-
Notifications
You must be signed in to change notification settings - Fork 2.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: add gitlab openssf scorecards #26167
Conversation
Signed-off-by: Adam Moss <[email protected]>
Signed-off-by: Adam Moss <[email protected]>
Signed-off-by: Adam Moss <[email protected]>
Tested against a private repository. Seems the OpenSSF api has a challenge with /group/subgroup/project urls. I wonder if there is something nicer we could do rather than having a broken image link? Example: |
Looks like they do not support subrepos |
Indeed, I have raised ossf/scorecard-webapp#511 |
What's the next step here? |
It's not actionable by us right now and blocked by OSSF scorecards API server implementation |
OK, please feel free to reopen this as soon as it's actionable. We have 60+ open PRs right now so would like to close anything non-actionable and stalled. |
Changes
Adds OpenSSF scorecard reporting for GitLab.
Context
Adding following testing as part of #25125 (reply in thread)
Documentation (please check one with an [x])
How I've tested my work (please select one)
I have verified these changes via: