Release v1.11.0 by yec-akamai · Pull Request #430 · linode/packer-plugin-linode

yec-akamai · 2026-04-29T20:57:24Z

No description provided.

… go_modules group across 1 directory (#415) * build(deps): bump google.golang.org/grpc Bumps the go_modules group with 1 update in the / directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go). Updates `google.golang.org/grpc` from 1.59.0 to 1.79.3 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.59.0...v1.79.3) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com> * Fix failures --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: ezilber-akamai <ezilber@akamai.com>

* TPT-4318: Add @linode/dx-sdets to CODEOWNERS * Correct CODEOWNERS

Bumps [github.com/hashicorp/packer-plugin-sdk](https://github.com/hashicorp/packer-plugin-sdk) from 0.6.5 to 0.6.7. - [Release notes](https://github.com/hashicorp/packer-plugin-sdk/releases) - [Changelog](https://github.com/hashicorp/packer-plugin-sdk/blob/main/CHANGELOG.md) - [Commits](hashicorp/packer-plugin-sdk@v0.6.5...v0.6.7) --- updated-dependencies: - dependency-name: github.com/hashicorp/packer-plugin-sdk dependency-version: 0.6.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

@zliang-akamai

* build(deps): bump slackapi/slack-github-action from 2.1.1 to 3.0.1 Bumps [slackapi/slack-github-action](https://github.com/slackapi/slack-github-action) from 2.1.1 to 3.0.1. - [Release notes](https://github.com/slackapi/slack-github-action/releases) - [Commits](slackapi/slack-github-action@v2.1.1...v3.0.1) --- updated-dependencies: - dependency-name: slackapi/slack-github-action dependency-version: 3.0.1 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * Apply suggestion from @zliang-akamai --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Zhiwei Liang <121905282+zliang-akamai@users.noreply.github.com>

… workflow (#420) * Added PR title checking workflow and clean up release notes * Bumped actions/github-script from v7 to v8

) * build(deps): bump github.com/linode/linodego from 1.66.0 to 1.67.0 Bumps [github.com/linode/linodego](https://github.com/linode/linodego) from 1.66.0 to 1.67.0. - [Release notes](https://github.com/linode/linodego/releases) - [Commits](linode/linodego@v1.66.0...v1.67.0) --- updated-dependencies: - dependency-name: github.com/linode/linodego dependency-version: 1.67.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Fixed issues caused by breaking change in linodego v1.67.0 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Erik Zilber <ezilber@akamai.com>

…418) * fix: change swap_size to pointer type and update related logic * Apply suggestion from @Copilot Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Add IncompatibleSwapSizeZero test case * Apply suggestion from @Copilot Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * make generate --------- Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

Bumps the go_modules group with 1 update in the / directory: [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose). Updates `github.com/go-jose/go-jose/v4` from 4.1.3 to 4.1.4 - [Release notes](https://github.com/go-jose/go-jose/releases) - [Commits](go-jose/go-jose@v4.1.3...v4.1.4) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v4 dependency-version: 4.1.4 dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [actions/github-script](https://github.com/actions/github-script) from 8 to 9. - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@v8...v9) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: '9' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

) Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 7.0.0 to 7.2.1. - [Release notes](https://github.com/goreleaser/goreleaser-action/releases) - [Commits](goreleaser/goreleaser-action@ec59f47...1a80836) --- updated-dependencies: - dependency-name: goreleaser/goreleaser-action dependency-version: 7.2.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* fix: change swap_size to pointer type and update related logic * Apply suggestion from @Copilot Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * Add IncompatibleSwapSizeZero test case * Apply suggestion from @Copilot Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> * make generate * Add IPv6 support for VPC interfaces in Linode builder --------- Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

) Bumps [github.com/linode/linodego](https://github.com/linode/linodego) from 1.67.0 to 1.68.0. - [Release notes](https://github.com/linode/linodego/releases) - [Commits](linode/linodego@v1.67.0...v1.68.0) --- updated-dependencies: - dependency-name: github.com/linode/linodego dependency-version: 1.68.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

github-actions · 2026-04-29T20:57:41Z

Dependency Review

The following issues were found:

❌ 2 vulnerable package(s)
✅ 0 package(s) with incompatible licenses
✅ 0 package(s) with invalid SPDX license definitions
⚠️ 12 package(s) with unknown licenses.
⚠️ 1 packages with OpenSSF Scorecard issues.

