argo-events
argo-events copied to clipboard
Bring CLOMonitor Score to 100%
This repo is signed up as part of the KubeCon Security Slam. I'm bringing to your attention the checklist from the official CLOMonitor page for Argo -- it refreshes every hour, so it should be up-to-date.
CLOMonitor report
Summary
Repository: argo-events
URL: https://github.com/argoproj/argo-events
Checks sets: CODE
Score: 85
Checks passed per category
Category | Score |
---|---|
Documentation | 100% |
License | 75% |
Best Practices | 94% |
Security | 75% |
Legal | n/a |
Checks
Documentation [100%]
- [x] Changelog (docs)
- [x] Contributing (docs)
- [x] Maintainers (docs)
- [x] Readme (docs)
License [75%]
Best Practices [94%]
- [ ] Artifact Hub badge (docs)
- [x] Contributor License Agreement (docs)
EXEMPT
- [x] Developer Certificate of Origin (docs)
- [x] OpenSSF badge (docs)
- [x] Recent release (docs)
Security [75%]
- [x] Binary artifacts (docs)
- [x] Code review (docs)
- [x] Dangerous workflow (docs)
- [x] Dependency update tool (docs)
- [x] Maintained (docs)
- [x] Software bill of materials (SBOM) (docs)
- [x] Security policy (docs)
- [ ] Signed releases (docs)
- [x] Token permissions (docs)
For more information about the checks sets available and how each of the checks work, please see the CLOMonitor's documentation.