ossf / scorecard-monitorView external linksLinks
Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
☆42Feb 4, 2026Updated 2 weeks ago
Alternatives and similar repositories for scorecard-monitor
Users that are interested in scorecard-monitor are comparing it to the libraries listed below
Sorting:
- Tool for visualizing the Open SSF Scorecard Api data in a human friendly way☆18Nov 27, 2025Updated 2 months ago
- Website and API for OpenSSF Scorecard☆28Updated this week
- OpenSSF Endusers Working Group☆28Mar 21, 2024Updated last year
- AWS Signer Plugin for Notation☆18Jan 26, 2026Updated 3 weeks ago
- ☆13Updated this week
- OSS License Open Data☆12Jun 28, 2019Updated 6 years ago
- OSS License Simple Viewer is a simple Excel-based tool as OSS license reference for engineers.☆14Nov 20, 2020Updated 5 years ago
- go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems☆13Sep 28, 2023Updated 2 years ago
- Open Source Template by Wayfair☆31Jan 19, 2026Updated 3 weeks ago
- Introducing CICDash — an open-source dashboard for visualizing your GitHub Actions (GHA) workflow trends.☆15Jan 4, 2025Updated last year
- Play with KinD and OIDC volumes☆15Oct 24, 2021Updated 4 years ago
- The model for the information captured in SPDX version 3 standard.☆97Updated this week
- Software signing just got easier☆20Dec 11, 2023Updated 2 years ago
- Kubernetes Monitoring Prometheus PoC and sample configs for SREcon19 Americas☆12Mar 22, 2019Updated 6 years ago
- A zoo for malicious NPM packages☆20Dec 8, 2022Updated 3 years ago
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Apr 4, 2023Updated 2 years ago
- ☆58Jun 1, 2022Updated 3 years ago
- Inspector Protocol made easy☆19Jun 7, 2025Updated 8 months ago
- Menubar for smart GitHub pull request tracking & notifications☆31Updated this week
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆79Feb 6, 2026Updated last week
- This Guidance helps organizations provide their data scientists with external package repository access while maintaining information sec…☆22Oct 20, 2024Updated last year
- Golang implementation of a checker for determining if an SPDX ID satisfies an SPDX Expression.☆46Jan 31, 2026Updated 2 weeks ago
- QSOS repository (Method, Formats, Tools)☆27Feb 12, 2024Updated 2 years ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆135Nov 15, 2025Updated 3 months ago
- ☆24Nov 8, 2024Updated last year
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practices☆143Feb 10, 2026Updated last week
- Materials for the ISPO working group☆25Jan 26, 2026Updated 3 weeks ago
- sigstore maven plugin☆19Jul 22, 2024Updated last year
- Sample code for integrating AWS CloudFormation templates security tests (using CFN-Nag and CFN-Guard) with both AWS Security Hub and AWS …☆24Mar 23, 2024Updated last year
- ☆24Updated this week
- A CLI tool for creating secure by design/default source repos.☆28Jul 29, 2024Updated last year
- Go implementation of the package url spec☆69Dec 4, 2025Updated 2 months ago
- Home of the ORC WG☆26Updated this week
- Software Supply Chain Security Platform☆373Updated this week
- Auto Redeem Voucher Gofood & Voucher Cashback☆16Jul 18, 2020Updated 5 years ago
- Run ORT in your GitHub action workflow to do licensing, security and best practices checks and generate reports/SBOMs☆33Nov 10, 2025Updated 3 months ago
- SBOM Search - Context aware search in SBOM repositories☆29Nov 24, 2025Updated 2 months ago
- ☆26Dec 22, 2020Updated 5 years ago
- ☆29Aug 9, 2024Updated last year