Live Access Serever 9 (repository: las9)

Pacific Marine Environmental Laboratory

Last update: Mar 14, 2022

Related tags

Miscellaneous las9

Overview

Live Access Serever 9 (repository: las9)

This version of LAS has the following technical features.

All configuration and management done using an Admin Console UI provide with LAS. Admin functions include:
1. Add, remove, temporarily disable a data set
2. Rearrange the heirarchy of how data sets are displayed in the UI
3. Automatically check data sets for new time steps on a schedule set in the UI
4. Incorporate interactive client-side plotting capability
5. Simple deployment using pre-packaged war file (including F-TDS as its own companion war file).
6. Dynamic data set configuration where appropriate (including on background thread).
Simplified client-server interaction using JSON messages automatically marshalled to and from Java.
Nicely styled, modern client UI look-and-feel.
Simple upgrade process (save the persistence database and drop in the new war file).

Comments

Bump minimist from 1.2.5 to 1.2.6 in /projects/admin-console
⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps minimist from 1.2.5 to 1.2.6.

Commits

7efb22a 1.2.6

ef88b93 security notice for additional prototype pollution issue

c2b9819 isConstructorOrProto adapted from PR

bc8ecee test from prototype pollution PR

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 2
Bump minimatch from 3.0.4 to 3.1.2 in /projects/admin-console
Bumps minimatch from 3.0.4 to 3.1.2.

Commits

699c459 3.1.2

2f2b5ff fix: trim pattern

25d7c0d 3.1.1

55dda29 fix: treat nocase:true as always having magic

5e1fb8d 3.1.0

f8145c5 Add 'allowWindowsEscape' option

570e8b1 add publishConfig for v3 publishes

5b7cd33 3.0.6

20b4b56 [fix] revert all breaking syntax changes

2ff0388 document, expose, and test 'partial:true' option

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
export kml functionality

Hi I was exploring LAS9 further and it seems that the export kml functionality is no longer in LAS9. Would this be easy to implement back? This is to allow users to download the kml and overlay it on google earth

opened by haze1986 1
Could not access admin console, blank screen after logging in

Hi All, I just got LAS9 installed. I tried to access admin console but I could not log in, blank screen after logging in with the right credentials. Anyone knows the solution to this?

opened by haze1986 1
Bump npm from 8.6.0 to 8.11.0 in /projects/admin-console
Bumps npm from 8.6.0 to 8.11.0.

Changelog

Sourced from npm's changelog.

v8.11.0 (2022-05-25)

Features

8898710 #4879 feat: deprecated set-script, birthday, --global, and --local (@fritzy)

7307c8d #4940 feat(libnpmpack): bump pacote for better workspace awareness (@nlf)

Bug Fixes

400c80f #4913 fix(ci): remove node_modules post-validation (@wraithgar)

124df81 #4910 fix: clean up npm cache tests (@wraithgar)

ee3308a fix: remove dead code from get-identity (@wraithgar)

357b0af #4917 fix: pass prefix and workspaces to libnpmpack (@nlf)

0f89e07 #4935 fix: add global getter to npm class (@nlf)

Documentation

83ed8d0 #4922 docs: update roadmap link in readme (@OmriBarZik)

ed054d4 #4933 docs: fix broken link in changelog (@yonran)

Dependencies

632ce87 #4915 deps: [email protected]

7b2b77a #4915 deps: [email protected]

f3b0a24 #4915 deps: [email protected]

0df3011 #4915 deps: [email protected]

dc38ab9 #4919 deps: [email protected]

353e2f9 #4940 deps: [email protected] [email protected]

f4d4126 #4941 deps: [email protected]

v8.10.0 (2022-05-11)

Features

911f55d #4864 feat: add --iwr alias for --include-workspace-root (@fritzy)

bfb8bcc #4874 feat: add flag --omit-lockfile-registry-resolved (@fritzy) (Caleb ツ Everett)

