cofacts

Month: 2022-02

2022-02-01

github2 01:14:29

<https://github.com/cofacts/takedowns/pull/39|#39 Convert old spammers to new blocking mechanism>

This announcement will convert old spammers to new blocking mechanism, so that new posts of these spammers will be directly hidden as sonn as they are posted. After this we no longer need to monitor these spammers.

這個 PR 處理過去這些 yegogo 在內的舊 spammer,把原本「看到就刪掉」的機制改成新的「設成 blocked user」唷
Approve 之後我們就不用 monitor 他們的回應了,因為可以直接走新的自動隱藏
https://github.com/cofacts/takedowns/pull/39/files?short_path=f078e9b#diff-f078e9b8bcbe618a71d8226ca84b1194fc27b049ac5052eff8f732ec33411fcb
github2 01:14:29

<https://github.com/cofacts/takedowns/pull/39|#39 Convert old spammers to new blocking mechanism>

This announcement will convert old spammers to new <https://www.facebook.com/groups/cofacts/posts/3111789079052900/|blocking mechanism>, so that new posts of these spammers will be directly hidden as soon as they are posted. After this we no longer need to <https://docs.google.com/spreadsheets/d/1BBObfTO7bLWERQ3nq3S1iBs3xt2o2TgOxikXqixOdYI/edit#gid=0|monitor> these spammers.

這個 PR 處理過去這些 yegogo 在內的舊 spammer,把原本「看到就刪掉」的機制改成新的「設成 blocked user」唷
Approve 之後我們就不用 monitor 他們的回應了,因為可以直接走新的自動隱藏
https://github.com/cofacts/takedowns/pull/39/files?short_path=f078e9b#diff-f078e9b8bcbe618a71d8226ca84b1194fc27b049ac5052eff8f732ec33411fcb
mrorz 01:16:35
這個 PR 處理過去這些 yegogo 在內的舊 spammer,把原本「看到就刪掉」的機制改成新的「設成 blocked user」唷
Approve 之後我們就不用 monitor 他們的回應了,因為可以直接走新的自動隱藏
https://github.com/cofacts/takedowns/pull/39/files?short_path=f078e9b#diff-f078e9b8bcbe618a71d8226ca84b1194fc27b049ac5052eff8f732ec33411fcb
1
mrorz 11:00:06
明天大年初二
不會開會唷~~~
mrorz 11:00:06
明天大年初二
不會開會唷~~~

2022-02-03

cai 21:49:12
雞蛋那篇默默地上升了,但是農委會應該等到開工才會澄清?
kidstarkenny 2022-02-05 12:51:58
傳消息的熱情民眾快點覺醒啊啊
https://ai.gov.tw/index.php
認真來講,今年至今禽流感有被撲殺的是中部,不是南部
kidstarkenny 2022-02-05 14:42:18
我個人目前也沒看到有什麼南部雞場
kidstarkenny 2022-02-05 14:42:25
除非跟臺北市一樣沒疫情消息都是蓋牌(X ,
(反串文我有標註謝謝)
這個我昨天也查不到 QQ
我已經拿上面陳吉仲說法回完了,懶得改 XD
只能說這個謠言挑年假期間傳播
跟 Omicron 相比有過之而無不及 XD
等官網有再放,fb 沒預覽麻煩
明天會有新一波的喔 (福島核食開放)
為什麼新聞要 frame 在生長激素 XDDD
1. 原訊息只說「藥」,沒有指定事「生長激素」
2. 原訊息提到「乳癌」,與「乳癌」有關係的是「抗生素」,而人服用抗生素確實與乳癌,確實在很久以前就開始有所連結
所以把主題鎖在「生長激素」其實是偷換概念
cai 21:49:12
雞蛋那篇默默地上升了,但是農委會應該等到開工才會澄清?
kidstarkenny 2022-02-05 12:51:58
傳消息的熱情民眾快點覺醒啊啊
https://ai.gov.tw/index.php
認真來講,今年至今禽流感有被撲殺的是中部,不是南部
kidstarkenny 2022-02-05 14:42:18
我個人目前也沒看到有什麼南部雞場
kidstarkenny 2022-02-05 14:42:25
除非跟臺北市一樣沒疫情消息都是蓋牌(X ,
(反串文我有標註謝謝)
這個我昨天也查不到 QQ
我已經拿上面陳吉仲說法回完了,懶得改 XD
只能說這個謠言挑年假期間傳播
跟 Omicron 相比有過之而無不及 XD
等官網有再放,fb 沒預覽麻煩
明天會有新一波的喔 (福島核食開放)
為什麼新聞要 frame 在生長激素 XDDD
1. 原訊息只說「藥」,沒有指定事「生長激素」
2. 原訊息提到「乳癌」,與「乳癌」有關係的是「抗生素」,而人服用抗生素確實與乳癌,確實在很久以前就開始有所連結
所以把主題鎖在「生長激素」其實是偷換概念
😲 1

