Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / step-security/conventional-pr-title-action issues and pull requests

#64 - Harden GitHub Actions Workflow - pull-request.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#64 - Harden GitHub Actions Workflow - pull-request.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#63 - Harden GitHub Actions Workflow - docker-image.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#63 - Harden GitHub Actions Workflow - docker-image.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#62 - Harden GitHub Actions Workflow - dependency-review.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#62 - Harden GitHub Actions Workflow - dependency-review.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#61 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#61 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#60 - Bump @actions/core from 1.10.0 to 1.11.1

Pull Request - State: open - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, javascript

#60 - Bump @actions/core from 1.10.0 to 1.11.1

Pull Request - State: open - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, javascript

#59 - Create osv-scanner.toml

Pull Request - State: closed - Opened by varunsh-coder 2 months ago

#58 - Bump @actions/core from 1.10.0 to 1.11.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#58 - Bump @actions/core from 1.10.0 to 1.11.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#57 - Bump docker/build-push-action from 4.0.0 to 6.9.0

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: dependencies, github_actions

#57 - Bump docker/build-push-action from 4.0.0 to 6.9.0

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: dependencies, github_actions

#56 - Bump docker/build-push-action from 4.0.0 to 6.8.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#55 - Bump npm-package-arg from 10.1.0 to 12.0.0

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: dependencies, javascript

#55 - Bump npm-package-arg from 10.1.0 to 12.0.0

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: dependencies, javascript

#54 - Bump docker/build-push-action from 4.0.0 to 6.7.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#54 - Bump docker/build-push-action from 4.0.0 to 6.7.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#53 - Bump docker/build-push-action from 4.0.0 to 6.6.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#53 - Bump docker/build-push-action from 4.0.0 to 6.6.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#52 - Bump docker/build-push-action from 4.0.0 to 6.6.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#52 - Bump docker/build-push-action from 4.0.0 to 6.6.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#51 - Bump docker/login-action from 2.1.0 to 3.3.0

Pull Request - State: open - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#51 - Bump docker/login-action from 2.1.0 to 3.3.0

Pull Request - State: open - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#50 - Bump docker/build-push-action from 4.0.0 to 6.5.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#50 - Bump docker/build-push-action from 4.0.0 to 6.5.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#49 - Bump npm-package-arg from 10.1.0 to 11.0.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#49 - Bump npm-package-arg from 10.1.0 to 11.0.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#48 - Bump docker/build-push-action from 4.0.0 to 6.4.1

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#48 - Bump docker/build-push-action from 4.0.0 to 6.4.1

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#47 - Bump docker/build-push-action from 4.0.0 to 6.4.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#47 - Bump docker/build-push-action from 4.0.0 to 6.4.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#46 - Bump actions/dependency-review-action from 4.3.2 to 4.3.4

Pull Request - State: open - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#46 - Bump actions/dependency-review-action from 4.3.2 to 4.3.4

Pull Request - State: open - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#45 - Update readme & Bump follow-redirects

Pull Request - State: closed - Opened by shubham-stepsecurity 5 months ago

#45 - Update readme & Bump follow-redirects

Pull Request - State: closed - Opened by shubham-stepsecurity 5 months ago

#44 - Bump braces from 3.0.2 to 3.0.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#44 - Bump braces from 3.0.2 to 3.0.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, javascript

#43 - Bump docker/login-action from 2.1.0 to 3.2.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#43 - Bump docker/login-action from 2.1.0 to 3.2.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies, github_actions

#42 - Bump conventional-commits-parser from 4.0.0 to 6.0.0

Pull Request - State: open - Opened by dependabot[bot] 7 months ago
Labels: dependencies, javascript

#42 - Bump conventional-commits-parser from 4.0.0 to 6.0.0

Pull Request - State: open - Opened by dependabot[bot] 7 months ago
Labels: dependencies, javascript

#41 - Bump conventional-changelog-conventionalcommits from 6.1.0 to 8.0.0

Pull Request - State: open - Opened by dependabot[bot] 7 months ago
Labels: dependencies, javascript

#41 - Bump conventional-changelog-conventionalcommits from 6.1.0 to 8.0.0

Pull Request - State: open - Opened by dependabot[bot] 7 months ago
Labels: dependencies, javascript

#40 - Bump node from 20-alpine to 22-alpine

Pull Request - State: open - Opened by dependabot[bot] 7 months ago
Labels: dependencies, docker

#39 - Bump actions/dependency-review-action from 2.5.1 to 4.3.2

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, github_actions

#38 - Bump actions/dependency-review-action from 2.5.1 to 4.3.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, github_actions

#38 - Bump actions/dependency-review-action from 2.5.1 to 4.3.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, github_actions

#37 - Bump actions/dependency-review-action from 2.5.1 to 4.3.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies, github_actions

#36 - Bump npm-package-arg from 10.1.0 to 11.0.2

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, javascript

#36 - Bump npm-package-arg from 10.1.0 to 11.0.2

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, javascript

#35 - Bump actions/dependency-review-action from 2.5.1 to 4.2.5

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, github_actions

#35 - Bump actions/dependency-review-action from 2.5.1 to 4.2.5

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, github_actions

#34 - Bump actions/dependency-review-action from 2.5.1 to 4.2.4

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies, github_actions

#33 - Bump actions/dependency-review-action from 2.5.1 to 4.2.3

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#33 - Bump actions/dependency-review-action from 2.5.1 to 4.2.3

