vimp
vimp copied to clipboard
mchmarny
Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.20.0 to 2.22.5. Changelog Sourced from github/codeql-action's changelog. CodeQL Action Changelog See the releases page for the relevant changes to the CodeQL CLI and language packs. [UNRELEASED]...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.57.1. Release notes Sourced from google.golang.org/grpc's releases. Release 1.57.1 Security server: prohibit more than MaxConcurrentStreams handlers from running at once (CVE-2023-44487) In addition to this...
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.3 to 2.3.1. Release notes Sourced from ossf/scorecard-action's releases. v2.3.1 What's Changed :seedling: Bump github.com/ossf/scorecard/v4 from v4.13.0 to v4.13.1 by @spencerschrock in ossf/scorecard-action#1282 Adds additional Fuzzing detection...
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.134.0 to 0.148.0. Release notes Sourced from google.golang.org/api's releases. v0.148.0 0.148.0 (2023-10-19) Features all: Auto-regenerate discovery clients (#2216) (ffeb508) all: Auto-regenerate discovery clients (#2218) (1ef9dd2) all: Auto-regenerate...
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.12.0 to 0.17.0. Commits b225e7c http2: limit maximum handler goroutines to MaxConcurrentStreams 88194ad go.mod: update golang.org/x dependencies 2b60a61 quic: fix several bugs in flow control accounting 73d82ef...
Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.24.0 to 1.26.0. Commits 12bc57f Allow registering custom collations 0bbf655 Allow registering custom collations 57c362d Merge branch 'marksum-master-patch-73479' into 'master' 6aadf96 Merge branch 'marksum-master-patch-30007' into 'master' 5f4dd40...
Hey cool idea. i was giving it a go and am trying to run it before pushing to oci and i was able to get this going via ``` #!/bin/bash...
Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.29.1 to 1.31.0. Commits 8344fc0 Bump actions/checkout from 3 to 4 (#588) 4cb8cc5 Update dependencies ae9b265 Update Build Status Badge (#589) 1bac5cc added support for NO_COLOR (#586)...
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.2.0 to 5.0.0. Release notes Sourced from goreleaser/goreleaser-action's releases. v5.0.0 What's Changed feat: node 20 as default runtime (requires Actions Runner v2.308.0 or later) by @crazy-max in...
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.5 to 3.1.2. Release notes Sourced from sigstore/cosign-installer's releases. v3.1.2 What's Changed Fix build and push step Readme missing id by @hbenali in sigstore/cosign-installer#138 bump cosign to...