Skip to content
This repository was archived by the owner on Feb 25, 2025. It is now read-only.

Bump ossf/scorecard-action from 2.3.1 to 2.3.3 #52799

Merged
merged 1 commit into from
May 14, 2024
Merged

Bump ossf/scorecard-action from 2.3.1 to 2.3.3 #52799

merged 1 commit into from
May 14, 2024

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 14, 2024

Bumps ossf/scorecard-action from 2.3.1 to 2.3.3.

Release notes

Sourced from ossf/scorecard-action's releases.

v2.3.3

[!NOTE]
There is no v2.3.2 release as a step was skipped in the release process. This was fixed and re-released under the v2.3.3 tag

What's Changed

For a full changelist of what these include, see the v5.0.0-rc1 and v5.0.0-rc2 release notes.

Documentation

Full Changelog: ossf/scorecard-action@v2.3.1...v2.3.3

Commits
  • dc50aa9 🌱 Bump docker tag for v2.3.3 release (#1368)
  • 8ff5700 🌱 Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to v5.0.0-rc2.0....
  • 8ba5e73 update api links to new scorecard.dev site (#1376)
  • 92ddde3 Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (#1374)
  • 6c55905 🌱 Bump golang.org/x/net from 0.24.0 to 0.25.0 (#1373)
  • 09bb953 🌱 Bump distroless/base in the docker-images group (#1372)
  • 1511e13 🌱 Bump the github-actions group across 1 directory with 6 updates (#...
  • df66cd8 🌱 Bump the docker-images group with 2 updates (#1370)
  • fad9a3c 🌱 Bump distroless/base in the docker-images group (#1364)
  • 1e01a30 🌱 Bump the github-actions group with 3 updates (#1365)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump ossf/scorecard-action from 2.3.1 to 2.3.3
de676bc 
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](ossf/scorecard-action@0864cf1...dc50aa9)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the autosubmit Merge PR when tree becomes green via auto submit App label May 14, 2024
@auto-submit auto-submit bot merged commit d0ce565 into main May 14, 2024
@auto-submit auto-submit bot deleted the dependabot/github_actions/ossf/scorecard-action-2.3.3 branch May 14, 2024 05:57
@engine-flutter-autoroll engine-flutter-autoroll mentioned this pull request May 14, 2024
Merged
engine-flutter-autoroll added a commit to engine-flutter-autoroll/flutter that referenced this pull request May 14, 2024
@engine-flutter-autoroll
d0ce56559 Bump ossf/scorecard-action from 2.3.1 to 2.3.3 (flutter/eng…
224fff6 
…ine#52799)
auto-submit bot pushed a commit to flutter/flutter that referenced this pull request May 14, 2024
@engine-flutter-autoroll
Roll Flutter Engine from 764c33c3c773 to 0de6701b537a (2 revisions) (#…
ff8e06d 
…148297)

flutter/engine@764c33c...0de6701

2024-05-14 49699333+dependabot[bot]@users.noreply.github.com Bump google/osv-scanner-action from 1.7.1 to 1.7.3 (flutter/engine#52798)
2024-05-14 49699333+dependabot[bot]@users.noreply.github.com Bump ossf/scorecard-action from 2.3.1 to 2.3.3 (flutter/engine#52799)

If this roll has caused a breakage, revert this CL and stop the roller
using the controls here:
https://autoroll.skia.org/r/flutter-engine-flutter-autoroll
Please CC [email protected],[email protected],[email protected] on the revert to ensure that a human
is aware of the problem.

To file a bug in Flutter: https://github.com/flutter/flutter/issues/new/choose

To report a problem with the AutoRoller itself, please file a bug:
https://issues.skia.org/issues/new?component=1389291&template=1850622

Documentation for the AutoRoller is here:
https://skia.googlesource.com/buildbot/+doc/main/autoroll/README.md
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@fluttergithubbot fluttergithubbot fluttergithubbot approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

autosubmit Merge PR when tree becomes green via auto submit App

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@fluttergithubbot