{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":421101922,"defaultBranch":"main","name":"scorecard-action","ownerLogin":"ossf","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2021-10-25T16:29:31.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/67707773?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1726523984.0","currentOid":""},"activityList":{"items":[{"before":null,"after":"7f421cfb3b3498c91be08d4c10bd8b4237f7d30e","ref":"refs/heads/dependabot/github_actions/github-actions-c103e8b686","pushedAt":"2024-09-16T21:59:44.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the github-actions group across 1 directory with 3 updates\n\nBumps the github-actions group with 3 updates in the / directory: [github/codeql-action](https://github.com/github/codeql-action), [step-security/harden-runner](https://github.com/step-security/harden-runner) and [actions/upload-artifact](https://github.com/actions/upload-artifact).\n\n\nUpdates `github/codeql-action` from 3.26.0 to 3.26.7\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/eb055d739abdc2e8de2e5f4ba1a8b246daa779aa...8214744c546c1e5c8f03dde8fab3a7353211988d)\n\nUpdates `step-security/harden-runner` from 2.9.1 to 2.10.1\n- [Release notes](https://github.com/step-security/harden-runner/releases)\n- [Commits](https://github.com/step-security/harden-runner/compare/5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde...91182cccc01eb5e619899d80e4e971d6181294a7)\n\nUpdates `actions/upload-artifact` from 4.3.6 to 4.4.0\n- [Release notes](https://github.com/actions/upload-artifact/releases)\n- [Commits](https://github.com/actions/upload-artifact/compare/834a144ee995460fba8ed112a2fc961b36a5ec5a...50769540e7f4bd5e21e526ee35c689e35e0d6874)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n- dependency-name: step-security/harden-runner\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n  dependency-group: github-actions\n- dependency-name: actions/upload-artifact\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n  dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump the github-actions group across 1 directory with 3 updates"}},{"before":"78ae0cdd103c69a299a3a73a506fc4ed07b01f34","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-6f7028051e","pushedAt":"2024-09-16T21:59:39.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":null,"after":"137422f62e205b7be9f285e6488ecd00ceb4faff","ref":"refs/heads/dependabot/docker/docker-images-205b404432","pushedAt":"2024-09-09T21:59:18.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the docker-images group with 2 updates\n\nBumps the docker-images group with 2 updates: golang and distroless/base.\n\n\nUpdates `golang` from 1.23.0 to 1.23.1\n\nUpdates `distroless/base` from `1aae189` to `c925d12`\n\n---\nupdated-dependencies:\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: docker-images\n- dependency-name: distroless/base\n  dependency-type: direct:production\n  dependency-group: docker-images\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump the docker-images group with 2 updates"}},{"before":null,"after":"2dd2072fbc1fc089cf341e8a2fda3a51072336d9","ref":"refs/heads/dependabot/go_modules/golang.org/x/net-0.29.0","pushedAt":"2024-09-05T21:17:39.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang.org/x/net from 0.28.0 to 0.29.0\n\nBumps [golang.org/x/net](https://github.com/golang/net) from 0.28.0 to 0.29.0.\n- [Commits](https://github.com/golang/net/compare/v0.28.0...v0.29.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/net\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump golang.org/x/net from 0.28.0 to 0.29.0"}},{"before":null,"after":"78ae0cdd103c69a299a3a73a506fc4ed07b01f34","ref":"refs/heads/dependabot/github_actions/github-actions-6f7028051e","pushedAt":"2024-09-02T21:07:53.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the github-actions group across 1 directory with 2 updates\n\nBumps the github-actions group with 2 updates in the / directory: [github/codeql-action](https://github.com/github/codeql-action) and [actions/upload-artifact](https://github.com/actions/upload-artifact).\n\n\nUpdates `github/codeql-action` from 3.26.0 to 3.26.6\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/eb055d739abdc2e8de2e5f4ba1a8b246daa779aa...4dd16135b69a43b6c8efb853346f8437d92d3c93)\n\nUpdates `actions/upload-artifact` from 4.3.6 to 4.4.0\n- [Release notes](https://github.com/actions/upload-artifact/releases)\n- [Commits](https://github.com/actions/upload-artifact/compare/834a144ee995460fba8ed112a2fc961b36a5ec5a...50769540e7f4bd5e21e526ee35c689e35e0d6874)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n- dependency-name: actions/upload-artifact\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n  dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump the github-actions group across 1 directory with 2 updates"}},{"before":"207eb98726fd83d538a1b9c11a7f6b28bd3a0549","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-38aacf0b95","pushedAt":"2024-09-02T21:07:48.