Bug Fixes

48d2db6 #4862 fix: remove test coverage map (@wraithgar)

38cf29a #4868 fix: cleanup star/unstar (@wraithgar)

5baa4a7 #4857 fix: consolidate bugs, docs, repo command logic (@wraithgar)

5a50762 #4875 fix(arborist): link deps lifecycle scripts (@ruyadorno)

Dependencies

d58bf40 #4856 deps: [email protected]

86f443e #4872 deps: [email protected]

f9984e6 #4880 deps: @npmcli/[email protected]

ba59915 #4881 deps: [email protected]

... (truncated)

Commits

d60cfbc 8.11.0

c538cfc chore: update AUTHORS

57e7da2 chore: changelog for v8.11.0

f4d4126 deps: [email protected]

446fadf chore(latest): release libnpmpack 4.1.0

353e2f9 deps: [email protected] [email protected]

7307c8d feat(libnpmpack): bump pacote for better workspace awareness

ed054d4 docs: fix broken link in changelog (#4933)

8de831f chore(fix): replace with exact comparison function (#4925)

83ed8d0 docs: update roadmap link in readme (#4922)

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump async from 2.6.3 to 2.6.4 in /projects/admin-console
Bumps async from 2.6.3 to 2.6.4.

Changelog

Sourced from async's changelog.

v2.6.4

Fix potential prototype pollution exploit (#1828)

Commits

c6bdaca Version 2.6.4

8870da9 Update built files

4df6754 update changelog

8f7f903 Fix prototype pollution vulnerability (#1828)

See full diff in compare view

Maintainer changes

This version was pushed to npm by hargasinski, a new releaser for async since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump node-forge from 1.2.1 to 1.3.0 in /projects/admin-console
Bumps node-forge from 1.2.1 to 1.3.0.

Changelog

Sourced from node-forge's changelog.

1.3.0 - 2022-03-17

Security

Three RSA PKCS#1 v1.5 signature verification issues were reported by Moosa Yahyazadeh ([email protected]).

HIGH: Leniency in checking digestAlgorithm structure can lead to signature forgery.

The code is lenient in checking the digest algorithm structure. This can allow a crafted structure that steals padding bytes and uses unchecked portion of the PKCS#1 encoded message to forge a signature when a low public exponent is being used. For more information, please see "Bleichenbacher's RSA signature forgery based on implementation error" by Hal Finney.

CVE ID: CVE-2022-24771

GHSA ID: GHSA-cfm4-qjh2-4765

HIGH: Failing to check tailing garbage bytes can lead to signature forgery.

The code does not check for tailing garbage bytes after decoding a DigestInfo ASN.1 structure. This can allow padding bytes to be removed and garbage data added to forge a signature when a low public exponent is being used. For more information, please see "Bleichenbacher's RSA signature forgery based on implementation error" by Hal Finney.

CVE ID: CVE-2022-24772

GHSA ID: GHSA-x4jg-mjrx-434g

MEDIUM: Leniency in checking type octet.

DigestInfo is not properly checked for proper ASN.1 structure. This can lead to successful verification with signatures that contain invalid structures but a valid digest.

CVE ID: CVE-2022-24773

GHSA ID: GHSA-2r2c-g63r-vccr

Fixed

[asn1] Add fallback to pretty print invalid UTF8 data.

[asn1] fromDer is now more strict and will default to ensuring all input bytes are parsed or throw an error. A new option parseAllBytes can disable this behavior.

NOTE: The previous behavior is being changed since it can lead to security issues with crafted inputs. It is possible that code doing custom DER parsing may need to adapt to this new behavior and optional flag.

[rsa] Add and use a validator to check for proper structure of parsed ASN.1 RSASSA-PKCS-v1_5 DigestInfo data. Additionally check that the hash algorithm identifier is a known value from RFC 8017 PKCS1-v1-5DigestAlgorithms. An invalid DigestInfo or algorithm identifier will now throw an error.

