adityasaky
commented
1 year ago I think it'd be cool to build on this for our other implementations as well, for now I think this PR serves as a proof of concept and can proceed with the current scope?
Closed adityasaky closed 1 year ago
adityasaky
commented
1 year ago I think it'd be cool to build on this for our other implementations as well, for now I think this PR serves as a proof of concept and can proceed with the current scope?
SantiagoTorres
commented
1 year ago I think this is fantastic! Great job @adityasaky @spencerklem
This is based off some excellent work by @SpencerKlem. It uses GitHub API's code search endpoint to identify occurrences of in-toto-golang in go.mod files, looks up the repositories' stars, and lists the top 50.
I've done some reworking of the script to generate a markdown file and create a PR on a weekly basis if the new report is different from the existing one.