-
**Describe the bug**
[The _Public Data_ section of the README](https://github.com/ossf/scorecard/blob/main/README.md#public-data) starts with:
> We run a weekly Scorecard scan of the 1 million mos…
-
With the recent adoption of the Scorecard project charter, we as @ossf/scorecard-maintainers / Steering Committee have a few administrative tasks that need to be completed.
Each heading here will b…
-
**Context:**
We are addressing the need to upgrade from `deps.dev/api/v3` to `deps.dev/api/v3alpha` to implement batch querying, which will significantly speed up our runtime as highlighted in https:…
-
### Description
Supply chain security and dependencies are becoming a thing so it would be good to improve our scorecard for on deps.dev since gVisor is a security related project.
### Is this featu…
-
Fill out openssf scorecard best practices form
Add badge to main page (like is shown at https://github.com/ebpf-for-windows)
Also there are score github actions: https://github.com/ossf/scorecard wh…
-
## Description
This project is a collaborative effort between the CNCF and Google's Open Source Security Team to improve security practices across various CNCF projects. The focus is identifying an…
-
**What would you like to be added**:
[CLOMonitor](https://clomonitor.io/) is a tool that periodically checks open source projects repositories to verify they meet certain project health best prac…
-
"The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects."
…
pjbgf updated
2 years ago
-
I'd like to propose to evaluate and (selectively) adopt secure software development best practices recommended by the Open Source Security Foundation (OpenSSF) [1]. The OpenSSF Scorecard project check…
gkunz updated
4 months ago
-
Check out docs: https://clomonitor.io/docs/topics/checks/#openssf-scorecard-badge