-
Notifications
You must be signed in to change notification settings - Fork 521
Issues: ossf/scorecard
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Split fuzzing checks in two: continuous fuzzing & fuzzers present
check/Fuzzing
kind/enhancement
New feature or request
Stale
#3475
opened Sep 12, 2023 by
DavidKorczynski
BUG: Didn't recognize CII Best Practice Badge of repository
kind/bug
Something isn't working
#3466
opened Sep 9, 2023 by
rootxrishabh
BUG: CodeQL default config not identified
check/SAST
kind/bug
Something isn't working
#3451
opened Sep 4, 2023 by
joycebrum
How to mitigate C or bash pinned dependencies?
check/Pinned-Dependencies
kind/docs
Improvements or additions to documentation
Stale
#3401
opened Aug 18, 2023 by
spencerschrock
Consider adding a log library?
kind/enhancement
New feature or request
Stale
#3389
opened Aug 15, 2023 by
fredgan
Output Scorecard results as in-toto attestation
kind/enhancement
New feature or request
#3352
opened Aug 4, 2023 by
adityasaky
Feature: Trim down security policy remediation steps
kind/docs
Improvements or additions to documentation
kind/enhancement
New feature or request
Feature: Pinned-Dependencies should only care about Dockerfiles that are called in CI/CD
check/Pinned-Dependencies
kind/enhancement
New feature or request
Stale
#3314
opened Jul 26, 2023 by
pnacht
✨ Feature: probe: regular releases
kind/enhancement
New feature or request
kind/new-check
New check for scorecard
Stale
#3308
opened Jul 25, 2023 by
andrelmbackman
Feature: Dangerous workflow warns when script injection + secrets used
check/Dangerous-workflow
kind/enhancement
New feature or request
Stale
#3277
opened Jul 18, 2023 by
laurentsimon
Feature: Detect CI-Tests and releases made through BAZEL CI
check/CI-Tests
kind/enhancement
New feature or request
Stale
#3274
opened Jul 17, 2023 by
diogoteles08
BUG: RequiresStrictStatusChecks wrongly reported by GitHub GraphQL API
check/Branch-Protection
kind/bug
Something isn't working
#3255
opened Jul 10, 2023 by
gabibguti
New check suggestion: Fork; is the repository a fork?
good first issue
Good for newcomers
kind/enhancement
New feature or request
kind/new-check
New check for scorecard
Stale
#3223
opened Jun 27, 2023 by
andrelmbackman
Question: Is scorecard supposed to work with private github repositories?
kind/docs
Improvements or additions to documentation
private-repo
Stale
#3220
opened Jun 26, 2023 by
godofredoc
Migrate from OpenCensus OpenTelemetry
area/tech-debt
cron-job
dependencies
Pull requests that update a dependency file
Stale
#3201
opened Jun 21, 2023 by
spencerschrock
BUG: Gitlab Commits Before Date Needs More Logic
gitlab
Issue related to Scorecard's GitLab client
good first issue
Good for newcomers
kind/bug
Something isn't working
#3193
opened Jun 19, 2023 by
jimrobison
Feature: licensing check looks for ecosystem file's license
check/License
kind/enhancement
New feature or request
Stale
Feature: Improve docs on using package manager flags
kind/docs
Improvements or additions to documentation
kind/enhancement
New feature or request
Stale
#3165
opened Jun 14, 2023 by
gabibguti
Should New feature or request
Stale
security-events: read
be considered a dangerous permission?
kind/enhancement
#3131
opened Jun 6, 2023 by
diogoteles08
ProTip!
What’s not been updated in a month: updated:<2025-01-19.