actions/checkout
### [`v3.5.0`](https://togithub.com/actions/checkout/releases/tag/v3.5.0)
[Compare Source](https://togithub.com/actions/checkout/compare/v3.4.0...v3.5.0)
##### What's Changed
- Add new public key for known_hosts by [@cdb](https://togithub.com/cdb) in [https://github.com/actions/checkout/pull/1237](https://togithub.com/actions/checkout/pull/1237)
##### New Contributors
- [@cdb](https://togithub.com/cdb) made their first contribution in [https://github.com/actions/checkout/pull/1237](https://togithub.com/actions/checkout/pull/1237)
**Full Changelog**: https://github.com/actions/checkout/compare/v3.4.0...v3.5.0
### [`v3.4.0`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v340)
[Compare Source](https://togithub.com/actions/checkout/compare/v3.3.0...v3.4.0)
- [Upgrade codeql actions to v2](https://togithub.com/actions/checkout/pull/1209)
- [Upgrade dependencies](https://togithub.com/actions/checkout/pull/1210)
- [Upgrade @actions/io](https://togithub.com/actions/checkout/pull/1225)
github/codeql-action
### [`v2.2.9`](https://togithub.com/github/codeql-action/compare/v2.2.8...v2.2.9)
[Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.8...v2.2.9)
### [`v2.2.8`](https://togithub.com/github/codeql-action/compare/v2.2.7...v2.2.8)
[Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.7...v2.2.8)
### [`v2.2.7`](https://togithub.com/github/codeql-action/compare/v2.2.6...v2.2.7)
[Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.6...v2.2.7)
### [`v2.2.6`](https://togithub.com/github/codeql-action/compare/v2.2.5...v2.2.6)
[Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.5...v2.2.6)
ossf/scorecard-action
### [`v2.1.3`](https://togithub.com/ossf/scorecard-action/releases/tag/v2.1.3)
[Compare Source](https://togithub.com/ossf/scorecard-action/compare/v2.1.2...v2.1.3)
#### What's Changed
- 🌱 Bump github.com/ossf/scorecard/v4 from 4.10.2 to 4.10.5 by [@spencerschrock](https://togithub.com/spencerschrock) in [https://github.com/ossf/scorecard-action/pull/1111](https://togithub.com/ossf/scorecard-action/pull/1111)
##### Bug Fixes
- Invalid SARIF files from a bug in scorecard
- [#1076](https://togithub.com/ossf/scorecard-action/issues/1076), [#1094](https://togithub.com/ossf/scorecard-action/issues/1094)
- Vulnerabilities check crashes if a vulnerable dependency is found via OSVScanner
- [#1092](https://togithub.com/ossf/scorecard-action/issues/1092)
- Scorecard action not reporting binary artifacts in the repo
- [#1116](https://togithub.com/ossf/scorecard-action/issues/1116)
**Full Scorecard Changelog**: https://github.com/ossf/scorecard/compare/v4.10.2...v4.10.5
**Full Changelog**: https://github.com/ossf/scorecard-action/compare/v2.1.2...v2.1.3
step-security/harden-runner
### [`v2.2.1`](https://togithub.com/step-security/harden-runner/releases/tag/v2.2.1)
[Compare Source](https://togithub.com/step-security/harden-runner/compare/v2.2.0...v2.2.1)
##### What's Changed
- Fix issue to get cache endpoint by [@h0x0er](https://togithub.com/h0x0er) in [https://github.com/step-security/harden-runner/pull/253](https://togithub.com/step-security/harden-runner/pull/253)
Harden runner has the ability to automatically detect the cache endpoint used by each job. When Harden runner is used in block mode, this endpoint is added to the list of allowed endpoints. A fix has been implemented to improve this feature by updating the logic used to fetch the cache endpoint. This update involves using code from the actions/cache library to ensure the endpoint is properly retrieved.
