Scorecard: Assessments Made Easy | Scorecard:让开源项目评估更轻松 - Ram Iyengar, Cloud Foundry Foundation
Don't miss out! Join us at our next Flagship Conference: KubeCon + CloudNativeCon North America in Salt Lake City from November 12 - 15, 2024. Connect with our current graduated, incubating, and sandbox projects as the community gathers to further the education and advancement of cloud native computing. Learn more at https://kubecon.io
Scorecard: Assessments Made Easy | Scorecard:让开源项目评估更轻松 - Ram Iyengar, Cloud Foundry Foundation
Scorecard is a project of the OpenSSF, which makes it simple to assess the health of any repository. It is a fully open source project built with the aim of bringing transparency and standardization around security health metrics. Scorecard is a cross-industry collaboration between big and small names in OSS/security. Scorecard checks for vulnerabilities affecting different parts of the software supply chain including source code, build, dependencies, testing, and project maintenance.
Scorecard 是 OpenSSF 的一个项目,它简化了对任何代码仓库健康状况的评估。这是一个完全开源的项目,旨在为安全健康指标带来透明度和标准化。Scorecard 是开源软件/安全领域大大小小公司之间的跨行业合作。Scorecard 检查影响软件供应链不同部分的漏洞,包括源代码、构建、依赖关系、测试和项目维护。
