{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":302670797,"defaultBranch":"main","name":"scorecard","ownerLogin":"ossf","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2020-10-09T14:48:27.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/67707773?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1720047285.0","currentOid":""},"activityList":{"items":[{"before":"507c634b67ad50541f7c265c92cf54a2e4794712","after":null,"ref":"refs/heads/dependabot/docker/chainguard/static-a1f8a15835e5efebb41f7a3a1a81d32143c7c0ac83a27d85401fe52904c90182","pushedAt":"2024-07-03T22:54:45.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"98bb37fd3fef626c9f359665bd9d1dd33926d266","after":"3155309aa81adf3395f4d62ee133b524ff316da1","ref":"refs/heads/main","pushedAt":"2024-07-03T22:54:44.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump chainguard/static from `68b8855` to `a1f8a15` (#4214)","shortMessageHtmlLink":"🌱 Bump chainguard/static from <code>68b8855</code> to <code>a1f8a15</code> (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2389444314\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4214\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4214/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4214\">#4214</a>)"}},{"before":"f39fd4ec9df4dcde62a7d285ac2daa64320d8797","after":"507c634b67ad50541f7c265c92cf54a2e4794712","ref":"refs/heads/dependabot/docker/chainguard/static-a1f8a15835e5efebb41f7a3a1a81d32143c7c0ac83a27d85401fe52904c90182","pushedAt":"2024-07-03T22:43:04.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/docker/chainguard/static-a1f8a15835e5efebb41f7a3a1a81d32143c7c0ac83a27d85401fe52904c90182","shortMessageHtmlLink":"Merge branch 'main' into dependabot/docker/chainguard/static-a1f8a158…"}},{"before":"4bacb3ef54417bc3eecf16368f863144dc08042b","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-6034f0241a","pushedAt":"2024-07-03T22:42:07.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"d889dcbada1fd964ec58082168dd8c06de46d5a4","after":"98bb37fd3fef626c9f359665bd9d1dd33926d266","ref":"refs/heads/main","pushedAt":"2024-07-03T22:42:06.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github/codeql-action in the github-actions group (#4202)","shortMessageHtmlLink":"🌱 Bump github/codeql-action in the github-actions group (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2383242908\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4202\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4202/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4202\">#4202</a>)"}},{"before":"c6492fc26aa01f0c935232e76982270bbbe863dd","after":"4bacb3ef54417bc3eecf16368f863144dc08042b","ref":"refs/heads/dependabot/github_actions/github-actions-6034f0241a","pushedAt":"2024-07-03T22:33:07.000Z","pushType":"push","commitsCount":11,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/github_actions/github-actions-6034f0241a","shortMessageHtmlLink":"Merge branch 'main' into dependabot/github_actions/github-actions-603…"}},{"before":"7841828bb4b193f2d1690163602d8bcd92fb019d","after":"d889dcbada1fd964ec58082168dd8c06de46d5a4","ref":"refs/heads/main","pushedAt":"2024-07-03T21:59:08.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"convert cron to use new entrypoint (#4207)\n\nThere are further simplifications that are possible,\r\nbut leaving for later to keep this PR small.\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"convert cron to use new entrypoint (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2387917869\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4207\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4207/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4207\">#4207</a>)"}},{"before":"efa43e165cfa2a5cb9cf643aa9a5822e8a9670a1","after":"7841828bb4b193f2d1690163602d8bcd92fb019d","ref":"refs/heads/main","pushedAt":"2024-07-03T21:41:36.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"spencerschrock","name":"Spencer Schrock","path":"/spencerschrock","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6064089?s=80&v=4"},"commit":{"message":":book: SECURITY: Represent response times in business days instead of hours (#4217)\n\nSigned-off-by: Stephen Augustus <foo@auggie.dev>","shortMessageHtmlLink":"📖 SECURITY: Represent response times in business days instead of hours ("}},{"before":"430368ad1bc56d949017539190e853822cd7de24","after":null,"ref":"refs/heads/dependabot/docker/golang-d1ed5f52f4","pushedAt":"2024-07-03T21:18:17.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"3f3854811a07f6eef87b4ef247ddacf7cfc16cc4","after":"efa43e165cfa2a5cb9cf643aa9a5822e8a9670a1","ref":"refs/heads/main","pushedAt":"2024-07-03T21:18:16.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the golang group across 8 directories with 1 update (#4216)","shortMessageHtmlLink":"🌱 Bump the golang group across 8 directories with 1 update (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2389489845\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4216\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4216/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4216\">#4216</a>)"}},{"before":"0e28bf0704aab06057f4f1852e74f93aec47129e","after":null,"ref":"refs/heads/dependabot/docker/golang-4fbe7d4cbc","pushedAt":"2024-07-03T21:09:56.