Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / step-security/agent issues and pull requests
#436 - Harden GitHub Actions Workflow - test.yml
Issue -
State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity
#435 - Fix dns resolver for docker
Pull Request -
State: open - Opened by sailikhith-stepsecurity 3 months ago
#434 - Add panic handler
Pull Request -
State: open - Opened by h0x0er 4 months ago
- 1 comment
#433 - Remove goreleaser deprecated flag
Pull Request -
State: closed - Opened by varunsh-coder 6 months ago
#432 - One time key
Pull Request -
State: closed - Opened by varunsh-coder 6 months ago
#431 - One time key
Pull Request -
State: closed - Opened by varunsh-coder 6 months ago
#430 - Add one-time-key logic
Pull Request -
State: closed - Opened by h0x0er 6 months ago
#429 - Would you allow an offline-only agent with no API communication with the SaaS service
Issue -
State: open - Opened by prabhu 8 months ago
#428 - Remove source-code extension check
Pull Request -
State: open - Opened by h0x0er 8 months ago
#427 - [StepSecurity] ci: Harden GitHub Actions
Pull Request -
State: closed - Opened by step-security-bot about 1 year ago
#426 - Filter can be bypassed on shared CDNs
Issue -
State: open - Opened by mschfh about 1 year ago
#425 - Update eventhandler.go
Pull Request -
State: open - Opened by varunsh-coder about 1 year ago
- 1 comment
#424 - Add new allowed endpoints
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#423 - Update int.yml
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#422 - Update allowed endpoint
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#421 - [StepSecurity] ci: Harden GitHub Actions
Pull Request -
State: closed - Opened by step-security-bot over 1 year ago
#420 - Bump github.com/docker/docker from 23.0.4+incompatible to 24.0.4+incompatible
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#419 - Bump github.com/docker/docker from 23.0.4+incompatible to 24.0.3+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#418 - Bump github/codeql-action from 1.0.26 to 2.20.3
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
Labels: dependencies, github_actions
#417 - [StepSecurity] Apply security best practices
Pull Request -
State: closed - Opened by step-security-bot over 1 year ago
#417 - [StepSecurity] Apply security best practices
Pull Request -
State: closed - Opened by step-security-bot over 1 year ago
#416 - Bump github/codeql-action from 1.0.26 to 2.20.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#415 - Bump github/codeql-action from 1.0.26 to 2.20.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#415 - Bump github/codeql-action from 1.0.26 to 2.20.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#414 - Add fallback DNS
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#414 - Add fallback DNS
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#414 - Add fallback DNS
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#413 - Add fallback DNS
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#413 - Add fallback DNS
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#412 - Release v0.13.3
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#412 - Release v0.13.3
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#412 - Release v0.13.3
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#411 - Improve logging
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#411 - Improve logging
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#411 - Improve logging
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#410 - Bump aws-actions/configure-aws-credentials from 1.6.0 to 2.2.0
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#410 - Bump aws-actions/configure-aws-credentials from 1.6.0 to 2.2.0
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#409 - Bump github/codeql-action from 1.0.26 to 2.20.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#409 - Bump github/codeql-action from 1.0.26 to 2.20.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#408 - Bump goreleaser/goreleaser-action from 2.8.0 to 4.3.0
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#408 - Bump goreleaser/goreleaser-action from 2.8.0 to 4.3.0
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#407 - Bump github/codeql-action from 1.0.26 to 2.13.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#407 - Bump github/codeql-action from 1.0.26 to 2.13.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#407 - Bump github/codeql-action from 1.0.26 to 2.13.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#406 - Bump github/codeql-action from 1.0.26 to 2.3.6
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#406 - Bump github/codeql-action from 1.0.26 to 2.3.6
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#405 - Bump aws-actions/configure-aws-credentials from 1.6.0 to 2.1.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#405 - Bump aws-actions/configure-aws-credentials from 1.6.0 to 2.1.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#405 - Bump aws-actions/configure-aws-credentials from 1.6.0 to 2.1.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#404 - Bump github.com/docker/docker from 23.0.4+incompatible to 24.0.2+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#403 - Bump github/codeql-action from 1.0.26 to 2.3.5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#403 - Bump github/codeql-action from 1.0.26 to 2.3.5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#403 - Bump github/codeql-action from 1.0.26 to 2.3.5