2022-02-05

cai 12:50:07
全家串也默默攀升
https://cofacts.tw/article/2mf138tshqcq
可是數字好怪,網頁瀏覽 6269 次,Line 詢問 395 次,回報只有6
https://cofacts.tw/article/2mf138tshqcq
可是數字好怪,line詢問395次,回報只有6
因為有人回應之後,LINE 詢問就會直接回傳結果,而不會再新增 reply request 唷
cai 12:50:07
全家串也默默攀升
https://cofacts.tw/article/2mf138tshqcq
可是數字好怪,網頁瀏覽 6269 次,Line 詢問 395 次,回報只有6
https://cofacts.tw/article/2mf138tshqcq
可是數字好怪,line詢問395次,回報只有6
因為有人回應之後,LINE 詢問就會直接回傳結果,而不會再新增 reply request 唷
cai 13:02:53
https://cofacts.tw/article/2mf138tshqcq
可是數字好怪,網頁瀏覽 6269 次,Line 詢問 395 次,回報只有6
cai 14:37:48
這帳號過幾天會變成正妹圖嗎 😆
Screenshot 2022-02-05 at 14-28-49 新年快樂 LINE 官方帳號.png
也可能變成飆股老師
日新月異呢
累積了4個帳號了
然後有2個帳號大頭貼變黑色,名字改掉
賣得好快喔
貼圖詐騙整個捲土重來耶
元宵節版本,做假的line hub網頁
https://cofacts.tw/article/17jz8cgj9jkpn
好熱門喔
新聞口吻模仿得不錯耶
去年固定都假貼圖,今年一直翻新手法欸
外部網站這招也是一陣子了
https://www.mygopen.com/2018/05/line_4.html
一直都是連到外部網站再加入啊,只是頁面長不同
這次手法比較像之前假投資會出現的假新聞網站
喔喔對,之前那個郭台銘投資數位貨幣的假網頁 XD
2

2022-02-06

2022-02-07

Lee Yvonne 15:02:08
@yvonnewww19981227 has joined the channel
Lee Yvonne 15:06:05
@yvonnewww19981227 has left the channel
mrorz 16:41:08
今天一直出現這個
原來是有新影片 https://www.facebook.com/watch/?v=640578477059862
image.png

Facebook Watch

Johnhow Fan on Facebook Watch

我的媽啊!! 莫德納疫苗發明人這樣說!!

Hmmm 看起來也沒很新呀,去年 12 月中就有
https://cofacts.tw/article/v7lik4k8i49a
😮 1

2022-02-08

2022-02-09

2022-02-10

Ivan 07:06:22
@lsn123666 has joined the channel
github2 07:20:27

<https://github.com/cofacts/rumors-site/pull/474|#474 Bump systeminformation from 4.21.1 to 4.34.23>