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#32 - Bump follow-redirects from 1.15.4 to 1.15.6

Pull Request - State: open - Opened by dependabot[bot] 9 months ago
Labels: dependencies, javascript

#32 - Bump follow-redirects from 1.15.4 to 1.15.6

Pull Request - State: open - Opened by dependabot[bot] 9 months ago
Labels: dependencies, javascript

#31 - Bump docker/build-push-action from 4.0.0 to 5.3.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#31 - Bump docker/build-push-action from 4.0.0 to 5.3.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#30 - Bump docker/login-action from 2.1.0 to 3.1.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#30 - Bump docker/login-action from 2.1.0 to 3.1.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#29 - Bump docker/build-push-action from 4.0.0 to 5.2.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#28 - chore: Bump follow-redirects from 1.15.3 to 1.15.4

Pull Request - State: closed - Opened by ashishkurmi 9 months ago

#28 - chore: Bump follow-redirects from 1.15.3 to 1.15.4

Pull Request - State: closed - Opened by ashishkurmi 9 months ago

#27 - Bump actions/dependency-review-action from 2.5.1 to 4.1.3

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, github_actions

#27 - Bump actions/dependency-review-action from 2.5.1 to 4.1.3

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, github_actions

#26 - Bump actions/dependency-review-action from 2.5.1 to 4.1.2

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, github_actions

#26 - Bump actions/dependency-review-action from 2.5.1 to 4.1.2

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, github_actions

#25 - Bump actions/dependency-review-action from 2.5.1 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, github_actions

#25 - Bump actions/dependency-review-action from 2.5.1 to 4.1.0

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies, github_actions

#24 - Bump docker/metadata-action from 4.3.0 to 5.5.1

Pull Request - State: open - Opened by dependabot[bot] 10 months ago
Labels: dependencies, github_actions

#24 - Bump docker/metadata-action from 4.3.0 to 5.5.1

Pull Request - State: open - Opened by dependabot[bot] 10 months ago
Labels: dependencies, github_actions

#23 - Bump actions/dependency-review-action from 2.5.1 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies, github_actions

#23 - Bump actions/dependency-review-action from 2.5.1 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies, github_actions

#22 - Bump follow-redirects from 1.15.3 to 1.15.4

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 3 comments
Labels: dependencies, javascript

#22 - Bump follow-redirects from 1.15.3 to 1.15.4

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 3 comments
Labels: dependencies, javascript

#21 - Bump docker/metadata-action from 4.3.0 to 5.5.0

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies, github_actions

#21 - Bump docker/metadata-action from 4.3.0 to 5.5.0

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies, github_actions

#20 - Bump actions/dependency-review-action from 2.5.1 to 3.1.5

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies, github_actions

#20 - Bump actions/dependency-review-action from 2.5.1 to 3.1.5

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies, github_actions

#19 - first actions version

Pull Request - State: closed - Opened by ashishkurmi 12 months ago

#19 - first actions version

Pull Request - State: closed - Opened by ashishkurmi 12 months ago

#18 - chore(deps): Bump docker/metadata-action from 4.3.0 to 5.4.0

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies, github_actions

#18 - chore(deps): Bump docker/metadata-action from 4.3.0 to 5.4.0

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies, github_actions

#17 - chore(deps): Bump actions/dependency-review-action from 2.5.1 to 3.1.4

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies, github_actions

#16 - chore(deps): Bump docker/metadata-action from 4.3.0 to 5.3.0

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies, github_actions

#15 - chore: [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot almost 1 year ago

#15 - chore: [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot almost 1 year ago

#14 - [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot almost 1 year ago

#14 - [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot almost 1 year ago

#13 - chore: [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot almost 1 year ago - 1 comment

#13 - chore: [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot almost 1 year ago - 1 comment

#12 - Bump @actions/github from 5.1.1 to 6.0.0

Pull Request - State: open - Opened by dependabot[bot] almost 1 year ago
Labels: dependencies, javascript

#11 - Bump @actions/core from 1.10.0 to 1.10.1

Pull Request - State: closed - Opened by dependabot[bot] almost 1 year ago - 1 comment
Labels: dependencies, javascript

#10 - Bump npm-package-arg from 10.1.0 to 11.0.1

Pull Request - State: closed - Opened by dependabot[bot] almost 1 year ago - 1 comment
Labels: dependencies, javascript

#9 - Bump conventional-commits-parser from 4.0.0 to 5.0.0

Pull Request - State: closed - Opened by dependabot[bot] almost 1 year ago - 1 comment
Labels: dependencies, javascript

#8 - Bump conventional-changelog-conventionalcommits from 6.1.0 to 7.0.2

Pull Request - State: closed - Opened by dependabot[bot] almost 1 year ago - 1 comment
Labels: dependencies, javascript