-
Write a [fuzz test](https://go.dev/doc/security/fuzz/) for one of the validator types. You can see an example [here](https://github.com/Boeing/config-file-validator/pull/153/files) that I previously w…
-
### Motivation
Scorecard are a universal way to "grade" a project, using multiple metrics like security, quality, frequency of updates... Providing this score and being able to to monitor its evolu…
-
### Description
Using this code:
https://github.com/mattleibow/scorecard-day-nft-marketplace/tree/issues/xamlc-null-key
And this command:
```
* Executing task: dotnet build -t:Run -p:Conf…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Project is out of compliance with OpenSSF Scorecard policy.
**Rule Description**
…
-
Make tests give points based on channel failures etc.
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Project is out of compliance with Binary Artifacts policy: binaries present in sou…
-
### Proposed change
Hi, I'm Harshita. I’m working with [CNCF and the Google Open Source Security Team for the GSoC 2024 term](https://github.com/cncf/mentoring/issues/1196). We are collaborating to e…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Project is out of compliance with Binary Artifacts policy: binaries present in sou…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Project is out of compliance with Binary Artifacts policy: binaries present in sou…
-
**Is your feature request related to a problem? Please describe.**
Without having to build my own app (as per docs):
Id like to setup openssf scorecards for the entire cloudposse org. To do this, …