Bumps <https://github.com/sebhildebrandt/systeminformation|systeminformation> from 4.21.1 to 4.34.23. Changelog _Sourced from <https://github.com/sebhildebrandt/systeminformation/blob/v4.34.23/CHANGELOG.md|systeminformation's changelog>._ &gt; *Changelog* &gt; *Major Changes - Version 4* &gt; &gt; *New Functions* &gt; &gt; • `chassis()`: chassis information &gt; &gt; *Breaking Changes* &gt; &gt; • `networkStats()`: will provide an *array* of stats for all given interfaces. In previous versions only one interface was provided as a parameter. Pass '*' for all interfaces &gt; • `networkStats()`: `rx` and `tx` changed to `rx_bytes` and `tx_bytes` &gt; • `dockerContainerStats()`: will provide an *array* of stats for all given docker containers. In previous versions only one interface was provided as a parameter. Pass '*' for all docker containers &gt; &gt; *Other Changes* &gt; &gt; • `system()` optimized system detection (e.g. new Raspberry Pi models, ...), additional flags &gt; • `system()`, `bios()`, `baseboard()` information also as non-root (linux) &gt; • `graphics()` better controller and display detection, fixes &gt; • `versions()` optimization, fixes &gt; • `networkInterfaces()` added `operstate`, `type`, `duplex`, `mtu`, `speed`, `carrierChanges` &gt; • `networkStats()` added stats for `errors`, `dropped` &gt; • added TypeScript definitions &gt; &gt; *Be aware*, that the new version 4.x is *NOT fully backward compatible* to version 3.x ... &gt; &gt; For major (breaking) changes - version 3 and 2 see end of page. &gt; &gt; *Version history* ... (truncated) Commits • <https://github.com/sebhildebrandt/systeminformation/commit/49c85e0697f4473be302f273ea12cb63b1697450|`49c85e0`> 4.34.23 • <https://github.com/sebhildebrandt/systeminformation/commit/f8addf67d266e0b775f0a34f74ff20f6cf2769b7|`f8addf6`> networkInterfaces() fixed Windows XP bug (WMIC NetEnabled) • <https://github.com/sebhildebrandt/systeminformation/commit/2fba3e9ebeada2b05d70b11d266f25189798c226|`2fba3e9`> 4.34.22 • <https://github.com/sebhildebrandt/systeminformation/commit/b76764b68a5272b58ce97ca013483b4a197edbad|`b76764b`> restored Node 4.x compatibility • <https://github.com/sebhildebrandt/systeminformation/commit/fe5f3a261f7129519944357e43641fc9c957b7a0|`fe5f3a2`> 4.34.21 • <https://github.com/sebhildebrandt/systeminformation/commit/ffb99f2da3791fe8edbc1eb11ef0c293c82d93d6|`ffb99f2`> dockerContainerInspect(), dockerContainerProcesses() parameter validation fix • <https://github.com/sebhildebrandt/systeminformation/commit/4c970c37429629194fe5f3db7d06e8c16a967d9c|`4c970c3`> 4.34.20 • <https://github.com/sebhildebrandt/systeminformation/commit/9ca91ece0f8973d23f7e3af40d36da83a52a89b8|`9ca91ec`> versions() parameter sanitation • <https://github.com/sebhildebrandt/systeminformation/commit/e752c6bceeb85f253f6af5a88eaa82d095de4237|`e752c6b`> 4.34.19 • <https://github.com/sebhildebrandt/systeminformation/commit/ba58ee15339e0bb2d53884c9a3bcc91422dc8a38|`ba58ee1`> inetLatency() ineChecksite() schema validation • Additional commits viewable in <https://github.com/sebhildebrandt/systeminformation/compare/v4.21.1...v4.34.23|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/cofacts/rumors-site/network/alerts|Security Alerts page>.

:white_check_mark: All checks have passed

github2 07:20:27

<https://github.com/cofacts/rumors-site/pull/474|#474 Bump systeminformation from 4.21.1 to 4.34.23>