NOTE: The previous lenient behavior is being changed to be more strict since it could lead to security issues with crafted inputs. It is possible that code may have to handle the errors from these stricter checks.

... (truncated)

Commits

6c5b901 Release 1.3.0.

0f3972a Update changelog.

dc77b39 Fix error checking.

bb822c0 Add advisory links.

d4395fe Update changelog.

a4405bb Improve signature verification tests.

aa9372d Add missing RFC 8017 algorithm identifiers.

3f0b49a Fix signature verification issues.

c20f309 Adjust remaining length.

e27f612 Remove unused option.

Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump follow-redirects from 1.14.7 to 1.14.8 in /projects/admin-console
Bumps follow-redirects from 1.14.7 to 1.14.8.

Commits

3d81dc3 Release version 1.14.8 of the npm package.

62e546a Drop confidential headers across schemes.

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump karma from 6.3.12 to 6.3.14 in /projects/admin-console
Bumps karma from 6.3.12 to 6.3.14.

Release notes

Sourced from karma's releases.

v6.3.14

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)

warn when singleRun and autoWatch are false (69cfc76)

security: remove XSS vulnerability in returnUrl query param (839578c)

v6.3.13

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

Changelog

Sourced from karma's changelog.

6.3.14 (2022-02-05)

Bug Fixes

remove string template from client code (91d5acd)

warn when singleRun and autoWatch are false (69cfc76)

security: remove XSS vulnerability in returnUrl query param (839578c)

6.3.13 (2022-01-31)

Bug Fixes

deps: bump log4js to resolve security issue (5bf2df3), closes #3751

Commits

c97e562 chore(release): 6.3.14 [skip ci]

91d5acd fix: remove string template from client code

69cfc76 fix: warn when singleRun and autoWatch are false

839578c fix(security): remove XSS vulnerability in returnUrl query param

db53785 chore(release): 6.3.13 [skip ci]

5bf2df3 fix(deps): bump log4js to resolve security issue

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 1
Bump engine.io from 6.2.0 to 6.2.1 in /projects/admin-console
Bumps engine.io from 6.2.0 to 6.2.1.

Release notes

Sourced from engine.io's releases.

6.2.1

:warning: This release contains an important security fix :warning:

A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:

Error: read ECONNRESET at TCP.onStreamRead (internal/stream_base_commons.js:209:20) Emitted 'error' event on Socket instance at: at emitErrorNT (internal/streams/destroy.js:106:8) at emitErrorCloseNT (internal/streams/destroy.js:74:3) at processTicksAndRejections (internal/process/task_queues.js:80:21) { errno: -104, code: 'ECONNRESET', syscall: 'read' }

Please upgrade as soon as possible.

Bug Fixes

catch errors when destroying invalid upgrades (#658) (425e833)

Changelog

Sourced from engine.io's changelog.

6.2.1 (2022-11-20)

:warning: This release contains an important security fix :warning:

A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:

Error: read ECONNRESET at TCP.onStreamRead (internal/stream_base_commons.js:209:20) Emitted 'error' event on Socket instance at: at emitErrorNT (internal/streams/destroy.js:106:8) at emitErrorCloseNT (internal/streams/destroy.js:74:3) at processTicksAndRejections (internal/process/task_queues.js:80:21) { errno: -104, code: 'ECONNRESET', syscall: 'read' }

Please upgrade as soon as possible.

Bug Fixes

catch errors when destroying invalid upgrades (#658) (425e833)

3.6.0 (2022-06-06)

Bug Fixes

add extension in the package.json main entry (#608) (3ad0567)

do not reset the ping timer after upgrade (1f5d469), closes socketio/socket.io-client-swift#1309

Features

decrease the default value of maxHttpBufferSize (58e274c)

This change reduces the default value from 100 mb to a more sane 1 mb.

This helps protect the server against denial of service attacks by malicious clients sending huge amounts of data.

See also: https://github.com/advisories/GHSA-j4f2-536g-r55m

increase the default value of pingTimeout (f55a79a)

Commits

24b847b chore(release): 6.2.1

425e833 fix: catch errors when destroying invalid upgrades (#658)

99adb00 chore(deps): bump xmlhttprequest-ssl and engine.io-client in /examples/latenc...

d196f6a chore(deps): bump minimatch from 3.0.4 to 3.1.2 (#660)

7c1270f chore(deps): bump nanoid from 3.1.25 to 3.3.1 (#659)

535a01d ci: add Node.js 18 in the test matrix

1b71a6f docs: remove "Vanilla JS" highlight from README (#656)

917d1d2 refactor: replace deprecated String.prototype.substr() (#646)

020801a chore: add changelog for version 3.6.0

ed1d6f9 test: make test script work on Windows (#643)

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Bump socket.io-parser from 4.0.4 to 4.0.5 in /projects/admin-console
Bumps socket.io-parser from 4.0.4 to 4.0.5.

Release notes

Sourced from socket.io-parser's releases.

4.0.5

Bug Fixes

check the format of the index of each attachment (b559f05)

Links

Diff: https://github.com/socketio/socket.io-parser/compare/4.0.4...4.0.5

Changelog

Sourced from socket.io-parser's changelog.

4.0.5 (2022-06-27)

Bug Fixes

check the format of the index of each attachment (b559f05)

4.2.0 (2022-04-17)

Features

allow the usage of custom replacer and reviver (#112) (b08bc1a)

4.1.2 (2022-02-17)

Bug Fixes

allow objects with a null prototype in binary packets (#114) (7f6b262)

4.1.1 (2021-10-14)

4.1.0 (2021-10-11)

Features

provide an ESM build with and without debug (388c616)

Commits

f3329eb chore(release): 4.0.5

b559f05 fix: check the format of the index of each attachment

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR

@dependabot recreate will recreate this PR, overwriting any edits that have been made to it

@dependabot merge will merge this PR after your CI passes on it

@dependabot squash and merge will squash and merge this PR after your CI passes on it

@dependabot cancel merge will cancel a previously requested merge and block automerging

@dependabot reopen will reopen this PR if it is closed

@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)

@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot use these labels will set the current labels as the default for future PRs for this repo and language

@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language

@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language

@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

dependencies
opened by dependabot[bot] 0
Error downloading data from a longitude analysis operation.

When creating a file to download after a data set has been transformed by making a Longitude average, the Ferret script computes DEFINE SYMBOL region_x_range = ABS( ($region_0_x_hi) - ($region_0_x_lo) ), but the UI has not sent any values for X since the transformed data set no longer contains an X axis. Could be the view being sent it wrong since that's the test that determines if the range will be calculated.

opened by noaaroland 0
The year should probably always be included in a profile plot

PyFerret and the LAS scripts automatically come up with reasonable axis labels in most situations, but in the case of these two plots the results are inconsistent. The first plot should contain a year label on the plot since the annotations block in the UI only contains information about the axes orthogonal to the plot. This might mean that the simplest solution would be to always include the year if that's possible.

This plot:

