minder
minder copied to clipboard
stacklok
Software Supply Chain Security Platform
When creating child projects (sub-projects), we currently create entitlements based on the features of the parent project member who initiates the creation. This process is handled separately from the `internal/projects`...
As per [this comment](https://github.com/mindersec/minder/pull/4910#discussion_r1840625396), we currently allow filtering by label in two places (i.e. two endpoints), but the code to handle labels is duplicated. In particular, the first implementation ([here](https://github.com/mindersec/minder/blob/main/internal/db/domain.go#L49))...
Bumps [github.com/google/osv-scalibr](https://github.com/google/osv-scalibr) from 0.3.2 to 0.4.0. Release notes Sourced from github.com/google/osv-scalibr's releases. v0.4.0 Global plugin config: Plugins can now be configured through a unified flag from the CLI and proto...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [markdownlint-cli2](https://github.com/DavidAnson/markdownlint-cli2) from 0.18.1 to 0.19.1. Changelog Sourced from markdownlint-cli2's changelog. 0.19.1 Update --format to avoid trailing newline Update dependencies 0.19.0 Add --format parameter for editor integration Update output formatters...
Bumps the eslint group in /docs with 1 update: [typescript-eslint](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/typescript-eslint). Updates `typescript-eslint` from 8.46.4 to 8.47.0 Release notes Sourced from typescript-eslint's releases. v8.47.0 8.47.0 (2025-11-17) 🚀 Features eslint-plugin: [no-unused-private-class-members] new...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.16.3 to 5.16.4. Release notes Sourced from github.com/go-git/go-git/v5's releases. v5.16.4 What's Changed backport plumbing: format/idxfile, prevent panic by @swills in go-git/go-git#1732 [backport] build: test, Fix build on...
Bumps [github.com/nats-io/nats-server/v2](https://github.com/nats-io/nats-server) from 2.12.0 to 2.12.2. Release notes Sourced from github.com/nats-io/nats-server/v2's releases. Release v2.12.2 Changelog Refer to the 2.12 Upgrade Guide for backwards compatibility notes with 2.11.x. Go Version 1.25.4...
Bumps the buf group with 1 update: [buf.build/go/protovalidate](https://github.com/bufbuild/protovalidate-go). Updates `buf.build/go/protovalidate` from 1.0.0 to 1.0.1 Release notes Sourced from buf.build/go/protovalidate's releases. v1.0.1 What's Changed Bump buf.build/go/hyperpb from 0.1.0 to 0.1.1 in...
Bumps [github.com/mikefarah/yq/v4](https://github.com/mikefarah/yq) from 4.48.1 to 4.49.1. Release notes Sourced from github.com/mikefarah/yq/v4's releases. v4.49.1 - Security Flags and TOML fixes Added --security flags to disable env and file ops #2515 Fixing...
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.38.0 to 0.39.0. Commits 034e59c internal/analysis/analyzerutil: fix FileUsesGoVersion 076bd80 gopls/internal/filewatcher: retry directory reading upon failure 605803f go/analysis/passes/loopclosure: simplify using IsMethodNamed 2c6e03f internal/testenv: allow Apple diff too 82112c0...