Ecosyste.ms: Timeline
Browse the timeline of events for every public repo on GitHub. Data updated hourly from GH Archive.
raghavkaul created a comment on a pull request on ossf/scorecard
We use the Users API to get the Organization, not the Organizations API. As I understand it, it's just the API that's experimental, and Organizations are part of GitLab to stay.
raghavkaul created a review comment on a pull request on ossf/scorecard
Should be in `clients/gitlabrepo/commits.go` since we're dealing with commit email addresses.
raghavkaul created a review on a pull request on ossf/scorecard
Email domains aren't indicative of an organization that a contributor belongs to. Is there any other API feature we can use to get contributor organizations?
raghavkaul created a review on a pull request on ossf/scorecard
Email domains aren't indicative of an organization that a contributor belongs to. Is there any other API feature we can use to get contributor organizations?
raghavkaul created a review on a pull request on ossf/scorecard-action
What is the network egress cost and why does it not apply with GHCR?
raghavkaul created a review on a pull request on ossf/scorecard-action
What is the network egress cost and why does it not apply with GHCR?
raghavkaul pushed 1 commit to main ossf/scorecard
- seedling: Bump mvdan.cc/sh/v3 from 3.9.0 to 3.10.0 (#4388) Bumps [mvdan.cc/sh/v3](https://github.com/mvdan/sh) from ... 2677b74
raghavkaul closed a pull request on ossf/scorecard
seedling: Bump mvdan.cc/sh/v3 from 3.9.0 to 3.10.0
Bumps [mvdan.cc/sh/v3](https://github.com/mvdan/sh) from 3.9.0 to 3.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/mvdan/sh/releases">mvdan.cc/sh/v...
raghavkaul pushed 3 commits to dependabot/go_modules/mvdan.cc/sh/v3-3.10.0 ossf/scorecard
raghavkaul pushed 2 commits to dependabot/go_modules/mvdan.cc/sh/v3-3.10.0 ossf/scorecard
raghavkaul deleted a branch ossf/scorecard
dependabot/go_modules/cloud.google.com/go/bigquery-1.64.0
raghavkaul pushed 1 commit to main ossf/scorecard
- seedling: Bump cloud.google.com/go/bigquery from 1.63.1 to 1.64.0 (#4400) Bumps [cloud.google.com/go/bigquery](https... 02a6536
raghavkaul closed a pull request on ossf/scorecard
seedling: Bump cloud.google.com/go/bigquery from 1.63.1 to 1.64.0
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go) from 1.63.1 to 1.64.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com...
raghavkaul created a review comment on a pull request on ossf/scorecard
```suggestion - If MFA is required by the organization that owns the repo, the probe returns OutcomeTrue - IF MFA is not required by the organization that owns the repo, the probe returns Outco...
raghavkaul created a review comment on a pull request on ossf/scorecard
Could you add these fields to the documentation?
raghavkaul created a review comment on a pull request on ossf/scorecard
Appears this is available on GitLab for group namespaces as well: https://docs.gitlab.com/ee/api/groups.html
raghavkaul created a review comment on a pull request on ossf/scorecard
Could we add e2e tests of this on: 1. repo owned by a user 2. repo owned by an organization
raghavkaul created a review comment on a pull request on ossf/scorecard
Can you add a comment here that we're doing this because it's an indicator of a bad probe outcome?
raghavkaul pushed 1 commit to main raghavkaul/scorecard-monitor
- Enable scorecard-action Signed-off-by: Raghav Kaul <[email protected]> 40142aa
raghavkaul pushed 1 commit to main ossf-tests/scorecard-monitor
- null commit Signed-off-by: Raghav Kaul <[email protected]> 046d475