coreinfrastructure / best-practices-badge
πOpen Source Security Foundation (OpenSSF) Best Practices Badge (formerly Core Infrastructure Initiative (CII) Best Practices Badge)
β1,236Updated this week
Alternatives and similar repositories for best-practices-badge:
Users that are interested in best-practices-badge are comparing it to the libraries listed below
- Now stored here:β410Updated 4 years ago
- Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Languaβ¦β1,321Updated this week
- π The web's go-to resource for Calendar Versioning info.β513Updated 8 months ago
- Python reference implementation of The Update Framework (TUF)β1,640Updated this week
- A Ruby gem to cache and verify the licenses of dependenciesβ983Updated this week
- InSpec: Auditing and Testing Frameworkβ2,877Updated this week
- Test Kitchen is an integration tool for developing and testing infrastructure code and software on isolated target platformsβ1,872Updated last week
- Notary is a project that allows anyone to have trust over arbitrary collections of dataβ3,245Updated 5 months ago
- The Open Source Discovery Serviceβ1,123Updated last week
- Curated list of awesome tools for managing open source programsβ460Updated last year
- Markdown lint toolβ1,850Updated last year
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobbyβ724Updated this week
- experimental linter/analyzer for Makefilesβ1,054Updated 6 months ago
- Git-based decentralized issue managementβ787Updated 8 months ago
- Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockβ¦β973Updated 10 months ago
- Content-Addressable Data Synchronization Toolβ1,508Updated last year
- βοΈ A curated list of dynamic analysis tools and linters for all programming languages, binaries, and more.β972Updated this week
- a community wiki for improving code qualityβ343Updated last month
- LGTM is a simple pull request approval system [ARCHIVE]β987Updated 7 years ago
- OCI Image Formatβ3,606Updated last week
- List of resources about programming practices for writing safety-critical software.β1,541Updated 9 months ago
- RSpec tests for your servers configured by CFEngine, Puppet, Chef, Ansible, Itamae or anything else even by handβ2,508Updated last year
- A community version of the Open Decision Framework - A flexible, open approach to making decisions and leading projectsβ811Updated last month
- Repolinter, The Open Source Repository Linterβ432Updated 4 months ago
- Validate links in awesome projectsβ852Updated last year
- Helping allocate resources to secure the critical open source projects we all depend on.β339Updated 3 months ago
- Gives criticality score for an open source projectβ1,352Updated this week
- Supply-chain Levels for Software Artifactsβ1,585Updated this week
- .travis.yml => build.sh converterβ657Updated last month
- Software Supply Chain Transparency Logβ929Updated this week