Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / step-security/publish-unit-test-result-action issues and pull requests

#105 - fix: vulns added to osv-scanner

Pull Request - State: open - Opened by Raj-StepSecurity 23 days ago - 20 comments

#104 - Bump certifi from 2024.8.30 to 2025.7.9 in /python

Pull Request - State: open - Opened by dependabot[bot] 23 days ago
Labels: dependencies, python

#103 - Bump requests from 2.31.0 to 2.32.4 in /python

Pull Request - State: open - Opened by dependabot[bot] 24 days ago
Labels: dependencies, python

#102 - Bump docker/build-push-action from 6.15.0 to 6.18.0

Pull Request - State: open - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, github_actions

#101 - Bump certifi from 2024.8.30 to 2025.6.15 in /python

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 2 comments
Labels: dependencies, python

#100 - Update osv-scanner.toml

Pull Request - State: closed - Opened by Raj-StepSecurity about 2 months ago - 22 comments

#99 - feat: Update action.yml

Pull Request - State: closed - Opened by Raj-StepSecurity about 2 months ago - 22 comments

#98 - feat: Update action.yml

Pull Request - State: closed - Opened by Raj-StepSecurity about 2 months ago - 22 comments

#97 - feat: Update Dockerfile

Pull Request - State: closed - Opened by Raj-StepSecurity about 2 months ago - 22 comments

#96 - Bump requests from 2.32.3 to 2.32.4 in /misc/action/find-workflows

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 23 comments
Labels: dependencies, python

#95 - Bump zipp from 3.15.0 to 3.23.0 in /python

Pull Request - State: open - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, python

#94 - Bump requests from 2.32.3 to 2.32.4 in /misc/action/package-downloads

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 23 comments
Labels: dependencies, python

#93 - ci: apply security best practices

Pull Request - State: open - Opened by stepsecurity-int[bot] about 2 months ago - 22 comments

#92 - [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by stepsecurity-app[bot] about 2 months ago - 22 comments

#91 - fix: Update action.yml

Pull Request - State: closed - Opened by Raj-StepSecurity about 2 months ago - 22 comments

#90 - Update auto_cherry_pick.yml

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago - 22 comments

#89 - ci: Create guarddog.yml

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago - 22 comments

#88 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 2 months ago - 24 comments

#87 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 2 months ago - 1 comment

#86 - ci: Update auto_cherry_pick.yml

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago - 18 comments

#85 - Bump zipp from 3.15.0 to 3.22.0 in /python

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 2 comments
Labels: dependencies, python

#84 - ci: add or update auto-cherry-pick workflow

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago - 22 comments

#83 - ci: add or update auto-cherry-pick workflow

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago

#82 - ci: add guarddog security scanning workflow

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago - 22 comments

#81 - fix: image pinned for docker image

Pull Request - State: closed - Opened by Raj-StepSecurity 2 months ago - 23 comments

#80 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 3 months ago - 24 comments

#79 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 3 months ago - 1 comment

#78 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 3 months ago - 1 comment

#77 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 3 months ago - 1 comment

#76 - branch ref updated

Pull Request - State: closed - Opened by Raj-StepSecurity 3 months ago - 23 comments

#75 - Bump charset-normalizer from 3.4.0 to 3.4.2 in /python

Pull Request - State: open - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#74 - Bump certifi from 2024.8.30 to 2025.4.26 in /python

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 2 comments
Labels: dependencies, python

#71 - Last Release Date

Issue - State: closed - Opened by Raj-StepSecurity 4 months ago

#70 - Bump beautifulsoup4 from 4.13.3 to 4.13.4 in /misc/action/package-downloads

Pull Request - State: open - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, python

#69 - Bump python from `323a717` to `18159b2`

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments
Labels: dependencies, docker

#68 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 5 months ago - 24 comments

#67 - chore: Cherry-picked changes from upstream

Pull Request - State: closed - Opened by github-actions[bot] 5 months ago - 24 comments

#66 - Tracking Last Sync Date

Issue - State: open - Opened by github-actions[bot] 5 months ago
Labels: sync-tracking

#65 - ci: auto cherry-pick workflow added

Pull Request - State: closed - Opened by Raj-StepSecurity 5 months ago - 23 comments

#64 - fix: unused deps added to osv-scanner

Pull Request - State: closed - Opened by Raj-StepSecurity 5 months ago - 23 comments

#63 - Bump pyjwt from 2.8.0 to 2.10.1 in /python

Pull Request - State: open - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#62 - Bump cffi from 1.15.1 to 1.17.1 in /python

Pull Request - State: open - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#61 - Bump zipp from 3.15.0 to 3.21.0 in /python

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, python

#60 - Bump charset-normalizer from 3.4.0 to 3.4.1 in /python

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, python

#59 - Bump certifi from 2024.8.30 to 2025.1.31 in /python

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies, python

#58 - [StepSecurity] Apply security best practices

Pull Request - State: closed - Opened by step-security-bot 5 months ago

#57 - ci: audit fix workflow updates

Pull Request - State: closed - Opened by Raj-StepSecurity 5 months ago - 23 comments

