Skip to content

Pull requests: ossf/scorecard

New pull request New
20 Open 3,653 Closed
20 Open 3,653 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

fix(github): handle 422 search errors in Dependency-Update-Tool size:M This PR changes 30-99 lines, ignoring generated files.
#4978 opened Mar 24, 2026 by LoveChauhan-18 Loading…
2 tasks done
1
🌱 chore: add additional Hiero repos to cron run. size:XS This PR changes 0-9 lines, ignoring generated files.
#4977 opened Mar 23, 2026 by jwagantall Loading…
1
🌱 Bump the gomod group across 2 directories with 17 updates dependencies Pull requests that update a dependency file go Pull requests that update Go code size:L This PR changes 100-499 lines, ignoring generated files.
#4976 opened Mar 23, 2026 by dependabot bot Loading…
1
📖 docs: update docker image naming to include v5 suffix size:L This PR changes 100-499 lines, ignoring generated files.
#4973 opened Mar 22, 2026 by LoveChauhan-18 Loading…
2 tasks done
1
4
Fix commit ordering for GitLab repositories (#3193) size:S This PR changes 10-29 lines, ignoring generated files.
#4969 opened Mar 19, 2026 by Devansh7006 Loading…
1
fix: detect committer name/email as untrusted input in Dangerous Workflow check size:S This PR changes 10-29 lines, ignoring generated files.
#4968 opened Mar 19, 2026 by alexchenai Loading…
1 of 2 tasks
1
📖 Set GitLab support for Code-Review and Dependency-Update-Tool size:S This PR changes 10-29 lines, ignoring generated files. Stale
#4963 opened Mar 9, 2026 by dvcorreia Loading…
1 of 2 tasks
1
✨ Support multiple fuzz configs per language; add Python Hypothesis size:L This PR changes 100-499 lines, ignoring generated files. Stale
#4957 opened Mar 2, 2026 by Fieldnote-Echo Loading…
1 task done
1
1
📖 Scorecard v6: OSPS Baseline conformance proposal and 2026 roadmap size:XXL This PR changes 1000+ lines, ignoring generated files.
#4952 opened Feb 27, 2026 by justaugustus Loading…
1 of 2 tasks
73
feat: update fuzzing check for memory-safe languages size:L This PR changes 100-499 lines, ignoring generated files. Stale
#4950 opened Feb 26, 2026 by garvit-bhattt Loading…
1
1
docs: add remediation guidance for unpinned pip installs size:S This PR changes 10-29 lines, ignoring generated files. Stale
#4946 opened Feb 25, 2026 by D9mond Loading…
1 of 2 tasks
6
🌱 Bump github.com/rhysd/actionlint from 1.7.9 to 1.7.11 dependencies Pull requests that update a dependency file go Pull requests that update Go code size:XS This PR changes 0-9 lines, ignoring generated files.
#4940 opened Feb 16, 2026 by dependabot bot Loading…
1
✨feat: Add Private Vulnerability Reporting probe to Security-Policy check size:L This PR changes 100-499 lines, ignoring generated files. Stale
#4929 opened Feb 4, 2026 by Ironankit525 Loading…
5
🌱 Add cryptographic verification of release signatures Stale
#4902 opened Jan 8, 2026 by AdamKorcz Draft
2 tasks done
4
🌱 Maintained check: New probe: Inactive Maintainers size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4893 opened Dec 26, 2025 by AdamKorcz Loading…
1 task done
1
7
🐛 New check: Secret scanning size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4878 opened Dec 12, 2025 by AdamKorcz Draft
2 tasks done
7
🌱 Vulnerabilities check: New probe: Do releases have direct dependencies with known vulnerabilities? size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4876 opened Dec 9, 2025 by AdamKorcz Loading…
2 tasks done
8
🌱 New check: Mean time to update dependencies size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4868 opened Dec 3, 2025 by AdamKorcz Draft
2 tasks done
1
8
🌱 Maintained Check: New probe: Do maintainers respond to public bug and security issues? size:XXL This PR changes 1000+ lines, ignoring generated files. Stale
#4867 opened Dec 1, 2025 by AdamKorcz Loading…
1 task done
9
✨ Update unsafeblock probe to detect use of Java's Unsafe classes size:XL This PR changes 500-999 lines, ignoring generated files. Stale
#4849 opened Nov 12, 2025 by thomasleplus Loading…
2 tasks done
15
ProTip! Exclude everything labeled bug with -label:bug.