Releases · stacklok/trusty-action · GitHub

16 Jul 04:22

lukehinds

v0.0.7: Merge pull request #43 from stacklok/dependabot/github_actions/action… Latest

Marketplace

Latest

Marketplace

…s/checkout-4.1.7

build(deps): bump actions/checkout from 4.1.6 to 4.1.7

Assets 2

10 Jun 12:18

lukehinds

v0.0.6 Latest Marketplace Release

Marketplace

Marketplace

What's Changed

Replace unpinned actions with pinned action by @stacklokbot in #21
Add Dependabot configuration for gomod by @stacklokbot in #22
build(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.20.0 by @dependabot in #24
Add Trivy repository scan configuration by @stacklokbot in #23
Add dependabot github-actions configuration by @JAORMX in #26
build(deps): bump aquasecurity/trivy-action from 0.16.1 to 0.20.0 by @dependabot in #29
build(deps): bump actions/checkout from 3.6.0 to 4.1.5 by @dependabot in #28
build(deps): bump github.com/BurntSushi/toml from 1.3.2 to 1.4.0 by @dependabot in #33
Update URL to use github-action dedicated URL by @JAORMX in #34
build(deps): bump actions/setup-go from 3.5.0 to 5.0.1 by @dependabot in #27
build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #31
build(deps): bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 by @dependabot in #32
Multiple Changes to PR Comment by @lukehinds in #35
Add Metadata and improve description by @lukehinds in #36

New Contributors

@stacklokbot made their first contribution in #21
@dependabot made their first contribution in #24
@JAORMX made their first contribution in #26

Full Changelog: v0.0.5...v0.0.6

Contributors

JAORMX, lukehinds, and 2 other contributors

Assets 2

30 Apr 13:47

yrobla

v0.0.5

Marketplace

Marketplace

What's Changed

feat: improve report formatting by @yrobla in #17
fix: do not use nested parameters by @yrobla in #18

Full Changelog: v0.0.4...v0.0.5

Contributors

yrobla

Assets 2

27 Apr 13:24

lukehinds

v0.0.4 Pre-release

Marketplace

Pre-release

Marketplace

What's Changed

fix: use sigstore icon instead of the key one by @yrobla in #12
fix: do not early return on score threshold by @yrobla in #14
feat: allow to fail on specific scores apart from global by @yrobla in #15

Full Changelog: v0.0.3...v0.0.4

Contributors

yrobla

Assets 2

25 Apr 11:01

yrobla

v0.0.3 Pre-release

Marketplace

Pre-release

Marketplace

What's Changed

Add testing by @yrobla in #9
feat: include information for historical provenance by @yrobla in #10
fix: correct formatting for provenance by @yrobla in #11

Full Changelog: v0.0.2...v0.0.3

Contributors

yrobla

Assets 2

25 Apr 06:33

yrobla

v0.0.2 Pre-release

Marketplace

Pre-release

Marketplace

What's Changed

Add workflow example by @lukehinds in #1
fix: encode urls for go by @yrobla in #8
feat: block prs on the case of archived flag by @yrobla in #7

New Contributors

@lukehinds made their first contribution in #1
@yrobla made their first contribution in #8

Full Changelog: v0.0.1...v0.0.2

Contributors

yrobla and lukehinds

Assets 2

31 Mar 09:10

lukehinds

v0.0.1 Pre-release

Marketplace

Pre-release

Marketplace

Full Changelog: https://github.com/stacklok/trusty-action/commits/v0.0.1

Assets 2