Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / step-security/gh-docker-logs issues and pull requests

#95 - Harden GitHub Actions Workflow - test.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#94 - Harden GitHub Actions Workflow - scorecards.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#93 - Harden GitHub Actions Workflow - dependency-review.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#92 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#91 - Harden GitHub Actions Workflow - actions_release.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 27 days ago
Labels: High Severity

#90 - chore: bump eslint-plugin-jest from 27.6.3 to 28.9.0

Pull Request - State: open - Opened by dependabot[bot] 27 days ago - 1 comment
Labels: dependencies, javascript

#89 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.13.0

Pull Request - State: open - Opened by dependabot[bot] 28 days ago
Labels: dependencies, javascript

#88 - chore: bump eslint from 8.56.0 to 9.14.0

Pull Request - State: open - Opened by dependabot[bot] 29 days ago
Labels: dependencies, javascript

#87 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.12.2

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#86 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.12.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#85 - chore: bump actions/dependency-review-action from 4.3.3 to 4.4.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#84 - chore: bump semantic-release from 23.0.0 to 24.2.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, javascript

#83 - chore: bump actions/setup-node from 4.0.2 to 4.1.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#82 - chore: bump github/codeql-action from 3.25.11 to 3.27.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#81 - chore: bump actions/dependency-review-action from 4.3.3 to 4.3.5

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#80 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.11.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#79 - chore: bump eslint from 8.56.0 to 9.13.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#78 - chore: bump semantic-release from 23.0.0 to 24.1.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, javascript

#77 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.10.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#76 - chore: bump github/codeql-action from 3.25.11 to 3.26.13

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#75 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.9.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#74 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.8.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#73 - chore: bump github/codeql-action from 3.25.11 to 3.26.12

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#72 - chore: bump eslint from 8.56.0 to 9.12.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, javascript

#71 - chore: bump github/codeql-action from 3.25.11 to 3.26.11

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#70 - Create osv-scanner.toml

Pull Request - State: closed - Opened by varunsh-coder 2 months ago

#69 - chore: bump github/codeql-action from 3.25.11 to 3.26.10

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#68 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.8.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#67 - chore: bump semantic-release from 23.0.0 to 24.1.2

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#66 - chore: bump github/codeql-action from 3.25.11 to 3.26.9

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#65 - chore: bump eslint from 8.56.0 to 9.11.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#64 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.7.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#63 - chore: bump eslint from 8.56.0 to 9.11.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, javascript

#62 - chore: bump actions/setup-node from 4.0.2 to 4.0.4

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#61 - chore: bump github/codeql-action from 3.25.11 to 3.26.8

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#60 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.6.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#59 - chore: bump github/codeql-action from 3.25.11 to 3.26.7

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#58 - chore: bump step-security/harden-runner from 2.8.1 to 2.10.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, github_actions

#57 - chore: bump semantic-release from 23.0.0 to 24.1.1

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#56 - chore: bump step-security/harden-runner from 2.8.1 to 2.10.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#55 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.5.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#54 - chore: bump eslint from 8.56.0 to 9.10.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#53 - chore: bump eslint-plugin-jest from 27.6.3 to 28.8.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#52 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.4.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#51 - chore: bump eslint-plugin-jest from 27.6.3 to 28.8.2

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#50 - chore: bump eslint-plugin-jest from 27.6.3 to 28.8.1

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#49 - chore: bump github/codeql-action from 3.25.11 to 3.26.6

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#48 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.3.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#47 - chore: bump ts-jest from 29.1.2 to 29.2.5

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#47 - chore: bump ts-jest from 29.1.2 to 29.2.5

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#46 - chore: bump eslint from 8.56.0 to 9.9.1

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#45 - chore: bump github/codeql-action from 3.25.11 to 3.26.5

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#45 - chore: bump github/codeql-action from 3.25.11 to 3.26.5

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#44 - chore: bump github/codeql-action from 3.25.11 to 3.26.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#43 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.2.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#42 - chore: bump github/codeql-action from 3.25.11 to 3.26.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#41 - patch vulnerable build

Pull Request - State: closed - Opened by shubham-stepsecurity 4 months ago

#40 - chore: bump axios from 1.7.2 to 1.7.4

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#39 - chore: bump semantic-release from 23.0.0 to 24.1.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#39 - chore: bump semantic-release from 23.0.0 to 24.1.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#38 - chore(deps): bump github/codeql-action from 3.25.11 to 3.26.2

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#37 - chore(deps): bump github/codeql-action from 3.25.11 to 3.26.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#36 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.1.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#35 - chore: bump eslint from 8.56.0 to 9.9.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#34 - fix: bump tar and npm

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#33 - fix: bump undici from 5.28.2 to 5.28.4

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#32 - chore: bump braces from 3.0.2 to 3.0.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#31 - chore: bump eslint-plugin-jest from 27.6.3 to 28.8.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#30 - chore(deps): bump github/codeql-action from 3.25.11 to 3.26.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#29 - chore(deps): bump step-security/harden-runner from 2.8.1 to 2.9.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#28 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.0.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#27 - chore: bump eslint-plugin-jest from 27.6.3 to 28.7.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#26 - chore: bump ts-jest from 29.1.2 to 29.2.4

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#25 - chore: bump @typescript-eslint/parser from 6.19.1 to 8.0.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#24 - chore: bump @typescript-eslint/parser from 6.19.1 to 7.18.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#23 - chore(deps): bump ossf/scorecard-action from 2.3.3 to 2.4.0

Pull Request - State: open - Opened by dependabot[bot] 4 months ago
Labels: dependencies, github_actions

#22 - chore(deps): bump github/codeql-action from 3.25.11 to 3.25.15

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#21 - chore: bump eslint from 8.56.0 to 9.8.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#20 - chore(deps): bump github/codeql-action from 3.25.11 to 3.25.14

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#19 - chore: bump @typescript-eslint/parser from 6.19.1 to 7.17.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#18 - chore(deps): bump github/codeql-action from 3.25.11 to 3.25.13

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, github_actions

#17 - chore(deps): bump step-security/harden-runner from 2.8.1 to 2.9.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#16 - chore: bump ts-jest from 29.1.2 to 29.2.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#15 - chore: bump @typescript-eslint/parser from 6.19.1 to 7.16.1

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#14 - chore: bump eslint from 8.56.0 to 9.7.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#13 - chore(deps): bump github/codeql-action from 3.25.11 to 3.25.12

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#12 - chore(deps): bump actions/dependency-review-action from 4.3.3 to 4.3.4

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#11 - chore: bump ts-jest from 29.1.2 to 29.2.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#10 - chore(deps): bump actions/setup-node from 4.0.2 to 4.0.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, github_actions

#9 - chore: bump @typescript-eslint/parser from 6.19.1 to 7.16.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#8 - chore: bump ts-jest from 29.1.2 to 29.2.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#7 - chore: bump @typescript-eslint/parser from 6.19.1 to 7.15.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#6 - chore: bump eslint-plugin-jest from 27.6.3 to 28.6.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#5 - chore: bump ts-jest from 29.1.2 to 29.1.5

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#4 - chore: bump eslint from 8.56.0 to 9.6.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#3 - chore: bump semantic-release from 23.0.0 to 24.0.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, javascript

#2 - [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot 5 months ago - 1 comment

#1 - chore: initial release

Pull Request - State: closed - Opened by shubham-stepsecurity 5 months ago