Joyce
Joyce
### What would you like to be added? Hi I am Joyce and I'm working on behalf of Google and the [Open Source Security Foundation][ossf] to help essential open-source projects...
Hello, I'm working on behalf of Google and the [Open Source Security Foundation][ossf] to help essential open-source projects improve their supply-chain security. Given the relevance of HUGO on the web...
This pull request intend to activate the OpenSSF Scorecard, a tool to search for security risks. More informations about securitycards can be seen at https://securityscorecards.dev/ Besides listing the security risks...
Closes #3738 Hi, as discussed in the #3738 here are the changes that enable the [Scorecard GitHub Action](https://github.com/ossf/scorecard-action) and the [badge](https://openssf.org/blog/2022/09/08/show-off-your-security-score-announcing-scorecards-badges/). There is no rush on this and you can...
Hello, I am Joyce and I'm working on behalf of Google and the [Open Source Security Foundation][ossf] to help essential open-source projects improve their supply-chain security. Given the impact Distribution...
**Is your feature request related to a problem? Please describe.** Discussion started at https://github.com/electron/electron/pull/35741#pullrequestreview-1118960274 Just oppening the discussion about the commits made automatically by some bots that, depending on its...
Closes #977 Regarding the issue #977, I couldn't think of a better way of doing this instead of adding the if clause to the default yml file, let me know...
When the action is configured to run in pull request, although it do not try to publish results (since 2.0.4), it tries to upload the results to Github's code scanning...
Hi, I am Joyce and I'm working on behalf of Google and the [Open Source Security Foundation][ossf] (OpenSSF) to help essential open-source projects improve their supply-chain security. I would like...
Hi, I am Joyce and I am working on behalf of Google and the [OpenSSF][ossf] to help essential open source projects to improve their supply-chain security. Considering how veged/coa has...