https://data.pmel.noaa.gov/uaf/las/UI.html#%7B%22id%22:0,%20%22targetPanel%22:1,%20%22operation%22:%22Profile_Plot_2D%22,%20%22variableHashes%22:%5B%22be952c95a5972ebdef4e0747f3e12dc4%22%5D,%20%22datasetHashes%22:%5B%2270d3c057534267037bec1f0cb6283327%22%5D,%20%22analysis%22:%5Bnull%5D,%20%22axesSets%22:%5B%7B%22xlo%22:%22-158.7061%22,%20%22xhi%22:%22-157.075%22,%20%22ylo%22:%2220.52222%22,%20%22yhi%22:%2222.17478%22,%20%22zlo%22:%22-1847.75%22,%20%22zhi%22:%22-0.75%22,%20%22tlo%22:%2229-Apr-2021%2004:35%22,%20%22thi%22:%2206-Aug-2021%2004:35%22%7D%5D,%20%22dataQualifiers%22:null,%20%22dataConstraints%22:%5B%5D,%20%22requestProperties%22:%5B%7B%22id%22:0,%20%22type%22:%22ferret%22,%20%22name%22:%22interpolate_data%22,%20%22value%22:%220%22%7D,%7B%22id%22:0,%20%22type%22:%22ferret%22,%20%22name%22:%22deg_min_sec%22,%20%22value%22:%220%22%7D,%7B%22id%22:0,%20%22type%22:%22ferret%22,%20%22name%22:%22data_count%22,%20%22value%22:%221%22%7D%5D%7D

does not have the year in the axis label.

This plot does:

https://data.pmel.noaa.gov/uaf/las/UI.html#%7B%22id%22:0,%20%22targetPanel%22:1,%20%22operation%22:%22Profile_Plot_2D%22,%20%22variableHashes%22:%5B%22bd4eafcc33a446289f69fb94231deb54%22%5D,%20%22datasetHashes%22:%5B%22d6d1b6fc1021f28749e558d0eac7d04a%22%5D,%20%22analysis%22:%5Bnull%5D,%20%22axesSets%22:%5B%7B%22xlo%22:%22-158.5959%22,%20%22xhi%22:%22-157.2988%22,%20%22ylo%22:%2220.83912%22,%20%22yhi%22:%2222.15108%22,%20%22zlo%22:%22-535.75%22,%20%22zhi%22:%22-0.75%22,%20%22tlo%22:%2204-Feb-2021%2013:35%22,%20%22thi%22:%2207-Aug-2021%2013:35%22%7D%5D,%20%22dataQualifiers%22:null,%20%22dataConstraints%22:%5B%5D,%20%22requestProperties%22:%5B%7B%22id%22:0,%20%22type%22:%22ferret%22,%20%22name%22:%22interpolate_data%22,%20%22value%22:%220%22%7D,%7B%22id%22:0,%20%22type%22:%22ferret%22,%20%22name%22:%22deg_min_sec%22,%20%22value%22:%220%22%7D,%7B%22id%22:0,%20%22type%22:%22ferret%22,%20%22name%22:%22data_count%22,%20%22value%22:%221%22%7D%5D%7D

opened by noaaroland 1
Make a button on the admin interface to read and save the current application.yml file for PyFerret config.

Currently the only way to change the PyFerret config is through restart of the container. It would be handy to reinit via the admin console so the rest of the container processes can go on uninterrupted while LAS is reinitializing the PyFerret config.

It's a one liner (after auto-wiring the service) in the admin controller...

initializationService.initEnvironment()

opened by noaaroland 0
Add a plot option to control the grouping function for coloring the polygon in an XY location plot of a profile or timeseries.

See NOAA-PMEL/las9-old#76 for an examples where the grouping is an average.

Adding the UI option is easy. I may need help figuring out where in the scripts the function is applied and making it react to the user choice

opened by noaaroland 0

Releases(v9.8.0)

v9.8.0(Nov 29, 2022)

This release has a critical update and a breaking change. You must install the new las#thredds.war file to bring your embedded TDS up to the latest release (5.4). All previous versions before LAS 9.8.x have depended on TDS 4.6.x which is no longer supported. For now, you will have to move your directory with the LAS configuration under $TOMCAT_HOME/content along with a $TOMCAT_HOME/content/ftds directory. See the installation instructions for details.

