Closed ivanoblomov closed 1 week ago
spencerschrock
commented
1 week ago
- The project scores 0/10 even though the README has the badge and the Best Practices site has its report.
Did you rename your repo? The bestpractice metadata has this for the project URL (which is different from github.com/FoveaCentral/hit_counter):
ivanoblomov
commented
1 week ago @spencerschrock that's right. To enable 2FA, GitHub required us to move the repo to an organization.
spencerschrock
commented
1 week ago Once you update the metadata in Best Practices, it should be detected.
ivanoblomov
commented
1 week ago Doh, completely forgot that was user editable. That worked, cheers @spencerschrock!
Describe the bug Scorecard doesn't detect the OpenSSF Best Practices badge for the project https://github.com/FoveaCentral/hit_counter.
Reproduction steps
Expected behavior The project should get a 5/10 because it has a passing badge.
Additional context I don't think the case-sensitivity issue noted in https://github.com/ossf/scorecard/issues/3466#issuecomment-1756357077 is related since in this case all results are going to the camel-cased https://scorecard.dev/viewer/?uri=github.com/FoveaCentral/hit_counter and nothing ever went to the lowercased https://scorecard.dev/viewer/?uri=github.com/foveacentral/hit_counter.
As another data point, the badge is correctly detected for the sister project https://github.com/FoveaCentral/vaccinesignup since it has the expected score of 5.
The most obvious delta between the two projects is that the working one's default branch is
mainwhile the other ismaster. I had similar results with another project with amasterbranch.