coreinfrastructure / best-practices-badgeLinks
πOpen Source Security Foundation (OpenSSF) Best Practices Badge (formerly Core Infrastructure Initiative (CII) Best Practices Badge)
β1,273Updated last week
Alternatives and similar repositories for best-practices-badge
Users that are interested in best-practices-badge are comparing it to the libraries listed below
Sorting:
- The Open Source Discovery Serviceβ1,127Updated 2 weeks ago
- Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Languaβ¦β1,404Updated last week
- Python reference implementation of The Update Framework (TUF)β1,668Updated last week
- Now stored here:β409Updated 4 years ago
- a community wiki for improving code qualityβ345Updated 2 months ago
- Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockβ¦β990Updated last year
- Repolinter, The Open Source Repository Linterβ447Updated last month
- Curated list of awesome tools for managing open source programsβ473Updated last month
- Supply-chain Levels for Software Artifactsβ1,692Updated 3 weeks ago
- A Ruby gem to cache and verify the licenses of dependenciesβ1,008Updated this week
- The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for opeβ¦β893Updated this week
- LGTM is a simple pull request approval system [ARCHIVE]β988Updated 7 years ago
- A Ruby Gem to detect under what license a project is distributed.β845Updated last week
- GitHub App that enforces the Developer Certificate of Origin (DCO) on Pull Requestsβ320Updated 2 months ago
- Notary is a project that allows anyone to have trust over arbitrary collections of dataβ3,279Updated 11 months ago
- π The web's go-to resource for Calendar Versioning info.β534Updated last year
- A community version of the Open Decision Framework - A flexible, open approach to making decisions and leading projectsβ826Updated 7 months ago
- Template for writing your own contributing guideβ717Updated 3 years ago
- These patterns document how to apply open source principles and practices for software development within the confines of an organizationβ¦β815Updated this week
- π Code quality CLI for universal linting, auto-formatting, security scanning, and maintainabilityβ2,737Updated this week
- Your unofficial guide to doing dotfiles on GitHub.β1,476Updated last week
- Find licenses for your project's dependencies.β1,767Updated 11 months ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductioβ¦β404Updated last week
- An observatory for TLS configurations, X509 certificates, and more.β540Updated 2 months ago
- A stupid game for learning about containers, capabilities, and syscalls.β903Updated 2 years ago
- Gives criticality score for an open source projectβ1,380Updated 3 months ago
- A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobbyβ832Updated this week
- Home to public development of NIST Special Publication 800-63-3: Digital Authentication Guidelinesβ717Updated 2 years ago
- Validate links in awesome projectsβ866Updated 2 years ago
- Open Source Policy Examples and Templatesβ186Updated 2 years ago