Skip to content

Pull requests: ossf/scorecard

New pull request New
24 Open 3,596 Closed
24 Open 3,596 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Create devcontainer.json size:XS This PR changes 0-9 lines, ignoring generated files.
#4917 opened Jan 23, 2026 by vagabond2522 Loading…
2 tasks
🌱 Bump github.com/sigstore/sigstore from 1.10.3 to 1.10.4 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files.
#4916 opened Jan 22, 2026 by dependabot bot Loading…
🌱 Bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:S This PR changes 10-29 lines, ignoring generated files.
#4915 opened Jan 22, 2026 by dependabot bot Loading…
🌱 Bump github.com/theupdateframework/go-tuf/v2 from 2.3.0 to 2.3.1 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files.
#4914 opened Jan 21, 2026 by dependabot bot Loading…
🌱 Bump the gomod group across 2 directories with 6 updates dependencies Pull requests that update a dependency file go Pull requests that update Go code size:M This PR changes 30-99 lines, ignoring generated files.
#4913 opened Jan 19, 2026 by dependabot bot Loading…
🌱 Bump the golang group across 8 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#4912 opened Jan 19, 2026 by dependabot bot Loading…
🌱 Bump actions/setup-go from 6.1.0 to 6.2.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:M This PR changes 30-99 lines, ignoring generated files.
#4911 opened Jan 19, 2026 by dependabot bot Loading…
🌱 Bump the github-actions group with 2 updates dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:S This PR changes 10-29 lines, ignoring generated files.
#4910 opened Jan 19, 2026 by dependabot bot Loading…
🌱 Bump github.com/sigstore/cosign/v2 from 2.6.1 to 2.6.2 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#4908 opened Jan 13, 2026 by dependabot bot Loading…
1
🌱 Bump the distroless group across 6 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#4906 opened Jan 12, 2026 by dependabot bot Loading…
docs: update copyright headers to 2020-2026 range size:L This PR changes 100-499 lines, ignoring generated files. Stale
#4904 opened Jan 10, 2026 by pranavs321 Loading…
2
🌱 Add cryptographic verification of release signatures
#4902 opened Jan 8, 2026 by AdamKorcz Draft
2 tasks done
2
🌱 Bump github.com/rhysd/actionlint from 1.7.9 to 1.7.10 dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files.
#4899 opened Jan 5, 2026 by dependabot bot Loading…
1
🌱 Add support for prow for CI and SAST checks size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4897 opened Dec 29, 2025 by AdamKorcz Loading…
2 tasks done
3
🌱 New check: protected tags size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4894 opened Dec 28, 2025 by AdamKorcz Loading…
1 task done
1
3
🌱 New check: Inactive Maintainers size:XXL This PR changes 1000+ lines, ignoring generated files.
#4893 opened Dec 26, 2025 by AdamKorcz Loading…
1 task done
1
4
✨ Specific error message for branch protection permission failure. size:XS This PR changes 0-9 lines, ignoring generated files.
#4892 opened Dec 24, 2025 by kash2104 Loading…
1 of 2 tasks
1
7
📖 Clarify references to the Scorecard webviewer size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#4889 opened Dec 22, 2025 by shouryathakur-sorcerer Loading…
1 of 2 tasks
1
8
🌱 Set OSV User-Agent for scorecard cli and cron workers. size:M This PR changes 30-99 lines, ignoring generated files.
#4883 opened Dec 16, 2025 by kash2104 Loading…
1 of 2 tasks
1
13
🐛 New check: Secret scanning size:XXL This PR changes 1000+ lines, ignoring generated files.
#4878 opened Dec 12, 2025 by AdamKorcz Loading…
2 tasks done
5
🌱 New check: Releases have no direct dependencies with known vulnerabilities size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4876 opened Dec 9, 2025 by AdamKorcz Loading…
2 tasks done
7
🌱 New check: Mean time to update dependencies size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4868 opened Dec 3, 2025 by AdamKorcz Loading…
2 tasks done
1
7
🌱 New check: Do maintainers respond to public bug and security issues? size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4867 opened Dec 1, 2025 by AdamKorcz Loading…
1 task done
8
✨ Update unsafeblock probe to detect use of Java's Unsafe classes size:XXL This PR changes 1000+ lines, ignoring generated files.
#4849 opened Nov 12, 2025 by thomasleplus Loading…
2 tasks done
6
ProTip! Filter pull requests by the default branch with base:main.