kustomize-controller icon indicating copy to clipboard operation
kustomize-controller copied to clipboard

Published 20 hours ago verified publisher icon fluxcd

Improve OpenSSF Scorecard Score

Open pjbgf opened this issue 2 years ago • 0 comments

"The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects."

As of 3rd January, fluxcd/kustomize-controller scores 6.2/10. For latest score check deps.dev or manually execute scorecard.

image

Areas to focus on:

  • Token-Permissions
  • Pinned-Dependencies
  • Fuzzing
    • https://github.com/fluxcd/kustomize-controller/pull/536
    • https://github.com/fluxcd/kustomize-controller/pull/434

pjbgf avatar Jan 11 '22 17:01 pjbgf