Bumps <https://github.com/sebhildebrandt/systeminformation|systeminformation> from 4.21.1 to 4.34.23. Changelog _Sourced from <https://github.com/sebhildebrandt/systeminformation/blob/v4.34.23/CHANGELOG.md|systeminformation's changelog>._ &gt; *Changelog* &gt; *Major Changes - Version 4* &gt; &gt; *New Functions* &gt; &gt; • `chassis()`: chassis information &gt; &gt; *Breaking Changes* &gt; &gt; • `networkStats()`: will provide an *array* of stats for all given interfaces. In previous versions only one interface was provided as a parameter. Pass '*' for all interfaces &gt; • `networkStats()`: `rx` and `tx` changed to `rx_bytes` and `tx_bytes` &gt; • `dockerContainerStats()`: will provide an *array* of stats for all given docker containers. In previous versions only one interface was provided as a parameter. Pass '*' for all docker containers &gt; &gt; *Other Changes* &gt; &gt; • `system()` optimized system detection (e.g. new Raspberry Pi models, ...), additional flags &gt; • `system()`, `bios()`, `baseboard()` information also as non-root (linux) &gt; • `graphics()` better controller and display detection, fixes &gt; • `versions()` optimization, fixes &gt; • `networkInterfaces()` added `operstate`, `type`, `duplex`, `mtu`, `speed`, `carrierChanges` &gt; • `networkStats()` added stats for `errors`, `dropped` &gt; • added TypeScript definitions &gt; &gt; *Be aware*, that the new version 4.x is *NOT fully backward compatible* to version 3.x ... &gt; &gt; For major (breaking) changes - version 3 and 2 see end of page. &gt; &gt; *Version history* ... (truncated) Commits • <https://github.com/sebhildebrandt/systeminformation/commit/49c85e0697f4473be302f273ea12cb63b1697450|`49c85e0`> 4.34.23 • <https://github.com/sebhildebrandt/systeminformation/commit/f8addf67d266e0b775f0a34f74ff20f6cf2769b7|`f8addf6`> networkInterfaces() fixed Windows XP bug (WMIC NetEnabled) • <https://github.com/sebhildebrandt/systeminformation/commit/2fba3e9ebeada2b05d70b11d266f25189798c226|`2fba3e9`> 4.34.22 • <https://github.com/sebhildebrandt/systeminformation/commit/b76764b68a5272b58ce97ca013483b4a197edbad|`b76764b`> restored Node 4.x compatibility • <https://github.com/sebhildebrandt/systeminformation/commit/fe5f3a261f7129519944357e43641fc9c957b7a0|`fe5f3a2`> 4.34.21 • <https://github.com/sebhildebrandt/systeminformation/commit/ffb99f2da3791fe8edbc1eb11ef0c293c82d93d6|`ffb99f2`> dockerContainerInspect(), dockerContainerProcesses() parameter validation fix • <https://github.com/sebhildebrandt/systeminformation/commit/4c970c37429629194fe5f3db7d06e8c16a967d9c|`4c970c3`> 4.34.20 • <https://github.com/sebhildebrandt/systeminformation/commit/9ca91ece0f8973d23f7e3af40d36da83a52a89b8|`9ca91ec`> versions() parameter sanitation • <https://github.com/sebhildebrandt/systeminformation/commit/e752c6bceeb85f253f6af5a88eaa82d095de4237|`e752c6b`> 4.34.19 • <https://github.com/sebhildebrandt/systeminformation/commit/ba58ee15339e0bb2d53884c9a3bcc91422dc8a38|`ba58ee1`> inetLatency() ineChecksite() schema validation • Additional commits viewable in <https://github.com/sebhildebrandt/systeminformation/compare/v4.21.1...v4.34.23|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/cofacts/rumors-site/network/alerts|Security Alerts page>.

github2 07:23:02

<https://github.com/cofacts/rumors-site/pull/474#issuecomment-1034302941|Comment on #474 Bump systeminformation from 4.21.1 to 4.34.23>

<https://coveralls.io/builds/46395403|Coverage Status> Coverage remained the same at 73.942% when pulling *<https://github.com/cofacts/rumors-site/commit/5bbc613f05bed6072de1be8fcbdfd814b0e364d3|5bbc613> on dependabot/npm_and_yarn/systeminformation-4.34.23* into *<https://github.com/cofacts/rumors-site/commit/61c7e77da047d69bc2173c456ca0ca4a69be5d78|61c7e77> on master*.

github2 07:23:02

<https://github.com/cofacts/rumors-site/pull/474#issuecomment-1034302941|Comment on #474 Bump systeminformation from 4.21.1 to 4.34.23>

<https://coveralls.io/builds/46395403|Coverage Status> Coverage remained the same at 73.942% when pulling *<https://github.com/cofacts/rumors-site/commit/5bbc613f05bed6072de1be8fcbdfd814b0e364d3|5bbc613> on dependabot/npm_and_yarn/systeminformation-4.34.23* into *<https://github.com/cofacts/rumors-site/commit/61c7e77da047d69bc2173c456ca0ca4a69be5d78|61c7e77> on master*.

