Open allstar-app[bot] opened 5 days ago
The policy result has been updated.
Project is out of compliance with Security Scorecards policy
Rule Description This is a generic passthrough policy that runs the configured checks from Security Scorecards. Please see the Security Scorecards Documentation for more information on each check. The score was 0, and the passing threshold is 7. Results from policy: Branch-Protection : branch protection not enabled on development/release branches
First 10 Results from policy: Code-Review : found 15 unreviewed changesets out of 15 -- score normalized to 0
Results from policy: Contributors : 0 different organizations found -- score normalized to 0
Results from policy: Dependency-Update-Tool : no update tool detected
First 10 Results from policy: Fuzzing : project is not fuzzed
Results from policy: License : license file not detected
Results from policy: Maintained : repo was created 41 days ago, not enough maintenance history
Results from policy: SAST : no SAST tool detected
Results from policy: Security-Policy : security policy file not detected
Results from policy: Signed-Releases : 0 out of 1 artifacts are signed or have provenance
The policy result has been updated.
Project is out of compliance with Security Scorecards policy
Rule Description This is a generic passthrough policy that runs the configured checks from Security Scorecards. Please see the Security Scorecards Documentation for more information on each check. The score was 0, and the passing threshold is 7. Results from policy: Branch-Protection : branch protection not enabled on development/release branches
First 10 Results from policy: Code-Review : found 15 unreviewed changesets out of 15 -- score normalized to 0
Results from policy: Contributors : 0 different organizations found -- score normalized to 0
Results from policy: Dependency-Update-Tool : no update tool detected
First 10 Results from policy: Fuzzing : project is not fuzzed
Results from policy: License : license file not detected
Results from policy: Maintained : repo was created 42 days ago, not enough maintenance history
Results from policy: SAST : no SAST tool detected
Results from policy: Security-Policy : security policy file not detected
Results from policy: Signed-Releases : 0 out of 1 artifacts are signed or have provenance
The policy result has been updated.
Project is out of compliance with Security Scorecards policy
Rule Description This is a generic passthrough policy that runs the configured checks from Security Scorecards. Please see the Security Scorecards Documentation for more information on each check. The score was 0, and the passing threshold is 7. Results from policy: Branch-Protection : branch protection not enabled on development/release branches
First 10 Results from policy: Code-Review : found 15 unreviewed changesets out of 15 -- score normalized to 0
Results from policy: Contributors : 0 different organizations found -- score normalized to 0
Results from policy: Dependency-Update-Tool : no update tool detected
First 10 Results from policy: Fuzzing : project is not fuzzed
Results from policy: License : license file not detected
Results from policy: Maintained : repo was created 42 days ago, not enough maintenance history
Results from policy: SAST : no SAST tool detected
Results from policy: Security-Policy : security policy file not detected
Results from policy: Signed-Releases : 0 out of 1 artifacts are signed or have provenance
The policy result has been updated.
Project is out of compliance with Security Scorecards policy
Rule Description This is a generic passthrough policy that runs the configured checks from Security Scorecards. Please see the Security Scorecards Documentation for more information on each check. The score was 0, and the passing threshold is 7. Results from policy: Branch-Protection : branch protection not enabled on development/release branches
First 10 Results from policy: Code-Review : found 15 unreviewed changesets out of 15 -- score normalized to 0
Results from policy: Contributors : 0 different organizations found -- score normalized to 0
Results from policy: Dependency-Update-Tool : no update tool detected
First 10 Results from policy: Fuzzing : project is not fuzzed
Results from policy: License : license file not detected
Results from policy: Maintained : repo was created 42 days ago, not enough maintenance history
Results from policy: SAST : no SAST tool detected
Results from policy: Security-Policy : security policy file not detected
Results from policy: Signed-Releases : 0 out of 1 artifacts are signed or have provenance
This issue was automatically created by Allstar.
Security Policy Violation Project is out of compliance with Security Scorecards policy
Rule Description This is a generic passthrough policy that runs the configured checks from Security Scorecards. Please see the Security Scorecards Documentation for more information on each check. The score was 0, and the passing threshold is 7. Results from policy: Branch-Protection : branch protection not enabled on development/release branches
First 10 Results from policy: Code-Review : found 15 unreviewed changesets out of 15 -- score normalized to 0
Results from policy: Contributors : 0 different organizations found -- score normalized to 0
Results from policy: Dependency-Update-Tool : no update tool detected
First 10 Results from policy: Fuzzing : project is not fuzzed
Results from policy: License : license file not detected
Results from policy: Maintained : repo was created 41 days ago, not enough maintenance history
Results from policy: SAST : no SAST tool detected
Results from policy: Security-Policy : security policy file not detected
Results from policy: Signed-Releases : 0 out of 1 artifacts are signed or have provenance
:warning: There is an updated version of this policy result! Click here to see the latest update
This issue will auto resolve when the policy is in compliance.
Issue created by Allstar. See https://github.com/ossf/allstar/ for more information. For questions specific to the repository, please contact the owner or maintainer.