Version updated for https://github.com/sbomify/github-action to version v0.7.0. This action is used across all versions by 21 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Changelog: v0.6 → v0.7.0 Major Changes: Switched enrichment from Parley to ecosyste.ms API - Now uses ecosyste.ms for package metadata enrichment (thank you @andrew) Added SPDX support - Full support for SPDX 2.2 and 2.3 formats alongside CycloneDX (via new spdx-tools dependency) Enhanced telemetry with privacy controls - Sentry error tracking now respects repository visibility (private repos don’t send CI context) Improvements:

Version updated for https://github.com/AminFazlMondo/check-deployed-environment to version v1.5.24. This action is used across all versions by 3 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes 1.5.24 (2025-11-27)

Version updated for https://github.com/boogy/iam-policy-validator to version v1.13.0. This action is used across all versions by ? repositories. Go to the GitHub Marketplace to find the latest changes. Release notes feat: add ignore_patterns support for privilege_escalation detection (0ef7002) ci(deps): bump actions/checkout from 5.0.1 to 6.0.0 (2c2917d) ci(deps): bump github/codeql-action from 4.31.3 to 4.31.5 (da99b9a) ci(deps): bump astral-sh/setup-uv from 7.1.3 to 7.1.4 (1bc4e5e) What’s Changed ci(deps): bump astral-sh/setup-uv from 7.1.3 to 7.1.4 by @dependabot[bot] in https://github.

Version updated for https://github.com/commitizen-tools/setup-cz to version v0.6.0. This action is used across all versions by ? repositories. Go to the GitHub Marketplace to find the latest changes. Release notes v0.6.0 (2025-11-27) Feat inputs: Expose python-version param

Version updated for https://github.com/Copera-ai/copera-action to version v2.0.0. This action is used across all versions by 1 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Full Changelog: https://github.com/Copera-ai/copera-action/compare/v1.0.0...v2.0.0

Version updated for https://github.com/cssnr/get-commit-action to version v3.0.0. This action is used across all versions by 4 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Change to TypeScript Add many default outputs Use JSONPath Plus for selector Default to Head Commit on Pull What’s Changed Updates for v3 by @smashedr in https://github.com/cssnr/get-commit-action/pull/7 Full Changelog: https://github.com/cssnr/get-commit-action/compare/v2.0.0...v3.0.0 🚀 Use this release with these tags: cssnr/get-commit-action@latest cssnr/get-commit-action@v3 cssnr/get-commit-action@v3.0 cssnr/get-commit-action@v3.0.0 cssnr/get-commit-action@0273901dcb7c1f127a831d7d5cd077a0d1ef1a94 # v3.

Version updated for https://github.com/datadrivers/terragrunt-action to version v4.0.0. This action is used across all versions by 36 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes 4.0.0 (2025-11-27) feat!: split pr-commenter into sub action (#61) (e752434) BREAKING CHANGES pr commenter removed into separate action Signed-off-by: Steffen Tautenhahn stevie-@users.noreply.github.com

Version updated for https://github.com/fonCki/mcp-security-linter to version v1.3.0. This action is used across all versions by ? repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s New AST-based analysis for command execution detection using Acorn parser Smarter detection of dynamic vs static command arguments Improved accuracy with fewer false positives Graceful fallback to regex when AST parsing fails Changes New Dependencies acorn - Fast, ECMAScript-compliant JavaScript parser acorn-walk - AST walker for traversing parsed trees BaseAnalyzer Enhancements Added parseAST() method for parsing JS/TS content Added walkAST() method with visitor pattern support CommandExecAnalyzer Improvements AST-based detection of dangerous execution patterns Analyzes argument types (template literals, identifiers, binary expressions) Provides precise line/column locations Graceful fallback to regex when AST parsing fails Full Changelog https://github.

Version updated for https://github.com/gha-utilities/weekend-push-guardian to version v0.0.2. This action is used across all versions by 1 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Full Changelog: https://github.com/gha-utilities/weekend-push-guardian/compare/v0.0.1...v0.0.2