2022-02-11

github2 12:57:12

<https://github.com/cofacts/rumors-site/pull/475|#475 Bump ajv from 6.10.2 to 6.12.3>

Bumps <https://github.com/ajv-validator/ajv|ajv> from 6.10.2 to 6.12.3. Release notes _Sourced from <https://github.com/ajv-validator/ajv/releases|ajv's releases>._ &gt; *v6.12.3* &gt; &gt; Pass schema object to processCode function Option for strictNumbers (<https://github.com/issacgerges|`@​issacgerges`>, <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1128|#1128>) Fixed vulnerability related to untrusted schemas (<https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=CVE-2020-15366|CVE-2020-15366>) &gt; &gt; *v6.12.2* &gt; &gt; Removed post-install script &gt; &gt; *v6.12.1* &gt; &gt; Docs and dependency updates &gt; &gt; *v6.12.0* &gt; &gt; Improved hostname validation (<https://github.com/sambauers|`@​sambauers`>, <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1143|#1143>) Option `keywords` to add custom keywords (<https://github.com/franciscomorais|`@​franciscomorais`>, <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1137|#1137>) Types fixes (<https://github.com/boenrobot|`@​boenrobot`>, <https://github.com/MattiAstedrone|`@​MattiAstedrone`>) Docs: &gt; &gt; • <https://github.com/epoberezkin/ajv#error-logging|error logging> example (<https://github.com/RadiationSickness|`@​RadiationSickness`>) &gt; • TypeScript usage notes (<https://github.com/thetric|`@​thetric`>) &gt; &gt; *v6.11.0* &gt; &gt; Time formats support two digit and colon-less variants of timezone offset (<https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1061|#1061> , <https://github.com/cjpillsbury|`@​cjpillsbury`>) Docs: RegExp related security considerations Tests: Disabled failing typescript test Commits • <https://github.com/ajv-validator/ajv/commit/521c3a53f15f5502fb4a734194932535d311267c|`521c3a5`> 6.12.3 • <https://github.com/ajv-validator/ajv/commit/bd7107b54166a4ca67555ba37829375e31649bf8|`bd7107b`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1229|#1229> from ajv-validator/dependabot/npm_and_yarn/mocha-8.0.1 • <https://github.com/ajv-validator/ajv/commit/9c26bb28f839a1cde853b64f7f6d035e4b3afd1e|`9c26bb2`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1234|#1234> from ajv-validator/dependabot/npm_and_yarn/eslint-7.3.1 • <https://github.com/ajv-validator/ajv/commit/c6a6daaf9e2739f4e50a33c3aed647b7629d1fc4|`c6a6daa`> Merge branch 'master' into dependabot/npm_and_yarn/mocha-8.0.1 • <https://github.com/ajv-validator/ajv/commit/15eda23010c8b2d1353ebf7afc8e27d818b149ac|`15eda23`> Merge branch 'master' into dependabot/npm_and_yarn/eslint-7.3.1 • <https://github.com/ajv-validator/ajv/commit/d6aabb8e97029130cdb607dcd2e78a6d567e10d5|`d6aabb8`> test: remove node 8 from travis test • <https://github.com/ajv-validator/ajv/commit/c4801ca7771eef5cf7ad8c1adb7cce83c16f065f|`c4801ca`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1242|#1242> from ajv-validator/refactor • <https://github.com/ajv-validator/ajv/commit/988982d3fde08e3ea074e8942442834e78c45587|`988982d`> ignore proto properties • <https://github.com/ajv-validator/ajv/commit/f2b1e3d2c89288561ee68d7459a41b7222cc520d|`f2b1e3d`> whitespace • <https://github.com/ajv-validator/ajv/commit/65e3678146e63b0c8ec80d66e05e146dff68a15d|`65e3678`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1239|#1239> from GrahamLea/patch-1 • Additional commits viewable in <https://github.com/ajv-validator/ajv/compare/v6.10.2...v6.12.3|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/cofacts/rumors-site/network/alerts|Security Alerts page>.

