coreinfrastructure / best-practices-badgeLinks
πOpen Source Security Foundation (OpenSSF) Best Practices Badge (formerly Core Infrastructure Initiative (CII) Best Practices Badge)
β1,286Updated this week
Alternatives and similar repositories for best-practices-badge
Users that are interested in best-practices-badge are comparing it to the libraries listed below
Sorting:
- Now stored here:β408Updated 4 years ago
- Python reference implementation of The Update Framework (TUF)β1,678Updated last week
- The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for opeβ¦β932Updated last week
- Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockβ¦β1,003Updated last year
- The Open Source Discovery Serviceβ1,133Updated this week
- A Ruby Gem to detect under what license a project is distributed.β858Updated last week
- a community wiki for improving code qualityβ346Updated last week
- Curated list of awesome tools for managing open source programsβ483Updated this week
- Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Languaβ¦β1,434Updated this week
- Repolinter, The Open Source Repository Linterβ457Updated last month
- A Ruby gem to cache and verify the licenses of dependenciesβ1,012Updated last week
- Mozilla HTTP Observatoryβ1,851Updated 11 months ago
- A community version of the Open Decision Framework - A flexible, open approach to making decisions and leading projectsβ831Updated 3 weeks ago
- An observatory for TLS configurations, X509 certificates, and more.β540Updated 3 weeks ago
- Notary is a project that allows anyone to have trust over arbitrary collections of dataβ3,284Updated last year
- Find licenses for your project's dependencies.β1,778Updated last year
- Public version of PagerDuty's employee security training courses.β416Updated 2 years ago
- Official TODO Website that containts TODO Guides, OSPO use cases and more resources to advance in the OSPO journeyβ265Updated last week
- LGTM is a simple pull request approval system [ARCHIVE]β989Updated 7 years ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductioβ¦β434Updated this week
- OpenSSF Security Tooling Working Groupβ318Updated 3 months ago
- A stupid game for learning about containers, capabilities, and syscalls.β906Updated 2 years ago
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobbyβ896Updated last week
- Scan domains and return data based on HTTPS best practicesβ687Updated last week
- Source for TrunkBasedDevelopment.comβ523Updated last month
- Open Source guidance from Zalando, Europe's largest online fashion platformβ807Updated 7 years ago
- Helping allocate resources to secure the critical open source projects we all depend on.β375Updated 5 months ago
- in-toto is a framework to protect supply chain integrity.β951Updated 2 weeks ago
- Gives criticality score for an open source projectβ1,403Updated 6 months ago
- Template for writing your own contributing guideβ728Updated 3 years ago