ossf/scorecard
1
1
Fork 0
mirror of https://github.com/ossf/scorecard.git synced 2024-11-05 05:17:00 +03:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity
75bcc333de
scorecard/checks
History
Evgeny Vereshchagin 75bcc333de
CI-Tests: look for test-related strings in target urls as well (#1374) 
Apparently some projects like systemd and bcc put links (containing
the word "Jenkins") to their Jenkins instances in target urls.

https://buildbot.iovisor.org/jenkins/job/bcc-pr/1157/
https://jenkins-systemd.apps.ocp.ci.centos.org/job/upstream-vagrant-archlinux-sanitizers/8288/

It's a follow-up to https://github.com/ossf/scorecard/pull/1293#issuecomment-976384882

Co-authored-by: laurentsimon <64505099+laurentsimon@users.noreply.github.com>
2021-12-08 17:34:28 +00:00
..
evaluation [Check split]: Binary-Artifacts (#1244) 2021-11-16 19:57:14 +00:00
fileparser Skip pinned dependencies check for template Dockerfiles (#1324) 2021-11-22 16:16:03 +00:00
raw rem audio files (#1300) 2021-12-03 00:54:06 +00:00
testdata Token-Permission: Allow top level permissions not defined if all run level permissions are (#1356) 2021-12-08 01:18:28 +00:00
all_checks.go 🌱 v3 upgrade changes (#1118) 2021-10-07 18:16:01 -05:00
binary_artifact.go [Check split]: Binary-Artifacts (#1244) 2021-11-16 19:57:14 +00:00
branch_protection_test.go Cleanup Branch Protection and add e2e tests (#1344) 2021-12-03 21:53:18 +00:00
branch_protection.go Cleanup Branch Protection and add e2e tests (#1344) 2021-12-03 21:53:18 +00:00
ci_tests.go CI-Tests: look for test-related strings in target urls as well (#1374) 2021-12-08 17:34:28 +00:00
cii_best_practices_test.go Add CIIClient interface (#1262) 2021-11-15 02:46:41 +00:00
cii_best_practices.go Add a OssFuzzRepoClient (#1280) 2021-11-17 03:04:37 +00:00
code_review.go Code-Review: show PRs merged without code review (#1375) 2021-12-07 16:47:29 -08:00
contributors.go 🌱 v3 upgrade changes (#1118) 2021-10-07 18:16:01 -05:00
dangerous_workflow_test.go 🐛 fix dangerous workflow test and workflow parsing (#1283) 2021-11-20 00:16:02 +00:00
dangerous_workflow.go 🌱 update dangerous workflow to use actionlint (#1328) 2021-11-22 18:32:27 +00:00
dependency_update_tool.go 🐛 Adding line numbers to token-permissions and a couple other places (#1363) 2021-12-06 10:05:52 -06:00
errors.go Token-Permission: Allow top level permissions not defined if all run level permissions are (#1356) 2021-12-08 01:18:28 +00:00
fuzzing.go Add a OssFuzzRepoClient (#1280) 2021-11-17 03:04:37 +00:00
license_test.go move dir (#1367) 2021-12-06 17:57:02 +00:00
license.go 🐛 checks.yml not sync'ed with checks.md (#1360) 2021-12-04 08:56:50 -06:00
maintained.go Check for issue activity in Maintained (#1251) 2021-11-12 22:16:22 +00:00
packaging.go 🐛 Adding line numbers to token-permissions and a couple other places (#1363) 2021-12-06 10:05:52 -06:00
permissions_test.go Token-Permission: Allow top level permissions not defined if all run level permissions are (#1356) 2021-12-08 01:18:28 +00:00
permissions.go Token-Permission: Allow top level permissions not defined if all run level permissions are (#1356) 2021-12-08 01:18:28 +00:00
pinned_dependencies_test.go Ignore local actions that are not pinned (#1357) 2021-12-06 16:36:42 +00:00
pinned_dependencies.go update log msg for non-pinned actions (#1370) 2021-12-06 19:33:27 -06:00
sast.go 🐛 Adding line numbers to token-permissions and a couple other places (#1363) 2021-12-06 10:05:52 -06:00
security_policy.go 🐛 Adding line numbers to token-permissions and a couple other places (#1363) 2021-12-06 10:05:52 -06:00
shell_download_validate_test.go Fix faulty shell file handling (#1312) 2021-12-01 16:46:00 +00:00
shell_download_validate.go Pinned-Dependencies: show where exactly parsing fails (#1297) 2021-12-08 01:52:08 +00:00
signed_releases.go Signed-Releases: really look for *.sign files (#1298) 2021-11-20 00:55:08 +00:00
vulnerabilities.go 🌱 v3 upgrade changes (#1118) 2021-10-07 18:16:01 -05:00
write.md Update write.md (#1084) 2021-09-28 20:41:47 +00:00