Skip to content

Releases: actions/dependency-review-action

v4.5.0

20 Nov 21:50
3b139cf
Compare
Choose a tag to compare

What's Changed

New Contributors

Full Changelog: v4...v4.5.0

v4.4.0

28 Oct 18:45
4081bf9
Compare
Choose a tag to compare

What's Changed

Full Changelog: v4.3.5...v4.4.0

v4.3.5

21 Oct 22:34
a6993e2
Compare
Choose a tag to compare

What's Changed

New Contributors

Full Changelog: v4.3.4...v4.3.5

v4.3.4

11 Jul 21:23
5a2ce3f
Compare
Choose a tag to compare

What's Changed

  • Include all added dependencies in scorecard entries by @elireisman in #783
  • Update SPDX Expression Parsing by @febuiles in #719
    • This PR is a significant refactor of SPDX expression parsing that may fix some bugs, but unfortunately there are several related known issues that remain unresolved as of this version.

Full Changelog: v4.3.3...v4.3.4

Notes for v4.3.3

05 Jun 19:18
72eb03d
Compare
Choose a tag to compare

What's Changed

New Contributors

Full Changelog: v4.3.2...v4.3.3

v4.3.2

30 Apr 16:42
0c155c5
Compare
Choose a tag to compare

What's Changed

  • Fix package-url parsing for allow-dependencies-licenses by @juxtin in #761

Full Changelog: v4.3.1...v4.3.2

v4.3.1

29 Apr 17:50
e58c696
Compare
Choose a tag to compare

What's Changed

This release fixes some bugs related to package-url parsing that were introduced in 4.3.0. See #753.

Full Changelog: V4.3.0...v4.3.1

v4.3.0

26 Apr 17:59
e58c696
Compare
Choose a tag to compare

New Features

  • The deny-packages option can now be used without a version number to exclude all versions of a package.

What's Changed

New Contributors

Full Changelog: v4.2.5...V4.3.0

4.2.5

26 Mar 07:06
Compare
Choose a tag to compare

What's Changed

  • Fixed a bug where some configuration options in external files were not being properly picked up -- #722
  • Bump eslint from 8.56.0 to 8.57.0

Full Changelog: v4.2.4...v4.2.5

v4.2.4

24 Mar 14:00
Compare
Choose a tag to compare

What's Changed

Fixed a bug in the output of OpenSSF cards for GitHub Actions.

New Contributors

Full Changelog: v4.2.3...v4.2.4