woodruffw
Follow
Pinned
3,047 contributions in the last year
Activity overview
Contributed to
sigstore/sigstore-python,
pypa/pip-audit,
woodruffw/dotfiles
and 157 other
repositories
Contribution activity
February 2023
Created 65 commits in 20 repositories
Created a pull request in RustCrypto/formats that received 2 comments
x509-cert: std feature implies const-oid/std
Just a small thing, noticed while trying to use the Error trait through a re-export here.
+1
−1
•
2
comments
Opened 15 other pull requests in 8 repositories
trailofbits/windows-ctl
3
merged
sigstore/gh-action-sigstore-python
3
merged
Homebrew/brew-pip-audit
3
merged
trailofbits/blight
2
merged
pypi/warehouse
1
open
pypa/gh-action-pip-audit
1
merged
trailofbits/uthenticode
1
merged
pypa/pip-audit
1
merged
Reviewed 50 pull requests in 16 repositories
sigstore/sigstore-python
14 pull requests
- build(deps-dev): update ruff requirement from <0.0.247 to <0.0.248
- build(deps): bump typing-extensions from 4.4.0 to 4.5.0 in /install
- build(deps): bump pydantic from 1.10.4 to 1.10.5 in /install
- NewTypes for clearer encoding types
- build(deps-dev): update ruff requirement from <0.0.245 to <0.0.247
- build(deps): bump github/codeql-action from 2.2.3 to 2.2.4
- build(deps): bump github/codeql-action from 2.2.2 to 2.2.3
- build(deps): bump cryptography from 39.0.0 to 39.0.1 in /install
- build(deps): bump github/codeql-action from 2.2.1 to 2.2.2
- build(deps-dev): update ruff requirement from <0.0.242 to <0.0.244
- build(deps-dev): update ruff requirement from <0.0.241 to <0.0.242
- build(deps-dev): update ruff requirement from <0.0.240 to <0.0.241
- build(deps-dev): update ruff requirement from <0.0.239 to <0.0.240
- build(deps): bump actions/deploy-pages from 1.2.3 to 1.2.4
pypa/pip-audit
12 pull requests
- build(deps-dev): update ruff requirement from <0.0.247 to <0.0.248
- build(deps): bump sigstore/gh-action-sigstore-python from 1.1.0 to 1.2.1
-
treewide: Use
pip installfor dependency resolution - build(deps): bump github/codeql-action from 2.2.3 to 2.2.4
- build(deps-dev): update ruff requirement from <0.0.245 to <0.0.247
- build(deps-dev): update ruff requirement from <0.0.242 to <0.0.245
- build(deps): bump github/codeql-action from 2.2.2 to 2.2.3
- build(deps): bump github/codeql-action from 2.2.1 to 2.2.2
- build(deps-dev): update ruff requirement from <0.0.240 to <0.0.242
- build(deps-dev): update ruff requirement from <0.0.239 to <0.0.240
- build(deps): bump sigstore/gh-action-sigstore-python from 1.0.0 to 1.1.0
- build(deps): bump actions/deploy-pages from 1.2.3 to 1.2.4
Homebrew/brew-pip-audit
7 pull requests
- Limit the number of PRs we send per run
- formula2requirements: blow away old requirements
- Sort formula processing in scripts
- [formula2requirements] clean up when a formula removes all requirements
- auto-pr: automatically run after we finish auditing
- Ignore another wheel-specific GHSA
- workflows/auto-pr: be more forceful
Homebrew/homebrew-core
3 pull requests
trailofbits/.github
2 pull requests
sigstore/gh-action-sigstore-python
2 pull requests
pypi/warehouse
1 pull request
trailofbits/manticore
1 pull request
woodruffw/abi3info
1 pull request
pypa/gh-action-pip-audit
1 pull request
trailofbits/onesixtyone
1 pull request
woodruffw/ff2mpv
1 pull request
sigstore/fulcio
1 pull request
sigstore/protobuf-specs
1 pull request
sigstore/root-signing
1 pull request
Homebrew/brew.sh
1 pull request
Created an issue in pypa/pip-audit that received 9 comments
Rethink how we handle hashes
This is a breakout from #433, which we attempted to fix in #462.
The problem boils down to this:
When a user passes --require-hashes or a requirem…
9
comments
Opened 15 other issues in 9 repositories
sigstore/gh-action-sigstore-python
3
open
2
closed
woodruffw/abi3info
1
open
1
closed
trailofbits/blight
1
open
1
closed
mitmproxy/pdoc
1
open
cheshirekow/cmake_format
1
open
Homebrew/brew-pip-audit
1
open
pypi/warehouse
1
open
sigstore/protobuf-specs
1
open
Homebrew/brew
1
open
12
contributions
in private repositories
Feb 1 – Feb 12