#56 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 5 months ago

#55 - Add Windows 2025 to CI and Fix YAML syntax in README.md

Pull Request - State: open - Opened by Raj-StepSecurity 6 months ago - 23 comments

#54 - Fix add windows2025 yml syntax readme

Pull Request - State: closed - Opened by Raj-StepSecurity 6 months ago - 11 comments

#53 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 8 months ago

#52 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 8 months ago

#51 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 8 months ago

#50 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 8 months ago

#49 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 8 months ago

#48 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-int[bot] 8 months ago

#47 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by stepsecurity-app[bot] 8 months ago
Labels: High Severity

#46 - chore: fast forward upstream changes to v2.18.0

Pull Request - State: closed - Opened by shubham-stepsecurity 9 months ago - 24 comments

#45 - Harden GitHub Actions Workflow - ci-cd.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 9 months ago
Labels: High Severity

#44 - Harden GitHub Actions Workflow - test-results.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 9 months ago
Labels: High Severity

#43 - Harden GitHub Actions Workflow - codeql.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 9 months ago
Labels: High Severity

#42 - Harden GitHub Actions Workflow - ci-cd.yml

Issue - State: closed - Opened by int-stepsecurity-advanced[bot] 9 months ago
Labels: High Severity

#41 - Update ids in osv-scanner.toml

Pull Request - State: closed - Opened by shubham-stepsecurity 10 months ago - 24 comments

#40 - Ignore non-relevant vulnerable dependencies

Pull Request - State: closed - Opened by shubham-stepsecurity 10 months ago - 24 comments

#39 - bump vulnerable dependencies

Pull Request - State: closed - Opened by shubham-stepsecurity 10 months ago - 23 comments

#38 - Bump emibcn/badge-action from 2.0.2 to 2.0.3

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 2 comments
Labels: dependencies

#37 - remove build issues

Pull Request - State: closed - Opened by shubham-stepsecurity 12 months ago - 24 comments

#36 - Bump docker/build-push-action from 4 to 6

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 2 comments
Labels: dependencies, github_actions

#35 - Bump andymckay/append-gist-action from 1fbfbbce708a39bd45846f0955ed5521f2099c6d to ab30bf28df67017c7ad696500b218558c7c04db3

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago - 26 comments
Labels: dependencies, github_actions

#34 - chore: fast forward upstream changes to v2.17.0

Pull Request - State: closed - Opened by shubham-stepsecurity about 1 year ago - 25 comments

#33 - Bump psutil from 5.9.5 to 6.0.0

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, python

#32 - Bump typing-extensions from 4.7.1 to 4.12.2

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, python

#31 - Bump humanize from 3.14.0 to 4.10.0

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, python

#30 - update readme & ci-cd workflow

Pull Request - State: closed - Opened by shubham-stepsecurity about 1 year ago - 13 comments

#29 - Bump idna from 3.4 to 3.7 in /python

Pull Request - State: open - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies, python

#28 - Bump typing-extensions from 4.7.1 to 4.11.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#27 - Bump dawidd6/action-download-artifact from 2.27.0 to 3.1.4

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, github_actions

#26 - Tushar testing with all incoming changes of upstream

Pull Request - State: closed - Opened by SinghTushar20 over 1 year ago - 1 comment

#25 - updating dependencies

Pull Request - State: closed - Opened by SinghTushar20 over 1 year ago - 1 comment

#24 - Bump dawidd6/action-download-artifact from 2.27.0 to 3.1.2

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#23 - Bump typing-extensions from 4.7.1 to 4.10.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#22 - Update dependencies

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 14 comments

#21 - Bump psutil from 5.9.5 to 5.9.8

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#20 - First release

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 13 comments

#19 - Fix issue with provenance generation

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 14 comments

#18 - Sign the docker image

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 14 comments

#17 - Bump dawidd6/action-download-artifact from 2.27.0 to 3.0.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#16 - Bump psutil from 5.9.5 to 5.9.7

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#15 - Bump typing-extensions from 4.7.1 to 4.9.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python

#14 - Fix docker image reference

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 15 comments

#13 - Add API validation

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 14 comments

#12 - Setup action

Pull Request - State: closed - Opened by varunsh-coder over 1 year ago - 15 comments

#11 - Bump docker/build-push-action from 4 to 5

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#10 - Bump dawidd6/action-download-artifact from 2.27.0 to 2.28.0

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#9 - Bump andymckay/append-gist-action from 1fbfbbce708a39bd45846f0955ed5521f2099c6d to 6e8d64427fe47cbacf4ab6b890411f1d67c07f3e

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#8 - Bump wrapt from 1.15.0 to 1.16.0

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago - 1 comment
Labels: dependencies, python

#7 - Bump crazy-max/ghaction-container-scan from 2 to 3

Pull Request - State: open - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, github_actions

#6 - Bump psutil from 5.9.5 to 5.9.6

Pull Request - State: closed - Opened by dependabot[bot] over 1 year ago - 2 comments
Labels: dependencies, python