Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

✨ Bump container hash to use scorecard v4.3.1 #324

Merged
merged 2 commits into from
Jun 1, 2022
Merged

Conversation

laurentsimon
Copy link
Contributor

No description provided.

@codecov
Copy link

codecov bot commented Jun 1, 2022

Codecov Report

Merging #324 (0dcffe2) into main (6c071ac) will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@           Coverage Diff           @@
##             main     #324   +/-   ##
=======================================
  Coverage   64.28%   64.28%           
=======================================
  Files           4        4           
  Lines         210      210           
=======================================
  Hits          135      135           
  Misses         67       67           
  Partials        8        8           

@azeemshaikh38 azeemshaikh38 merged commit 3e15ea8 into main Jun 1, 2022
@azeemshaikh38 azeemshaikh38 deleted the feat/v4.3.1 branch June 1, 2022 03:41
azeemshaikh38 added a commit that referenced this pull request Jun 7, 2022
* 🌱 Bump github.com/ossf/scorecard/v4 from 4.2.0 to 4.3.0 (#313)

* 🌱 Bump github.com/ossf/scorecard/v4 from 4.2.0 to 4.3.0

Bumps [github.com/ossf/scorecard/v4](https://github.com/ossf/scorecard) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/ossf/scorecard/releases)
- [Changelog](https://github.com/ossf/scorecard/blob/main/.goreleaser.yml)
- [Commits](ossf/scorecard@v4.2.0...v4.3.0)

---
updated-dependencies:
- dependency-name: github.com/ossf/scorecard/v4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* options: Restore logic for publishing results

Signed-off-by: Stephen Augustus <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stephen Augustus <[email protected]>

* 🌱 Bump github/codeql-action from 2.1.10 to 2.1.11 (#311)

* 🌱 Bump github/codeql-action from 2.1.10 to 2.1.11

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.10 to 2.1.11.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@2f58583...a3a6c12)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

* Fix version comments

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stephen Augustus (he/him) <[email protected]>

* 📖 docs/e2e: Add information about golang-staging branch tests (#170)

Signed-off-by: naveensrinivasan <[email protected]>

Co-authored-by: Stephen Augustus (he/him) <[email protected]>

* 🌱 .github: Add dependency review action (#165)

Signed-off-by: naveensrinivasan <[email protected]>

* Update README.md (#319)

* 🌱 Bump github.com/caarlos0/env/v6 from 6.9.2 to 6.9.3

Bumps [github.com/caarlos0/env/v6](https://github.com/caarlos0/env) from 6.9.2 to 6.9.3.
- [Release notes](https://github.com/caarlos0/env/releases)
- [Changelog](https://github.com/caarlos0/env/blob/main/.goreleaser.yml)
- [Commits](caarlos0/env@v6.9.2...v6.9.3)

---
updated-dependencies:
- dependency-name: github.com/caarlos0/env/v6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>

* 🌱 Bump debian from `fbaacd5` to `06a93cb`

Bumps debian from `fbaacd5` to `06a93cb`.

---
updated-dependencies:
- dependency-name: debian
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

* 🌱 Bump actions/setup-go from 3.1.0 to 3.2.0

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@fcdc436...b22fbbc)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* ✨ Bump container hash to use scorecard v4.3.1 (#324)

* Update Dockerfile

* Update Dockerfile

* Update README.md (#325)

* Update Scorecard API usage

* Add documentation for e2e tests

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Stephen Augustus <[email protected]>
Co-authored-by: Stephen Augustus (he/him) <[email protected]>
Co-authored-by: Naveen <[email protected]>
Co-authored-by: laurentsimon <[email protected]>
Co-authored-by: Azeem Shaikh <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants