Compliance Report / Audits / Dashboard Created And Populated By Tier 2 Projects

[bensternthal]

### Tasks
- [x] Work with CollabSpace to define what criteria should be on the dashboard
- [x] Create Dashboard
- [x] Work with OpenSSF Best Practices WG to discover additional criteria
- [x] Populate dashboard
- [ ] https://github.com/openjs-foundation/security-collab-space/issues/76

[ljharb]

For the OpenSSF CII Best Practice badge, we'll want to track multiple pieces of info: passing %, silver %, gold %, and which badge is displayed on the readme/website (or none).

[ljharb]

Here's an initial dashboard: https://docs.google.com/spreadsheets/d/1wUsWSRu4x_Up4PjVNhEu_z8eOag8V7bcJGaJJl5RlC8/edit#gid=0

Please suggest additional metrics you think should be here, and more will likely surface from the effort on #21.

[bensternthal]

@ljharb if you agree... let's get this on the agenda for the next collab space meeting. I'd also suggest adding this into slack so folks (time permitting) can noodle with it prior to Monday.

[ljharb]

Sounds great, will do → https://openjs-foundation.slack.com/archives/CTPN0DFF0/p1692813199794179

[ctcpip]

LGTM, save for one a11y issue I pointed out via a comment on the doc

[UlisesGascon]

LGTM!

[bensternthal]

Example dashboard from nearform https://nearform.github.io/osscheck/

[ljharb]

The dashboard is partially populated, and work to flesh it out will need to continue over future quarters.

[ruddermann]

This issue is being replaced in 2024 by https://github.com/openjs-foundation/security-collab-space/issues/150