v0.2.5
What's Changed
- Switch to advanced CodeQL config by @jeff-mccoy in #51
- [StepSecurity] Apply security best practices by @step-security-bot in #50
- Bump actions/upload-artifact from 3.1.0 to 3.1.2 by @dependabot in #58
- Bump eslint from 8.3.0 to 8.39.0 by @dependabot in #52
- Bump ossf/scorecard-action from 2.1.2 to 2.1.3 by @dependabot in #57
- Bump actions/dependency-review-action from 2.5.1 to 3.0.4 by @dependabot in #56
New Contributors
- @step-security-bot made their first contribution in #50
Known Issues
- Pepr currently binds the mutating webhook to everything and should instead only bind to what the module uses. #31
- ClusterRoles are currently unrestricted and need to be limited to only what the module uses. #31
Full Changelog: v0.2.4...v0.2.5
Contributors
jeff-mccoy, dependabot, and step-security-bot