A framework for defining ratings for open source projects. In particular, the framework offers a security rating for open source projects that may be used to assess the security risk that comes with open source components.
I configured the scanner with the following config file for test purposes:
cache: .fosstars/project_rating_cache.json
reports:
- type: json
where: ./
finder:
# To scan a full organization use the organizations object
#organizations:
# - name: gardener
# exclude:
# - .github
# - .repository-template
# To scan a single repository use the repositories object
repositories:
- organization: gardener
name: alpine-conntrack
In the log I get the following error message:
“Oops! That's an unknown type of report: JSON”
I try to run the scanner locally using this guide: https://github.com/SAP/fosstars-oss-rules-of-play-report/blob/main/running-locally.md
I configured the scanner with the following config file for test purposes:
In the log I get the following error message: “Oops! That's an unknown type of report: JSON”