issues
search
ossf
/
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
https://scorecard.dev
Apache License 2.0
4.61k
stars
500
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
:sparkles: implement `ListIssues` and `GetCreatedAt` for Azure DevOps
#4419
JamieMagee
opened
32 minutes ago
1
:seedling: Bump github.com/go-git/go-billy/v5 from 5.5.0 to 5.6.0
#4418
dependabot[bot]
opened
4 days ago
0
:seedling: Bump the distroless group across 6 directories with 1 update
#4417
dependabot[bot]
closed
4 days ago
0
:seedling: Bump the github-actions group with 2 updates
#4416
dependabot[bot]
opened
4 days ago
1
:bug: Add a workaround for organisations in GitLab
#4415
verm
opened
5 days ago
3
:sparkles: Add files support for Azure DevOps
#4414
JamieMagee
closed
4 days ago
1
Scorecard doesn't detect OpenSSF Best Practices badge
#4413
ivanoblomov
closed
1 week ago
4
:seedling: Bump github.com/moby/buildkit from 0.16.0 to 0.17.1
#4412
dependabot[bot]
opened
1 week ago
0
:seedling: Bump github.com/onsi/gomega from 1.34.2 to 1.35.1
#4411
dependabot[bot]
closed
5 days ago
0
:seedling: Bump goreleaser/goreleaser-action from 6.0.0 to 6.1.0
#4410
dependabot[bot]
closed
1 day ago
2
:seedling: Bump the golang group across 8 directories with 1 update
#4409
dependabot[bot]
closed
5 days ago
0
✨ Adds Elixir and Gleam as languages
#4408
kikofernandez
closed
1 week ago
4
:seedling: Bump the github-actions group across 1 directory with 4 updates
#4407
dependabot[bot]
closed
2 weeks ago
0
:sparkles: Add Erlang as a language
#4406
kikofernandez
closed
1 week ago
4
:seedling: Bump github.com/google/osv-scanner from 1.9.0 to 1.9.1
#4405
dependabot[bot]
opened
2 weeks ago
3
:seedling: Bump github.com/xanzy/go-gitlab from 0.112.0 to 0.113.0
#4404
dependabot[bot]
closed
2 weeks ago
1
:seedling: Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1
#4403
dependabot[bot]
closed
2 weeks ago
0
OpenSSF Scorecard report viewer does not handle nested gitlab groups correctly
#4402
stexandev
closed
2 weeks ago
1
:seedling: Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 in /tools
#4401
dependabot[bot]
closed
2 weeks ago
0
:seedling: Bump cloud.google.com/go/bigquery from 1.63.1 to 1.64.0
#4400
dependabot[bot]
closed
2 weeks ago
1
:seedling: Bump the github-actions group across 1 directory with 4 updates
#4399
dependabot[bot]
closed
2 weeks ago
2
:sparkles: New probe for required MFA
#4398
eddie-knight
closed
3 days ago
1
:seedling: Bump cloud.google.com/go/pubsub from 1.43.0 to 1.45.1
#4397
dependabot[bot]
closed
3 weeks ago
0
:seedling: Bump the distroless group across 6 directories with 1 update
#4396
dependabot[bot]
closed
2 weeks ago
1
:seedling: Bump actions/setup-go from 5.0.2 to 5.1.0
#4395
dependabot[bot]
closed
2 weeks ago
1
:seedling: Bump the github-actions group with 4 updates
#4394
dependabot[bot]
closed
2 weeks ago
1
Apparently GlobaLeaks CI-Tests seems not recognized.
#4393
evilaliv3
opened
3 weeks ago
1
Idea: Add some more projects to /projects.csv
#4392
hejjoe
opened
4 weeks ago
1
:bug: Added CLI output for --probes
#4391
eddie-knight
closed
3 days ago
3
:seedling: Bump cloud.google.com/go/pubsub from 1.43.0 to 1.45.0
#4389
dependabot[bot]
closed
3 weeks ago
1
:seedling: Bump mvdan.cc/sh/v3 from 3.9.0 to 3.10.0
#4388
dependabot[bot]
closed
2 weeks ago
1
:seedling: Bump the golang group across 8 directories with 1 update
#4387
dependabot[bot]
closed
3 weeks ago
0
:seedling: Bump cloud.google.com/go/pubsub from 1.43.0 to 1.44.0
#4386
dependabot[bot]
closed
1 month ago
1
:seedling: Bump gocloud.dev from 0.39.0 to 0.40.0
#4385
dependabot[bot]
closed
2 weeks ago
1
:seedling: Bump the github-actions group across 1 directory with 6 updates
#4384
dependabot[bot]
closed
1 month ago
1
:seedling: Bump github.com/xanzy/go-gitlab from 0.109.0 to 0.112.0
#4383
dependabot[bot]
closed
1 month ago
2
:seedling: Bump the github-actions group across 1 directory with 6 updates
#4382
dependabot[bot]
closed
1 month ago
1
BUG Pinned Dependency checks for nuget/.Net does not consider implicit restore
#4381
balteravishay
opened
1 month ago
2
Feature: Pinned Dependency checks support for Azure DevOps Pipelines
#4380
balteravishay
opened
1 month ago
2
:seedling: Bump github.com/xanzy/go-gitlab from 0.109.0 to 0.111.0
#4379
dependabot[bot]
closed
1 month ago
1
Support Composer (PHP) Package Manager
#4378
maennchen
opened
1 month ago
0
✨ Initial experimental Azure DevOps client
#4377
JamieMagee
closed
1 week ago
8
:seedling: Tighten restrictions for running `scdiff` workflow
#4376
spencerschrock
closed
1 month ago
0
:seedling: Bump google.golang.org/protobuf from 1.34.2 to 1.35.1 in /tools
#4375
dependabot[bot]
closed
1 month ago
3
:seedling: Bump google.golang.org/protobuf from 1.34.2 to 1.35.1
#4374
dependabot[bot]
closed
1 month ago
0
:seedling: Bump the github-actions group with 4 updates
#4373
dependabot[bot]
closed
1 month ago
1
:seedling: Bump golang.org/x/text from 0.18.0 to 0.19.0
#4372
dependabot[bot]
closed
1 month ago
0
:seedling: Bump github.com/xanzy/go-gitlab from 0.109.0 to 0.110.0
#4371
dependabot[bot]
closed
1 month ago
1
:seedling: Bump the golang group across 8 directories with 1 update
#4370
dependabot[bot]
closed
1 month ago
0
:sparkles: Support Nuget Central Package Management
#4369
balteravishay
opened
1 month ago
4
Next