-
Notifications
You must be signed in to change notification settings - Fork 641
Pull requests: ossf/scorecard
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
🐛 checks/pinned: strip inline comments from uses value before evaluatingchecks/pinned: strip inline comments from uses value before evaluating
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5030
opened Apr 20, 2026 by
miguel-baptista07
Loading…
🌱 Bump the github-actions group across 1 directory with 8 updates
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update Github_actions code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5029
opened Apr 20, 2026 by
dependabot
Bot
Loading…
🌱 Bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update Github_actions code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5028
opened Apr 20, 2026 by
dependabot
Bot
Loading…
🐛 Fix scorecard completion generates
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5027
opened Apr 20, 2026 by
dovydenkovas
Loading…
1 task done
fix: detect committer fields as untrusted input in dangerous workflows
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5026
opened Apr 19, 2026 by
avasis-ai
Loading…
🌱 Bump github.com/go-git/go-git/v5 from 5.16.5 to 5.18.0 in /tools
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5025
opened Apr 17, 2026 by
dependabot
Bot
Loading…
🌱 Bump github.com/jackc/pgx/v5 from 5.7.6 to 5.9.0 in /tools
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5022
opened Apr 16, 2026 by
dependabot
Bot
Loading…
🌱 add Artifact-Integrity check for verifying release artifact authenticity
size:L
This PR changes 100-499 lines, ignoring generated files.
#5020
opened Apr 16, 2026 by
BB-24
Loading…
2 tasks done
✨ Add experimental Changelog check
size:XL
This PR changes 500-999 lines, ignoring generated files.
#5017
opened Apr 13, 2026 by
kehoecj
Loading…
2 tasks done
🌱 Bump the distroless group across 6 directories with 1 update
dependencies
Pull requests that update a dependency file
docker
Pull requests that update Docker code
size:S
This PR changes 10-29 lines, ignoring generated files.
#5016
opened Apr 13, 2026 by
dependabot
Bot
Loading…
🌱 Bump the golang group across 8 directories with 1 update
dependencies
Pull requests that update a dependency file
docker
Pull requests that update Docker code
size:S
This PR changes 10-29 lines, ignoring generated files.
#5015
opened Apr 13, 2026 by
dependabot
Bot
Loading…
🌱 ci: use ginkgo --flake-attempts instead of nick-invision/retry for e2e tests
size:S
This PR changes 10-29 lines, ignoring generated files.
#5013
opened Apr 13, 2026 by
alliasgher
Loading…
📖 docs: clarify partial credit logic for Branch-Protection tiers
size:XS
This PR changes 0-9 lines, ignoring generated files.
#5010
opened Apr 8, 2026 by
aban-alazzeh
Loading…
2 tasks done
🌱 Bump the gomod group across 2 directories with 18 updates
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:L
This PR changes 100-499 lines, ignoring generated files.
#5006
opened Apr 6, 2026 by
dependabot
Bot
Loading…
✨ Consider GitHub immutable releases as signed
size:XL
This PR changes 500-999 lines, ignoring generated files.
Stale
#5002
opened Apr 5, 2026 by
martincostello
Contributor
Loading…
2 tasks done
✨ Add GitHub artifact attestation for Signed-Releases
size:XL
This PR changes 500-999 lines, ignoring generated files.
Stale
#5001
opened Apr 5, 2026 by
martincostello
Contributor
Loading…
2 tasks done
✨ Add --summary-only flag for concise score output
size:M
This PR changes 30-99 lines, ignoring generated files.
Stale
#4996
opened Apr 1, 2026 by
sachin9058
Loading…
2 tasks done
📖 Improve CLI help with quick start examples
size:S
This PR changes 10-29 lines, ignoring generated files.
Stale
#4995
opened Apr 1, 2026 by
sachin9058
Loading…
2 tasks done
📖 Consolidate v6 docs and add implementation plan
size:XL
This PR changes 500-999 lines, ignoring generated files.
#4994
opened Apr 1, 2026 by
justaugustus
Member
Loading…
1 of 2 tasks
🌱 Bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#4991
opened Mar 30, 2026 by
dependabot
Bot
Loading…
🌱 Bump actions/setup-go from 6.3.0 to 6.4.0
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update Github_actions code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#4988
opened Mar 30, 2026 by
dependabot
Bot
Loading…
✨ SAST - remove all references to LGTM.com
size:M
This PR changes 30-99 lines, ignoring generated files.
#4985
opened Mar 27, 2026 by
Kielek
Contributor
Loading…
2 tasks done
🐛 Fix Code-Review check for projects using Reviewed-by in commit messages
size:L
This PR changes 100-499 lines, ignoring generated files.
Stale
#4984
opened Mar 27, 2026 by
LoveChauhan-18
Loading…
2 tasks done
🌱 Bump github.com/moby/buildkit from 0.26.3 to 0.28.1
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:M
This PR changes 30-99 lines, ignoring generated files.
#4983
opened Mar 26, 2026 by
dependabot
Bot
Loading…
🌱 Add intel edge-aosp-bsp public Github repos
size:XS
This PR changes 0-9 lines, ignoring generated files.
Stale
#4980
opened Mar 26, 2026 by
akanisetti
Loading…
Previous Next
ProTip!
Type g p on any issue or pull request to go back to the pull request listing page.