Version updated for https://github.com/prowler-cloud/prowler to version 5.29.1. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. What’s Changed API 🐞 Fixed GET /api/v1/findings N+1 query loading resources__tags when listing findings (#11420) Clean up the scan tmp output directory when scan-report fails so partial files do not accumulate and fill the worker disk (No space left on device) (#11421) SDK 🐞 Fixed OCSF output writer now re-raises I/O errors (e.g. ENOSPC) instead of logging them per finding and leaving a truncated file (#11421)

Version updated for https://github.com/Raftersecurity/rafter-cli to version v0.8.4. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. What’s Changed Installation Node.js: npm install -g @rafter-security/cli@0.8.4 Python: pip install rafter-cli==0.8.4 OpenClaw (via ClawHub): clawhub skill install rafter-security See CHANGELOG.md for details. What’s Changed feat(agent-init): add Hermes platform support (sable-gyw) by @Rome-1 in https://github.com/Raftersecurity/rafter-cli/pull/151 feat: add JSON output for agent status by @cettyTheDev in https://github.com/Raftersecurity/rafter-cli/pull/153 feat(policy): read backend’s .rafter/config.yml + flat-shape compat (sable-c1c) by @Rome-1 in https://github.com/Raftersecurity/rafter-cli/pull/154 fix(scan): honor .rafter.yml scan.exclude_paths on both engines (sable-yz0) by @Rome-1 in https://github.com/Raftersecurity/rafter-cli/pull/152 chore(release): bump to v0.8.4 by @Rome-1 in https://github.com/Raftersecurity/rafter-cli/pull/155 fix(agent): report OpenClaw via canonical ClawHub path in status (sable-1vq) by @Rome-1 in https://github.com/Raftersecurity/rafter-cli/pull/157 feat(agent): surface Hermes in verify/status/list detection (sable-gyw) by @Rome-1 in https://github.com/Raftersecurity/rafter-cli/pull/156 pattern: add HashiCorp Vault token detection by @cettyTheDev in https://github.com/Raftersecurity/rafter-cli/pull/159 New Contributors @cettyTheDev made their first contribution in https://github.com/Raftersecurity/rafter-cli/pull/153 Full Changelog: https://github.com/Raftersecurity/rafter-cli/compare/v0.8.3...v0.8.4

Version updated for https://github.com/rvben/rumdl to version v0.2.6. This action is used across all versions by 3 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. What’s Changed Fixed MD062: treat a lone quote in a link destination as part of the URL (b3aea98) config: stop directory config discovery at the canonical project root (ef9f3f6) config: match root config by canonical path in per-directory resolution (4442a9f) output: relativize the verbose ‘Processing file’ path on Windows (35986d6) output: normalize remaining displayed paths to forward slashes on Windows (dbfb3ef) output: use forward slashes in displayed paths on Windows (7049c01) MD049,MD037: Preserve inline code inside emphasis during auto-fix (#652) (a1b1055) Downloads File Platform Checksum rumdl-v0.2.6-x86_64-unknown-linux-gnu.tar.gz Linux x86_64 checksum rumdl-v0.2.6-x86_64-unknown-linux-musl.tar.gz Linux x86_64 (musl) checksum rumdl-v0.2.6-aarch64-unknown-linux-gnu.tar.gz Linux ARM64 checksum rumdl-v0.2.6-aarch64-unknown-linux-musl.tar.gz Linux ARM64 (musl) checksum rumdl-v0.2.6-x86_64-apple-darwin.tar.gz macOS x86_64 checksum rumdl-v0.2.6-aarch64-apple-darwin.tar.gz macOS ARM64 (Apple Silicon) checksum rumdl-v0.2.6-x86_64-pc-windows-msvc.zip Windows x86_64 checksum Installation Using uv (Recommended) uv tool install rumdl Using pip pip install rumdl Using pipx pipx install rumdl Direct Download Download the appropriate binary for your platform from the table above, extract it, and add it to your PATH.

