v1.6.2

What's Changed

• fix: handle quote delimiter for pin actions -> prod by @shubham-stepsecurity in #2536

Full Changelog: v1.6.1...v1.6.2

v1.6.1

What's Changed

• Cherry pick action updates by @varunsh-coder in #2529
• fix: handle replaceable GitHub Actions with folder path references by @vamshi-stepsecurity in #2534

Full Changelog: v1.6.0...v1.6.1

v1.6.0

What's Changed

• feat: add logging capability to SecureWorkflow by @varunsh-coder in #2517
• Add support for maintained actions by @vamshi-stepsecurity in #2523
• Add addEmptyTopLevelPermissions parameter for workflow permissions by @varunsh-coder in #2524
• Add skipHardenRunnerForContainers option to exclude container jobs fr… by @varunsh-coder in #2525

Full Changelog: v1.5.3...v1.6.0

v1.5.3

What's Changed

• Update: Fix secure-repo parsing & Always pin harden runner by @shubham-stepsecurity in #2514

Full Changelog: v1.5.2...v1.5.3

v1.5.2

What's Changed

• feature/exclude_pin_actions -> main by @shubham-stepsecurity in #2506

Full Changelog: v1.5.1...v1.5.2

v1.5.1

What's Changed

• Update templates main by @varunsh-coder in #2504

Full Changelog: v1.5.0...v1.5.1

v1.5.0

What's Changed

• Immutable actions to main by @sailikhith-stepsecurity in #2498
• Feature/exclude pin actions main -> main by @shubham-stepsecurity in #2502

Full Changelog: v1.4.2...v1.5.0

v1.4.2

What's Changed

• Add additional prms for scorecard template for private repos(int -> main) by @shubham-stepsecurity in #2485

Full Changelog: v1.4.1...v1.4.2

v1.4.1

What's Changed

• Fix 2479 by @shubham-stepsecurity in #2482

Full Changelog: v1.4.0...v1.4.1

v1.4.0

What's Changed

• Add pre commit hooks by @Devils-Knight and @varunsh-coder in #2206

Full Changelog: v1.3.3...v1.4.0