-
Notifications
You must be signed in to change notification settings - Fork 85
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Improve OpenSSF Scorecard Score #214
Comments
The statistics shown there are outdated, as we moved from |
@hiddeco the security advisories is indeed out of date. But the OpenSSF scorecard is at GitHub repository level, so should be the same across all modules. |
Hey folks, (new) Scorecard maintainer here! |
There's an easy way to keep track of scorecard issues using the action https://github.com/ossf/scorecard-action |
@justaugustus okie dokie, I previously reported issues by email. From now on will do via that repo. Thanks for the heads up. 👍 |
@laurentsimon nice one, I will take a look at the action. |
"The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects."
As of 3rd January, fluxcd/pkg scores 6.2/10. For latest score check deps.dev or manually execute scorecard.
Areas to focus on:
The text was updated successfully, but these errors were encountered: