Berken Tekin
5d2bbdf147
Merge 8f774beeaa into ff2f16e8df
2026-07-01 17:31:15 +05:30
Chuck
ff2f16e8df
fix(bundler): use new --all syntax ( #13837 )
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
2026-07-01 11:03:49 +02:00
vladislav doster
81becab1e7
docs: typos ( #13846 )
...
Signed-off-by: vladdoster <vladislav.doster@icloud.com>
2026-07-01 10:42:26 +02:00
dependabot[bot]
65749801cf
chore(deps): bump actions/setup-python from 6.2.0 to 6.3.0 ( #13842 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](a309ff8b42...ece7cb06ca )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-version: 6.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-29 01:11:51 +02:00
Sri Harsha Ponukumati
d2379b2701
chore(install): quote vars and defensive programming ( #13840 )
2026-06-26 17:07:51 +02:00
Lixin2026
ff1df9a039
docs: formatting ( #13830 )
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
2026-06-25 12:23:42 +02:00
dependabot[bot]
639b566f0e
chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 ( #13832 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-06-25 09:36:20 +02:00
ANDI FAUZAN HEDIANTORO
df34d2b8d5
chore(ansible): zsh-ify some code ( #13797 )
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
2026-06-15 12:22:58 +02:00
Lucas Ma
96ea17080a
fix(installer): tolerate sudo shims without -k ( #13821 )
...
Co-authored-by: Lucas Ma <7184042+pony-maggie@users.noreply.github.com>
2026-06-15 12:18:28 +02:00
Lucas Ma
0a91ce20d5
fix(vi-mode): keep cursor hook status successful ( #13822 )
2026-06-15 12:15:30 +02:00
御风
9a67e3b3f5
fix(git): support nounset option ( #13816 )
2026-06-15 12:08:05 +02:00
SOUFIAN3HM
d708ca9d99
fix(macports): correct inverted logic ( #13812 )
2026-06-15 12:06:22 +02:00
SOUFIAN3HM
ffa8487bc7
fix(aws): use return instead of exit to avoid killing the shell ( #13811 )
2026-06-15 11:56:22 +02:00
Yotam Korah
3f6f72010f
feat(dnf): add dnfur alias ( #13806 )
2026-06-15 11:51:24 +02:00
ANDI FAUZAN HEDIANTORO
5181447da8
fix(deno): remove deprecated aliases and add modern ones ( #13796 )
...
- Remove alias for (deprecated in Deno 1.x, removed
in Deno 2.0)
- Remove alias for (the --unstable flag
has been deprecated in favor of granular --unstable-* flags)
- Add alias for (type-check without running)
- Add alias for (HTTP server introduced in Deno 1.37)
- Update README to reflect changes
2026-06-12 10:39:09 -07:00
Felipe Santos
c954bbb168
feat(websearch)!: rename grok to grokcom ( #13792 )
...
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
BREAKING CHANGE: Rename `grok` alias to `grokcom` to avoid conflicts with Grok Build CLI.
2026-06-10 10:56:28 +02:00
dependabot[bot]
630a7c04c3
chore(deps): bump github/codeql-action from 4.36.0 to 4.36.2 ( #13803 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-06-08 09:12:39 +02:00
dependabot[bot]
e25f96735e
chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 ( #13804 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-06-08 09:12:20 +02:00
Rayan Salhab
70ad5e3df8
fix(golang): complete go module tools ( #13786 )
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
2026-06-01 11:06:46 +02:00
Ininsico
b86a99da17
fix(brew): add sbin to PATH ( #13780 )
2026-06-01 10:55:38 +02:00
Carlo Sala
cfdc4822d4
ci(deps): make git clone support non-branch refs ( #13787 )
2026-06-01 09:03:26 +02:00
Dylan Roman
c86ba78e2f
feat(extract): add support for extracting to a specified directory ( #13734 )
2026-05-30 13:42:57 +02:00
Marc Cornellà
d170d18746
fix(dotenv): introduce safe parsing of .env files ( #13778 )
...
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
* fix(dotenv): expect explicit yes before loading .env file
* fix(dotenv): implement secure parsing for .env files and add comprehensive tests
* feat(dotenv): check for .env file size to prevent DoS
* fix(dotenv): forbid setting special variables
* fix(dotenv): FIFO shouldn't be read twice
* fix(dotenv): unknown vars should expand to empty
* fix(dotenv): reject extremely large named pipes
* docs(dotenv): update to new parsing system
* fix(dotenv): add support for escaped dollars
* chore(dotenv): only declare local variables once
* fix(dotenv): apply review suggestions
* docs(dotenv): update test instructions
Co-authored-by: Carlo Sala <carlosalag@protonmail.com>
2026-05-28 20:23:45 +02:00
Marc Cornellà
c90141ed77
fix: escape % characters in git prompts
...
This patch adds missing % character escaping for custom git prompts
used in a few themes. It also includes escaping for git-prompt.sh.
In combination with CVE-2021-45444, this could allow code execution
when displaying branch information in cloned malicious git repositories.
However, zsh 5.8.1 and newer are largely the default zsh versions, and
on those supported distributions with older zsh versions, the CVE has been
found to be also patched.
For this reason, this doesn't qualify as a security patch, but a
bug fix for proper printing of git branches.