See the Details below.

Vulnerabilities

go.mod

Name	Version	Vulnerability	Severity
go.opentelemetry.io/otel	1.40.0	OpenTelemetry-Go: multi-value `baggage` header extraction causes excessive allocations (remote dos amplification)	high
go.opentelemetry.io/otel/sdk	1.40.0	opentelemetry-go: BSD kenv command not using absolute path enables PATH hijacking	high

License Issues

.github/workflows/validate-pr-title.yml

Package	Version	License	Issue Type
amannn/action-semantic-pull-request	6..	Null	Unknown License

go.mod

Package	Version	License	Issue Type
github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp	1.30.0	Null	Unknown License
github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric	0.55.0	Null	Unknown License
github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping	0.55.0	Null	Unknown License
github.com/cespare/xxhash/v2	2.3.0	Null	Unknown License
github.com/envoyproxy/protoc-gen-validate	1.3.0	Null	Unknown License
github.com/felixge/httpsnoop	1.0.4	Null	Unknown License
github.com/go-jose/go-jose/v4	4.1.4	Null	Unknown License
github.com/go-logr/logr	1.4.3	Null	Unknown License
github.com/google/uuid	1.6.0	Null	Unknown License
github.com/googleapis/enterprise-certificate-proxy	0.3.14	Null	Unknown License
github.com/linode/linodego	1.68.0	Null	Unknown License

OpenSSF Scorecard

Scorecard details

Package

Version

Score

Details

actions/amannn/action-semantic-pull-request

6.*.*

🟢 3.6

Details

Check	Score	Reason
Code-Review	🟢 3	Found 9/23 approved changesets -- score normalized to 3
Maintained	⚠️ 0	1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 5	detected GitHub workflow tokens with excessive permissions
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Security-Policy	⚠️ 0	security policy file not detected
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/go.opentelemetry.io/otel

1.40.0

🟢 9.3

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 9	SAST tool detected but not run on all commits
License	🟢 10	license file detected
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	🟢 10	security policy file detected
Fuzzing	🟢 10	project is fuzzed
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 43 contributing companies or organizations

gomod/go.opentelemetry.io/otel/sdk

1.40.0

🟢 9.3

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 9	SAST tool detected but not run on all commits
License	🟢 10	license file detected
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	🟢 10	security policy file detected
Fuzzing	🟢 10	project is fuzzed
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 43 contributing companies or organizations

gomod/cel.dev/expr

0.25.1

🟢 5

Details

Check	Score	Reason
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Code-Review	🟢 9	Found 29/30 approved changesets -- score normalized to 9
Maintained	⚠️ 1	2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
Security-Policy	🟢 10	security policy file detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/cloud.google.com/go

0.123.0

Unknown

gomod/cloud.google.com/go/auth

0.18.2

🟢 8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 27/29 approved changesets -- score normalized to 9
Maintained	🟢 10	30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 10	security policy file detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	🟢 10	project is fuzzed
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 1	dependency not pinned by hash detected -- score normalized to 1

gomod/cloud.google.com/go/auth/oauth2adapt

0.2.8

🟢 8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 27/29 approved changesets -- score normalized to 9
Maintained	🟢 10	30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 10	security policy file detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	🟢 10	project is fuzzed
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 1	dependency not pinned by hash detected -- score normalized to 1

gomod/cloud.google.com/go/compute/metadata

0.9.0

🟢 8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 27/29 approved changesets -- score normalized to 9
Maintained	🟢 10	30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 10	security policy file detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	🟢 10	project is fuzzed
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 1	dependency not pinned by hash detected -- score normalized to 1

gomod/cloud.google.com/go/iam

1.5.3

🟢 8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 27/29 approved changesets -- score normalized to 9
Maintained	🟢 10	30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 10	security policy file detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	🟢 10	project is fuzzed
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 1	dependency not pinned by hash detected -- score normalized to 1

gomod/cloud.google.com/go/monitoring

1.24.3

🟢 8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 27/29 approved changesets -- score normalized to 9
Maintained	🟢 10	30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 10	security policy file detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	🟢 10	project is fuzzed
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 1	dependency not pinned by hash detected -- score normalized to 1

gomod/cloud.google.com/go/storage

1.61.3

🟢 8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 27/29 approved changesets -- score normalized to 9
Maintained	🟢 10	30 commit(s) and 4 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 10	security policy file detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	🟢 10	project is fuzzed
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 1	dependency not pinned by hash detected -- score normalized to 1

gomod/github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp

1.30.0

Unknown

gomod/github.com/GoogleCloudPlatform/opentelemetry-operations-go/exporter/metric

0.55.0

Unknown

gomod/github.com/GoogleCloudPlatform/opentelemetry-operations-go/internal/resourcemapping

