v4.4

Images:

• ghcr.io/ossf/allstar:v4.4
• ghcr.io/ossf/allstar:v4.4-busybox

What's Changed

• build(deps): bump the go_modules group with 2 updates by @dependabot in #624
• build(deps): bump github.com/bradleyfalzon/ghinstallation/v2 from 2.12.0 to 2.13.0 by @dependabot in #621
• build(deps): bump github.com/rhysd/actionlint from 1.7.4 to 1.7.7 by @dependabot in #630
• build(deps): bump github/codeql-action from 3.27.9 to 3.28.5 by @dependabot in #635
• build(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by @dependabot in #631
• build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 by @dependabot in #629
• build(deps): bump ko-build/setup-ko from 0.7 to 0.8 by @dependabot in #628
• build(deps): bump actions/upload-artifact from 4.5.0 to 4.6.0 by @dependabot in #625
• build(deps): bump github.com/evanphx/json-patch/v5 from 5.9.0 to 5.9.11 by @dependabot in #638
• build(deps): bump github/codeql-action from 3.28.5 to 3.28.8 by @dependabot in #639
• build(deps): bump golang.org/x/sync from 0.10.0 to 0.11.0 by @dependabot in #640
• build(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0 by @dependabot in #642
• build(deps): bump golangci/golangci-lint-action from 6.2.0 to 6.3.0 by @dependabot in #641
• build(deps): bump golangci/golangci-lint-action from 6.3.0 to 6.5.0 by @dependabot in #650
• build(deps): bump github/codeql-action from 3.28.8 to 3.28.9 by @dependabot in #643
• build(deps): bump github.com/ossf/scorecard/v5 from 5.0.0 to 5.1.1 by @dependabot in #651
• Update workflow policy to scan all branches for dangerous workflows #569 by @serb-google in #622
• Add auth workflow to clone private repos by @serb-google in #660
• build(deps): bump sigstore/cosign-installer from 3.8.0 to 3.8.1 by @dependabot in #652
• build(deps): bump ossf/scorecard-action from 2.4.0 to 2.4.1 by @dependabot in #653
• build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 by @dependabot in #654
• build(deps): bump github/codeql-action from 3.28.9 to 3.28.11 by @dependabot in #661
• build(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by @dependabot in #663
• build(deps): bump github/codeql-action from 3.28.11 to 3.28.13 by @dependabot in #670
• Looping container image signing by @blockmar in #618
• dependabot: Enable grouped updates and set update interval to weekly by @justaugustus in #671
• build(deps): bump the github-owned group with 2 updates by @dependabot in #672
• build(deps): bump the gomod group with 3 updates by @dependabot in #673
• build(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in the go_modules group by @dependabot in #662
• build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 in the go_modules group by @dependabot in #675
• build(deps): bump golang.org/x/sync from 0.11.0 to 0.12.0 by @dependabot in #658
• build(deps): bump github.com/go-git/go-git/v5 from 5.13.2 to 5.14.0 in the gomod group by @dependabot in #674
• build(deps): bump the github-owned group with 2 updates by @dependabot in #678
• build(deps): bump github/codeql-action from 3.28.14 to 3.28.15 in the github-owned group by @dependabot in #681
• build(deps): bump golang.org/x/sync from 0.12.0 to 0.13.0 in the golang-x group by @dependabot in #679
• build(deps): bump golang.org/x/net from 0.36.0 to 0.38.0 in the go_modules group by @dependabot in #683
• build(deps): bump github/codeql-action from 3.28.15 to 3.28.16 in the github-owned group by @dependabot in #686
• Add config option to specify branches for dangerous workflow by @serb-google in #677
• build(deps): bump the gomod group across 1 directory with 3 updates by @dependabot in #685
• Update Go to 1.24 by @jeffmendoza in #688
• build(deps): bump the github-owned group across 1 directory with 3 updates by @dependabot in #691
• build(deps): bump golang.org/x/sync from 0.13.0 to 0.14.0 in the golang-x group by @dependabot in #689
• build(deps): bump the github-actions group across 1 directory with 3 updates by @dependabot in #687
• Bump workflow runner on release workflow by @jeffmendoza in #693

New Contributors

• @serb-google made their first contribution in #622

Full Changelog: v4.3...v4.4