github2 12:57:12

<https://github.com/cofacts/rumors-site/pull/475|#475 Bump ajv from 6.10.2 to 6.12.3>

Bumps <https://github.com/ajv-validator/ajv|ajv> from 6.10.2 to 6.12.3. Release notes _Sourced from <https://github.com/ajv-validator/ajv/releases|ajv's releases>._ &gt; *v6.12.3* &gt; &gt; Pass schema object to processCode function Option for strictNumbers (<https://github.com/issacgerges|`@​issacgerges`>, <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1128|#1128>) Fixed vulnerability related to untrusted schemas (<https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=CVE-2020-15366|CVE-2020-15366>) &gt; &gt; *v6.12.2* &gt; &gt; Removed post-install script &gt; &gt; *v6.12.1* &gt; &gt; Docs and dependency updates &gt; &gt; *v6.12.0* &gt; &gt; Improved hostname validation (<https://github.com/sambauers|`@​sambauers`>, <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1143|#1143>) Option `keywords` to add custom keywords (<https://github.com/franciscomorais|`@​franciscomorais`>, <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1137|#1137>) Types fixes (<https://github.com/boenrobot|`@​boenrobot`>, <https://github.com/MattiAstedrone|`@​MattiAstedrone`>) Docs: &gt; &gt; • <https://github.com/epoberezkin/ajv#error-logging|error logging> example (<https://github.com/RadiationSickness|`@​RadiationSickness`>) &gt; • TypeScript usage notes (<https://github.com/thetric|`@​thetric`>) &gt; &gt; *v6.11.0* &gt; &gt; Time formats support two digit and colon-less variants of timezone offset (<https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1061|#1061> , <https://github.com/cjpillsbury|`@​cjpillsbury`>) Docs: RegExp related security considerations Tests: Disabled failing typescript test Commits • <https://github.com/ajv-validator/ajv/commit/521c3a53f15f5502fb4a734194932535d311267c|`521c3a5`> 6.12.3 • <https://github.com/ajv-validator/ajv/commit/bd7107b54166a4ca67555ba37829375e31649bf8|`bd7107b`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1229|#1229> from ajv-validator/dependabot/npm_and_yarn/mocha-8.0.1 • <https://github.com/ajv-validator/ajv/commit/9c26bb28f839a1cde853b64f7f6d035e4b3afd1e|`9c26bb2`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1234|#1234> from ajv-validator/dependabot/npm_and_yarn/eslint-7.3.1 • <https://github.com/ajv-validator/ajv/commit/c6a6daaf9e2739f4e50a33c3aed647b7629d1fc4|`c6a6daa`> Merge branch 'master' into dependabot/npm_and_yarn/mocha-8.0.1 • <https://github.com/ajv-validator/ajv/commit/15eda23010c8b2d1353ebf7afc8e27d818b149ac|`15eda23`> Merge branch 'master' into dependabot/npm_and_yarn/eslint-7.3.1 • <https://github.com/ajv-validator/ajv/commit/d6aabb8e97029130cdb607dcd2e78a6d567e10d5|`d6aabb8`> test: remove node 8 from travis test • <https://github.com/ajv-validator/ajv/commit/c4801ca7771eef5cf7ad8c1adb7cce83c16f065f|`c4801ca`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1242|#1242> from ajv-validator/refactor • <https://github.com/ajv-validator/ajv/commit/988982d3fde08e3ea074e8942442834e78c45587|`988982d`> ignore proto properties • <https://github.com/ajv-validator/ajv/commit/f2b1e3d2c89288561ee68d7459a41b7222cc520d|`f2b1e3d`> whitespace • <https://github.com/ajv-validator/ajv/commit/65e3678146e63b0c8ec80d66e05e146dff68a15d|`65e3678`> Merge pull request <https://github-redirect.dependabot.com/ajv-validator/ajv/issues/1239|#1239> from GrahamLea/patch-1 • Additional commits viewable in <https://github.com/ajv-validator/ajv/compare/v6.10.2...v6.12.3|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/cofacts/rumors-site/network/alerts|Security Alerts page>.