0.55.0

Unknown

gomod/github.com/cespare/xxhash/v2

2.3.0

Unknown

gomod/github.com/cncf/xds/go

0.0.0-20251210132809-ee656c7534f5

🟢 3.2

Details

Check	Score	Reason
Code-Review	🟢 4	Found 14/30 approved changesets -- score normalized to 4
Token-Permissions	⚠️ -1	No tokens found
Maintained	⚠️ 0	1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Dangerous-Workflow	⚠️ -1	no workflows found
Packaging	⚠️ -1	packaging workflow not detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Pinned-Dependencies	⚠️ -1	no dependencies found
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 9	binaries present in source code
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Security-Policy	⚠️ 0	security policy file not detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/github.com/envoyproxy/go-control-plane/envoy

1.36.0

🟢 7.3

Details

Check	Score	Reason
Code-Review	⚠️ 0	Found 0/24 approved changesets -- score normalized to 0
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Dependency-Update-Tool	🟢 10	update tool detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	🟢 4	branch protection is not maximal on development and all release branches
Security-Policy	⚠️ 0	security policy file not detected
Vulnerabilities	🟢 9	1 existing vulnerabilities detected
CI-Tests	🟢 10	6 out of 6 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 18 contributing companies or organizations

gomod/github.com/envoyproxy/protoc-gen-validate

1.3.0

Unknown

gomod/github.com/felixge/httpsnoop

1.0.4

Unknown

gomod/github.com/go-jose/go-jose/v4

4.1.4

Unknown

gomod/github.com/go-logr/logr

1.4.3

Unknown

gomod/github.com/go-logr/stdr

1.2.2

⚠️ 2.8

Details

Check	Score	Reason
Code-Review	⚠️ 0	Found 0/30 approved changesets -- score normalized to 0
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
SAST	⚠️ 0	no SAST tool detected
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Security-Policy	⚠️ 0	security policy file not detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches

gomod/github.com/google/s2a-go

0.1.9

🟢 3.3

Details

Check	Score	Reason
Code-Review	⚠️ 1	Found 3/28 approved changesets -- score normalized to 1
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ -1	no workflows found
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Token-Permissions	⚠️ -1	No tokens found
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
Security-Policy	🟢 10	security policy file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/github.com/google/uuid

1.6.0

Unknown

gomod/github.com/googleapis/enterprise-certificate-proxy

0.3.14

Unknown

gomod/github.com/googleapis/gax-go/v2

2.18.0

🟢 6.9

Details

Check	Score	Reason
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ -1	no workflows found
Token-Permissions	⚠️ -1	No tokens found
Code-Review	🟢 8	Found 24/29 approved changesets -- score normalized to 8
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Security-Policy	🟢 10	security policy file detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ -1	no dependencies found
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 2	SAST tool is not run on all commits -- score normalized to 2

gomod/github.com/hashicorp/packer-plugin-sdk

0.6.7

🟢 6.5

Details

Check	Score	Reason
Code-Review	🟢 5	Found 9/18 approved changesets -- score normalized to 5
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Maintained	🟢 10	14 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 10	all dependencies are pinned
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Packaging	🟢 10	packaging workflow detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 6	branch protection is not maximal on development and all release branches
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/github.com/linode/linodego

1.68.0

Unknown

gomod/github.com/planetscale/vtprotobuf

0.6.1-0.20240319094008-0393e58bdf10

🟢 3.8

Details

Check	Score	Reason
Code-Review	🟢 9	Found 10/11 approved changesets -- score normalized to 9
Maintained	⚠️ 0	0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies	⚠️ 2	dependency not pinned by hash detected -- score normalized to 2
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Security-Policy	⚠️ 0	security policy file not detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ 0	branch protection not enabled on development/release branches
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/github.com/spiffe/go-spiffe/v2