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"8c5be8508452514ab3a3ba69ecd1a171ca5e6260","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-8cbcb71e32","pushedAt":"2024-08-26T21:59:25.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":null,"after":"207eb98726fd83d538a1b9c11a7f6b28bd3a0549","ref":"refs/heads/dependabot/github_actions/github-actions-38aacf0b95","pushedAt":"2024-08-26T21:59:22.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github/codeql-action\n\nBumps the github-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action).\n\n\nUpdates `github/codeql-action` from 3.26.0 to 3.26.5\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/eb055d739abdc2e8de2e5f4ba1a8b246daa779aa...2c779ab0d087cd7fe7b826087247c2c81f27bfa6)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github/codeql-action"}},{"before":"26260a4596507bcb761a987813d69035c23745a0","after":null,"ref":"refs/heads/dependabot/docker/docker-images-3addc4c9ad","pushedAt":"2024-08-19T21:55:26.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"fdeb02dc9c3fb721c82a431b2708514aca13dbeb","after":"6c4912ed9e5f80cfda40164b92753f21f0892cab","ref":"refs/heads/main","pushedAt":"2024-08-19T21:55:25.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang from 1.22.6 to 1.23.0 in the docker-images group (#1438)","shortMessageHtmlLink":"🌱 Bump golang from 1.22.6 to 1.23.0 in the docker-images group (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2474246714\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1438\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1438/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1438\">#1438</a>)"}},{"before":null,"after":"26260a4596507bcb761a987813d69035c23745a0","ref":"refs/heads/dependabot/docker/docker-images-3addc4c9ad","pushedAt":"2024-08-19T21:35:02.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang from 1.22.6 to 1.23.0 in the docker-images group\n\nBumps the docker-images group with 1 update: golang.\n\n\nUpdates `golang` from 1.22.6 to 1.23.0\n\n---\nupdated-dependencies:\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n  dependency-group: docker-images\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump golang from 1.22.6 to 1.23.0 in the docker-images group"}},{"before":null,"after":"8c5be8508452514ab3a3ba69ecd1a171ca5e6260","ref":"refs/heads/dependabot/github_actions/github-actions-8cbcb71e32","pushedAt":"2024-08-19T21:08:23.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github/codeql-action in the github-actions group\n\nBumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).\n\n\nUpdates `github/codeql-action` from 3.26.0 to 3.26.3\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/eb055d739abdc2e8de2e5f4ba1a8b246daa779aa...883d8588e56d1753a8a58c1c86e88976f0c23449)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github/codeql-action in the github-actions group"}},{"before":"ab9729375aeb5f298cbbdcf9167c9fd974416537","after":"fdeb02dc9c3fb721c82a431b2708514aca13dbeb","ref":"refs/heads/main","pushedAt":"2024-08-12T10:00:39.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"spencerschrock","name":"Spencer Schrock","path":"/spencerschrock","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6064089?s=80&v=4"},"commit":{"message":"fix result file path issues (#1428)\n\nThere were two issues at play that prevented the binary from reading the\r\ncorrect results file:\r\n\r\n1. The paths were not joined with a separator. This led to file not\r\n   found errors, as the file was saved in the wrong place with the wrong\r\n   name.\r\n2. The signing code tried to read the file from the current working\r\n   directory instead of the GitHub workspace directory.\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"fix result file path issues (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2459777672\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1428\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1428/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1428\">#1428</a>)"}},{"before":"495e5ca771c4dc28b604cccd7ee8dc5286cd9c4b","after":null,"ref":"refs/heads/dependabot/docker/docker-images-270455e832","pushedAt":"2024-08-10T02:53:43.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"9469d56b83d21387e9713651e7e57cfed814805a","after":"ab9729375aeb5f298cbbdcf9167c9fd974416537","ref":"refs/heads/main","pushedAt":"2024-08-10T02:53:41.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang from 1.22.5 to 1.22.6 in the docker-images group (#1424)","shortMessageHtmlLink":"🌱 Bump golang from 1.22.5 to 1.22.6 in the docker-images group (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2458861908\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1424\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1424/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1424\">#1424</a>)"}},{"before":"0f9b6998fefea5dc8415b5675972b9503b52eb48","after":"495e5ca771c4dc28b604cccd7ee8dc5286cd9c4b","ref":"refs/heads/dependabot/docker/docker-images-270455e832","pushedAt":"2024-08-10T02:49:45.