flutter

mirror of https://github.com/flutter/flutter synced 2024-11-05 18:37:51 +00:00

History

dependabot[bot] c90e18c6f5 Bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#148091 ) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.3.3. <details> <summary>Commits</summary> <ul> <li><a href="`dc50aa9510`"><code>dc50aa9</code></a> 🌱 Bump docker tag for v2.3.3 release (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1368">#1368</a>)</li> <li><a href="`8ff5700173`"><code>8ff5700</code></a> 🌱 Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to v5.0.0-rc2.0....</li> <li><a href="`8ba5e73d11`"><code>8ba5e73</code></a> update api links to new scorecard.dev site (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1376">#1376</a>)</li> <li><a href="`92ddde3eaf`"><code>92ddde3</code></a> Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1374">#1374</a>)</li> <li><a href="`6c55905542`"><code>6c55905</code></a> 🌱 Bump golang.org/x/net from 0.24.0 to 0.25.0 (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1373">#1373</a>)</li> <li><a href="`09bb953b6a`"><code>09bb953</code></a> 🌱 Bump distroless/base in the docker-images group (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1372">#1372</a>)</li> <li><a href="`1511e1305b`"><code>1511e13</code></a> 🌱 Bump the github-actions group across 1 directory with 6 updates (#...</li> <li><a href="`df66cd8fd8`"><code>df66cd8</code></a> 🌱 Bump the docker-images group with 2 updates (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1370">#1370</a>)</li> <li><a href="`fad9a3cc53`"><code>fad9a3c</code></a> 🌱 Bump distroless/base in the docker-images group (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1364">#1364</a>)</li> <li><a href="`1e01a309c1`"><code>1e01a30</code></a> 🌱 Bump the github-actions group with 3 updates (<a href="https://redirect.github.com/ossf/scorecard-action/issues/1365">#1365</a>)</li> <li>Additional commits viewable in <a href="`0864cf1902...dc50aa9510`">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=2.3.1&new-version=2.3.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>		2024-05-09 20:32:11 -07:00
..
ISSUE_TEMPLATE	Highlight the links to the release branches more prominently in the CP issue template (#143000 )	2024-02-08 16:40:23 +00:00
PR_TEMPLATE	[github actions] rewrite cherry pick template (#144065 )	2024-03-02 00:49:14 +00:00
workflows	Bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#148091 )	2024-05-09 20:32:11 -07:00
dependabot.yml	Update dependabot reviewers (#148101 )	2024-05-09 19:59:27 -07:00
labeler.yml	Update labeler.yml (#141697 )	2024-01-18 21:26:06 +00:00
PULL_REQUEST_TEMPLATE.md	Update PR template for dart fix (#143879 )	2024-02-22 02:28:02 +00:00
release.yml	Expand and update a few release.yml categories (#140120 )	2023-12-14 16:39:15 +00:00