2.6.0

🟢 4.3

Details

Check	Score	Reason
Packaging	⚠️ -1	packaging workflow not detected
Maintained	⚠️ 2	2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2
Code-Review	🟢 7	Found 9/12 approved changesets -- score normalized to 7
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Pinned-Dependencies	⚠️ 2	dependency not pinned by hash detected -- score normalized to 2
Security-Policy	⚠️ 0	security policy file not detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

gomod/go.opentelemetry.io/auto/sdk

1.2.1

🟢 7.3

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 3	Found 1/3 approved changesets -- score normalized to 3
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Packaging	🟢 10	packaging workflow detected
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Vulnerabilities	🟢 4	6 existing vulnerabilities detected
Security-Policy	🟢 10	security policy file detected
CI-Tests	🟢 10	28 out of 28 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 16 contributing companies or organizations

gomod/go.opentelemetry.io/contrib/detectors/gcp

1.39.0

🟢 8.8

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Maintained	🟢 10	30 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	🟢 8	4 out of the last 4 releases have a total of 4 signed artifacts.
Fuzzing	🟢 10	project is fuzzed
License	🟢 10	license file detected
Branch-Protection	🟢 4	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Pinned-Dependencies	🟢 4	dependency not pinned by hash detected -- score normalized to 4
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 40 contributing companies or organizations

gomod/go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc

0.63.0

🟢 8.8

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Maintained	🟢 10	30 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	🟢 8	4 out of the last 4 releases have a total of 4 signed artifacts.
Fuzzing	🟢 10	project is fuzzed
License	🟢 10	license file detected
Branch-Protection	🟢 4	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Pinned-Dependencies	🟢 4	dependency not pinned by hash detected -- score normalized to 4
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 40 contributing companies or organizations

gomod/go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

0.61.0

🟢 8.8

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Maintained	🟢 10	30 commit(s) and 18 issue activity found in the last 90 days -- score normalized to 10
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	🟢 8	4 out of the last 4 releases have a total of 4 signed artifacts.
Fuzzing	🟢 10	project is fuzzed
License	🟢 10	license file detected
Branch-Protection	🟢 4	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Pinned-Dependencies	🟢 4	dependency not pinned by hash detected -- score normalized to 4
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 40 contributing companies or organizations

gomod/go.opentelemetry.io/otel/metric

1.40.0

🟢 9.3

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 9	SAST tool detected but not run on all commits
License	🟢 10	license file detected
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	🟢 10	security policy file detected
Fuzzing	🟢 10	project is fuzzed
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 43 contributing companies or organizations

gomod/go.opentelemetry.io/otel/sdk/metric

1.40.0

🟢 9.3

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 9	SAST tool detected but not run on all commits
License	🟢 10	license file detected
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	🟢 10	security policy file detected
Fuzzing	🟢 10	project is fuzzed
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 43 contributing companies or organizations

gomod/go.opentelemetry.io/otel/trace

1.40.0

🟢 9.3

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 13 issue activity found in the last 90 days -- score normalized to 10
Dependency-Update-Tool	🟢 10	update tool detected
Code-Review	🟢 10	all changesets reviewed
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 9	SAST tool detected but not run on all commits
License	🟢 10	license file detected
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Security-Policy	🟢 10	security policy file detected
Fuzzing	🟢 10	project is fuzzed
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 43 contributing companies or organizations

gomod/golang.org/x/crypto

0.50.0

Unknown

gomod/golang.org/x/mod

0.34.0

Unknown

gomod/golang.org/x/net

0.53.0

Unknown

gomod/golang.org/x/sync

0.20.0

Unknown

gomod/golang.org/x/sys

0.43.0

Unknown

gomod/golang.org/x/term

0.42.0

Unknown

gomod/golang.org/x/text

0.36.0

Unknown

gomod/golang.org/x/time

0.15.0

Unknown

gomod/golang.org/x/tools

0.43.0

Unknown

gomod/google.golang.org/api

0.272.0

🟢 6.9

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 9	Found 21/23 approved changesets -- score normalized to 9
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ -1	No tokens found
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Dangerous-Workflow	⚠️ -1	no workflows found
Security-Policy	🟢 10	security policy file detected
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ -1	no dependencies found

gomod/google.golang.org/genproto

0.0.0-20260217215200-42d3e9bedb6d

🟢 6.5

Details

Check	Score	Reason
Code-Review	🟢 9	Found 22/24 approved changesets -- score normalized to 9
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Maintained	🟢 10	30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	🟢 4	SAST tool is not run on all commits -- score normalized to 4

