{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":223132511,"defaultBranch":"main","name":"digipost-html-validator","ownerLogin":"digipost","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2019-11-21T09:05:45.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/1013853?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1713183712.0","currentOid":""},"activityList":{"items":[{"before":"896477ca0fb1f91141ea2269bace7042b63d150c","after":null,"ref":"refs/heads/upgrade-sanitizer","pushedAt":"2024-04-15T12:21:19.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"}},{"before":"90b65f8be1b5bdbddc02e9e5c9ea55d0e5dea172","after":"57d8d89f029475c648107b82e661fd60c8d64983","ref":"refs/heads/main","pushedAt":"2024-04-15T12:21:16.000Z","pushType":"pr_merge","commitsCount":3,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"},"commit":{"message":"Merge pull request #16 from digipost/upgrade-sanitizer\n\nUpgrade sanitizer","shortMessageHtmlLink":"Merge pull request #16 from digipost/upgrade-sanitizer"}},{"before":"651c141f8fbf6484851f94213b3ce260008daf77","after":"896477ca0fb1f91141ea2269bace7042b63d150c","ref":"refs/heads/upgrade-sanitizer","pushedAt":"2024-04-15T09:50:49.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"},"commit":{"message":"Upgrade OWASP sanitizer\n\nThis upgrades the OWASP sanitizer library to the latest version. Guava\nis removed from this version.\nhttps://github.com/OWASP/java-html-sanitizer/releases/tag/release-20220608.1\n\nThe order of noreferrer, nofollow, noopener is apparently random now, so\nI had to rewrite those tests to not care about order\n(https://github.com/OWASP/java-html-sanitizer/issues/336).","shortMessageHtmlLink":"Upgrade OWASP sanitizer"}},{"before":null,"after":"651c141f8fbf6484851f94213b3ce260008daf77","ref":"refs/heads/upgrade-sanitizer","pushedAt":"2024-04-15T09:48:58.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"},"commit":{"message":"Upgrade OWASP sanitizer\n\nThis upgrades the OWASP sanitizer library to the latest version. Guava\nis removed from this version.\n\nThe order of noreferrer, nofollow, noopener is apparently random now, so\nI had to rewrite those tests to not care about order.","shortMessageHtmlLink":"Upgrade OWASP sanitizer"}},{"before":"1fb2c4045741c9ddee671e479d9c26ff27b58352","after":null,"ref":"refs/heads/actions-patch","pushedAt":"2023-11-16T13:48:08.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"hanskhe","name":"Hans Kristian","path":"/hanskhe","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1413264?s=80&v=4"}},{"before":"cd80d865b0a11094c345c99b6910084606800269","after":"90b65f8be1b5bdbddc02e9e5c9ea55d0e5dea172","ref":"refs/heads/main","pushedAt":"2023-11-16T13:47:22.000Z","pushType":"pr_merge","commitsCount":3,"pusher":{"login":"hanskhe","name":"Hans Kristian","path":"/hanskhe","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1413264?s=80&v=4"},"commit":{"message":"Merge pull request #15 from digipost/actions-patch\n\nUpdate build.yml with new action-versions","shortMessageHtmlLink":"Merge pull request #15 from digipost/actions-patch"}},{"before":"2fa76ecdc1e98efe4cafb6c703a65fc99306083c","after":"1fb2c4045741c9ddee671e479d9c26ff27b58352","ref":"refs/heads/actions-patch","pushedAt":"2023-11-16T13:33:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hanskhe","name":"Hans Kristian","path":"/hanskhe","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1413264?s=80&v=4"},"commit":{"message":"Fix semver version for java 8","shortMessageHtmlLink":"Fix semver version for java 8"}},{"before":null,"after":"2fa76ecdc1e98efe4cafb6c703a65fc99306083c","ref":"refs/heads/actions-patch","pushedAt":"2023-11-16T13:32:22.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"hanskhe","name":"Hans Kristian","path":"/hanskhe","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1413264?s=80&v=4"},"commit":{"message":"Update build.yml with new action-versions","shortMessageHtmlLink":"Update build.yml with new action-versions"}},{"before":"099a922e79e8999769c328f951f30b3b91871260","after":null,"ref":"refs/heads/remove-guava","pushedAt":"2023-10-31T14:20:08.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"}},{"before":"8193c5845293da09dc21b47ee68b36119d6d8365","after":"cd80d865b0a11094c345c99b6910084606800269","ref":"refs/heads/main","pushedAt":"2023-10-31T14:20:05.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"},"commit":{"message":"Merge pull request #14 from digipost/remove-guava\n\nRemove Guava dependency","shortMessageHtmlLink":"Merge pull request #14 from digipost/remove-guava"}},{"before":null,"after":"099a922e79e8999769c328f951f30b3b91871260","ref":"refs/heads/remove-guava","pushedAt":"2023-10-31T11:36:16.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"draperunner","name":"Mats","path":"/draperunner","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/4339443?s=80&v=4"},"commit":{"message":"Remove Guava dependency\n\nThere was only one usage of Guava and this was easy to replace with\nstandard Java.\n\nWe still have Guava transitively through owasp-java-html-sanitizer. This\ndependency uses a vulnerable version of Guava, so we override it. I have\ntherefore put it in dependencyManagement, which I guess makes more\nsense.","shortMessageHtmlLink":"Remove Guava dependency"}},{"before":"4d8e024dc4ed6a8814ada82b1b1369b09316cdb2","after":null,"ref":"refs/heads/dependabot/maven/com.google.guava-guava-32.0.0-jre","pushedAt":"2023-09-04T07:54:34.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"7cf2cca3d0f178afac730b178ebc565f212237f7","after":null,"ref":"refs/heads/fix-vulnerabilities","pushedAt":"2023-09-04T07:48:20.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"Kristianrosland","name":"Kristian Rosland","path":"/Kristianrosland","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/19691662?s=80&v=4"}},{"before":"ca67563e582a7bcb0f769f9c2a44bc1616d41682","after":"8193c5845293da09dc21b47ee68b36119d6d8365","ref":"refs/heads/main","pushedAt":"2023-09-04T07:48:17.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"Kristianrosland","name":"Kristian Rosland","path":"/Kristianrosland","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/19691662?s=80&v=4"},"commit":{"message":"Merge pull request #13 from digipost/fix-vulnerabilities\n\nFiks sårbarheter i guava","shortMessageHtmlLink":"Merge pull request #13 from digipost/fix-vulnerabilities"}},{"before":null,"after":"7cf2cca3d0f178afac730b178ebc565f212237f7","ref":"refs/heads/fix-vulnerabilities","pushedAt":"2023-09-04T07:35:03.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"Kristianrosland","name":"Kristian Rosland","path":"/Kristianrosland","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/19691662?s=80&v=4"},"commit":{"message":"Fiks sårbarheter i guava\n\n- https://nvd.nist.gov/vuln/detail/cve-2020-8908\n- https://nvd.nist.gov/vuln/detail/CVE-2023-2976","shortMessageHtmlLink":"Fiks sårbarheter i guava"}},{"before":null,"after":"4d8e024dc4ed6a8814ada82b1b1369b09316cdb2","ref":"refs/heads/dependabot/maven/com.google.guava-guava-32.0.0-jre","pushedAt":"2023-06-14T22:53:52.239Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump guava from 31.1-jre to 32.0.0-jre\n\nBumps [guava](https://github.com/google/guava) from 31.1-jre to 32.0.0-jre.\n- [Release notes](https://github.com/google/guava/releases)\n- [Commits](https://github.com/google/guava/commits)\n\n---\nupdated-dependencies:\n- dependency-name: com.google.guava:guava\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump guava from 31.1-jre to 32.0.0-jre"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEMOSe_gA","startCursor":null,"endCursor":null}},"title":"Activity · digipost/digipost-html-validator"}