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":null,"after":"430368ad1bc56d949017539190e853822cd7de24","ref":"refs/heads/dependabot/docker/golang-d1ed5f52f4","pushedAt":"2024-07-03T21:09:52.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the golang group across 8 directories with 1 update\n\nBumps the golang group with 1 update in the / directory: golang.\nBumps the golang group with 1 update in the /attestor directory: golang.\nBumps the golang group with 1 update in the /clients/githubrepo/roundtripper/tokens/server directory: golang.\nBumps the golang group with 1 update in the /cron/internal/bq directory: golang.\nBumps the golang group with 1 update in the /cron/internal/cii directory: golang.\nBumps the golang group with 1 update in the /cron/internal/controller directory: golang.\nBumps the golang group with 1 update in the /cron/internal/webhook directory: golang.\nBumps the golang group with 1 update in the /cron/internal/worker directory: golang.\n\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\nUpdates `golang` from 1.22.4 to 1.22.5\n\n---\nupdated-dependencies:\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: golang\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump the golang group across 8 directories with 1 update"}},{"before":"48950198841dfd345f3f3a99719d2d2f99f0c71b","after":"3f3854811a07f6eef87b4ef247ddacf7cfc16cc4","ref":"refs/heads/main","pushedAt":"2024-07-03T20:58:58.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":":book: Update security policy to be specific to OpenSSF Scorecard (#4212)\n\n* SECURITY: Revert to default OpenSSF security policy\r\n* SECURITY: Update policy to better describe disclosure and remediation\r\n* SECURITY: Reference LF policy and add fallback security contact\r\n* Apply suggestions from code review\r\n\r\n---------\r\n\r\nSigned-off-by: Stephen Augustus <foo@auggie.dev>\r\nSigned-off-by: Stephen Augustus <justaugustus@users.noreply.github.com>\r\nCo-authored-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"📖 Update security policy to be specific to OpenSSF Scorecard (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2389369763\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4212\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4212/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4212\">#4212</a>)"}},{"before":null,"after":"f39fd4ec9df4dcde62a7d285ac2daa64320d8797","ref":"refs/heads/dependabot/docker/chainguard/static-a1f8a15835e5efebb41f7a3a1a81d32143c7c0ac83a27d85401fe52904c90182","pushedAt":"2024-07-03T20:48:54.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump chainguard/static from `68b8855` to `a1f8a15`\n\nBumps chainguard/static from `68b8855` to `a1f8a15`.\n\n---\nupdated-dependencies:\n- dependency-name: chainguard/static\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump chainguard/static from <code>68b8855</code> to <code>a1f8a15</code>"}},{"before":null,"after":"0e28bf0704aab06057f4f1852e74f93aec47129e","ref":"refs/heads/dependabot/docker/golang-4fbe7d4cbc","pushedAt":"2024-07-03T20:48:49.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump the golang group across 8 directories with 1 update\n\nBumps the golang group with 1 update in the / directory: golang.\nBumps the golang group with 1 update in the /attestor directory: golang.\nBumps the golang group with 1 update in the /clients/githubrepo/roundtripper/tokens/server directory: golang.\nBumps the golang group with 1 update in the /cron/internal/bq directory: golang.\nBumps the golang group with 1 update in the /cron/internal/cii directory: golang.\nBumps the golang group with 1 update in the /cron/internal/controller directory: golang.\nBumps the golang group with 1 update in the /cron/internal/webhook directory: golang.\nBumps the golang group with 1 update in the /cron/internal/worker directory: golang.\n\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\nUpdates `golang` from 1.22.4 to 1.23rc1\n\n---\nupdated-dependencies:\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n- dependency-name: golang\n  dependency-type: direct:production\n  dependency-group: golang\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump the golang group across 8 directories with 1 update"}},{"before":"5f7cea363724ba03923eb07bdb4e6fa3b2927c15","after":"48950198841dfd345f3f3a99719d2d2f99f0c71b","ref":"refs/heads/main","pushedAt":"2024-07-03T20:47:20.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"fix dependabot config to group docker images (#4211)\n\nThis is apparently required with the current implementation of multi dir PRs.