Version updated for https://github.com/SAP/pull-request-semver-bumper to version v1.0.3. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. What’s Changed Changelog 🚀 Features feat: Add merge_group trigger and refine if conditions for pull request specific steps in build workflow. feat: Add an all-tests-passed job to aggregate test results and set commit status. feat: Add changelog configuration file and integrate it into the release workflow. feat: add GitHub issue templates for bug reports and feature requests. feat: add release workflow, MPL-2.0 license, and update REUSE.toml. feat: add workflow concurrency to build-and-test workflow and update core action paths in version bumping actions. feat: rename core package and action display names to pull-request-semver-bumper feat: update package name to pull-request-semver-bumper-core and add peer dependencies in package-lock.json 🐛 Fixes fix: Add step to copy actions to workspace as a workaround for a GitHub Actions runner limitation. fix: correct copyright year in README.md fix: correct core action path in npm version bumping workflow fix: correctly copy action contents to the workspace instead of the directory itself. fix: correctly copy action directory contents to workspace (#12) fix: correctly copy action directory contents to workspace instead of the directory itself. fix: fix calling branch in documentation (#22) fix: fixed the core action name (#25) fix: make ‘build-type’ input required and update default value in action.yml fix: remove angle brackets from SPDX fields in REUSE.toml fix: restore MPL-2.0 license file required by bundled dependency (#106) fix: update workflow group (#7) fix: use external invoking for sub-actions (#13) fix: workaround for invoke local action from external repo (#11) 🧰 Maintenance chore: Add CHANGELOG.md to REUSE ignore list chore: add build test final status for PR’s status check (#14) chore: Add configuration.json to REUSE ignore list. chore: add renovate.json to REUSE.toml annotations (#91) chore: build core action dist (auto) chore: build core action dist (auto) chore: remove package-lock.json chore: Rename action from “pull request semver bumper” to “Version Bumping Action”. chore: rename action from “Version Bumping Action” to “pull request semver bumper” chore: Replace copyright placeholder with actual project name in REUSE.toml. chore: update action usage examples to use a unified gateway action (#2) chore: Update action usage paths in READMEs and project metadata in REUSE.toml. chore: update changelog for v1.0.0 (#26) chore: Use pull request number for workflow concurrency groups. chore(deps-dev): bump jest and @types/jest in /.github/actions/core (#8) chore(deps-dev): bump ts-jest from 29.4.5 to 29.4.6 in /.github/actions/core (#9) chore(deps): bump simple-git from 3.33.0 to 3.36.0 in /.github/actions/core (#73) chore(deps): update dependency @actions/core to v2.0.3 chore(deps): update dependency @actions/core to v2.0.3 (#57) chore(deps): update dependency @types/node to v25.6.0 chore(deps): update dependency @types/node to v25.6.0 (#60) chore(deps): update dependency ts-jest to v29.4.11 (#97) chore(deps): update dependency ts-jest to v29.4.9 chore(deps): update dependency ts-jest to v29.4.9 (#59) chore(deps): update github artifact actions (#108) ci: change workflow trigger from pull_request_target to pull_request ci: Configure semver bumper to explicitly use HEAD as the target tag in the release workflow. ci: Configure semver bumper to explicitly use HEAD as the target tag in the release workflow. (#18) ci: improved changelog generation (#16) ci: pin third-party action SHAs and add Dependabot cooldown (#102) ci: replace pull_request_target with pull_request for CodeQL fork PR analysis (#107) ci: retrigger workflows ci: switch GitHub Actions runners from ‘solinas’ to ‘ubuntu-latest’ ci: Update build runner from solinas to ubuntu-latest ci: verify GitHub Actions recovery refactor: Remove merge_group trigger and simplify pull request condition checks in build workflow refactor: Update uses path for core action and rename build-type input to type. refactor: update action usage examples to use a unified gateway action with a type input and add clarifying documentation refactor: Update build workflow to use a unified version bumper action with a type input. refactor: update internal action uses path and rename type input to build-type refactor: update workflow trigger from pull_request to pull_request_target refactor: validation workflow now test from gateway action (#4) 📝 Documentation docs: add ‘Why use this Action?’ section, enhance project description, and update usage example to @v1 in README. docs: add issue templates and reuse api badege (#21) docs: add project name into copyright place holder (#5) docs: add requirements section and update licensing link in README (#10) docs: add requirements section and update licensing link in README. docs: add REUSE status badge to README docs: update Maven README (#3) docs: update Maven README to remove outdated credential example and add Nexus env vars to main usage. docs: update project links in README for consistency docs: Update README examples to use v1 tag for the version bumping action. docs: update readme highlighting USP and update meta information (#23) What’s Changed chore: Update action usage paths in READMEs and project metadata by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/1 chore: update action usage examples to use a unified gateway action by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/2 docs: update Maven README by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/3 refactor: validation workflow now test from gateway action by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/4 docs: add project name into copyright place holder by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/5 fix: update workflow group by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/7 chore(deps-dev): bump jest and @types/jest in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/8 docs: add requirements section and update licensing link in README by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/10 fix: workaround for invoke local action from external repo by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/11 chore(deps-dev): bump ts-jest from 29.4.5 to 29.4.6 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/9 fix: correctly copy action directory contents to workspace by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/12 fix: use external invoking for sub-actions by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/13 chore: add build test final status for PR’s status check by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/14 ci: improved changelog generation by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/16 ci: Configure semver bumper to explicitly use HEAD as the target tag in the release workflow by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/18 chore: update changelog for v1.0.0 by @github-actions[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/19 docs: add issue templates and reuse api badege