Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

oneAPI Construction Kit - Enable Open SSF Scorecard GitHub Badge #173

Open
rozhukov opened this issue Nov 25, 2024 · 1 comment
Open

oneAPI Construction Kit - Enable Open SSF Scorecard GitHub Badge #173

rozhukov opened this issue Nov 25, 2024 · 1 comment
Assignees
Milestone

Comments

@rozhukov
Copy link
Collaborator

For those repos have decent score (7 or above) it's recommended to enable a badge for your repo:
https://github.com/ossf/scorecard?tab=readme-ov-file#scorecard-badges

Example: https://github.com/OpenVisualCloud/Media-Transport-Library

image

@rozhukov rozhukov added this to the Q4 2024 milestone Nov 25, 2024
@rozhukov
Copy link
Collaborator Author

I saw you implemented Scorecard scans and badge, which is great!
https://scorecard.dev/viewer/?uri=github.com/uxlfoundation/oneapi-construction-kit

Additional recommendations to improve (Easy to implement -> High Security value):

  1. Token-Permissions. Set Top-level permissions as: read-all. Optional - avoid using tokens with no permission indicated.
  2. Branch-protection. Make sure to do at least 2 things - Restrict deletions; Block force-pushes

Other improvements could be done later. @aahrun

@rozhukov rozhukov assigned rozhukov and aahrun and unassigned rozhukov Dec 23, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Status: Todo
Development

No branches or pull requests

2 participants