\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"fix dependabot config to group docker images (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2389187618\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4211\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4211/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4211\">#4211</a>)"}},{"before":"1c448ee6522578a20a89d7f924debd0624c7bd71","after":"5f7cea363724ba03923eb07bdb4e6fa3b2927c15","ref":"refs/heads/main","pushedAt":"2024-07-03T17:40:49.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"spencerschrock","name":"Spencer Schrock","path":"/spencerschrock","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6064089?s=80&v=4"},"commit":{"message":":seedling: Use new entrypoint for scdiff (#4204)\n\nSigned-off-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"🌱 Use new entrypoint for scdiff (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2387252334\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4204\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4204/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4204\">#4204</a>)"}},{"before":"6629b09746fb5e158d4ff8f7df4644c59bc6a15c","after":"1c448ee6522578a20a89d7f924debd0624c7bd71","ref":"refs/heads/main","pushedAt":"2024-07-03T03:27:18.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"cron: Add 377 Intel-owned repositories (#4206)\n\nSigned-off-by: Ryan Ware <ryan.ware@intel.com>","shortMessageHtmlLink":"cron: Add 377 Intel-owned repositories (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2387412397\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4206\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4206/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4206\">#4206</a>)"}},{"before":"28337f13b1131742bea7a0fab4ba4cc3171af7f4","after":"6629b09746fb5e158d4ff8f7df4644c59bc6a15c","ref":"refs/heads/main","pushedAt":"2024-07-02T17:11:19.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"spencerschrock","name":"Spencer Schrock","path":"/spencerschrock","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6064089?s=80&v=4"},"commit":{"message":":seedling: Add lifecycle field to probes (#4147)\n\n* add lifecycle field to probe yaml definitions\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>\r\n\r\n* classify existing probes\r\n\r\nSome are listed as stable if they're not expected to change,\r\nothers are listed as experimental if there are still expected changes.\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>\r\n\r\n* add lifecycle to probe readme\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>\r\n\r\n* fix linter\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>\r\n\r\n* add lifecycle for new probe\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>\r\n\r\n* add probe lifecycle to documentation\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>\r\n\r\n---------\r\n\r\nSigned-off-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"🌱 Add lifecycle field to probes (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2336990183\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4147\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4147/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4147\">#4147</a>)"}},{"before":"9f9afa0c30ba0d71c6104f4c81cef4f4aeb6c306","after":"28337f13b1131742bea7a0fab4ba4cc3171af7f4","ref":"refs/heads/main","pushedAt":"2024-07-02T15:40:34.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"raghavkaul","name":"Raghav Kaul","path":"/raghavkaul","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8695110?s=80&v=4"},"commit":{"message":"🌱 maintainer annotations: improve annotation file validation (#4162)\n\n* validate check names against full list\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>\r\n\r\n* tests: close file\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>\r\n\r\n* update\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>\r\n\r\n* make private\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>\r\n\r\n* Restructure imports\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>\r\n\r\n* update\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>\r\n\r\n---------\r\n\r\nSigned-off-by: Raghav Kaul <raghavkaul+github@google.com>","shortMessageHtmlLink":"🌱 maintainer annotations: improve annotation file validation (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2344622095\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4162\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4162/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4162\">#4162</a>)"}},{"before":"9bc923c88eb49182a0b041f7c30d9da15c7f4730","after":null,"ref":"refs/heads/dependabot/go_modules/github.com/google/osv-scanner-1.8.1","pushedAt":"2024-07-01T19:21:17.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"76a04bfe40c25746b2633127270a9219a98a37ad","after":"9f9afa0c30ba0d71c6104f4c81cef4f4aeb6c306","ref":"refs/heads/main","pushedAt":"2024-07-01T19:21:16.