mirror of
https://github.com/ossf/scorecard.git
synced 2024-10-05 21:27:52 +03:00
6dffe65000
* 🌱 Bump github.com/sigstore/cosign/v2 in /tools Bumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.1.1 to 2.2.1. - [Release notes](https://github.com/sigstore/cosign/releases) - [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md) - [Commits](https://github.com/sigstore/cosign/compare/v2.1.1...v2.2.1) --- updated-dependencies: - dependency-name: github.com/sigstore/cosign/v2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * bump actions/dependency-review-action to v3.1.3 This PR is incompatible with v3.1.2 due to some of the modules being updated. See https://www.github.com/actions/dependency-review-action/issues/613 Signed-off-by: Spencer Schrock <sschrock@google.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Spencer Schrock <sschrock@google.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Spencer Schrock <sschrock@google.com> |
||
---|---|---|
.. | ||
codeql-analysis.yml | ||
depsreview.yml | ||
docker.yml | ||
gitlab.yml | ||
goreleaser.yaml | ||
integration.yml | ||
lint.yml | ||
main.yml | ||
publishimage.yml | ||
scorecard-analysis.yml | ||
slsa-goreleaser.yml | ||
stale.yml | ||
verify.yml |