.7.33 Pull request opened by dependabot[bot] Bumps ua-parser-js from 0.7.28 to 0.7.33. Changelog Sourced from ua-parser-js's changelog.

Version 0.7.33 / 1.0.33

• Add new browser : Cobalt

• Identify Macintosh as an Apple device

• Fix ReDoS vulnerability

Version 0.8

Version 0.8 was created by accident. This version is now deprecated and no longer maintained, please update to version 0.7 / 1.0.

Commits • `f2d0db0` Bump version 0.7.33 • `a6140a1` Remove unsafe regex in trim() function • `a886604` Fix #605 - Identify Macintosh as Apple device • `b814bcd` Merge pull request #606 from rileyjshaw/patch-1 • `7f71024` Fix documentation • `c239ac5` Merge pull request #604 from obecerra3/master • `8d3c2d3` Add new browser: Cobalt • `d11fc47` Bump version 0.7.32 • `b490110` Merge branch 'develop' of github.com:faisalman/ua-parser-js • `cb5da5e` Merge pull request #600 from moekm/develop • Additional commits viewable in compare view Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page. osquery/osquery-site ✅ All checks have passed 3/3 successful checks

#281 Bump semver from 5.7.0 to 5.7.2 Pull request opened by dependabot[bot] Bumps semver from 5.7.0 to 5.7.2. Release notes Sourced from semver's releases.

v5.7.2

5.7.2 (2023-07-10)

Bug Fixes

• `2f8fd41` #585 better handling of whitespace (#585) (`@​joaomoreno`, `@​lukekarrys`)

Changelog Sourced from semver's changelog.

5.7.2 (2023-07-10)

Bug Fixes

• `2f8fd41` #585 better handling of whitespace (#585) (`@​joaomoreno`, `@​lukekarrys`)

5.7

• Add

minVersion

method

5.6

• Move boolean

loose

param to an options object, with backwards-compatibility protection.

• Add ability to opt out of special prerelease version handling with the

includePrerelease

option flag.

5.5

• Add version coercion capabilities

5.4

• Add intersection checking

5.3

• Add

minSatisfying

method

5.2

• Add

prerelease(v)

that returns prerelease components

5.1

• Add Backus-Naur for ranges

• Remove excessively cute inspection methods

5.0

• Remove AMD/Browserified build artifacts

• Fix ltr and gtr when using the

*

range

• Fix for range

*

with a prerelease identifier

Commits • `f8cc313` chore: release 5.7.2 • `2f8fd41` fix: better handling of whitespace (#585) • `deb5ad5` chore: `@​npmcli/template-oss``@​4`.16.0 • `c83c18c` 5.7.1 • `956e228` Correct typo in README • See full diff in compare view Maintainer changes This version was pushed to npm by lukekarrys, a new releaser for semver since your current version. Dependabot compatibility score Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the Security Alerts page. osquery/osquery-site ✅ All checks have passed 3/3 successful checks

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/2173b93b5f7459d358a75f5e8b907d2cdeafb2e0|2173b93b>

- Bump semver from 5.7.0 to 5.7.2 (#281) osquery/osquery-site

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/627764ce86f7d6ebc73404f926a388dc38922d6b|627764ce>

- Bump qs from 6.5.2 to 6.5.3 (#269) osquery/osquery-site

#269 Bump qs from 6.5.2 to 6.5.3 Pull request opened by dependabot[bot] Bumps qs from 6.5.2 to 6.5.3. Changelog Sourced from qs's changelog.