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#402 - Bump github/codeql-action from 1.0.26 to 2.3.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#402 - Bump github/codeql-action from 1.0.26 to 2.3.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#402 - Bump github/codeql-action from 1.0.26 to 2.3.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#402 - Bump github/codeql-action from 1.0.26 to 2.3.4
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#401 - Bump github.com/docker/docker from 23.0.4+incompatible to 24.0.1+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#401 - Bump github.com/docker/docker from 23.0.4+incompatible to 24.0.1+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#400 - Bump github.com/docker/docker from 23.0.4+incompatible to 24.0.0+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#399 - Bump actions/setup-go from 2.1.5 to 4.0.1
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#398 - using codewise int for dogfooding
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
- 1 comment
#397 - using codewise int for dogfooding
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
- 1 comment
#396 - Bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#395 - Bump github.com/docker/docker from 23.0.4+incompatible to 23.0.6+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#394 - adding id-token write permission for code review action
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
- 1 comment
#393 - adding id-token write permission for code review action
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
- 1 comment
#392 - Bump github/codeql-action from 1.0.26 to 2.3.3
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#391 - Fix bug with wildcard resolution
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#390 - Fix bug with wildcard resolution
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#389 - Update code-review.yml
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
#388 - adding a workflow for reviewing code changes using stepsecurity code reviewer
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
- 1 comment
#387 - adding a workflow for reviewing code changes using stepsecurity code reviewer
Pull Request -
State: closed - Opened by ashishkurmi over 1 year ago
- 1 comment
#386 - Bump github/codeql-action from 1.0.26 to 2.3.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#385 - Bump github.com/docker/docker from 23.0.4+incompatible to 23.0.5+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#384 - Bump github/codeql-action from 1.0.26 to 2.3.1
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#383 - Revert docker-user mapping
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#382 - Revert docker userns-remap
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
#381 - Revert docker userns-remap
Pull Request -
State: closed - Opened by h0x0er over 1 year ago
- 1 comment
#380 - Bump github/codeql-action from 1.0.26 to 2.3.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#379 - Release v0.13.0
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#378 - Update go and dependencies
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#377 - Add support for wildcard allowed-endpoints
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#376 - Add fix to not run docker containers with root access
Pull Request -
State: closed - Opened by varunsh-coder over 1 year ago
- 1 comment
#375 - Add support for wildcard allowed-endpoints
Pull Request -
State: closed - Opened by h0x0er over 1 year ago
- 1 comment
#374 - Bump github.com/docker/docker from 20.10.14+incompatible to 23.0.4+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#373 - Bump actions/upload-artifact from 3.0.0 to 3.1.2
Pull Request -
State: open - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#372 - Bump github/codeql-action from 1.0.26 to 2.2.12
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#371 - Bump codecov/codecov-action from 2.1.0 to 3.1.2
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#370 - Bump github/codeql-action from 1.0.26 to 2.2.11
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#369 - Bump github/codeql-action from 1.0.26 to 2.2.10
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#368 - Bump github.com/docker/docker from 20.10.14+incompatible to 23.0.3+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#367 - Bump github.com/miekg/dns from 1.1.48 to 1.1.53
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#366 - Bump github.com/docker/docker from 20.10.14+incompatible to 23.0.2+incompatible
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, go
#365 - Bump github/codeql-action from 1.0.26 to 2.2.9
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 1 comment
Labels: dependencies, github_actions
#364 - Bump github/codeql-action from 1.0.26 to 2.2.8
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#363 - Bump github/codeql-action from 1.0.26 to 2.2.7
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#362 - Bump actions/setup-go from 2.1.5 to 4.0.0
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions
#361 - Bump github.com/miekg/dns from 1.1.48 to 1.1.52
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, go
#360 - Bump github/codeql-action from 1.0.26 to 2.2.6
Pull Request -
State: closed - Opened by dependabot[bot] over 1 year ago
- 2 comments
Labels: dependencies, github_actions