Skip to content

ci(deps): bump google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml from 2.3.5 to 2.3.8#356

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/github_actions/google/osv-scanner-action/dot-github/workflows/osv-scanner-reusable.yml-2.3.8
May 15, 2026
Merged

ci(deps): bump google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml from 2.3.5 to 2.3.8#356
github-actions[bot] merged 1 commit into
mainfrom
dependabot/github_actions/google/osv-scanner-action/dot-github/workflows/osv-scanner-reusable.yml-2.3.8

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 15, 2026
edited
Loading

Bumps google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml from 2.3.5 to 2.3.8.

Release notes

Sourced from google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml's releases.

v2.3.8

What's Changed

This updates OSV-Scanner to v2.3.8.

Full Changelog: google/osv-scanner-action@v2.3.5...v2.3.8

Commits
  • 9a49870 Update unified workflow example to point to v2.3.8 reusable workflows
  • 3adb4b1 Update reusable workflows to point to v2.3.8 actions
  • 8dc0919 "Update actions to use v2.3.8 osv-scanner image"
  • 43f380b Merge pull request #125 from google/update-to-v2.3.6
  • dcf4ddd Update unified workflow example to point to v2.3.6 reusable workflows
  • b9dbb7e Update reusable workflows to point to v2.3.6 actions
  • fe54858 "Update actions to use v2.3.6 osv-scanner image"
  • eb5b619 Merge pull request #100 from thomasleplus/main
  • 9517144 feat: output results in reusable workflow
  • f17cd09 Merge branch 'main' into main
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels May 15, 2026
@github-actions github-actions Bot added the no-release-notes Skip this pull request in release notes label May 15, 2026
@github-actions github-actions Bot enabled auto-merge (squash) May 15, 2026 12:16
@dependabot
ci(deps): bump google/osv-scanner-action/.github/workflows/osv-scanne…
91385f6 
…r-reusable.yml

Bumps [google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml](https://github.com/google/osv-scanner-action) from 2.3.5 to 2.3.8.
- [Release notes](https://github.com/google/osv-scanner-action/releases)
- [Commits](google/osv-scanner-action@c518547...9a49870)

---
updated-dependencies:
- dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml
  dependency-version: 2.3.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/github_actions/google/osv-scanner-action/dot-github/workflows/osv-scanner-reusable.yml-2.3.8 branch from 9eaef9d to 91385f6 Compare May 15, 2026 12:20
@github-actions github-actions Bot merged commit b3091f6 into main May 15, 2026
49 checks passed
@github-actions github-actions Bot deleted the dependabot/github_actions/google/osv-scanner-action/dot-github/workflows/osv-scanner-reusable.yml-2.3.8 branch May 15, 2026 12:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code no-release-notes Skip this pull request in release notes

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants