mirror of
https://github.com/ossf/scorecard.git
synced 2024-10-05 21:27:52 +03:00
6dffe65000
* 🌱 Bump github.com/sigstore/cosign/v2 in /tools Bumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.1.1 to 2.2.1. - [Release notes](https://github.com/sigstore/cosign/releases) - [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md) - [Commits](https://github.com/sigstore/cosign/compare/v2.1.1...v2.2.1) --- updated-dependencies: - dependency-name: github.com/sigstore/cosign/v2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> * bump actions/dependency-review-action to v3.1.3 This PR is incompatible with v3.1.2 due to some of the modules being updated. See https://www.github.com/actions/dependency-review-action/issues/613 Signed-off-by: Spencer Schrock <sschrock@google.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Spencer Schrock <sschrock@google.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Spencer Schrock <sschrock@google.com> |
||
|---|---|---|
| .. | ||
| codeql-analysis.yml | ||
| depsreview.yml | ||
| docker.yml | ||
| gitlab.yml | ||
| goreleaser.yaml | ||
| integration.yml | ||
| lint.yml | ||
| main.yml | ||
| publishimage.yml | ||
| scorecard-analysis.yml | ||
| slsa-goreleaser.yml | ||
| stale.yml | ||
| verify.yml | ||