Skip to content

Incorporate OpenSSF Scorecard #728

New issue
New issue
Open
Open
Incorporate OpenSSF Scorecard#728
Labels
Component:MetaEverything about bats developmentPriority: HighBroken behavior in specific environments like in parallel mode or only on some operating systemsSize: LargeChanges across several filesType: Enhancement
@martin-schulze-vireso

Description

@martin-schulze-vireso
martin-schulze-vireso
opened on May 27, 2023

Use https://github.com/ossf/scorecard and fix at least all issues >= HIGH.

Following todos from our report under https://api.securityscorecards.dev/projects/github.com/bats-core/bats-core / https://securityscorecards.dev/viewer/?uri=github.com/bats-core/bats-core:

Binary-Artifacts: 10
Branch-Protection: -1
CI-Tests: 5
CII-Best-Practices: 0
Code-Review: 1
Contributors: 10
Dangerous-Workflow: 10
Dependency-Update-Tool: 0
Fuzzing: 0
License: 9
Maintained: 10
Packaging: 10
Pinned-Dependencies: 5
SAST: 0
Security-Policy: 0
Signed-Releases: -1
Token-Permissions: 0
Vulnerabilities: 10

Total score right now: 5.3

Metadata

Metadata

Assignees

No one assigned

    Labels

    Component:MetaEverything about bats developmentPriority: HighBroken behavior in specific environments like in parallel mode or only on some operating systemsSize: LargeChanges across several filesType: Enhancement

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions