Skip to content

Pull requests: ossf/scorecard

New pull request New
45 Open 3,716 Closed
45 Open 3,716 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

🌱 Bump the github-actions group across 1 directory with 8 updates dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:XS This PR changes 0-9 lines, ignoring generated files.
#5092 opened Jun 8, 2026 by dependabot Bot Loading…
🌱 Bump chainguard/static from 5e9c881 to 77d8b89 dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:XS This PR changes 0-9 lines, ignoring generated files.
#5091 opened Jun 8, 2026 by dependabot Bot Loading…
🐛 Normalize path separators for --local mode on Windows size:XS This PR changes 0-9 lines, ignoring generated files.
#5089 opened Jun 6, 2026 by Shtirmann Loading…
1 of 2 tasks
1
Expand Dangerous Workflow untrusted context detection size:S This PR changes 10-29 lines, ignoring generated files.
#5086 opened Jun 2, 2026 by maheshkukreja Loading…
1
🐛 Dangerous-Workflow: detect fork repo metadata and workflow_run branch as untrusted size:XS This PR changes 0-9 lines, ignoring generated files.
#5085 opened Jun 2, 2026 by arpitjain099 Loading…
2 tasks done
🐛 report repository creation from oldest commit size:S This PR changes 10-29 lines, ignoring generated files.
#5082 opened Jun 1, 2026 by janderssonse Loading…
2 tasks done
🐛 Detect dependency update configs omitted from archives size:L This PR changes 100-499 lines, ignoring generated files. Stale
#5081 opened May 29, 2026 by msnandhis Loading…
2 tasks done
1
1
🐛 Avoid OSV scans when no target is available size:S This PR changes 10-29 lines, ignoring generated files. Stale
#5077 opened May 29, 2026 by bmendonca3 Loading…
1
2
🐛 Include workflow path in parse errors size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#5076 opened May 29, 2026 by bmendonca3 Loading…
2
✨ Detect Brakeman SAST workflows size:S This PR changes 10-29 lines, ignoring generated files. Stale
#5075 opened May 29, 2026 by bmendonca3 Loading…
2
🐛 Use GitLab diff head SHA for CI-Tests statuses size:S This PR changes 10-29 lines, ignoring generated files. Stale
#5074 opened May 29, 2026 by bmendonca3 Loading…
1
2
✨ Factor private vulnerability reporting into Security-Policy size:L This PR changes 100-499 lines, ignoring generated files. Stale
#5073 opened May 29, 2026 by bmendonca3 Loading…
2
🌱 Bump goreleaser/goreleaser-action from 7.0.0 to 7.2.2 dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#5070 opened May 25, 2026 by dependabot Bot Loading…
1
🌱 Bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.1 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:S This PR changes 10-29 lines, ignoring generated files.
#5066 opened May 19, 2026 by dependabot Bot Loading…
1
🌱 Bump the gomod group across 2 directories with 17 updates dependencies Pull requests that update a dependency file go Pull requests that update Go code size:L This PR changes 100-499 lines, ignoring generated files.
#5065 opened May 18, 2026 by dependabot Bot Loading…
2
🌱 Bump the distroless group across 6 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#5064 opened May 18, 2026 by dependabot Bot Loading…
🌱 Bump github.com/slack-go/slack from 0.17.3 to 0.23.1 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#5062 opened May 14, 2026 by dependabot Bot Loading…
2
🌱 Support Makefiles in pinned dependencies size:M This PR changes 30-99 lines, ignoring generated files. Stale
#5061 opened May 14, 2026 by C2015 Loading…
3
🌱 Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#5060 opened May 14, 2026 by dependabot Bot Loading…
2
🐛 Fix StepSecurity remediation link labels size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#5058 opened May 13, 2026 by prathameshhire Loading…
1
1
🌱 Detect fork event names in dangerous workflows size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#5055 opened May 12, 2026 by C2015 Loading…
1
3
🌱 Bump the golang group across 8 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#5052 opened May 11, 2026 by dependabot Bot Loading…
🐛 fix: improve error messages for branch-protection and pip-install checks size:S This PR changes 10-29 lines, ignoring generated files. Stale
#5043 opened May 2, 2026 by alliasgher Contributor Loading…
2
4
🌱 chore: add additional Hiero repos to cron run. size:XS This PR changes 0-9 lines, ignoring generated files.
#5041 opened Apr 30, 2026 by jwagantall Contributor Loading…
4
🐛 Change Mkdir to MkdirAll when extracting tarball size:S This PR changes 10-29 lines, ignoring generated files. Stale
#5039 opened Apr 27, 2026 by juanis2112 Contributor Loading…
1 of 2 tasks
1
4
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.