:white_check_mark: All checks have passed

github2 12:59:56

<https://github.com/cofacts/rumors-site/pull/475#issuecomment-1035885355|Comment on #475 Bump ajv from 6.10.2 to 6.12.3>

<https://coveralls.io/builds/46444227|Coverage Status> Coverage remained the same at 73.942% when pulling *<https://github.com/cofacts/rumors-site/commit/60c3e9c0fa6dcd363d5e7fd626ce543cad1d682b|60c3e9c> on dependabot/npm_and_yarn/ajv-6.12.3* into *<https://github.com/cofacts/rumors-site/commit/61c7e77da047d69bc2173c456ca0ca4a69be5d78|61c7e77> on master*.

github2 12:59:56

<https://github.com/cofacts/rumors-site/pull/475#issuecomment-1035885355|Comment on #475 Bump ajv from 6.10.2 to 6.12.3>

<https://coveralls.io/builds/46444227|Coverage Status> Coverage remained the same at 73.942% when pulling *<https://github.com/cofacts/rumors-site/commit/60c3e9c0fa6dcd363d5e7fd626ce543cad1d682b|60c3e9c> on dependabot/npm_and_yarn/ajv-6.12.3* into *<https://github.com/cofacts/rumors-site/commit/61c7e77da047d69bc2173c456ca0ca4a69be5d78|61c7e77> on master*.

Jay Lo 17:47:07
@loujay60606 has joined the channel
cai 22:25:10
趨勢科技的linebot 丟line的邀請連結可以直接判定是不是灰色盾牌 😮
沒看過這種 API
有可能是爬 invite 網頁、或者是從 invite 網頁挖到某些非公開 API、或者是有跟 LINE 談合作~
cai 22:25:10
趨勢科技的linebot 丟line的邀請連結可以直接判定是不是灰色盾牌,是怎樣做到的 🤔
沒看過這種 API
有可能是爬 invite 網頁、或者是從 invite 網頁挖到某些非公開 API、或者是有跟 LINE 談合作~

2022-02-12

github2 10:48:08

<https://github.com/cofacts/rumors-fb-bot/pull/30|#30 Bump follow-redirects from 1.5.5 to 1.14.8>

Bumps <https://github.com/follow-redirects/follow-redirects|follow-redirects> from 1.5.5 to 1.14.8. Commits • <https://github.com/follow-redirects/follow-redirects/commit/3d81dc3237b4ffe8b722bb3d1c70a7866657166e|`3d81dc3`> Release version 1.14.8 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/62e546a99c07c3ee5e4e0718c84a6ca127c5c445|`62e546a`> Drop confidential headers across schemes. • <https://github.com/follow-redirects/follow-redirects/commit/2ede36d7c60d3acdcd324dcd99a9dbd52e4fb3a6|`2ede36d`> Release version 1.14.7 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22|`8b347cb`> Drop Cookie header across domains. • <https://github.com/follow-redirects/follow-redirects/commit/6f5029ae1a0fdab4dc25f6379a5ee303c2319070|`6f5029a`> Release version 1.14.6 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/af706bee57de954414c0bde0a9f33e62beea3e52|`af706be`> Ignore null headers. • <https://github.com/follow-redirects/follow-redirects/commit/d01ab7a5c5df3617c7a40a03de7af6427fdfac55|`d01ab7a`> Release version 1.14.5 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/40052ea8aa13559becee5795715c1d45b1f0eb76|`40052ea`> Make compatible with Node 17. • <https://github.com/follow-redirects/follow-redirects/commit/86f7572f9365dadc39f85916259b58973819617f|`86f7572`> Fix: clear internal timer on request abort to avoid leakage • <https://github.com/follow-redirects/follow-redirects/commit/2e1eaf0218c5315a2ab27f53964d0535d4dafb51|`2e1eaf0`> Keep Authorization header on subdomain redirects. • Additional commits viewable in <https://github.com/follow-redirects/follow-redirects/compare/v1.5.5...v1.14.8|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/cofacts/rumors-fb-bot/network/alerts|Security Alerts page>.

