-
Maybe it could be worth to try to get a badge of **OpenSSF Best Practices Program** :
- https://www.bestpractices.dev/en
- https://github.com/coreinfrastructure/best-practices-badge
This is pro…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/)._
**Security Policy Violation**
Project is out of compliance with Binary Artifacts policy: binaries present in sou…
-
Hi, our project utilizes a lot of dash plotly packages (really appreciate all your work!), and would like to leverage dash-ag-grid for some new functionalities under design/development.
However, we ar…
-
### Type
Game behaviour
### Bug description
When pressing "quick retry" after the final note of the beatmap (and before the scorecard appears), a replay is not saved locally even though the s…
-
I'd like to get the data from https://securityscorecards.dev/ into an ecosyste.ms service so I can do queries across the data and also integrate it into the packages and repos services.
In future w…
-
We need to implement Time To Live for Scorecards so that they evaporate out of the database after an appropriate time. I believe the ScorecardSettings take care of themselves but we need to check that…
-
Hi, I'm Harshita. I’m working with [CNCF and the Google Open Source Security Team for the GSoC 2024 term](https://github.com/cncf/mentoring/issues/1196). We are collaborating to enhance security pract…
-
### Reason/Context
Restricting GitHub Actions permissions to the minimum necessary improves the security of our workflows by limiting access to only what's required. Adopting this structure, read-onl…
-
I'd like to explore the recommendations being made by the OpenSSF scorecard report. I ran it this morning manually and saw this:
```
|---------|------------------------|---------------------------…
-
_This issue was automatically created by [Allstar](https://github.com/ossf/allstar/) and refers to [jeffmendoza-test-org/scm-test-repo](https://github.com/jeffmendoza-test-org/scm-test-repo)._
**Secu…