2026-05-28 19:45:47 +02:00
Michele Bologna
8eff9a5455
fix(michelebologna): syntax, escaping, label ( #13756 )
2026-05-28 19:23:46 +02:00
Minh Vu
5ddb7fedcc
ci(deps): use resolved tag when syncing dependencies ( #13764 )
...
Co-authored-by: Carlo Sala <carlosalag@protonmail.com>
2026-05-28 19:04:07 +02:00
Sediman AI
ddcdc26692
docs: update stale links ( #13776 )
...
Co-authored-by: Sediman <jason@sediman.com>
2026-05-28 18:56:03 +02:00
Minh Vu
fb03e414ee
ci(deps): detect add-only vendored changes ( #13765 )
2026-05-28 18:54:11 +02:00
Iyigun Cevik
b26b500263
feat(juju): add native zsh completion and fix plugin utilities ( #13663 )
2026-05-27 16:37:23 +02:00
Oliver Jahren
fe11a3ae23
fix(dnf): use --installed to support dnf 4 and 5 ( #13772 )
2026-05-27 10:22:10 +02:00
Sediman AI
87a9b16b72
fix(alias-finder): use ? quantifier for BSD compat ( #13774 )
...
Co-authored-by: Sediman <jason@sediman.com>
2026-05-27 10:16:00 +02:00
OKWN
857a646516
docs(tt): rename README.MD to README.md ( #13773 )
2026-05-27 10:02:17 +02:00
dependabot[bot]
5ef67beadb
chore(deps): bump github/codeql-action from 4.35.5 to 4.36.0 ( #13767 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-26 10:12:39 +02:00
dependabot[bot]
d633270784
chore(deps): bump step-security/harden-runner from 2.19.3 to 2.19.4 ( #13768 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-26 10:12:19 +02:00
ohmyzsh[bot]
43c68566be
chore(kube-ps1): update to 04af46f7
2026-05-24 14:41:59 +02:00
Md Mushfiqur Rahim
cb64103161
fix(aliases): preserve trailing double quotes in als output ( #13744 )
...
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
Co-authored-by: Codebuff Contributor <contributor@codebuff.com>
2026-05-18 09:00:15 +02:00
Masaru Iritani
0eecd2821e
fix(tmux): respect ZSH_TMUX_UNICODE in tds ( #13741 )
2026-05-18 08:51:48 +02:00
rock2z
2a5313a9d0
docs(git): document missing aliases ( #13742 )
2026-05-18 08:51:23 +02:00
Kaspar V.
24959d5817
feat(pass-cli): add completions plugin ( #13740 )
2026-05-18 08:47:51 +02:00
dependabot[bot]
efd6135bf5
chore(deps): bump step-security/harden-runner from 2.19.1 to 2.19.3 ( #13755 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-18 08:45:12 +02:00
dependabot[bot]
c68e752b1b
chore(deps): bump idna from 3.13 to 3.15 in /.github/workflows/dependencies ( #13754 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-18 08:44:51 +02:00
dependabot[bot]
8d0ff417c3
chore(deps): bump github/codeql-action from 4.35.4 to 4.35.5 ( #13751 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-18 08:44:28 +02:00
dependabot[bot]
80a6f169c7
chore(deps): bump requests from 2.33.1 to 2.34.2 in /.github/workflows/dependencies ( #13752 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-18 08:44:05 +02:00
dependabot[bot]
c4e39ad56b
chore(deps): bump actions/create-github-app-token from 3.1.1 to 3.2.0 ( #13753 )
...
Signed-off-by: dependabot[bot] <support@github.com>
2026-05-18 08:43:53 +02:00
ohmyzsh[bot]
7478f1fd22
chore(kube-ps1): update to 7d575c6d ( #13750 )
...
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2026-05-17 11:58:14 +02:00
dependabot[bot]
a07126330b
chore(deps): bump github/codeql-action from 4.35.3 to 4.35.4 ( #13737 )
...
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.3 to 4.35.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e46ed2cbd0...68bde559de )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-11 11:00:26 +02:00
dependabot[bot]
1381fec0bf
chore(deps): bump urllib3 from 2.6.3 to 2.7.0 in /.github/workflows/dependencies ( #13738 )
...
Bumps [urllib3](https://github.com/urllib3/urllib3 ) from 2.6.3 to 2.7.0.
- [Release notes](https://github.com/urllib3/urllib3/releases )
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst )
- [Commits](https://github.com/urllib3/urllib3/compare/2.6.3...2.7.0 )
---
updated-dependencies:
- dependency-name: urllib3
dependency-version: 2.7.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-11 11:00:05 +02:00
Laurens Rouw
3604dc23e0
feat(jj): add new alias for new bookmark advance command ( #13638 )
Scorecard supply-chain security / Scorecard analysis (push) Has been cancelled
2026-05-06 11:42:33 -07:00
ChrisJr404
8ab16fa493
docs(brew): correct brews description ( #13730 )
2026-05-06 14:34:32 +02:00
ohmyzsh[bot]
e64912e0c1
chore(gradle): update to version d8bc301a ( #13724 )
...
Co-authored-by: ohmyzsh[bot] <54982679+ohmyzsh[bot]@users.noreply.github.com>
2026-05-04 09:20:10 +02:00