scorecard-visualizer
scorecard-visualizer copied to clipboard
ossf
Tool for visualizing the Open SSF Scorecard Api data in a human friendly way
Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.3.1 to 1.3.2. Changelog Sourced from node-forge's changelog. 1.3.2 - 2025-11-25 Security HIGH: ASN.1 Validator Desynchronization An Interpretation Conflict (CWE-436) vulnerability in node-forge versions 1.3.1 and below...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.0 to 5.0.1. Release notes Sourced from actions/checkout's releases. v5.0.1 What's Changed Port v6 cleanup to v5 by @ericsciple in actions/checkout#2301 Full Changelog: https://github.com/actions/checkout/compare/v5...v5.0.1 Commits 93cb6ef Cleanup...
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.0 to 4.31.3. Release notes Sourced from github/codeql-action's releases. v4.31.3 CodeQL Action Changelog See the releases page for the relevant changes to the CodeQL CLI and language...
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 29.5.14 to 30.0.0. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [@tanstack/react-query](https://github.com/TanStack/query/tree/HEAD/packages/react-query) from 4.29.1 to 5.90.7. Release notes Sourced from @tanstack/react-query's releases. @tanstack/react-query-persist-client@5.90.7 Patch Changes Updated dependencies []: @tanstack/query-persist-client-core@5.91.4 @tanstack/react-query@5.90.5 @tanstack/react-query@5.90.7 Patch Changes Updated dependencies [b4cd121]: @tanstack/query-core@5.90.7 @tanstack/react-query-persist-client@5.90.6 Patch Changes...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.13.1 to 2.13.2. Release notes Sourced from step-security/harden-runner's releases. v2.13.2 What's Changed Fixed an issue where there was a limit of 512 allowed endpoints when using block...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.6.2 to 5.0.0. Release notes Sourced from actions/upload-artifact's releases. v5.0.0 What's Changed BREAKING CHANGE: this update supports Node v24.x. This is not a breaking change per-se but...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.8.1 to 4.8.2. Release notes Sourced from actions/dependency-review-action's releases. v4.8.2 Minor fixes: Fix PURL parsing for scoped packages (#1008 from @danielhardej) Fix for large summaries (#1007 from...
Bumps [typescript](https://github.com/microsoft/TypeScript) from 4.9.5 to 5.9.3. Release notes Sourced from typescript's releases. TypeScript 5.9.3 TypeScript 5.9 For release notes, check out the release announcement fixed issues query for Typescript 5.9.0...
Bumps [@tanstack/react-query-devtools](https://github.com/TanStack/query/tree/HEAD/packages/react-query-devtools) from 4.29.1 to 5.90.2. Release notes Sourced from @tanstack/react-query-devtools's releases. v5.90.2 Version 5.90.2 - 9/23/25, 7:37 AM Changes Fix types: onMutateResult is always defined in onSuccess callback (#9677)...