@security-actions/[email protected]

4.0.1 (2025-01-16)

♻️ Chores

• ci: pin 3rd-party actions to specific commit hashes (#210) (d2a3cdb)

@security-actions/[email protected]

4.0.1 (2025-01-16)

♻️ Chores

• ci: pin 3rd-party actions to specific commit hashes (#210) (d2a3cdb)

@security-actions/[email protected]

4.0.1 (2025-01-16)

♻️ Chores

• ci: pin 3rd-party actions to specific commit hashes (#210) (d2a3cdb)

@code-check-actions/[email protected]

4.0.1 (2025-01-16)

♻️ Chores

• ci: pin 3rd-party actions to specific commit hashes (#210) (d2a3cdb)

@code-check-actions/[email protected]

4.0.1 (2025-01-16)

♻️ Chores

• ci: pin 3rd-party actions to specific commit hashes (#210) (d2a3cdb)

@security-actions/[email protected]

4.0.1 (2025-01-13)

♻️ Chores

• sign-docker-image: set issuer to github-action (#206) (8f62a1d)

@slack-actions/[email protected]

4.0.0 (2025-01-03)

✨ Features

• release: independent releases for public shared actions (#201) (3d24b7f)

Breaking changes

• release: - Each project within Public Shared Action is now treated as an independent package.

• Each package will have its own versioned release.
• Releases tag example "@security-actions/[email protected]".
• Markdown (.md) files will be ignored when determining changes for releases.

2.7.3 (2024-09-30)

✨ Features

• slack: new workflow inputs (#163) (28d20a1)

2.7.2 (2024-09-27)

🐛 Bug Fixes

• success not status (#162) (0aaaa49)

2.7.1 (2024-09-27)

🐛 Bug Fixes

• slack: flip failure message (#161) (4cf2875)

2.7.0 (2024-09-27)

✨ Features

• slack workflow conclusion notifications (#160) (33942dd)

@security-actions/[email protected]

4.0.0 (2025-01-03)

✨ Features

• release: independent releases for public shared actions (#201) (3d24b7f)

Breaking changes

• release: - Each project within Public Shared Action is now treated as an independent package.

• Each package will have its own versioned release.
• Releases tag example "@security-actions/[email protected]".
• Markdown (.md) files will be ignored when determining changes for releases.

2.2.2 (2024-04-25)

2.2.0 (2024-04-16)

♻️ Chores

• readme: Add usage examples to security actions (#106) (d9e10a3)

2.1.0 (2024-03-20)

⚙️ Continuous Integrations

• deps: bump cosign to v2.2.3 to avoid sigstore TUF invalid key issue (#100) (590c699)

1.15.0 (2024-01-22)

✨ Features

• SLSA/SEC-973: container image signing action (#65) (b7def0b)

@security-actions/[email protected]

4.0.0 (2025-01-03)

✨ Features

• release: independent releases for public shared actions (#201) (3d24b7f)
• SEC-1211: update semgrep version (#154) (6d6e601)

♻️ Chores

• deps: bump github/codeql-action/upload-sarif from v2 to v3 (9d9c93f)
• docs: update semgrep readme (#195) (1a06695)
• readme: Add vulnerability migration and breakglass strategy for SCA and CVE action (#107) (ad89a25)

Breaking changes

• release: - Each project within Public Shared Action is now treated as an independent package.

• Each package will have its own versioned release.
• Releases tag example "@security-actions/[email protected]".
• Markdown (.md) files will be ignored when determining changes for releases.

1.15.0 (2024-01-22)

♻️ Chores

• ci: configurable failure mode for semgrep (#55) (bc77fa6)

@security-actions/[email protected]

4.0.0 (2025-01-03)

✨ Features

• release: independent releases for public shared actions (#201) (3d24b7f)

♻️ Chores

• deps: bump github/codeql-action/upload-sarif from v2 to v3 (9d9c93f)

Breaking changes

• release: - Each project within Public Shared Action is now treated as an independent package.

• Each package will have its own versioned release.
• Releases tag example "@security-actions/[email protected]".
• Markdown (.md) files will be ignored when determining changes for releases.

1.15.0 (2024-01-22)

1.8.0 (2023-06-26)

📦 Code Refactoring

• sca: Separate linters and sca for rust (#46) (b037b99)