fosstars-rating-core
fosstars-rating-core copied to clipboard
SAP
A framework for defining ratings for open source projects. In particular, the framework offers a security rating for open source projects that may be used to assess the security risk that comes with o...
Bumps [org.apache.maven.plugins:maven-javadoc-plugin](https://github.com/apache/maven-javadoc-plugin) from 3.5.0 to 3.6.2. Release notes Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases. 3.6.2 🐛 Bug Fixes [MJAVADOC-716] - Fix stale files detection failing because of the newline (#144) @gnodet [MJAVADOC-713]...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [org.kohsuke:github-api](https://github.com/hub4j/github-api) from 1.315 to 1.317. Release notes Sourced from org.kohsuke:github-api's releases. v1.317 🌈 Changes Chore(deps-dev): Bump org.eclipse.jgit:org.eclipse.jgit from 6.4.0.202211300538-r to 6.7.0.202309050840-r @dependabot (#1719) Github docs change the documentation url...
Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 4.1.1. Release notes Sourced from actions/checkout's releases. v4.1.1 What's Changed Update CODEOWNERS to Launch team by @joshmgross in actions/checkout#1510 Correct link to GitHub Docs by...
Bumps [org.apache.maven:maven-artifact](https://github.com/apache/maven) from 3.9.4 to 3.9.5. Commits 57804ff [maven-release-plugin] prepare release maven-3.9.5 0e1de3f [MNG-7895] Support ${project.basedir} in file profile activation 8afca27 [3.9.x] [MNG-7859] Update to Resolver 1.9.16 (#1260) 0c8b7df [MNG-7875]...
Bumps org.slf4j:slf4j-simple from 2.0.7 to 2.0.9. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
https://github.com/SAP/fosstars-rating-core-action/issues/27 The GitHubDataFetcher while cloning the repo should take in username as input for private repos. For this we need to take in username as an argument.
Hello colleagues, on my repo: https://github.com/cap-java/cds-feature-attachments I got an [issue](https://github.com/cap-java/cds-feature-attachments/issues/104) opened with: Rule ID: rl-assigned_teams-1 Explanation: Does it have enough teams on GitHub? No In the attached [explanation](https://sap.github.io/fosstars-rating-core/oss_rules_of_play_rating.html) I only...
I try to run the scanner locally using this guide: https://github.com/SAP/fosstars-oss-rules-of-play-report/blob/main/running-locally.md I configured the scanner with the following config file for test purposes: ``` cache: .fosstars/project_rating_cache.json reports: - type: json...
Docker image cannot be build because Dockerfile references non existing Maven version: https://github.com/SAP/fosstars-rating-core/blob/master/src/main/docker/cli/Dockerfile#L7
Hi @DeepakShiva01 - The issue here is a feature request to skip the Team assignment check while calculating the fosstars report for `oss-rules-of-play` for Gardener GitHub Org. Involved stakeholder -...
