About 46 results
https://blog.nove-b.dev/posts/tangled-activity · 3 May 2026
作ったもの !Tangled Activity Tangledへのコントリビュート履歴をSVGで描画して返すエンドポイントを作った。 GitHubのREADMEに↓を貼るだけで、プロフィール上にTangledの草が生える。 !プロフィー...
https://nesbitt.io/2026/05/02/a-github-for-maintainers.html · 2 May 2026
Giving dependencies the same treatment the fork got
https://nesbitt.io/2026/04/28/github-actions-is-the-weakest-link.html · 28 Apr 2026
Anne Robinson would like a word with .github/workflows
https://benswift.me/blog/2026/04/28/a-static-site-that-takes-pull-requests · 28 Apr 2026
Out of Office stores its data in a JSON file in git, not a database. Why, and when this pattern fits.
https://devlog.likes.fyi/3mk26g2zq7c2n · 21 Apr 2026 · 🦋 Bluesky
get in the repo, shinji
https://nesbitt.io/2026/01/02/how-dependabot-actually-works.html · 2 Jan 2026
Inside dependabot-core's architecture, its reliance on proprietary GitHub infrastructure, and open source alternatives
https://nesbitt.io/2025/12/31/open-source-activity-in-2025.html · 31 Dec 2025
A look back at my open source work in 2025: ecosyste.ms, supply chain security tooling, and Ruby gems
https://nesbitt.io/2025/12/30/community-tools-bring-lockfile-support-to-github-actions.html · 30 Dec 2025
Community projects gh-actions-lockfile and ghasum address GitHub's missing lockfile support with SHA pinning and integrity verification
https://blog.nove-b.dev/posts/angular-library-github-package/index · 13 Dec 2025
はじめに Angularで複数のプロジェクトを作成している。基本的なデザインシステムがあるのでそれを各プロジェクトで使用したいのだが、プロジェクトごとで二元管理をしたくないので、subm...
https://nesbitt.io/2025/12/06/github-actions-package-manager.html · 6 Dec 2025
GitHub Actions has a package manager that ignores decades of supply chain security best practices: no lockfile, no integrity verification, no transitive pinning