Skip to content

chore(deps): bump google/osv-scanner-action from 2.3.5 to 2.3.8 in the actions-minor-and-patch group across 1 directory#140

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-minor-and-patch-dd033dc6ab
Open

chore(deps): bump google/osv-scanner-action from 2.3.5 to 2.3.8 in the actions-minor-and-patch group across 1 directory#140
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/github_actions/actions-minor-and-patch-dd033dc6ab

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 12, 2026
edited
Loading

Bumps the actions-minor-and-patch group with 1 update in the / directory: google/osv-scanner-action.

Updates google/osv-scanner-action from 2.3.5 to 2.3.8

Release notes

Sourced from google/osv-scanner-action's releases.

v2.3.8

What's Changed

This updates OSV-Scanner to v2.3.8.

Full Changelog: google/osv-scanner-action@v2.3.5...v2.3.8

Commits
  • 9a49870 Update unified workflow example to point to v2.3.8 reusable workflows
  • 3adb4b1 Update reusable workflows to point to v2.3.8 actions
  • 8dc0919 "Update actions to use v2.3.8 osv-scanner image"
  • 43f380b Merge pull request #125 from google/update-to-v2.3.6
  • dcf4ddd Update unified workflow example to point to v2.3.6 reusable workflows
  • b9dbb7e Update reusable workflows to point to v2.3.6 actions
  • fe54858 "Update actions to use v2.3.6 osv-scanner image"
  • eb5b619 Merge pull request #100 from thomasleplus/main
  • 9517144 feat: output results in reusable workflow
  • f17cd09 Merge branch 'main' into main
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 12, 2026
@dependabot dependabot Bot requested a review from aamir306 as a code owner May 12, 2026 23:47
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels May 12, 2026
@dependabot
chore(deps): bump google/osv-scanner-action
7930a6e 
Bumps the actions-minor-and-patch group with 1 update in the / directory: [google/osv-scanner-action](https://github.com/google/osv-scanner-action).


Updates `google/osv-scanner-action` from 2.3.5 to 2.3.8
- [Release notes](https://github.com/google/osv-scanner-action/releases)
- [Commits](google/osv-scanner-action@v2.3.5...v2.3.8)

---
updated-dependencies:
- dependency-name: google/osv-scanner-action
  dependency-version: 2.3.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions-minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump google/osv-scanner-action from 2.3.5 to 2.3.8 in the actions-minor-and-patch group chore(deps): bump google/osv-scanner-action from 2.3.5 to 2.3.8 in the actions-minor-and-patch group across 1 directory May 20, 2026
@dependabot dependabot Bot force-pushed the dependabot/github_actions/actions-minor-and-patch-dd033dc6ab branch from 62ad14a to 7930a6e Compare May 20, 2026 03:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aamir306 aamir306 Awaiting requested review from aamir306 aamir306 is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants