yq/.github/workflows
dependabot[bot] 7e1198b65c
Bump ossf/scorecard-action from 2.4.1 to 2.4.3
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.4.1 to 2.4.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](f49aabe0b5...4eaacf0543)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-version: 2.4.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-04-16 03:52:32 +00:00
..
codeql.yml fix: restrict GitHub Actions workflow token permissions (OSSF least-privilege) (#2662) 2026-04-13 19:11:10 +10:00
docker-release.yml fix: restrict GitHub Actions workflow token permissions (OSSF least-privilege) (#2662) 2026-04-13 19:11:10 +10:00
go.yml chore: pin GitHub Actions and Docker base images to full-length hashes (OSSF scorecard) (#2658) 2026-04-12 19:31:32 +10:00
release.yml fix: restrict GitHub Actions workflow token permissions (OSSF least-privilege) (#2662) 2026-04-13 19:11:10 +10:00
scorecard.yml Bump ossf/scorecard-action from 2.4.1 to 2.4.3 2026-04-16 03:52:32 +00:00
snap-release.yml fix: restrict GitHub Actions workflow token permissions (OSSF least-privilege) (#2662) 2026-04-13 19:11:10 +10:00
test-yq.yml chore: pin GitHub Actions and Docker base images to full-length hashes (OSSF scorecard) (#2658) 2026-04-12 19:31:32 +10:00