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang from 1.22.5 to 1.22.6 in the docker-images group\n\nBumps the docker-images group with 1 update: golang.\n\n\nUpdates `golang` from 1.22.5 to 1.22.6\n\n---\nupdated-dependencies:\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: docker-images\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump golang from 1.22.5 to 1.22.6 in the docker-images group"}},{"before":"6607c7813d48d33d421d6af158db5f313b6e6ddd","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-e3f367180a","pushedAt":"2024-08-10T02:45:40.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"e659949be5e0454265b2cc08062c0036b05a0a99","after":"9469d56b83d21387e9713651e7e57cfed814805a","ref":"refs/heads/main","pushedAt":"2024-08-10T02:45:39.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the github-actions group with 3 updates (#1425)","shortMessageHtmlLink":"🌱 Bump the github-actions group with 3 updates (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2458861972\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1425\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1425/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1425\">#1425</a>)"}},{"before":null,"after":"6607c7813d48d33d421d6af158db5f313b6e6ddd","ref":"refs/heads/dependabot/github_actions/github-actions-e3f367180a","pushedAt":"2024-08-10T02:41:17.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the github-actions group with 3 updates\n\nBumps the github-actions group with 3 updates: [github/codeql-action](https://github.com/github/codeql-action), [step-security/harden-runner](https://github.com/step-security/harden-runner) and [actions/upload-artifact](https://github.com/actions/upload-artifact).\n\n\nUpdates `github/codeql-action` from 3.25.15 to 3.26.0\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/afb54ba388a7dca6ecae48f608c4ff05ff4cc77a...eb055d739abdc2e8de2e5f4ba1a8b246daa779aa)\n\nUpdates `step-security/harden-runner` from 2.9.0 to 2.9.1\n- [Release notes](https://github.com/step-security/harden-runner/releases)\n- [Commits](https://github.com/step-security/harden-runner/compare/0d381219ddf674d61a7572ddd19d7941e271515c...5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde)\n\nUpdates `actions/upload-artifact` from 4.3.5 to 4.3.6\n- [Release notes](https://github.com/actions/upload-artifact/releases)\n- [Commits](https://github.com/actions/upload-artifact/compare/89ef406dd8d7e03cfd12d9e0a4a378f454709029...834a144ee995460fba8ed112a2fc961b36a5ec5a)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n  dependency-group: github-actions\n- dependency-name: step-security/harden-runner\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n- dependency-name: actions/upload-artifact\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump the github-actions group with 3 updates"}},{"before":null,"after":"0f9b6998fefea5dc8415b5675972b9503b52eb48","ref":"refs/heads/dependabot/docker/docker-images-270455e832","pushedAt":"2024-08-10T02:40:58.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang from 1.22.5 to 1.22.6 in the docker-images group\n\nBumps the docker-images group with 1 update: golang.\n\n\nUpdates `golang` from 1.22.5 to 1.22.6\n\n---\nupdated-dependencies:\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: docker-images\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump golang from 1.22.5 to 1.22.6 in the docker-images group"}},{"before":"ef80d49ac5e6aa7cd118b3cfb7b5272dbe1f5af8","after":null,"ref":"refs/heads/dependabot/go_modules/github.com/sigstore/cosign/v2-2.4.0","pushedAt":"2024-08-10T02:40:01.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"5e5b9c4bafb1a43bf08218052d659d8ed25c7cad","after":"e659949be5e0454265b2cc08062c0036b05a0a99","ref":"refs/heads/main","pushedAt":"2024-08-10T02:40:00.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0 (#1422)","shortMessageHtmlLink":"🌱 Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0 (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2454397805\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1422\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1422/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1422\">#1422</a>)"}},{"before":"480050ae175e6e74f8c4209fbb0e4b1f90a59d18","after":"ef80d49ac5e6aa7cd118b3cfb7b5272dbe1f5af8","ref":"refs/heads/dependabot/go_modules/github.com/sigstore/cosign/v2-2.4.0","pushedAt":"2024-08-10T01:53:20.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0\n\nBumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.3.0 to 2.4.0.\n- [Release notes](https://github.com/sigstore/cosign/releases)\n- [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/sigstore/cosign/compare/v2.3.0...v2.4.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/sigstore/cosign/v2\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0"}},{"before":"defd24568c298ca38ae8c8786b8abdcfe5d24670","after":null,"ref":"refs/heads/dependabot/go_modules/golang.org/x/net-0.28.0","pushedAt":"2024-08-10T01:51:45.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"d10a2ede5f04f44421c937937089590ea27cdf1f","after":"5e5b9c4bafb1a43bf08218052d659d8ed25c7cad","ref":"refs/heads/main","pushedAt":"2024-08-10T01:51:44.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang.org/x/net from 0.27.0 to 0.28.0 (#1421)","shortMessageHtmlLink":"🌱 Bump golang.org/x/net from 0.27.0 to 0.28.0 (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2451719272\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1421\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1421/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1421\">#1421</a>)"}},{"before":"76e79e603e5504c253382447ccb3b5cfef7879bb","after":"480050ae175e6e74f8c4209fbb0e4b1f90a59d18","ref":"refs/heads/dependabot/go_modules/github.com/sigstore/cosign/v2-2.4.0","pushedAt":"2024-08-10T00:21:12.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0\n\nBumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.3.0 to 2.4.0.\n- [Release notes](https://github.com/sigstore/cosign/releases)\n- [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/sigstore/cosign/compare/v2.3.0...v2.4.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/sigstore/cosign/v2\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0"}},{"before":"5d317dcba554d5bf4908a5705f420b75517124a7","after":"defd24568c298ca38ae8c8786b8abdcfe5d24670","ref":"refs/heads/dependabot/go_modules/golang.org/x/net-0.28.0","pushedAt":"2024-08-10T00:21:10.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang.org/x/net from 0.27.0 to 0.28.0\n\nBumps [golang.org/x/net](https://github.com/golang/net) from 0.27.0 to 0.28.0.\n- [Commits](https://github.com/golang/net/compare/v0.27.0...v0.28.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/net\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump golang.org/x/net from 0.27.0 to 0.28.0"}},{"before":"bf0193107d39ac594cadc115b8761393acc7a421","after":"d10a2ede5f04f44421c937937089590ea27cdf1f","ref":"refs/heads/main","pushedAt":"2024-08-10T00:19:26.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"Use Scorecard library entrypoint instead of Cobra hooking (#1423)\n\n* use new Scorecard entrypoint\n\nScorecard V5 released a new entrypoint, so make use of it instead of\nhooking into the underlying Cobra CLI. This gives us more flexibility\nwhen running Scorecard, such as writing the result to multiple formats.\n\nSigned-off-by: Spencer Schrock <sschrock@google.com>\n\n* add basic format tests\n\nSigned-off-by: Spencer Schrock <sschrock@google.com>\n\n* run go mod tidy to cleanup removed transitive deps\n\nSigned-off-by: Spencer Schrock <sschrock@google.com>\n\n* Apply suggestions from code review\n\nSigned-off-by: Stephen Augustus <justaugustus@users.noreply.github.com>\n\n---------\n\nSigned-off-by: Spencer Schrock <sschrock@google.com>\nSigned-off-by: Stephen Augustus <justaugustus@users.noreply.github.com>\nCo-authored-by: Stephen Augustus <justaugustus@users.noreply.github.com>","shortMessageHtmlLink":"Use Scorecard library entrypoint instead of Cobra hooking (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2458477974\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard-action/issues/1423\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard-action/pull/1423/hovercard\" href=\"https://github.com/ossf/scorecard-action/pull/1423\">#1423</a>)"}},{"before":null,"after":"76e79e603e5504c253382447ccb3b5cfef7879bb","ref":"refs/heads/dependabot/go_modules/github.com/sigstore/cosign/v2-2.4.0","pushedAt":"2024-08-07T21:35:38.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0\n\nBumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.3.0 to 2.4.0.\n- [Release notes](https://github.com/sigstore/cosign/releases)\n- [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/sigstore/cosign/compare/v2.3.0...v2.4.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/sigstore/cosign/v2\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0"}},{"before":null,"after":"5d317dcba554d5bf4908a5705f420b75517124a7","ref":"refs/heads/dependabot/go_modules/golang.org/x/net-0.28.0","pushedAt":"2024-08-06T21:25:31.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump golang.org/x/net from 0.27.0 to 0.28.0\n\nBumps [golang.org/x/net](https://github.com/golang/net) from 0.27.0 to 0.28.0.\n- [Commits](https://github.com/golang/net/compare/v0.27.0...v0.28.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/net\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump golang.org/x/net from 0.27.0 to 0.28.0"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEt-nVVwA","startCursor":null,"endCursor":null}},"title":"Activity · ossf/scorecard-action"}