github2 10:48:08

<https://github.com/cofacts/rumors-fb-bot/pull/30|#30 Bump follow-redirects from 1.5.5 to 1.14.8>

Bumps <https://github.com/follow-redirects/follow-redirects|follow-redirects> from 1.5.5 to 1.14.8. Commits • <https://github.com/follow-redirects/follow-redirects/commit/3d81dc3237b4ffe8b722bb3d1c70a7866657166e|`3d81dc3`> Release version 1.14.8 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/62e546a99c07c3ee5e4e0718c84a6ca127c5c445|`62e546a`> Drop confidential headers across schemes. • <https://github.com/follow-redirects/follow-redirects/commit/2ede36d7c60d3acdcd324dcd99a9dbd52e4fb3a6|`2ede36d`> Release version 1.14.7 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/8b347cbcef7c7b72a6e9be20f5710c17d6163c22|`8b347cb`> Drop Cookie header across domains. • <https://github.com/follow-redirects/follow-redirects/commit/6f5029ae1a0fdab4dc25f6379a5ee303c2319070|`6f5029a`> Release version 1.14.6 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/af706bee57de954414c0bde0a9f33e62beea3e52|`af706be`> Ignore null headers. • <https://github.com/follow-redirects/follow-redirects/commit/d01ab7a5c5df3617c7a40a03de7af6427fdfac55|`d01ab7a`> Release version 1.14.5 of the npm package. • <https://github.com/follow-redirects/follow-redirects/commit/40052ea8aa13559becee5795715c1d45b1f0eb76|`40052ea`> Make compatible with Node 17. • <https://github.com/follow-redirects/follow-redirects/commit/86f7572f9365dadc39f85916259b58973819617f|`86f7572`> Fix: clear internal timer on request abort to avoid leakage • <https://github.com/follow-redirects/follow-redirects/commit/2e1eaf0218c5315a2ab27f53964d0535d4dafb51|`2e1eaf0`> Keep Authorization header on subdomain redirects. • Additional commits viewable in <https://github.com/follow-redirects/follow-redirects/compare/v1.5.5...v1.14.8|compare view> <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores|Dependabot compatibility score> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. * * * Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: • `@dependabot rebase` will rebase this PR • `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it • `@dependabot merge` will merge this PR after your CI passes on it • `@dependabot squash and merge` will squash and merge this PR after your CI passes on it • `@dependabot cancel merge` will cancel a previously requested merge and block automerging • `@dependabot reopen` will reopen this PR if it is closed • `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually • `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) • `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) • `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language • `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language • `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language • `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the <https://github.com/cofacts/rumors-fb-bot/network/alerts|Security Alerts page>.

2022-02-15

ichieh 19:50:46
想問 @mrorz 有一次有看到闢謠的儀表板(查核幾則會跳一句好笑話的那個頁面)那個網址在哪裡找的到嗎
時間可以是過去的時間唷,例如說 https://cofacts.github.io/community-builder/#/bignum?start=2022-02-15T00%3A00&panels=replied&panels=feedback

時區是瀏覽器所在時區。
ichieh 19:50:46
想問 @mrorz 有一次有看到闢謠的儀表板(查核幾則會跳一句好笑話的那個頁面)那個網址在哪裡找的到嗎
時間可以是過去的時間唷,例如說 https://cofacts.github.io/community-builder/#/bignum?start=2022-02-15T00%3A00&panels=replied&panels=feedback

時區是瀏覽器所在時區。

2022-02-16

github2 13:51:16

Review on #273 Multimedia support phase 0

LGTM! Thanks for the update :pray:

github2 13:51:16

Review on #273 Multimedia support phase 0

LGTM! Thanks for the update :pray:

2022-02-17

kidstarkenny 16:18:57

幾乎同步,可信度通常不高
Image from iOS