Skip to content

Actions: chainguard-dev/malcontent

Actions

Scorecard supply-chain security

Actions

Loading...
Loading

Show workflow options

Create status badge

Loading
scorecard.yml
144 workflow runs
144 workflow runs

Filter by Event

Filter by Status

Filter by Branch

Filter by Actor

Add support for zstd RPM files (#732) Scorecard supply-chain security #144: Commit fcd1105 pushed by egibs
December 19, 2024 19:14 1m 5s main
main
December 19, 2024 19:14 1m 5s
Bump malcontent version to v1.7.1 (#724) Scorecard supply-chain security #143: Commit 6e326a4 pushed by egibs
December 18, 2024 15:47 1m 21s main
main
December 18, 2024 15:47 1m 21s
Split up archive.go into type-specific files; add wider zlib support … Scorecard supply-chain security #142: Commit f18fb0e pushed by egibs
December 18, 2024 15:40 1m 32s main
main
December 18, 2024 15:40 1m 32s
Bump malcontent version to v1.7.0 (#722) Scorecard supply-chain security #141: Commit 094eb42 pushed by egibs
December 18, 2024 00:50 1m 19s main
main
December 18, 2024 00:50 1m 19s
build: reduce binary size by adding -s -w to ldflags (#716) Scorecard supply-chain security #140: Commit 0937ef5 pushed by egibs
December 18, 2024 00:45 1m 14s main
main
December 18, 2024 00:45 1m 14s
Add zlib support to extractGzip (#713) Scorecard supply-chain security #139: Commit f297f5d pushed by egibs
December 18, 2024 00:39 1m 46s main
main
December 18, 2024 00:39 1m 46s
Fix prefix validation edge-case when extracting (#715) Scorecard supply-chain security #138: Commit 3db3999 pushed by tstromberg
December 18, 2024 00:33 1m 20s main
main
December 18, 2024 00:33 1m 20s
Fix false-positives in http_parser.rb-0.8.0/ext/ruby_http_parser/vend… Scorecard supply-chain security #137: Commit 892d94a pushed by tstromberg
December 18, 2024 00:05 1m 15s main
main
December 18, 2024 00:05 1m 15s
Address Sonarqube SonarAnalyzer.CSharp.dll finding (#719) Scorecard supply-chain security #136: Commit d21305b pushed by tstromberg
December 17, 2024 23:59 1m 17s main
main
December 17, 2024 23:59 1m 17s
Address CRITICAL ELF false-positives in trino, rust, and eza (#718) Scorecard supply-chain security #135: Commit ff9ea83 pushed by tstromberg
December 17, 2024 22:51 1m 34s main
main
December 17, 2024 22:51 1m 34s
Improve extracted archive file clean up (#714) Scorecard supply-chain security #134: Commit e6d7f01 pushed by egibs
December 17, 2024 22:43 1m 40s main
main
December 17, 2024 22:43 1m 40s
Reduce Python CRITICAL false positives (setuptools, keylogger) (#717) Scorecard supply-chain security #133: Commit b5a589d pushed by tstromberg
December 17, 2024 22:16 1m 32s main
main
December 17, 2024 22:16 1m 32s
Tune HIGH/CRITICAL findings + disallow "clean" samples from matching … Scorecard supply-chain security #132: Commit 368f804 pushed by tstromberg
December 17, 2024 15:21 1m 45s main
main
December 17, 2024 15:21 1m 45s
Allow find-missing-metadata to be run from other directories (#710) Scorecard supply-chain security #131: Commit ca24a67 pushed by tstromberg
December 17, 2024 14:30 1m 26s main
main
December 17, 2024 14:30 1m 26s
Scorecard supply-chain security Scorecard supply-chain security #130: Scheduled
December 17, 2024 04:32 1m 12s main
main
December 17, 2024 04:32 1m 12s
ELF malware detection improvements based on Wolfsbane analysis (#680) Scorecard supply-chain security #129: Commit c234760 pushed by tstromberg
December 16, 2024 22:14 1m 23s main
main
December 16, 2024 22:14 1m 23s
Leverage yr scan --profile to tune slowest rules (#708) Scorecard supply-chain security #128: Commit 3903332 pushed by tstromberg
December 16, 2024 22:09 1m 14s main
main
December 16, 2024 22:09 1m 14s
Add more specific SVG rule (#704) Scorecard supply-chain security #127: Commit e7e22d4 pushed by egibs
December 16, 2024 21:40 1m 20s main
main
December 16, 2024 21:40 1m 20s
Improve handling of nonexistent symlinks for extractions + programkin… Scorecard supply-chain security #126: Commit 191c6f3 pushed by egibs
December 16, 2024 19:12 1m 14s main
main
December 16, 2024 19:12 1m 14s
Fix non-tar bz2 extractions (#702) Scorecard supply-chain security #125: Commit 4cb8edf pushed by egibs
December 16, 2024 19:02 1m 27s main
main
December 16, 2024 19:02 1m 27s
Bump actions/setup-go from 5.1.0 to 5.2.0 in the all group (#707) Scorecard supply-chain security #124: Commit e41ff0d pushed by egibs
December 16, 2024 17:35 1m 48s main
main
December 16, 2024 17:35 1m 48s
Update third-party rules as of 2024-12-16 (#706) Scorecard supply-chain security #123: Commit 9be53ee pushed by egibs
December 16, 2024 17:27 1m 19s main
main
December 16, 2024 17:27 1m 19s
Update third-party rules as of 2024-12-13 (#703) Scorecard supply-chain security #122: Commit ed8a34c pushed by egibs
December 13, 2024 02:32 1m 39s main
main
December 13, 2024 02:32 1m 39s
Demote additional logs from Info to Debug (#701) Scorecard supply-chain security #121: Commit 7a732cc pushed by imjasonh
December 12, 2024 19:48 1m 42s main
main
December 12, 2024 19:48 1m 42s
Improve FontOnLake rule targetting (#700) Scorecard supply-chain security #120: Commit 34410b2 pushed by tstromberg
December 12, 2024 19:05 1m 24s main
main
December 12, 2024 19:05 1m 24s