Community dashboard for security assessment of open source projects of interest for BeSecure community. Various visualizations on Projects of Interest and Vulnerabilities of interest are available in the dashboard
The OSAR is a download button which should be activated once the reports are available.
Add an appropriate icon next to the OSAR download button, which depicts the report has been attested.
The Envs and Playbooks is a button, which opens up a modal component with environments and compatible playbooks.
The OSAP(Open Source Assurance Provider) will show the name of the entity that performed the assessments, followed by an appropriate icon. The entity can be a user, an organization or a lab.
The tags and languages should be a link, on-click, it should trigger the filter for that tag/lang which updates the poi table.
Assessment details
The scores and assessment counts are modal component which gives you a summary report of its respective assessment.
The OWASP Top Vulnerability Type should display the OWASP top vulnerability types that the vulnerabilities from sast report belongs to.
The Vulnerability Trend gives you the count of vulnerabilities, for this version of the project, over the years.
sudhirverma
commented
8 months ago
Project details
OSARis a download button which should be activated once the reports are available.Envs and Playbooksis a button, which opens up a modal component with environments and compatible playbooks.OSAP(Open Source Assurance Provider) will show the name of the entity that performed the assessments, followed by an appropriate icon. The entity can be a user, an organization or a lab.Assessment details
OWASP Top Vulnerability Typeshould display the OWASP top vulnerability types that the vulnerabilities from sast report belongs to.Vulnerability Trendgives you the count of vulnerabilities, for this version of the project, over the years.