search

ossf / scorecard-monitor

Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
https://github.com/marketplace/actions/openssf-scorecard-monitor
Apache License 2.0
31 stars 6 forks source link

Options to include (or remove?) public archive #42

Open fraxken opened 1 year ago

fraxken commented 1 year ago

Hello @UlisesGascon

The report include archived repository, I think it should not (what do you think?)

For example documentation-ui is archived in the list here: https://github.com/NodeSecure/Governance/blob/main/reports/ossf_scorecard/report.md

Maybe we need an option to include or exclude public archive

UlisesGascon commented 1 year ago

Yes! Great catch @fraxken , we should ignore them in the collection step

KoolTheba commented 1 year ago

I'll take the leadership in the research !