For reference, this version is running at https://data.pmel.noaa.gov/aclim/las/
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
content_ftds.tar.gz(7.83 KB)
las-9.8.0-plain.war(192.59 MB)
las.thredds-5.4.war(85.12 MB)
setenv.sh(462 bytes)
v9.7.7(Nov 15, 2022)

This release updates a couple of packages in the Node universe which are used by the Angular admin app to address reported issues with previous library versions.
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
ftds.tar.gz(5.70 KB)
las-9.7.7-plain.war(192.29 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.6(Sep 28, 2022)

This release fixes bugs related to updating the time axis and canceling the update from the UI.
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
ftds.tar.gz(5.70 KB)
las-9.7.6-plain.war(192.25 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.5(Apr 23, 2022)

This release fixes an issue with the ingest code which was causing data sets with time intervals of slightly longer than a month to fail.
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
ftds.tar.gz(5.70 KB)
las-9.7.5-plain.war(191.85 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.4(Apr 7, 2022)

This release fixes two bug involving ingesting of complete THREDDS catalogs. And as a bonus eliminates ingesting .png image files where are being served as OPeNDAP data sets.

(e.g. https://www.ncei.noaa.gov/thredds-ocean/catalog/crw/5km/v3.1/climatology/image_plain/png/catalog.html)

Other software might be able to read them as netCDF grids, but we cannot so it seems better to skip them entirely.
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
ftds.tar.gz(5.70 KB)
las-9.7.4-plain.war(157.89 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.3(Apr 1, 2022)

Edit: to remove pre-release status.

This release upgrades many Angular dependencies to the latest, pushes the underlying grails release to the latest (5.1.6) and fixes a bug with the ingest and use of netCDF grid data sets with contain only one time step.

Full Changelog: https://github.com/NOAA-PMEL/las9/compare/v9.7.2...v9.7.3
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
ftds.tar.gz(5.70 KB)
las-9.7.3-plain.war(411.19 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.2(Jan 31, 2022)

This release fixes a couple of problems with the search interface (and an infinite loop of search requests when no results were found on a search by data_url). Fixes bug for Point data defined on XYT. Other bug fixes for search results and improved search debug logging.

N.B. The application.yml file was edited on 2022-March-21 to add a few lines of necessary configuration.
Source code(tar.gz)
Source code(zip)
application.yml(2.12 KB)
ftds.tar.gz(5.70 KB)
las-9.7.2-plain.war(208.33 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.1(Jan 27, 2022)

N.B. if you updating from a previous version of LAS you will likely have to delete your LAS databases and add you data sets back. Sorry about that. I made some changes to the data structures and LAS is now much much faster in storing data configurations and making updates. Unfortunately, the changes were not backward compatible.

This release updates some of the underlying components of the Angular-based admin console (primengand adds primeflexfor grid layouts, if you care about such things). This means that all of the Angular components which I have added directly are at their most recent stable release. Some dependencies may lag the latest release, but I will keep these up-to-date as best I can.
Source code(tar.gz)
Source code(zip)
application.yml(2.03 KB)
ftds.tar.gz(5.70 KB)
las-9.7.1-plain.war(140.83 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)
v9.7.0(Jan 25, 2022)

N.B. if you updating from a previous version of LAS you will likely have to delete your LAS databases and add you data sets back. Sorry about that. I made some changes to the data structures and LAS is now much much faster in storing data configurations and making updates. Unfortunately, the changes were not backward compatible.

This is the initial release of LAS 9 on top of the grails 5.x platform. Grails 5 and its dependencies perform much better with regard to object relational database that stores the LAS data set configuration information. We are using this version with over 9500 data sets on top of the default H2 database with good responsiveness for the UI and updates from the admin console. You can see this collection here: https://data.pmel.noaa.gov/uaf/las/

This version also adds a new feature where you can add an entire ERDDAP Griddap data collection with a single click from the admin interface.
Source code(tar.gz)
Source code(zip)
application.yml(2.03 KB)
ftds.tar.gz(5.70 KB)
las-9.7-plain.war(192.39 MB)
las.thredds.war(134.54 MB)
setenv.sh(431 bytes)