- Update README.md by [@varunsh-coder](https://togithub.com/varunsh-coder) in [https://github.com/step-security/harden-runner/pull/247](https://togithub.com/step-security/harden-runner/pull/247)
- Bump step-security/harden-runner from 2.1.0 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/step-security/harden-runner/pull/248](https://togithub.com/step-security/harden-runner/pull/248)
- Bump github/codeql-action from 2.1.38 to 2.2.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/step-security/harden-runner/pull/244](https://togithub.com/step-security/harden-runner/pull/244)
**Full Changelog**: https://github.com/step-security/harden-runner/compare/v2...v2.2.1
Configuration
📅 Schedule: Branch creation - "before 3am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
v3.3.0->v3.5.050c33ad->6674157v2.2.5->v2.2.9v2.1.2->v2.1.3v2.2.0->v2.2.1Release Notes
actions/checkout
### [`v3.5.0`](https://togithub.com/actions/checkout/releases/tag/v3.5.0) [Compare Source](https://togithub.com/actions/checkout/compare/v3.4.0...v3.5.0) ##### What's Changed - Add new public key for known_hosts by [@cdb](https://togithub.com/cdb) in [https://github.com/actions/checkout/pull/1237](https://togithub.com/actions/checkout/pull/1237) ##### New Contributors - [@cdb](https://togithub.com/cdb) made their first contribution in [https://github.com/actions/checkout/pull/1237](https://togithub.com/actions/checkout/pull/1237) **Full Changelog**: https://github.com/actions/checkout/compare/v3.4.0...v3.5.0 ### [`v3.4.0`](https://togithub.com/actions/checkout/blob/HEAD/CHANGELOG.md#v340) [Compare Source](https://togithub.com/actions/checkout/compare/v3.3.0...v3.4.0) - [Upgrade codeql actions to v2](https://togithub.com/actions/checkout/pull/1209) - [Upgrade dependencies](https://togithub.com/actions/checkout/pull/1210) - [Upgrade @actions/io](https://togithub.com/actions/checkout/pull/1225)github/codeql-action
### [`v2.2.9`](https://togithub.com/github/codeql-action/compare/v2.2.8...v2.2.9) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.8...v2.2.9) ### [`v2.2.8`](https://togithub.com/github/codeql-action/compare/v2.2.7...v2.2.8) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.7...v2.2.8) ### [`v2.2.7`](https://togithub.com/github/codeql-action/compare/v2.2.6...v2.2.7) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.6...v2.2.7) ### [`v2.2.6`](https://togithub.com/github/codeql-action/compare/v2.2.5...v2.2.6) [Compare Source](https://togithub.com/github/codeql-action/compare/v2.2.5...v2.2.6)ossf/scorecard-action
### [`v2.1.3`](https://togithub.com/ossf/scorecard-action/releases/tag/v2.1.3) [Compare Source](https://togithub.com/ossf/scorecard-action/compare/v2.1.2...v2.1.3) #### What's Changed - 🌱 Bump github.com/ossf/scorecard/v4 from 4.10.2 to 4.10.5 by [@spencerschrock](https://togithub.com/spencerschrock) in [https://github.com/ossf/scorecard-action/pull/1111](https://togithub.com/ossf/scorecard-action/pull/1111) ##### Bug Fixes - Invalid SARIF files from a bug in scorecard - [#1076](https://togithub.com/ossf/scorecard-action/issues/1076), [#1094](https://togithub.com/ossf/scorecard-action/issues/1094) - Vulnerabilities check crashes if a vulnerable dependency is found via OSVScanner - [#1092](https://togithub.com/ossf/scorecard-action/issues/1092) - Scorecard action not reporting binary artifacts in the repo - [#1116](https://togithub.com/ossf/scorecard-action/issues/1116) **Full Scorecard Changelog**: https://github.com/ossf/scorecard/compare/v4.10.2...v4.10.5 **Full Changelog**: https://github.com/ossf/scorecard-action/compare/v2.1.2...v2.1.3step-security/harden-runner
### [`v2.2.1`](https://togithub.com/step-security/harden-runner/releases/tag/v2.2.1) [Compare Source](https://togithub.com/step-security/harden-runner/compare/v2.2.0...v2.2.1) ##### What's Changed - Fix issue to get cache endpoint by [@h0x0er](https://togithub.com/h0x0er) in [https://github.com/step-security/harden-runner/pull/253](https://togithub.com/step-security/harden-runner/pull/253) Harden runner has the ability to automatically detect the cache endpoint used by each job. When Harden runner is used in block mode, this endpoint is added to the list of allowed endpoints. A fix has been implemented to improve this feature by updating the logic used to fetch the cache endpoint. This update involves using code from the actions/cache library to ensure the endpoint is properly retrieved. - Update README.md by [@varunsh-coder](https://togithub.com/varunsh-coder) in [https://github.com/step-security/harden-runner/pull/247](https://togithub.com/step-security/harden-runner/pull/247) - Bump step-security/harden-runner from 2.1.0 to 2.2.0 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/step-security/harden-runner/pull/248](https://togithub.com/step-security/harden-runner/pull/248) - Bump github/codeql-action from 2.1.38 to 2.2.4 by [@dependabot](https://togithub.com/dependabot) in [https://github.com/step-security/harden-runner/pull/244](https://togithub.com/step-security/harden-runner/pull/244) **Full Changelog**: https://github.com/step-security/harden-runner/compare/v2...v2.2.1Configuration
📅 Schedule: Branch creation - "before 3am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.