Skip to content

pullrequests Search Results · language:Dune language:JavaScript language:Java language:JavaScript language:HTML language:Ruby

Filter by

174M results  (2 s)

174M results

Galihstyn/upgrade-vector-based
🛡️ Sentinel: [HIGH] Fix path traversal in client navigation

🚨 Severity: HIGH 💡 Vulnerability: Path traversal / Open redirect risk. The handleBackNavigation function took an unsanitized sourceHandle variable (often populated directly from unverified URL parameters ...
  • Galihstyn
  • 1
  • Opened 
    11 seconds ago
  • #222

ruby-ui/ruby_ui
Bump mcp from 0.20.0 to 0.21.0 in /docs

Bumps mcp from 0.20.0 to 0.21.0. details summary Release notes /summary p em Sourced from a href= https://github.com/modelcontextprotocol/ruby-sdk/releases mcp s releases /a . /em /p blockquote h2 v0.21.0 ...
dependencies
ruby
  • dependabot[bot]
  • Opened 
    12 seconds ago
  • #432

aws-aemilia-bom/Github-PR-Commit-Integration-Test-DoNotTouch-GitH-MJCD6L4M-v2-preprod-ap-south-1
Automated test pull request

Automated test pull request
  • aws-aemilia-bom
  • Opened 
    13 seconds ago
  • #27262

HeadyAI/Heady-Staging
chore(deps): bump actions/github-script from 8 to 9

Bumps actions/github-script from 8 to 9. details summary Release notes /summary p em Sourced from a href= https://github.com/actions/github-script/releases actions/github-script s releases /a . /em /p ...
  • dependabot[bot]
  • 1
  • Opened 
    14 seconds ago
  • #50

Lall-091/node
[pull] main from nodejs:main

See Commits and Changes for more details. Created by img src= https://prod.download/pull-18h-svg valign= bottom / pull[bot] (v2.0.0-alpha.4) Can you help keep this open source service alive? 💖 Please ...
⤵️ pull
  • pull[bot]
  • Opened 
    14 seconds ago
  • #1005

YenkoTools/Orange6
deps: bump eslint-plugin-sonarjs from 4.0.3 to 4.1.0 in /Client

Bumps eslint-plugin-sonarjs from 4.0.3 to 4.1.0. details summary Commits /summary ul li See full diff in a href= https://github.com/SonarSource/SonarJS/commits compare view /a /li /ul /details br / ![Dependabot ...
dependencies
javascript
  • dependabot[bot]
  • Opened 
    14 seconds ago
  • #80

danzeroum/waldorf-school-system
build(deps): bump org.projectlombok:lombok from 1.18.30 to 1.18.46 in /backend

Bumps org.projectlombok:lombok from 1.18.30 to 1.18.46. details summary Changelog /summary p em Sourced from a href= https://github.com/projectlombok/lombok/blob/master/doc/changelog.markdown org.projectlombok:lombok ...
dependencies
java
  • dependabot[bot]
  • Opened 
    14 seconds ago
  • #48

HeadyAI/Heady-Staging
chore(deps): bump gitpython from 3.1.41 to 3.1.50 in /apps/ai_workflow_engine

Bumps gitpython from 3.1.41 to 3.1.50. details summary Release notes /summary p em Sourced from a href= https://github.com/gitpython-developers/GitPython/releases gitpython s releases /a . /em /p blockquote ...
  • dependabot[bot]
  • 1
  • Opened 
    16 seconds ago
  • #49

Odysafe/ODYSAFE-CTI
Bump werkzeug from 3.1.6 to 3.1.8 in /scripts

Bumps werkzeug from 3.1.6 to 3.1.8. details summary Release notes /summary p em Sourced from a href= https://github.com/pallets/werkzeug/releases werkzeug s releases /a . /em /p blockquote h2 3.1.8 /h2 ...
dependencies
python
  • dependabot[bot]
  • Opened 
    16 seconds ago
  • #7

kertal/scoutfinder
Merge Load/Refresh into one adaptive PR button with clear + validation

- Combine the separate Load PR and Refresh buttons into a single button that shows Load PR for a new URL and Refresh when the field still points at the PR already on screen. - Add an inline ✕ button ...
  • kertal
  • Opened 
    17 seconds ago
  • #7