-
Notifications
You must be signed in to change notification settings - Fork 606
Pull requests: ossf/scorecard
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
feat: update fuzzing check for memory-safe languages
size:L
This PR changes 100-499 lines, ignoring generated files.
#4950
opened Feb 26, 2026 by
garvit-bhattt
Loading…
🌱 Bump github.com/cloudflare/circl from 1.6.1 to 1.6.3
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#4949
opened Feb 25, 2026 by
dependabot
bot
Loading…
🌱 Bump github.com/cloudflare/circl from 1.6.1 to 1.6.3 in /tools
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#4948
opened Feb 25, 2026 by
dependabot
bot
Loading…
docs: add remediation guidance for unpinned pip installs
size:S
This PR changes 10-29 lines, ignoring generated files.
#4946
opened Feb 25, 2026 by
D9mond
Loading…
1 of 2 tasks
🌱 Bump the github-actions group across 1 directory with 5 updates
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update Github_actions code
size:M
This PR changes 30-99 lines, ignoring generated files.
#4944
opened Feb 23, 2026 by
dependabot
bot
Loading…
🌱 Bump goreleaser/goreleaser-action from 6.4.0 to 7.0.0
dependencies
Pull requests that update a dependency file
github_actions
Pull requests that update Github_actions code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#4943
opened Feb 23, 2026 by
dependabot
bot
Loading…
docs(beginner-checks): add SBOM + signed-releases evidence progression
size:M
This PR changes 30-99 lines, ignoring generated files.
#4942
opened Feb 18, 2026 by
ogulcanaydogan
Loading…
🌱 Bump github.com/rhysd/actionlint from 1.7.9 to 1.7.11
dependencies
Pull requests that update a dependency file
go
Pull requests that update Go code
size:XS
This PR changes 0-9 lines, ignoring generated files.
#4940
opened Feb 16, 2026 by
dependabot
bot
Loading…
🌱 Bump the distroless group across 6 directories with 1 update
dependencies
Pull requests that update a dependency file
docker
Pull requests that update Docker code
size:S
This PR changes 10-29 lines, ignoring generated files.
#4935
opened Feb 9, 2026 by
dependabot
bot
Loading…
📖 doc: add CDN design to repository
size:M
This PR changes 30-99 lines, ignoring generated files.
#4932
opened Feb 6, 2026 by
spencerschrock
Loading…
1 of 2 tasks
✨feat: Add Private Vulnerability Reporting probe to Security-Policy check
size:L
This PR changes 100-499 lines, ignoring generated files.
#4929
opened Feb 4, 2026 by
Ironankit525
Loading…
🌱 Maintained check: New probe: Inactive Maintainers
size:XXL
This PR changes 1000+ lines, ignoring generated files.
#4893
opened Dec 26, 2025 by
AdamKorcz
Loading…
1 task done
🌱 Vulnerabilities check: New probe: Do releases have direct dependencies with known vulnerabilities?
size:XXL
This PR changes 1000+ lines, ignoring generated files.
#4876
opened Dec 9, 2025 by
AdamKorcz
Loading…
2 tasks done
🌱 Maintained Check: New probe: Do maintainers respond to public bug and security issues?
size:XXL
This PR changes 1000+ lines, ignoring generated files.
#4867
opened Dec 1, 2025 by
AdamKorcz
Loading…
1 task done
✨ Update unsafeblock probe to detect use of Java's Unsafe classes
size:XXL
This PR changes 1000+ lines, ignoring generated files.
#4849
opened Nov 12, 2025 by
thomasleplus
Loading…
2 tasks done
ProTip!
Mix and match filters to narrow down what you’re looking for.