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/google/osv-scanner from 1.7.4 to 1.8.1 (#4198)","shortMessageHtmlLink":"🌱 Bump github.com/google/osv-scanner from 1.7.4 to 1.8.1 (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2377564868\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4198\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4198/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4198\">#4198</a>)"}},{"before":"7176f6586461a406e1bf3ae69de353f04740e2e7","after":"9bc923c88eb49182a0b041f7c30d9da15c7f4730","ref":"refs/heads/dependabot/go_modules/github.com/google/osv-scanner-1.8.1","pushedAt":"2024-07-01T19:14:24.000Z","pushType":"push","commitsCount":5,"pusher":{"login":"spencerschrock","name":"Spencer Schrock","path":"/spencerschrock","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/6064089?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/go_modules/github.com/google/osv-scanner-1.8.1\n\nSigned-off-by: Spencer Schrock <sschrock@google.com>","shortMessageHtmlLink":"Merge branch 'main' into dependabot/go_modules/github.com/google/osv-…"}},{"before":null,"after":"c6492fc26aa01f0c935232e76982270bbbe863dd","ref":"refs/heads/dependabot/github_actions/github-actions-6034f0241a","pushedAt":"2024-07-01T08:52:11.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github/codeql-action in the github-actions group\n\nBumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).\n\n\nUpdates `github/codeql-action` from 3.25.10 to 3.25.11\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/23acc5c183826b7a8a97bce3cecc52db901f8251...b611370bb5703a7efb587f9d136a52ea24c5c38c)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n  dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github/codeql-action in the github-actions group"}},{"before":"5b3f7508ff423d1728b8ef7b337e6cd64a184e67","after":"7176f6586461a406e1bf3ae69de353f04740e2e7","ref":"refs/heads/dependabot/go_modules/github.com/google/osv-scanner-1.8.1","pushedAt":"2024-06-27T23:05:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"justaugustus","name":"Stephen Augustus","path":"/justaugustus","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/567897?s=80&v=4"},"commit":{"message":"clients/osv: Update `osvscanner.ExperimentalScannerActions` fields\n\nSigned-off-by: Stephen Augustus <foo@auggie.dev>","shortMessageHtmlLink":"clients/osv: Update <code>osvscanner.ExperimentalScannerActions</code> fields"}},{"before":"e8eaaa006b81c264bbf4ed821df524fa6b0d773d","after":null,"ref":"refs/heads/dependabot/go_modules/github.com/xanzy/go-gitlab-0.106.0","pushedAt":"2024-06-27T17:11:42.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"842d550727bb39e4cef72ba6085a086d0dbb7df9","after":"76a04bfe40c25746b2633127270a9219a98a37ad","ref":"refs/heads/main","pushedAt":"2024-06-27T17:11:41.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/xanzy/go-gitlab from 0.105.0 to 0.106.0 (#4197)","shortMessageHtmlLink":"🌱 Bump github.com/xanzy/go-gitlab from 0.105.0 to 0.106.0 (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2377564476\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4197\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4197/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4197\">#4197</a>)"}},{"before":"e7e2a47ba3ef2855dd95b9fac44e20e4e8db29ff","after":"e8eaaa006b81c264bbf4ed821df524fa6b0d773d","ref":"refs/heads/dependabot/go_modules/github.com/xanzy/go-gitlab-0.106.0","pushedAt":"2024-06-27T17:05:06.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/xanzy/go-gitlab from 0.105.0 to 0.106.0\n\nBumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab) from 0.105.0 to 0.106.0.\n- [Changelog](https://github.com/xanzy/go-gitlab/blob/main/releases_test.go)\n- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.105.0...v0.106.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/xanzy/go-gitlab\n  dependency-type: direct:production\n  update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"🌱 Bump github.com/xanzy/go-gitlab from 0.105.0 to 0.106.0"}},{"before":"9da1792ba8e00214a40acec80aa9dcd47ef30a78","after":null,"ref":"refs/heads/dependabot/go_modules/tools/github.com/goreleaser/goreleaser/v2-2.0.1","pushedAt":"2024-06-27T16:58:19.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"c187c076a0f12a095355577582bf13f794df9edc","after":"842d550727bb39e4cef72ba6085a086d0dbb7df9","ref":"refs/heads/main","pushedAt":"2024-06-27T16:58:18.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":":seedling: Bump github.com/goreleaser/goreleaser/v2 in /tools (#4199)","shortMessageHtmlLink":"🌱 Bump github.com/goreleaser/goreleaser/v2 in /tools (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2377567437\" data-permission-text=\"Title is private\" data-url=\"https://github.com/ossf/scorecard/issues/4199\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/ossf/scorecard/pull/4199/hovercard\" href=\"https://github.com/ossf/scorecard/pull/4199\">#4199</a>)"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEdlu2kQA","startCursor":null,"endCursor":null}},"title":"Activity · ossf/scorecard"}