-
...and OpenSSF scorecard.
https://www.infoq.com/news/2022/01/openssf-scorecards-v4/
-
At https://github.com/step-security/secure-workflows we are building a knowledge-base (KB) of GITHUB_TOKEN permissions needed by different GitHub Actions. When developers try to set minimum token perm…
-
At https://github.com/step-security/secure-workflows we are building a knowledge-base (KB) of GITHUB_TOKEN permissions needed by different GitHub Actions. When developers try to set minimum token perm…
-
[OpenSSF ScoreCard](https://github.com/ossf/scorecard) status of the Edge-Orchestration project
| SCORE_ | NAME | REASON …
-
At https://github.com/step-security/secure-workflows we are building a knowledge-base (KB) of GITHUB_TOKEN permissions needed by different GitHub Actions. When developers try to set minimum token perm…
-
At https://github.com/step-security/secure-workflows we are building a knowledge-base (KB) of GITHUB_TOKEN permissions needed by different GitHub Actions. When developers try to set minimum token perm…
-
**Describe the bug**
when running the tool on my repo https://github.com/georgettica/venv I found it doesn't find my `SECURITY.adoc` file
**Reproduction steps**
docker run -e GITHUB_AUTH_TOKEN=XX…
-
This is a part of the extended series of development for dashboard visualizations. Let this be the place where people can put their new ideas for visualizations or to voice the questions they would li…
-
Is it possible to have a custom icon for our action on the marketplace?
Currently we use a default "mic" https://github.com/marketplace/actions/ossf-scorecard-action.
The documentation at https://…
-
In Scorecard bi-weekly meeting it was brought up about the next version of the scorecard which has some bug fixes.
This is a tracking item to discuss this.