Skip to content

Pull requests: ossf/scorecard

New pull request New
27 Open 3,617 Closed
27 Open 3,617 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

🌱 Bump the gomod group across 2 directories with 13 updates dependencies Pull requests that update a dependency file go Pull requests that update Go code size:L This PR changes 100-499 lines, ignoring generated files.
#4945 opened Feb 23, 2026 by dependabot bot Loading…
🌱 Bump the github-actions group across 1 directory with 5 updates dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:M This PR changes 30-99 lines, ignoring generated files.
#4944 opened Feb 23, 2026 by dependabot bot Loading…
🌱 Bump goreleaser/goreleaser-action from 6.4.0 to 7.0.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:XS This PR changes 0-9 lines, ignoring generated files.
#4943 opened Feb 23, 2026 by dependabot bot Loading…
docs(beginner-checks): add SBOM + signed-releases evidence progression size:M This PR changes 30-99 lines, ignoring generated files.
#4942 opened Feb 18, 2026 by ogulcanaydogan Loading…
4
🌱 Bump github.com/rhysd/actionlint from 1.7.9 to 1.7.11 dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files.
#4940 opened Feb 16, 2026 by dependabot bot Loading…
🌱 Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 in /tools dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#4939 opened Feb 13, 2026 by dependabot bot Loading…
1
🌱 Bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files.
#4937 opened Feb 10, 2026 by dependabot bot Loading…
🌱 Bump the distroless group across 6 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#4935 opened Feb 9, 2026 by dependabot bot Loading…
🌱 Bump the golang group across 8 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#4934 opened Feb 9, 2026 by dependabot bot Loading…
📖 doc: add CDN design to repository size:M This PR changes 30-99 lines, ignoring generated files.
#4932 opened Feb 6, 2026 by spencerschrock Loading…
1 of 2 tasks
3
✨feat: Add Private Vulnerability Reporting probe to Security-Policy check size:L This PR changes 100-499 lines, ignoring generated files. Stale
#4929 opened Feb 4, 2026 by Ironankit525 Loading…
1
✨ CLI flag to skip unsupported repo checks size:L This PR changes 100-499 lines, ignoring generated files.
#4921 opened Jan 27, 2026 by dvcorreia Loading…
1 of 2 tasks
1
2
docs: update copyright headers to 2020-2026 range size:L This PR changes 100-499 lines, ignoring generated files. Stale
#4904 opened Jan 10, 2026 by pranavs321 Loading…
2
🌱 Add cryptographic verification of release signatures Stale
#4902 opened Jan 8, 2026 by AdamKorcz Draft
2 tasks done
3
🌱 Add support for prow for CI and SAST checks size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4897 opened Dec 29, 2025 by AdamKorcz Loading…
2 tasks done
3
🌱 deps: switch from gopkg.in/yaml.vX to go.yaml.in/yaml/vX size:S This PR changes 10-29 lines, ignoring generated files.
#4895 by scop was merged Jan 8, 2026 Loading…
1 of 2 tasks
4
🌱 New check: protected tags size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4894 opened Dec 28, 2025 by AdamKorcz Loading…
1 task done
1
3
🌱 Maintained check: New probe: Inactive Maintainers size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4893 opened Dec 26, 2025 by AdamKorcz Loading…
1 task done
1
6
📖 Clarify licensing for BigQuery public dataset size:S This PR changes 10-29 lines, ignoring generated files. Stale
#4890 by shouryathakur-sorcerer was closed Jan 22, 2026 Loading…
1 of 2 tasks
1
1
📖 Clarify references to the Scorecard webviewer size:XS This PR changes 0-9 lines, ignoring generated files. Stale
#4889 opened Dec 22, 2025 by shouryathakur-sorcerer Loading…
1 of 2 tasks
1
8
🌱 Bump the golang group across 8 directories with 1 update dependencies Pull requests that update a dependency file docker Pull requests that update Docker code size:S This PR changes 10-29 lines, ignoring generated files.
#4880 by dependabot bot was closed Jan 8, 2026 Loading…
1
🌱 Bump the github-actions group with 5 updates dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code size:M This PR changes 30-99 lines, ignoring generated files.
#4879 by dependabot bot was merged Jan 8, 2026 Loading…
2
🐛 New check: Secret scanning size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4878 opened Dec 12, 2025 by AdamKorcz Draft
2 tasks done
6
🌱 Vulnerabilities check: New probe: Do releases have direct dependencies with known vulnerabilities? size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4876 opened Dec 9, 2025 by AdamKorcz Loading…
2 tasks done
7
🌱 New check: Mean time to update dependencies size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4868 opened Dec 3, 2025 by AdamKorcz Draft
2 tasks done
1
7
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.