emscripten
emscripten copied to clipboard
Published
20 hours ago •
emscripten-core
emscripten-core
Bump ossf/scorecard-action from 2.3.1 to 2.3.3
Bumps ossf/scorecard-action from 2.3.1 to 2.3.3.
Release notes
Sourced from ossf/scorecard-action's releases.
v2.3.3
[!NOTE]
There is no v2.3.2 release as a step was skipped in the release process. This was fixed and re-released under the v2.3.3 tagWhat's Changed
- :seedling: Bump github.com/ossf/scorecard/v4 (v4.13.1) to github.com/ossf/scorecard/v5 (v5.0.0-rc1) by
@spencerschrockin ossf/scorecard-action#1366- :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 by
@spencerschrockin ossf/scorecard-action#1374- :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to v5.0.0-rc2.0.20240509182734-7ce860946928 by
@spencerschrockin ossf/scorecard-action#1377For a full changelist of what these include, see the v5.0.0-rc1 and v5.0.0-rc2 release notes.
Documentation
- :book: Move token discussion out of main README. by
@spencerschrockin ossf/scorecard-action#1279- :book: link to
ossf/scorecardworkflow instead of maintaining an example by@spencerschrockin ossf/scorecard-action#1352- :book: update api links to new scorecard.dev site by
@spencerschrockin ossf/scorecard-action#1376Full Changelog: https://github.com/ossf/scorecard-action/compare/v2.3.1...v2.3.3
Commits
dc50aa9:seedling: Bump docker tag for v2.3.3 release (#1368)8ff5700:seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to v5.0.0-rc2.0....8ba5e73update api links to new scorecard.dev site (#1376)92ddde3Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (#1374)6c55905:seedling: Bump golang.org/x/net from 0.24.0 to 0.25.0 (#1373)09bb953:seedling: Bump distroless/base in the docker-images group (#1372)1511e13:seedling: Bump the github-actions group across 1 directory with 6 updates (#...df66cd8:seedling: Bump the docker-images group with 2 updates (#1370)fad9a3c:seedling: Bump distroless/base in the docker-images group (#1364)1e01a30:seedling: Bump the github-actions group with 3 updates (#1365)- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}