Skip to content
This repository was archived by the owner on Feb 25, 2025. It is now read-only.

Bump ossf/scorecard-action from 2.0.4 to 2.1.0#38389

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/ossf/scorecard-action-2.1.0
Closed

Bump ossf/scorecard-action from 2.0.4 to 2.1.0#38389
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/ossf/scorecard-action-2.1.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Dec 19, 2022

Copy link
Copy Markdown
Contributor

Bumps ossf/scorecard-action from 2.0.4 to 2.1.0.

Release notes

Sourced from ossf/scorecard-action's releases.

v2.1.0

What's Changed

Scorecard version

This release uses scorecard v4.10.0.

Improvements

Documentation

New Contributors

Full Changelog: ossf/scorecard-action@v2.0.6...v2.1.0

v2.0.6

What's Changed

Full Changelog: ossf/scorecard-action@v2.0.5...v2.0.6

v2.0.5

What's Changed

New Contributors

Full Changelog: ossf/scorecard-action@v2.0.4...v2.0.5

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.4 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](ossf/scorecard-action@e363bfc...937ffa9)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the autosubmit Merge PR when tree becomes green via auto submit App label Dec 19, 2022
@auto-submit auto-submit Bot removed the autosubmit Merge PR when tree becomes green via auto submit App label Dec 19, 2022
@auto-submit

auto-submit Bot commented Dec 19, 2022

Copy link
Copy Markdown
Contributor

auto label is removed for flutter/engine, pr: 38389, Failed to merge pr#: 38389 with Pull request could not be merged: refusing to allow a GitHub App to create or update workflow .github/workflows/scorecards-analysis.yml without workflows permission.

@chinmaygarde

Copy link
Copy Markdown
Contributor

@dependabot rebase

@dependabot @github

dependabot Bot commented on behalf of github Dec 19, 2022

Copy link
Copy Markdown
Contributor Author

Superseded by #38406.

@dependabot dependabot Bot closed this Dec 19, 2022
@dependabot dependabot Bot deleted the dependabot/github_actions/ossf/scorecard-action-2.1.0 branch December 19, 2022 19:43
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet

Development

Successfully merging this pull request may close these issues.

2 participants