mirror of
https://github.com/google/brotli.git
synced 2026-07-08 17:56:58 +00:00
[PR #1252] Bump ossf/scorecard-action from 2.4.0 to 2.4.1 #1823
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Original Pull Request: https://github.com/google/brotli/pull/1252
State: closed
Merged: Yes
Bumps ossf/scorecard-action from 2.4.0 to 2.4.1.
Release notes
Sourced from ossf/scorecard-action's releases.
Commits
f49aabebump docker to ghcr v2.4.1 (#1478)30a595b🌱 Bump github.com/sigstore/cosign/v2 from 2.4.2 to 2.4.3 (#1515)69ae593omit vcs info from build (#1514)6a62a1cadd input for specifying--file-mode(#1509)2722664🌱 Bump the github-actions group with 2 updates (#1510)ae0ef31🌱 Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 (#1512)3676bbc🌱 Bump golang from 1.23.6 to 1.24.0 in the docker-images group (#1513)ae7548aLimit codeQL push trigger to main branch (#1507)9165624upgrade scorecard to v5.1.0 (#1508)620fd28🌱 Bump the github-actions group with 2 updates (#1505)You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)