by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/21 fix: fix calling branch in documentation by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/22 docs: update readme highlighting USP and update meta information by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/23 chore: update changelog for v1.0.0 by @github-actions[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/24 fix: fixed the core action name by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/25 chore: update changelog for v1.0.0 by @github-actions[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/26 chore(deps-dev): bump @types/node from 24.10.1 to 25.0.2 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/29 chore(deps): bump @actions/core from 1.11.1 to 2.0.1 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/28 chore(deps): bump @actions/exec from 1.1.1 to 2.0.0 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/27 chore(deps-dev): bump @types/node from 25.0.2 to 25.0.3 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/32 feat: Expose bump level as output by @mdanish98 in https://github.com/SAP/pull-request-semver-bumper/pull/33 chore: update changelog for v1.0.1 by @github-actions[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/34 chore(deps-dev): bump @types/node from 25.0.3 to 25.2.3 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/45 chore(deps): bump semver from 7.7.3 to 7.7.4 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/41 chore(deps): bump @actions/core from 2.0.1 to 2.0.2 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/36 chore(deps-dev): bump jest from 30.2.0 to 30.3.0 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/54 chore: Configure Renovate by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/55 chore(deps): bump simple-git from 3.30.0 to 3.31.1 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/44 chore(deps): update dependency @actions/core to v2.0.3 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/57 chore(deps): update dependency @types/node to v25.6.0 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/60 chore(deps): update dependency ts-jest to v29.4.9 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/59 chore(deps): update dependency node to v24 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/66 chore(deps): bump simple-git from 3.33.0 to 3.36.0 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/73 chore(deps): update actions/setup-node action to v6 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/65 fix: correct release workflow sequencing to merge changelog PR before tagging by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/40 chore(deps): update s4u/setup-maven-action action to v1.20.0 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/63 chore(deps-dev): bump @types/node from 25.6.0 to 25.6.2 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/81 chore(deps): bump @actions/exec from 2.0.0 to 3.0.0 in /.github/actions/core by @dependabot[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/42 chore(deps): update dependency jest to v30.4.2 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/83 chore(deps): update actions/checkout action to v6 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/64 chore(deps): update dependency semver to v7.8.0 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/84 chore(deps): update dependency python to 3.14 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/61 chore(deps): update dependency @types/node to v25.7.0 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/79 chore(deps): update mikepenz/release-changelog-builder-action action to v6 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/69 chore(deps): update endbug/add-and-commit action to v10 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/68 chore(deps): update softprops/action-gh-release action to v3 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/70 fix: set all-tests-passed status on changelog PR to unblock auto-merge by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/87 chore: update changelog for v1.0.2 by @github-actions[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/88 docs: align README output name with action output by @ricogu-claw in https://github.com/SAP/pull-request-semver-bumper/pull/49 fix(deps): update dependency @actions/core to v3 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/74 chore(deps): update dependency typescript to v6 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/67 chore: fix REUSE compliance by annotating missing files in REUSE.toml by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/91 chore(deps): update dependency @types/node to v25.8.0 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/93 chore(deps): update dependency @types/node to v25.9.1 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/94 chore(deps): update dependency ts-jest to v29.4.10 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/95 chore(deps): update dependency ts-jest to v29.4.11 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/97 fix: use commit-message input by @Herrtian in https://github.com/SAP/pull-request-semver-bumper/pull/98 ci: switch CodeQL to advanced setup with JS/TS, same-repo and fork PR scanning by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/99 chore(deps): update dependency semver to v7.8.1 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/96 chore(deps): update actions/checkout action to v6 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/100 ci: add REUSE compliance lint as PR status check by @mdanish98 in https://github.com/SAP/pull-request-semver-bumper/pull/103 chore(deps): update actions/checkout action to v6 by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/104 fix: restore MPL-2.0 license file required by bundled dependency by @mdanish98 in https://github.com/SAP/pull-request-semver-bumper/pull/106 ci: harden CI workflows against fork PR privilege abuse by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/107 chore(deps): update github artifact actions (major) by @renovate[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/108 ci: pin third-party action SHAs and add Dependabot cooldown by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/102 ci: skip Build & Test e2e for docs/workflow-only PRs by @ricogu in https://github.com/SAP/pull-request-semver-bumper/pull/101 chore: update changelog for v1.0.3 by @github-actions[bot] in https://github.com/SAP/pull-request-semver-bumper/pull/110 New Contributors @ricogu made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/1 @dependabot[bot] made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/8 @github-actions[bot] made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/19 @mdanish98 made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/33 @renovate[bot] made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/55 @ricogu-claw made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/49 @Herrtian made their first contribution in https://github.com/SAP/pull-request-semver-bumper/pull/98 Full Changelog: https://github.com/SAP/pull-request-semver-bumper/compare/v0.0.0...v1.0.3

Version updated for https://github.com/seijikohara/docker-compose-cache-action to version v1.8.8. This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. What’s Changed What’s Changed ci: migrate GitHub App auth from app-id to client-id by @seijikohara in https://github.com/seijikohara/docker-compose-cache-action/pull/284 chore(deps): lock file maintenance by @renovate[bot] in https://github.com/seijikohara/docker-compose-cache-action/pull/283 Full Changelog: https://github.com/seijikohara/docker-compose-cache-action/compare/v1.8.7...v1.8.8

Version updated for https://github.com/suxrobGM/depvault to version cli/v1.8.2. This action is used across all versions by ? repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. What’s Changed project create: default the new-project name to the current repo’s directory and auto-fill the repository URL from git remote origin Warn when the active project doesn’t match the current repository, giving an early signal to switch projects

Version updated for https://github.com/threeal/setup-lefthook-action to version v1.0.0. This action is used across all versions by 1 repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. What’s Changed What’s Changed Set up Lefthook on all GitHub-hosted runner platforms: Linux, macOS, and Windows on both x64 and arm64. Install the latest Lefthook version by default, or pin a specific version via the version input. Use the version output to read the exact version of Lefthook that was installed. Cache the downloaded binary using the runner tool cache to avoid redundant downloads across runs. Full Changelog: https://github.com/threeal/setup-lefthook-action/commits/v1.0.0

Version updated for https://github.com/urmzd/sr to version v8.0.9. This action is used across all versions by 0 repositories. Action Type This is a Composite action. Go to the GitHub Marketplace to find the latest changes. What’s Changed 8.0.9 (2026-06-03) Bug Fixes publishers: publish cargo workspace members in dependency order (#26) (8e81978) Full Changelog

Version updated for https://github.com/vakaobr/iac-cartographer to version v1.2.1. This action is used across all versions by 0 repositories. Action Type This is a Docker action. Go to the GitHub Marketplace to find the latest changes. What’s Changed 1.2.1 (2026-06-03) Documentation readme: reflect shipped live-state overlay (#125) (4f99322) What’s Changed docs(readme): reflect shipped live-state overlay by @vakaobr in https://github.com/vakaobr/iac-cartographer/pull/125 chore(main): release 1.2.1 by @vakaobr in https://github.com/vakaobr/iac-cartographer/pull/126 Full Changelog: https://github.com/vakaobr/iac-cartographer/compare/v1.2.0...v1.2.1

Version updated for https://github.com/wilssola/ghaction-setup-containerd to version v2. This action is used across all versions by ? repositories. Action Type This is a Node action using Node version 24. Go to the GitHub Marketplace to find the latest changes. What’s Changed chore: update built files (7f26042) chore: new build (21b8001) Update action name to include ’truly open source’ (f86ad8e) Remove validateSubscription function (be235b0) Merge pull request #130 from step-security/yarn-audit-fix (80f302c) fix: apply audit fixes (440fa24) Merge pull request #129 from step-security/dependabot/npm_and_yarn/ip-address-10.2.0 (503e417) Merge branch ‘main’ into dependabot/npm_and_yarn/ip-address-10.2.0 (a3daadd) Merge pull request #128 from step-security/Raj-StepSecurity-patch-7 (9f3390d) build(deps): bump ip-address from 10.1.0 to 10.2.0 (436bc61)