scorecard

mirror of https://github.com/ossf/scorecard.git synced 2024-11-10 12:27:01 +03:00

Author	SHA1	Message	Date
Abhishek Arya	6a7eb62fea	Fix condition.	2020-11-21 18:40:52 -08:00
Abhishek Arya	3379ada1d5	Improve code review check to account for diff author-committer usecase. See $ go run . --repo=https://github.com/protocolbuffers/protobuf --show-details --checks=Code-Review Starting [Code-Review] Finished [Code-Review] RESULTS ------- Code-Review: Pass 9 found different author and committer for pr: 8053 found different author and committer for pr: 8052 found review approved pr: 8048 found review approved pr: 8045 found different author and committer for pr: 8043 found review approved pr: 8035 found review approved pr: 8032 found review approved pr: 8030 found review approved pr: 8029 found review approved pr: 8028 found review approved pr: 8026 found review approved pr: 8025 found review approved pr: 8024 found review approved pr: 8023 found review approved pr: 8022 found different author and committer for pr: 8014 found different author and committer for pr: 8013 found review approved pr: 8011 found review approved pr: 8010 found review approved pr: 8006 found review approved pr: 8005 found different author and committer for pr: 8003 found review approved pr: 8000 found different author and committer for pr: 7997 github code reviews found	2020-11-20 13:21:59 -08:00
Abhishek Arya	dde26dfceb	Update checks for Gerrit use	2020-11-19 07:36:37 -08:00
Dan Lorenc	1a1f70cb40	I've seen this test crash a couple times with a "nil" result. I'm not quite sure how it happens since I've never been able to reproduce it a second time in a row, so let's treat it as somethign to be retried.	2020-11-12 10:23:22 -06:00
Jamie Finnigan	879a9e2a0e	simplify by using c.Client.Repositories.DownloadContents instead	2020-11-10 09:34:09 -08:00
Jamie Finnigan	d9da174d30	extend Security-Policy check to check default community health files	2020-11-10 08:21:25 -08:00
Merlin Beutlberger	dc1bbba544	Frozen-Deps Check: Add npm-shrinkwrap.json lockfile (#55 ) According to npm, it has the same effect as a package-lock.json: https://docs.npmjs.com/cli/v6/configuring-npm/shrinkwrap-json Resolves #54	2020-11-10 09:04:48 -06:00
Abhishek Arya	cdce9ddc56	Improve contributors checks with better company parsing. (#53 )	2020-11-10 07:09:16 -06:00
Abhishek Arya	079180d0ae	Bug fixes - Fix typo for default output function. - For signed tags, get the only required last 5. matches signed releases.	2020-11-09 18:13:59 -08:00
dlorenc	fd188f5263	Use the GraphQL API to retrieve the list of tags in signed-tags. (#45 )	2020-11-06 15:28:26 -06:00
Dan Lorenc	9f686dc707	Rename repo/modules.	2020-10-27 14:23:48 -05:00
Abhishek Arya	81eab9d2d8	Add license header and code of conduct files. (#34 ) * Add license header and code of conduct files. * Fill missing field.	2020-10-26 15:22:13 -05:00
Abhishek Arya	e952c29b23	Fix contributors condition to match docs.	2020-10-24 23:23:33 -07:00
Abhishek Arya	5649a8370c	fix check	2020-10-24 10:24:27 -07:00
Abhishek Arya	6c790d84da	Add some missing detail messages, improve others.	2020-10-24 10:20:49 -07:00
Dan Lorenc	55ba575d73	Hook up the --show-details flag, and cleanup the output.	2020-10-21 12:35:58 -05:00
Abhishek Arya	1232adbb20	Add SAST check for CodeQL (#26 )	2020-10-19 11:58:51 -05:00
Abhishek Arya	3c4623184a	Minor fixes.	2020-10-19 08:09:10 -07:00
Abhishek Arya	0e3502e85c	Add active project check, slightly fi MultiCheck logic. (#23 )	2020-10-18 18:54:15 -05:00
Abhishek Arya	26400a8503	Add rust deps detection.	2020-10-17 17:20:13 -07:00
Abhishek Arya	88ffaaad6f	Lower pr review policy confidence to enforce GithubCodeReview (#19 ) PR review policy is good to check but keep its confidence low since actual enforcement is checked by GithubCodeReview and ProwCodeReview and those values should be used.	2020-10-17 19:09:35 -05:00
Abhishek Arya	eb55aca83d	improve log message.	2020-10-17 16:51:29 -07:00
Abhishek Arya	37362b640f	Add docs directory for security.md Part of doc at https://docs.github.com/en/free-pro-team@latest/github/managing-security-vulnerabilities/adding-a-security-policy-to-your-repository	2020-10-16 23:20:46 -07:00
Abhishek Arya	04c9b37981	Fix PR calc logic, remove bot accounts. (#17 ) * Fix PR calc logic, remove bot accounts. * Fmt.	2020-10-16 18:11:07 -05:00
Abhishek Arya	2ceadcd253	Fixes for signed releases. (#16 ) * Fixes for signed releases. * Fmt.	2020-10-16 15:09:20 -05:00
Abhishek Arya	6e5ce52cae	Fix filenames to match check names, remove unneeded repos.txt. (#15 ) * Fix filenames to match check names, remove unneeded repos.txt. * Fix conflict. * Minor fix.	2020-10-16 13:22:28 -05:00
Abhishek Arya	b3e57bd360	Add circleci for ci tests.	2020-10-16 10:59:10 -07:00
Abhishek Arya	50e39b55b6	Fix travis and github actions ci tests calc. (#14 )	2020-10-16 12:47:28 -05:00
Abhishek Arya	b72091168d	Fix issue with negative proportional result, also shorten tag lookback. (#13 )	2020-10-16 11:55:25 -05:00
Dan Lorenc	20cafaee4a	Add a CII Best Practices badge check.	2020-10-14 11:22:58 -05:00
Dan Lorenc	bdb1aba90e	Fix rate limit.	2020-10-13 14:43:12 -05:00
Dan Lorenc	49eeef3260	Fix build error.	2020-10-13 14:32:52 -05:00
Dan Lorenc	32a62cc8f6	Register Helper	2020-10-13 13:55:14 -05:00
Dan Lorenc	609518ea90	Start to add support for detailed logging.	2020-10-13 10:35:55 -05:00
Dan Lorenc	3608792e91	Refactoring.	2020-10-13 09:32:38 -05:00
Dan Lorenc	939cf20832	Add a list of fuzzing targets, and the script to generate them.	2020-10-12 14:54:56 -05:00
Dan Lorenc	c99712d673	Add a check to make sure the project uses pull requests instead of direct pushes.	2020-10-12 14:04:43 -05:00
Dan Lorenc	70b61acbd7	Add a few more testing and vendoring patterns.	2020-10-12 14:04:24 -05:00
Dan Lorenc	c3ccf114bf	Fix bugs in test and code review detection.	2020-10-12 12:18:40 -05:00
Dan Lorenc	b0e5e2e6a1	Fix third_party/ detection.	2020-10-09 17:59:27 -05:00
Dan Lorenc	3d2e664788	Fix bug in downloading code.	2020-10-09 16:21:49 -05:00
Dan Lorenc	3ee3c748e9	Initial commit.	2020-10-09 10:08:43 -05:00

42 Commits