gomod/google.golang.org/genproto/googleapis/api

0.0.0-20260217215200-42d3e9bedb6d

🟢 6.5

Details

Check	Score	Reason
Code-Review	🟢 9	Found 22/24 approved changesets -- score normalized to 9
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Maintained	🟢 10	30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	🟢 4	SAST tool is not run on all commits -- score normalized to 4

gomod/google.golang.org/genproto/googleapis/rpc

0.0.0-20260311181403-84a4fc48630c

🟢 6.5

Details

Check	Score	Reason
Code-Review	🟢 9	Found 22/24 approved changesets -- score normalized to 9
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Maintained	🟢 10	30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Signed-Releases	⚠️ -1	no releases found
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	🟢 4	SAST tool is not run on all commits -- score normalized to 4

gomod/google.golang.org/grpc

1.79.3

🟢 8.5

Details

Check	Score	Reason
Packaging	⚠️ -1	packaging workflow not detected
Security-Policy	🟢 9	security policy file detected
Code-Review	🟢 10	all changesets reviewed
Maintained	🟢 10	30 commit(s) and 7 issue activity found in the last 90 days -- score normalized to 10
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Binary-Artifacts	🟢 10	no binaries found in the repo
Fuzzing	🟢 10	project is fuzzed
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
Signed-Releases	⚠️ -1	no releases found
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	🟢 7	SAST tool detected but not run on all commits

gomod/google.golang.org/protobuf

1.36.11

Unknown

Scanned Files

.github/workflows/validate-pr-title.yml
go.mod

…tes (#429) Bumps the go_modules group with 3 updates in the / directory: [github.com/Azure/go-ntlmssp](https://github.com/Azure/go-ntlmssp), [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) and [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go). Updates `github.com/Azure/go-ntlmssp` from 0.0.0-20221128193559-754e69321358 to 0.1.1 - [Release notes](https://github.com/Azure/go-ntlmssp/releases) - [Commits](https://github.com/Azure/go-ntlmssp/commits/v0.1.1) Updates `go.opentelemetry.io/otel` from 1.40.0 to 1.41.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.41.0) Updates `go.opentelemetry.io/otel/sdk` from 1.40.0 to 1.43.0 - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](open-telemetry/opentelemetry-go@v1.40.0...v1.43.0) --- updated-dependencies: - dependency-name: github.com/Azure/go-ntlmssp dependency-version: 0.1.1 dependency-type: indirect - dependency-name: go.opentelemetry.io/otel dependency-version: 1.41.0 dependency-type: indirect - dependency-name: go.opentelemetry.io/otel/sdk dependency-version: 1.43.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

dependabot Bot and others added 12 commits March 23, 2026 12:02

TPT-4318: Add @linode/dx-sdets to CODEOWNERS (#416)

0ca46f1

* TPT-4318: Add @linode/dx-sdets to CODEOWNERS * Correct CODEOWNERS

TPT-4298: Added PR title checking workflow and clean up release notes…

f66f367

… workflow (#420) * Added PR title checking workflow and clean up release notes * Bumped actions/github-script from v7 to v8

yec-akamai requested a review from a team as a code owner April 29, 2026 20:57

yec-akamai requested review from dawiddzhafarov and removed request for a team April 29, 2026 20:57

yec-akamai added the ignore-for-release PRs you do not want to render in the changelog label Apr 29, 2026

yec-akamai requested review from a team, dawiddzhafarov and ezilber-akamai and removed request for a team and dawiddzhafarov April 30, 2026 13:45

ezilber-akamai approved these changes Apr 30, 2026

View reviewed changes

lgarber-akamai approved these changes Apr 30, 2026

View reviewed changes

yec-akamai merged commit 9a2e659 into main Apr 30, 2026
24 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Release v1.11.0#430

Release v1.11.0#430
yec-akamai merged 13 commits into
mainfrom
dev

yec-akamai commented Apr 29, 2026

Uh oh!

github-actions Bot commented Apr 29, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Conversation

yec-akamai commented Apr 29, 2026

Uh oh!

github-actions Bot commented Apr 29, 2026

Dependency Review

Vulnerabilities

go.mod

License Issues

.github/workflows/validate-pr-title.yml

go.mod

OpenSSF Scorecard

Scanned Files

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants