Skip to content

Releases: ossf/scorecard-monitor

v2.0.0-beta8

27 Jun 07:17
Compare
Choose a tag to compare

What's Changed

Important

Governance
The project has been donated to the OSSF, so now it is an official tool in the Scorecard ecosystem, read the announcement. So the repository is now located in ossf/scorecard-monitor and not as UlisesGascon/openssf-scorecard-monitor. You can use now ossf/[email protected] to use this action.

License change
The project has change the license from MIT to APACHE 2.0

Main Changes

  • Improved documentation
  • Updated templates and project metadata to reflect the OSSF donation
  • Updated references to the new URL for the Scorecard Visualizer
  • Dependencies upgrades
  • Improved CI to validate the dist content

PRs

New Contributors

Full Changelog: v2.0.0-beta7...v2.0.0-beta8

v2.0.0-beta7

19 Jan 09:11
8551177
Compare
Choose a tag to compare

What's Changed

Main Changes

PRs

New Contributors

  • @lelia made their first contribution in #68

Full Changelog: v2.0.0-beta6...v2.0.0-beta7

v2.0.0-beta6

08 Jun 09:20
0af2f73
Compare
Choose a tag to compare

What's Changed

Features

  • Added comparator to monitor
  • Docs: Added PR Strategy reference
  • Improved table copy (titles and rows)

PRs

Full Changelog: v2.0.0-beta5...v2.0.0-beta6

v2.0.0-beta5

28 Apr 15:24
2a02b95
Compare
Choose a tag to compare

What's Changed

Full Changelog: v2.0.0-beta4...v2.0.0-beta5

v2.0.0-beta4

21 Apr 13:37
1e297bb
Compare
Choose a tag to compare

What's changed

Main changes

  • Documentation improvements
  • Added render-badge input (#46)
  • Fixed typo in http protocol (3715cae)
  • Added report-tool input and new visualization tool (#57)

PRs

Full Changelog: v2.0.0-beta3...v2.0.0-beta4

v2.0.0-beta3

17 Mar 10:20
468db23
Compare
Choose a tag to compare

What's Changed

  • Added fix link for stepSecurity
  • Added issue assignation and labels

PRs

Full Changelog: v2.0.0-beta2...v2.0.0-beta3

v2.0.0-beta2

25 Feb 10:20
e3526f9
Compare
Choose a tag to compare

What's Changed

Main changes

  • Improved report tags management (hidden titles)
  • Fix: boolean logic to trigger report tags

Prs

New Contributors

Full Changelog: v2.0.0-beta1...v2.0.0-beta2

v2.0.0-beta1

23 Feb 21:43
b2fa3a9
Compare
Choose a tag to compare

What's Changed

Main changes

  • Improved argument management from the pipeline
  • Utils relocated as external libraries
  • Extended reporting to support commit hash reference
  • Added report data as output (JSON Format)
  • Added files content validation against JSON Schemas
  • Added support for content tags in the report, so the report can be added/updated as a markdown block in a file
  • Added Discovery capabilities, so the action will auto-scope organizations / users
  • Added excluded capabilities to the discovery
  • Better documentation

Context

Full Changelog: v1.0.1...v2.0.0-beta1

v1.0.1

15 Feb 23:49
Compare
Choose a tag to compare

What's Changed

Main changes

  • Added Github Action Branding

PRs

Changelog

Other

  • added github action branding (831364a)

Full Changelog: v1.0.0...v1.0.1

v1.0.0

15 Feb 23:44
Compare
Choose a tag to compare

What's Changed

Main changes

  • Added support for Github Actions (input, setup...)
  • Added basic chore setup (NPM Scripts, linting, pipelines, testing... )
  • Added Dependencies (dev and prod...)
  • Limited support to Node v16
  • Added issue and report templating with Ejs
  • Added logic to manage local json database
  • Added markdown format to report and issues
  • Added documentation, images and demo repo references
  • Added API request management including HTTP limits for parallel requests
  • Added logic to compare new and historical scores

PRs

Changelog

Features

  • added basic github action definition (f98ce7c)
  • added basic utilities (cf3fdb1)
  • added commit changes capability (6a82bda)
  • added default settings (1382939)
  • added dependency vercel/ncc (6daf8c8)
  • added Ejs as dependency (ddb8091)
  • added empty config file (0ab5133)
  • added empty db file (5d9e236)
  • added github action core logic (324614d)
  • added issue template (71f9bbb)
  • added markdown reporting (c38a0d8)
  • added max resquest in settings (868c4b8)
  • added notification settings (2e008f5)
  • added octokit/rest library (f7eacf0)
  • extended inputs (1e80345)
  • simplified legacy code (eb024ed)
  • WIP core logic (939ebba)

Bug Fixes

Other

New Contributors

Full Changelog: https://github.com/UlisesGascon/openssf-scorecard-monitor/commits/v1.0.0