6.5.3

• [Fix] `parse`: ignore

__proto__

keys (#428)

• [Fix] `utils.merge`: avoid a crash with a null target and a truthy non-array source

• [Fix] correctly parse nested arrays

• [Fix] `stringify`: fix a crash with

strictNullHandling

and a custom `filter`/`serializeDate` (#279)

• [Fix] `utils`: `merge`: fix crash when

source

is a truthy primitive & no options are provided

• [Fix] when

parseArrays

is false, properly handle keys ending in

[]

• [Fix] fix for an impossible situation: when the formatter is called with a non-string value

• [Fix] `utils.merge`: avoid a crash with a null target and an array source

• [Refactor] `utils`: reduce observable [[Get]]s

• [Refactor] use cached

Array.isArray

• [Refactor] `stringify`: Avoid arr = arr.concat(...), push to the existing instance (#269)

• [Refactor] `parse`: only need to reassign the var once

• [Robustness] `stringify`: avoid relying on a global

undefined

(#427)

• [readme] remove travis badge; add github actions/codecov badges; update URLs

• [Docs] Clean up license text so it’s properly detected as BSD-3-Clause

• [Docs] Clarify the need for "arrayLimit" option

• [meta] fix README.md (#399)

• [meta] add FUNDING.yml

• [actions] backport actions from main

• [Tests] always use

String(x)

over

x.toString()

• [Tests] remove nonexistent tape option

• [Dev Deps] backport from main

Commits • `298bfa5` v6.5.3 • `ed0f5dc` [Fix] `parse`: ignore

__proto__

keys (#428) • `691e739` [Robustness] `stringify`: avoid relying on a global

undefined

(#427) • `1072d57` [readme] remove travis badge; add github actions/codecov badges; update URLs • `12ac1c4` [meta] fix README.md (#399) • `0338716` [actions] backport actions from main • `5639c20` Clean up license text so it’s properly detected as BSD-3-Clause • `51b8a0b` add FUNDING.yml • `45f6759` [Fix] fix for an impossible situation: when the formatter is called with a no... • `f814a7f` [Dev Deps] backport from main • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page.

Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

osquery/osquery-site ✅ All checks have passed 1/1 successful checks

#282 Release 5.9.1 Pull request opened by github-actions[bot] osquery/osquery-site

#283 GHA driven website updates Pull request opened by directionless on <!date^1689813166^{date_short}|2023-07-20T00:32:46Z> Opens a PR! #282 Probably gets weird if it's run on a branch that exists. TBD! osquery/osquery-site ✅ All checks have passed 4/4 successful checks

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/b9504e7232449cdce3484747006f7bce008cc8f7|b9504e72>

- Release 5.9.1 (#282) osquery/osquery-site

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/9afb3fe14a56a154a346c8611cc7fd100c8cbdde|9afb3fe1>

- Bump json5 from 1.0.1 to 1.0.2 (#271) osquery/osquery-site

#271 Bump json5 from 1.0.1 to 1.0.2 Pull request opened by dependabot[bot] on <!date^1672861016^{date_short}|2023-01-04T19:36:56Z> Bumps json5 from 1.0.1 to 1.0.2. Release notes Sourced from json5's releases.

v1.0.2

• Fix: Properties with the name

__proto__

are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295). This has been backported to v1. (#298)

Changelog Sourced from json5's changelog.

Unreleased [code, diff]

v2.2.3 [code, diff]

• Fix: json5@2.2.3 is now the 'latest' release according to npm instead of v1.0.2. (#299)

v2.2.2 [code, diff]

• Fix: Properties with the name

__proto__

are added to objects and arrays. (#199) This also fixes a prototype pollution vulnerability reported by Jonathan Gregson! (#295).

v2.2.1 [code, diff]

• Fix: Removed dependence on minimist to patch CVE-2021-44906. (#266)

v2.2.0 [code, diff]

• New: Accurate and documented TypeScript declarations are now included. There is no need to install

@types/json5

. (#236, #244)

v2.1.3 [code, diff]

• Fix: An out of memory bug when parsing numbers has been fixed. (#228, #229)

v2.1.2 [code, diff]

... (truncated) Commits • `a62db1e` 1.0.2 • `e0c23fe` docs: update CHANGELOG for v1.0.2 • `62a6540` fix: add proto to objects and arrays • See full diff in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page.

Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

osquery/osquery-site ✅ All checks have passed 1/1 successful checks

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/cdba0c2851414290fb9a53d87ea2fb113a61788d|cdba0c28>

- Bump decode-uri-component from 0.2.0 to 0.2.2 (#267) osquery/osquery-site

#267 Bump decode-uri-component from 0.2.0 to 0.2.2 Pull request opened by dependabot[bot] Bumps decode-uri-component from 0.2.0 to 0.2.2. Release notes Sourced from decode-uri-component's releases.

v0.2.2

• Prevent overwriting previously decoded tokens 980e0bf

SamVerschueren/decode-uri-component@v0.2.1...v0.2.2

v0.2.1

• Switch to GitHub workflows 76abc93

• Fix issue where decode throws - fixes #6 746ca5d

• Update license (#1) 486d7e2

• Tidelift tasks a650457

• Meta tweaks 66e1c28

SamVerschueren/decode-uri-component@v0.2.0...v0.2.1

Commits • `a0eea46` 0.2.2 • `980e0bf` Prevent overwriting previously decoded tokens • `3c8a373` 0.2.1 • `76abc93` Switch to GitHub workflows • `746ca5d` Fix issue where decode throws - fixes #6 • `486d7e2` Update license (#1) • `a650457` Tidelift tasks • `66e1c28` Meta tweaks • See full diff in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page.

Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

osquery/osquery-site ✅ All checks have passed 2/2 successful checks

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/4e5a9f803f437f7f10802c42392778eecbdc7e30|4e5a9f80>

- Bump moment from 2.29.2 to 2.29.4 (#256) osquery/osquery-site

#256 Bump moment from 2.29.2 to 2.29.4 Pull request opened by dependabot[bot] Bumps moment from 2.29.2 to 2.29.4. Changelog Sourced from moment's changelog.

2.29.4

• Release Jul 6, 2022

• #6015 [bugfix] Fix ReDoS in preprocessRFC2822 regex

2.29.3 Full changelog

• Release Apr 17, 2022

• #5995 [bugfix] Remove const usage

• #5990 misc: fix advisory link

Commits • `000ac18` Build 2.24.4 • `f2006b6` Bump version to 2.24.4 • `536ad0c` Update changelog for 2.29.4 • `9a3b589` [bugfix] Fix redos in preprocessRFC2822 regex (#6015) • `6374fd8` Merge branch 'master' into develop • `b4e6153` Revert "[bugfix] Fix redos in preprocessRFC2822 regex (#6015)" • `7aebb16` [bugfix] Fix redos in preprocessRFC2822 regex (#6015) • `57c9062` Build 2.29.3 • `aaf50b6` Fixup release complaints • `26f4aef` Bump version to 2.29.3 • Additional commits viewable in compare view Dependabot compatibility score You can trigger a rebase of this PR by commenting

@dependabot rebase

. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: •

@dependabot rebase

will rebase this PR •

@dependabot recreate

will recreate this PR, overwriting any edits that have been made to it •

@dependabot merge

will merge this PR after your CI passes on it •

@dependabot squash and merge

will squash and merge this PR after your CI passes on it •

@dependabot cancel merge

will cancel a previously requested merge and block automerging •

@dependabot reopen

will reopen this PR if it is closed •

@dependabot close

will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually •

@dependabot ignore this major version

will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this minor version

will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) •

@dependabot ignore this dependency

will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) •

@dependabot use these labels

will set the current labels as the default for future PRs for this repo and language •

@dependabot use these reviewers

will set the current reviewers as the default for future PRs for this repo and language •

@dependabot use these assignees

will set the current assignees as the default for future PRs for this repo and language •

@dependabot use this milestone

will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the Security Alerts page.

Note > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

osquery/osquery-site ✅ All checks have passed 2/2 successful checks

1 new commit pushed to

<https://github.com/osquery/osquery-site/tree/source|source>

by directionless

<https://github.com/osquery/osquery-site/commit/5b401735b714ee7206677a11c848de57c5c60066|5b401735>

- Bump async from 2.6.2 to 2.6.4 (#251) osquery/osquery-site