Skip to content

Pull requests: step-security/github-actions-ensure-sha-pinned-actions

New pull request New
9 Open 22 Closed
9 Open 22 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

fix: Security updates
#41 opened Apr 27, 2026 by github-actions Bot Loading…
1
feat: added banner and update subscription check to make maintained actions free for public repos review-required
#39 opened Apr 16, 2026 by Raj-StepSecurity Contributor Loading…
4 tasks
3
[StepSecurity] Apply security best practices
#34 opened Dec 1, 2025 by stepsecurity-app Bot Loading…
build(deps): bump axios from 1.12.0 to 1.13.1 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#32 opened Oct 29, 2025 by dependabot Bot Loading…
build(deps): bump github/codeql-action from 3.30.3 to 4.31.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#30 opened Oct 27, 2025 by dependabot Bot Loading…
build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.3 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#22 opened Oct 1, 2025 by dependabot Bot Loading…
build(deps): bump actions/cache from 4.2.4 to 4.3.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#15 opened Sep 25, 2025 by dependabot Bot Loading…
build(deps): bump yaml from 2.7.1 to 2.8.1 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#8 opened Sep 16, 2025 by dependabot Bot Loading…
build(deps): bump actions/checkout from 4.3.0 to 5.0.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#6 opened Sep 16, 2025 by dependabot Bot Loading…
ProTip! Adding no:label will show everything without a label.