Version updated for https://github.com/advanced-security/secret-scanning-review-action to version v2.2.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 60 repositories. Go to the GitHub Marketplace to find the latest changes. Action Summary The “Secret Scanning Review Action” is a GitHub Action designed to enhance visibility and enforce security by identifying secret scanning alerts in pull requests. It automatically annotates files, summarizes detected secrets, and optionally fails status checks, ensuring that any introduced secrets are addressed before merging.

Version updated for https://github.com/advanced-security/secret-scanning-review-action to version v2.2.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 60 repositories. Go to the GitHub Marketplace to find the latest changes. Action Summary The Secret Scanning Review GitHub Action enhances security workflows by detecting and highlighting secrets introduced in pull requests through GitHub’s secret scanning alerts. It automates awareness and enforcement by adding annotations, optionally failing status checks, and summarizing detected secrets in pull request comments and summaries, ensuring reviewers address potential issues before merging.

Version updated for https://github.com/advanced-security/python-lint-code-scanning-action to version v1.1.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 353 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Potential fix for code scanning alert no. 553: Log Injection by @aegilops in https://github.com/advanced-security/python-lint-code-scanning-action/pull/21 Potential fix for code scanning alert no. 556: Workflow does not contain permissions by @aegilops in https://github.com/advanced-security/python-lint-code-scanning-action/pull/22 Update lint_win.

Version updated for https://github.com/advanced-security/dependabot-epss-action to version v0.5. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by ? repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed 🤖 Fixes #12 by @felickz in https://github.com/advanced-security/dependabot-epss-action/pull/13 fix: skip alerts w/o CVEs by @moop-moop in https://github.com/advanced-security/dependabot-epss-action/pull/15 New Contributors @moop-moop made their first contribution in https://github.com/advanced-security/dependabot-epss-action/pull/15 Full Changelog: https://github.com/advanced-security/dependabot-epss-action/compare/v0...v0.5

Version updated for https://github.com/advanced-security/policy-as-code to version v2.11.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 54 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Update and Vendor Deps by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/173 fix(policy): Update violation remediation logic and enhance tests by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/175 feat(version): v2.11.1 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/176 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.11.0...v2.11.1

Version updated for https://github.com/advanced-security/generate-sbom-action to version v1.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 24 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes This update just updated dependencies and closes security vulnerabilities.

Version updated for https://github.com/advanced-security/policy-as-code to version v2.11.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 54 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed feat(dependencies): update ghastoolkit to version 0.17.4 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/169 Update GHASToolkit by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/171 feat(version): v2.11.0 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/172 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.10.1...v2.11.0

Version updated for https://github.com/advanced-security/maven-dependency-submission-action to version v5.0.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 35,404 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Improved multi-module support This release improves multi-module support by reflecting which pom.xml file brings in a particular dependency. Previously, the dependencies were aggregated into the top-level pom.xml file. If a given package is brought in via multiple modules, that package will be reflected in all of the modules that reference it.

Version updated for https://github.com/advanced-security/maven-dependency-submission-action to version v4.1.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 35,335 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes The release bumps dependency versions to stay up-to-date.

Version updated for https://github.com/advanced-security/maven-dependency-submission-action to version v4.1.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 35,329 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Add cycle safety for transitive dependencies by @juxtin in https://github.com/advanced-security/maven-dependency-submission-action/pull/103 New Contributors @juxtin made their first contribution in https://github.com/advanced-security/maven-dependency-submission-action/pull/103 Full Changelog: https://github.com/advanced-security/maven-dependency-submission-action/compare/v4...v4.1.2

Version updated for https://github.com/advanced-security/policy-as-code to version v2.10.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 54 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Small fixes by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/167 feat(version): v2.10.1 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/168 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.10.0...v2.10.1

Version updated for advanced-security/policy-as-code to version v2.8.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 43 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed feat: Update GHASToolkit to v0.12.7 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/128 feat(deps): Update Vendored deps by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/129 V2.8.0 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/131 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.7.4...v2.8.0

Version updated for advanced-security/policy-as-code to version v2.7.4. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 42 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed feat: Add release file by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/124 feat(deps): Update and remove security issues by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/125 Updates to markdown files by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/127 feat(version): v2.7.4 by @GeekMasher in https://github.

Version updated for advanced-security/maven-dependency-submission-action to version v4.1.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 23,969 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Adds the ability to change the detector details for the dependency snapshots via the optional input parameters: detector-name detector-url detector-version If the detector-name is specified, then all three become mandatory as there are no sensible defaults that can be attributed to the values.

Version updated for advanced-security/policy-as-code to version v2.7.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 38 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Update licensing.yml by @ctcampbell in https://github.com/advanced-security/policy-as-code/pull/105 feat: update Black by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/110 feat: Update dep-review.yml by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/111 feat: Create markdown.yml by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/112 feat(deps): Update GHASToolkit by @GeekMasher in https://github.

Version updated for advanced-security/maven-dependency-submission-action to version v4.0.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 20,731 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Updating the build process and tooling for Node 20 support in the CLI executables which were introduced when the dependency-submission-toolkit transitioned in to an ESM module Fixes #69 #61

Version updated for advanced-security/policy-as-code to version v2.7.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 24 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed feat: Fix errors issues and add better error handling by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/103 feat(version): v2.7.2 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/104 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.7.1...v2.7.2

Version updated for advanced-security/maven-dependency-submission-action to version v4.0.1. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 17,515 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Updating branding for the marketplace Utilizing rollup to build cli executables as the ESM module for the dependency-submission-toolkit broke the 4.0.0 pkg based executable builds.

Version updated for advanced-security/policy-as-code to version v2.6.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 22 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Create dependabot.yml by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/70 Update V2.6.0 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/71 Update README.md by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/75 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.5.0...v2.6.0

Version updated for advanced-security/remap-sarif to version v1.0.2. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 2 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Fixed path issues resolving the sourceMap files

Version updated for advanced-security/maven-dependency-submission-action to version v3.0.3. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 12,975 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Fixes issue with POMs that set a non-default outputDirectory resulting is no dependency data being found and uploaded #48.

Version updated for advanced-security/python-lint-code-scanning-action to version v1.1.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 5 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes Added Pyre type checker All type checkers now use typeshed from GitHub instead of their bundled version

Version updated for advanced-security/policy-as-code to version v2.5.0. This publisher is shown as ‘verified’ by GitHub. This action is used across all versions by 19 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Update deps by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/64 Support multiple tokens by @Pradoxzon in https://github.com/advanced-security/policy-as-code/pull/61 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.4.2...v2.5.0

Version updated for advanced-security/policy-as-code to version v2.4.2. This publisher is shown verified by GitHub. This action is used across all versions by 18 repositories. Go to the GitHub Marketplace to find the latest changes. Release notes What’s Changed Use ignores in license warnings by @Pradoxzon in https://github.com/advanced-security/policy-as-code/pull/58 Update main.yml by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/59 v2.4.2 by @GeekMasher in https://github.com/advanced-security/policy-as-code/pull/60 Full Changelog: https://github.com/advanced-security/policy-as-code/compare/v2.4.1...v2.4.2