-
Hello ocm community!
In case you missed it, last week was the kickoff for the month-long Cloud Native Security Slam! You can read more about the event and find the kickoff webinar recording [here](…
-
## Description
Hi again, I would like to suggest another security practice recommended by the [OpenSSF Scorecard][scorecard-repo], and the [GitHub itself][github-hashpin], which is to hash pin the …
-
E.g.,
```
[](https://github.com/pyomo/pyomo/graphs/contributors)
[![Merged PRs](https://img.shields.io/github/issue…
-
We are getting error "fetch failed" when targeting the brand new patch v3.1.1:
Ta…
-
See the OpenSSF security test (https://github.com/Ericsson/CodeCompass/issues/659).
```
{
"details": [
"Warn: Project is vulnerable to: GHSA-c59h-r6p8-q9wc",
"Warn: Projec…
-
Hello!
There are changes in your OpenSSF Scorecard report.
Please review the following changes and take action if necessary.
## Summary
There are changes in the following repositories:
| Repos…
-
## Which area/kind this issue is related to?
/area devworkspace
## Issue Description
As part of our effort to maintain best practices we have added all of our repositories to the [C…
-
## Overview of feature request
[OSSF Scorecard](https://github.com/ossf/scorecard/) automatically runs several checks, and enabling it in Radius can help identify security vulnerabilities. Full list …
-
## Which area/kind this issue is related to?
/area registry
## Issue Description
As part of our effort to maintain best practices we have added all of our repositories to the [CLO Monitor](htt…
-
I'd like to propose to evaluate and (selectively) adopt secure software development best practices recommended by the Open Source Security Foundation (OpenSSF) [1]. The OpenSSF Scorecard project check…
gkunz updated
11 months ago