Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / step-security/action-cond issues and pull requests

#110 - Harden GitHub Actions Workflow - test.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#109 - Harden GitHub Actions Workflow - scorecards.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#108 - Harden GitHub Actions Workflow - reviewdog.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#107 - Harden GitHub Actions Workflow - dependency-review.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#106 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#106 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#105 - Harden GitHub Actions Workflow - actions_release.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#104 - Bump @types/node from 20.11.17 to 22.9.0

Pull Request - State: open - Opened by dependabot[bot] 27 days ago - 1 comment
Labels: dependencies, javascript

#104 - Bump @types/node from 20.11.17 to 22.9.0

Pull Request - State: open - Opened by dependabot[bot] 27 days ago - 1 comment
Labels: dependencies, javascript

#103 - Bump eslint-plugin-jest from 27.6.3 to 28.9.0

Pull Request - State: open - Opened by dependabot[bot] 27 days ago
Labels: dependencies, javascript

#103 - Bump eslint-plugin-jest from 27.6.3 to 28.9.0

Pull Request - State: open - Opened by dependabot[bot] 27 days ago
Labels: dependencies, javascript

#102 - Bump @typescript-eslint/parser from 6.21.0 to 8.13.0

Pull Request - State: open - Opened by dependabot[bot] 28 days ago
Labels: dependencies, javascript

#102 - Bump @typescript-eslint/parser from 6.21.0 to 8.13.0

Pull Request - State: open - Opened by dependabot[bot] 28 days ago
Labels: dependencies, javascript

#101 - Bump @types/node from 20.11.17 to 22.8.7

Pull Request - State: closed - Opened by dependabot[bot] 28 days ago - 1 comment
Labels: dependencies, javascript

#101 - Bump @types/node from 20.11.17 to 22.8.7

Pull Request - State: closed - Opened by dependabot[bot] 28 days ago - 1 comment
Labels: dependencies, javascript

#100 - Bump @types/node from 20.11.17 to 22.8.6

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#100 - Bump @types/node from 20.11.17 to 22.8.6

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#99 - Bump @types/node from 20.11.17 to 22.8.4

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#99 - Bump @types/node from 20.11.17 to 22.8.4

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#98 - Bump @typescript-eslint/parser from 6.21.0 to 8.12.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#98 - Bump @typescript-eslint/parser from 6.21.0 to 8.12.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#97 - Bump @types/node from 20.11.17 to 22.8.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#97 - Bump @types/node from 20.11.17 to 22.8.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#96 - Bump @typescript-eslint/parser from 6.21.0 to 8.12.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#96 - Bump @typescript-eslint/parser from 6.21.0 to 8.12.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#95 - Bump actions/dependency-review-action from 4.3.3 to 4.4.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#95 - Bump actions/dependency-review-action from 4.3.3 to 4.4.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#94 - Bump @types/node from 20.11.17 to 22.8.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#94 - Bump @types/node from 20.11.17 to 22.8.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#93 - Bump actions/checkout from 1.2.0 to 4.2.2

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#93 - Bump actions/checkout from 1.2.0 to 4.2.2

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#92 - Bump @types/node from 20.11.17 to 22.7.9

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#92 - Bump @types/node from 20.11.17 to 22.7.9

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#91 - Bump @types/node from 20.11.17 to 22.7.8

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#91 - Bump @types/node from 20.11.17 to 22.7.8

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#90 - Bump actions/dependency-review-action from 4.3.3 to 4.3.5

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#90 - Bump actions/dependency-review-action from 4.3.3 to 4.3.5

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#89 - Bump github/codeql-action from 3.25.11 to 3.27.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#89 - Bump github/codeql-action from 3.25.11 to 3.27.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#88 - Bump @types/node from 20.11.17 to 22.7.7

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#88 - Bump @types/node from 20.11.17 to 22.7.7

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#87 - Bump @typescript-eslint/parser from 6.21.0 to 8.11.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#87 - Bump @typescript-eslint/parser from 6.21.0 to 8.11.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#86 - Bump @types/node from 20.11.17 to 22.7.6

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#86 - Bump @types/node from 20.11.17 to 22.7.6

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#85 - Bump @typescript-eslint/parser from 6.21.0 to 8.10.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#85 - Bump @typescript-eslint/parser from 6.21.0 to 8.10.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#84 - Bump @typescript-eslint/parser from 6.21.0 to 8.9.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#84 - Bump @typescript-eslint/parser from 6.21.0 to 8.9.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#83 - Bump github/codeql-action from 3.25.11 to 3.26.13

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#83 - Bump github/codeql-action from 3.25.11 to 3.26.13

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#82 - Bump @types/node from 20.11.17 to 22.7.5

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#82 - Bump @types/node from 20.11.17 to 22.7.5

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#81 - Bump actions/checkout from 1.2.0 to 4.2.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#81 - Bump actions/checkout from 1.2.0 to 4.2.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#80 - Bump github/codeql-action from 3.25.11 to 3.26.12

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#80 - Bump github/codeql-action from 3.25.11 to 3.26.12

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#79 - Bump @typescript-eslint/parser from 6.21.0 to 8.8.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#78 - Bump github/codeql-action from 3.25.11 to 3.26.11

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#78 - Bump github/codeql-action from 3.25.11 to 3.26.11

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#77 - Create osv-scanner.toml

Pull Request - State: closed - Opened by varunsh-coder 2 months ago

#77 - Create osv-scanner.toml

Pull Request - State: closed - Opened by varunsh-coder 2 months ago

#76 - Bump @typescript-eslint/parser from 6.21.0 to 8.8.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#75 - Bump github/codeql-action from 3.25.11 to 3.26.10

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#75 - Bump github/codeql-action from 3.25.11 to 3.26.10

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#74 - Bump @types/node from 20.11.17 to 22.7.4

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#74 - Bump @types/node from 20.11.17 to 22.7.4

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#73 - Bump @types/node from 20.11.17 to 22.7.3

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#73 - Bump @types/node from 20.11.17 to 22.7.3

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#72 - Bump actions/checkout from 1.2.0 to 4.2.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#72 - Bump actions/checkout from 1.2.0 to 4.2.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#71 - Bump @types/node from 20.11.17 to 22.7.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#71 - Bump @types/node from 20.11.17 to 22.7.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#70 - Bump github/codeql-action from 3.25.11 to 3.26.9

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#70 - Bump github/codeql-action from 3.25.11 to 3.26.9

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#69 - Bump @typescript-eslint/parser from 6.21.0 to 8.7.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#69 - Bump @typescript-eslint/parser from 6.21.0 to 8.7.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#68 - Bump @types/node from 20.11.17 to 22.6.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#68 - Bump @types/node from 20.11.17 to 22.6.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#67 - Bump github/codeql-action from 3.25.11 to 3.26.8

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#67 - Bump github/codeql-action from 3.25.11 to 3.26.8

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#66 - Bump eslint from 8.56.0 to 8.57.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#66 - Bump eslint from 8.56.0 to 8.57.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#65 - Bump @types/node from 20.11.17 to 22.5.5

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#65 - Bump @types/node from 20.11.17 to 22.5.5

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#64 - Bump @typescript-eslint/parser from 6.21.0 to 8.6.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#64 - Bump @typescript-eslint/parser from 6.21.0 to 8.6.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#63 - Bump reviewdog/action-eslint from 1.29.0 to 1.32.0

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#63 - Bump reviewdog/action-eslint from 1.29.0 to 1.32.0

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#62 - Bump github/codeql-action from 3.25.11 to 3.26.7

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#62 - Bump github/codeql-action from 3.25.11 to 3.26.7

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#61 - Bump step-security/harden-runner from 2.8.1 to 2.10.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#61 - Bump step-security/harden-runner from 2.8.1 to 2.10.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#60 - Bump eslint-plugin-github from 4.10.1 to 5.0.2

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#60 - Bump eslint-plugin-github from 4.10.1 to 5.0.2

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#59 - Bump @typescript-eslint/parser from 6.21.0 to 8.5.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#59 - Bump @typescript-eslint/parser from 6.21.0 to 8.5.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#58 - Bump eslint-plugin-jest from 27.6.3 to 28.8.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#57 - Bump @types/node from 20.11.17 to 22.5.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#57 - Bump @types/node from 20.11.17 to 22.5.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript