scorecard

mirror of https://github.com/ossf/scorecard.git synced 2024-11-05 05:17:00 +03:00

History

laurentsimon 736f2e2922 ✨ Allow pip install with --require-hashes only (#1313 ) * allow --require-hashes only * comment * rem log * comment * att test * Update checks/shell_download_validate.go Co-authored-by: Dustin Ingram <di@users.noreply.github.com> * Update checks/shell_download_validate.go Co-authored-by: Dustin Ingram <di@users.noreply.github.com> * Update checks/shell_download_validate.go Co-authored-by: Oliver Chang <oliverchang@users.noreply.github.com> * Update checks/shell_download_validate.go Co-authored-by: Dustin Ingram <di@users.noreply.github.com> * Update checks/shell_download_validate.go Co-authored-by: Dustin Ingram <di@users.noreply.github.com> * Update checks/shell_download_validate.go Co-authored-by: Dustin Ingram <di@users.noreply.github.com> * comments Co-authored-by: Dustin Ingram <di@users.noreply.github.com> Co-authored-by: Oliver Chang <oliverchang@users.noreply.github.com>		2021-11-23 00:02:56 +00:00
..
evaluation	✨ [Check split]: Binary-Artifacts (#1244 )	2021-11-16 19:57:14 +00:00
fileparser	Skip pinned dependencies check for template Dockerfiles (#1324 )	2021-11-22 16:16:03 +00:00
raw	Binary-Artifacts: no longer complain about ".bin" files (#1288 )	2021-11-17 01:08:25 +00:00
testdata	✨ Allow pip install with --require-hashes only (#1313 )	2021-11-23 00:02:56 +00:00
all_checks.go	🌱 v3 upgrade changes (#1118 )	2021-10-07 18:16:01 -05:00
binary_artifact.go	✨ [Check split]: Binary-Artifacts (#1244 )	2021-11-16 19:57:14 +00:00
branch_protection_test.go	✨ Update score for branch protection with levels (#1287 )	2021-11-20 01:42:21 +00:00
branch_protection.go	✨ Update score for branch protection with levels (#1287 )	2021-11-20 01:42:21 +00:00
ci_tests.go	CI-Test: stop assuming either "statuses" or "check runs" are used (#1259 )	2021-11-14 16:03:18 -08:00
cii_best_practices_test.go	Add CIIClient interface (#1262 )	2021-11-15 02:46:41 +00:00
cii_best_practices.go	Add a OssFuzzRepoClient (#1280 )	2021-11-17 03:04:37 +00:00
code_review.go	🌱 v3 upgrade changes (#1118 )	2021-10-07 18:16:01 -05:00
contributors.go	🌱 v3 upgrade changes (#1118 )	2021-10-07 18:16:01 -05:00
dangerous_workflow_test.go	🐛 fix dangerous workflow test and workflow parsing (#1283 )	2021-11-20 00:16:02 +00:00
dangerous_workflow.go	🌱 update dangerous workflow to use actionlint (#1328 )	2021-11-22 18:32:27 +00:00
dependency_update_tool.go	✨ [Check split]: Binary-Artifacts (#1244 )	2021-11-16 19:57:14 +00:00
errors.go	🌱 Add counting of shell parsing errors (#1026 )	2021-09-22 14:46:29 +00:00
fuzzing.go	Add a OssFuzzRepoClient (#1280 )	2021-11-17 03:04:37 +00:00
maintained.go	Check for issue activity in Maintained (#1251 )	2021-11-12 22:16:22 +00:00
packaging.go	🌱 v3 upgrade changes (#1118 )	2021-10-07 18:16:01 -05:00
permissions_test.go	✨ Reduce false positives in Token-Permissions for contents permission (#1253 )	2021-11-16 03:03:54 +00:00
permissions.go	✨ [Check split]: Binary-Artifacts (#1244 )	2021-11-16 19:57:14 +00:00
pinned_dependencies_test.go	✨ Allow pip install with --require-hashes only (#1313 )	2021-11-23 00:02:56 +00:00
pinned_dependencies.go	Skip pinned dependencies check for template Dockerfiles (#1324 )	2021-11-22 16:16:03 +00:00
sast.go	SAST: no longer skip "neutral" checks (#1237 )	2021-11-10 19:49:02 +00:00
security_policy.go	✨ [Check split]: Binary-Artifacts (#1244 )	2021-11-16 19:57:14 +00:00
shell_download_validate_test.go	🌱 Move from io/ioutil to io and os packages (#1250 )	2021-11-12 19:34:46 +00:00
shell_download_validate.go	✨ Allow pip install with --require-hashes only (#1313 )	2021-11-23 00:02:56 +00:00
signed_releases.go	Signed-Releases: really look for *.sign files (#1298 )	2021-11-20 00:55:08 +00:00
vulnerabilities.go	🌱 v3 upgrade changes (#1118 )	2021-10-07 18:16:01 -05:00
write.md	Update write.md (#1084 )	2021-09-28 20:41:47 +00:00