Joyce

Hi @inteon, It is possible to run the Scorecard in the CLI and get in the terminal the results that the Scorecard Github Action shows in the Github interface. For...

Hi @alexey-milovidov, thanks for sharing or concerns, they are very relevant questions ### Binary-Artifacts > We use binary artifacts for some tests (examples of some binary data formats) and as...

> Thanks for the contribution! One comment: we looked at doing this before but have a number of binaries and similar artifacts committed to the repository for testing, is there...

Hi @kzantow, don't worry about the time at all. Running the scorecard locally here the results I've got are a little more human friendly, so it might help us better...

Great to hear that @kzantow. I would like to also offer my help on working in any issue from scorecard checks (or any other security issue tbh) you might want...

Hi @ahrtr About your questions: > Does [scorecard](https://github.com/ossf/scorecard) only support Golang? No, the Scorecard does not look to the program language thus can be supported in any program language projects...

Just to clarify a few things, the Scorecard is developed by the OpenSSF, a non-profit foundation dedicated to improving the overall security of the open source community. Also, the main...

Hi @scoder, I totally understand you and really would be very intersting to verify the C code generated. Although the OpenSSF Scorecard is not able to help with it, it...

Thanks for the feedback @scoder, I'll relay the feedback to the Scorecard team and any other feedback we are always open to hear.

> It sounds like a good idea, is there any way to get a preview of what the output would be for this specific project? Sure, you can run the...