-
Hi, I'm Harshita. I’m working with [CNCF and the Google Open Source Security Team for the GSoC 2024 term](https://github.com/cncf/mentoring/issues/1196). We are collaborating to enhance security pract…
-
As described in #109, the Scorecard Action already works experimentally on PRs. However, upgrading this to official support would significantly improve the Action's value proposition (see #1017), by t…
-
@yashlamba @sakshamarora1 and I talked about this last night in relation to @builtree
- https://patterns.innersourcecommons.org/
- https://intel.github.io/dffml/main/examples/innersource/index.htm…
-
### Is your feature request related to a problem? Please describe.
Hi, I'm Harshita. I’m working with [CNCF and the Google Open Source Security Team for the GSoC 2024 term](https://github.com/cncf/…
-
After bumping to [v1.12.0](https://github.com/pypa/gh-action-pypi-publish/discussions/287) publishing to TestPyPI is failing:
```log
Unable to find image 'ghcr.io/pypa/gh-action-pypi-publish:61da1…
-
### What would you like to be added?
Hi, I'm Harshita. I’m working with [CNCF and the Google Open Source Security Team for the GSoC 2024 term](https://github.com/cncf/mentoring/issues/1196). We are…
-
From @ljharb in https://openssf.slack.com/archives/C0235AR8N2C/p1649348249786279:
> hi! i have some concerns about some of the metrics used in the scorecard. for example:
> - "binary-artifacts" li…
-
**Is your feature request related to a problem? Please describe.**
We should [Detect if SBOMs generated](https://github.com/ossf/scorecard/issues/1476) (by @david-a-wheeler), and then we can scan the…
-
Hello!
There are changes in your OpenSSF Scorecard report.
Please review the following changes and take action if necessary.
## Summary
There are changes in the following repositories:
| Repos…
-
Hello!
There are changes in your OpenSSF Scorecard report.
Please review the following changes and take action if necessary.
## Summary
There are changes in the following repositories:
| Repos…