Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improve Open Source Insights metrics #101

Closed
marcwrobel opened this issue Jun 30, 2022 · 4 comments
Closed

Improve Open Source Insights metrics #101

marcwrobel opened this issue Jun 30, 2022 · 4 comments
Assignees
@marcwrobel
Labels
internal
Milestone
3.3.0

Comments

@marcwrobel
Copy link
Owner

marcwrobel commented Jun 30, 2022
edited
Loading

See https://deps.dev/maven/fr.marcwrobel%3Ajbanking.

To do :

  1. Use only read-only tokens in GitHub workflows (https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs).
  2. Enable branch protection on main and maintenance branches.
  3. Use fuzzing.
  4. Add CII Best Practices Badge (https://bestpractices.coreinfrastructure.org/en)
marcwrobel added a commit that referenced this issue Jun 30, 2022
@marcwrobel
Restrict permissions in GitHub workflows (#101)
a86883d
@marcwrobel marcwrobel self-assigned this Jun 30, 2022
@marcwrobel
Copy link
Owner Author

GITHUB_TOKENS are now read-only by default and permissions have been set in all workflows.

@marcwrobel
Copy link
Owner Author

Branch protection has been enabled.

@marcwrobel
Copy link
Owner Author

OSS Fuzz only accepts popular and/or critical projects (https://google.github.io/oss-fuzz/getting-started/accepting-new-projects/). Unfortunately jbanking is not critical nor a popular project.

marcwrobel added a commit that referenced this issue Jun 30, 2022
@marcwrobel
Add CII Best Practices badge in the project's README (#101)
9858c93
marcwrobel added a commit that referenced this issue Jul 1, 2022
@marcwrobel
Initiate contribution guide (#101)
05518c3
marcwrobel added a commit that referenced this issue Jul 1, 2022
@marcwrobel
Add a contribution guide (#101)
0608932 
During the redaction of this documentation :
- the bug_report issue template has been reviewed to fit with jbanking context,
- a Developer Certificate of Origin (DCO) has been added,
- some Maven JVM options has been added for git-code-format-maven-plugin.
marcwrobel added a commit that referenced this issue Jul 1, 2022
@marcwrobel
Add a contribution guide (#101)
d3b269a 
During the redaction of this documentation :
- the bug_report issue template has been reviewed to fit with jbanking context,
- a Developer Certificate of Origin (DCO) has been added,
- some Maven JVM options has been added for git-code-format-maven-plugin.
marcwrobel added a commit that referenced this issue Jul 4, 2022
@marcwrobel
Add missing changelog entries (#101)
611b069
@marcwrobel marcwrobel added this to the 3.3.0 milestone Jul 4, 2022
marcwrobel added a commit that referenced this issue Jul 4, 2022
@marcwrobel
Use javadoc.io as the project documentation (#101)
d0cf0ed 
javadoc.io is a javadoc hosting service for open source projects hosted on Maven Central. This service is a great help : it allows us to give access to a browser-compatible version of the project documentation without requiring a complicated process (such as https://publicobject.com/2015/11/14/publishing-javadoc-for-github-projects/).
@marcwrobel marcwrobel mentioned this issue Jul 5, 2022
Closed
@marcwrobel
Copy link
Owner Author

Passing OpenSSF best practices badge obtained : https://bestpractices.coreinfrastructure.org/en/projects/6217.

marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Document the release process in the contribution guide (#101)
21315cb
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Automatically trigger all workflows weekly (#101)
360fb05
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Improve CI documentation (#101)
d4e0009
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Add a security section to contribution guide (#101)
7000d71
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Improve CI documentation (#101)
b5e7731
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Add a security section to contribution guide (#101)
8a75d9f
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Improve readme (#101)
49bd2d9
marcwrobel added a commit that referenced this issue Jul 7, 2022
@marcwrobel
Improve readme (#101)
0797f90
@marcwrobel marcwrobel mentioned this issue Sep 8, 2022
Closed
marcwrobel added a commit that referenced this issue Sep 8, 2022
@marcwrobel
Add OpenSSF scorecard badge to the README (closes #193)
d0e2c39 
A lot of work has been done in 3.3.0 to improve Open Source Insights metrics (see #101). In order to reflect this work the OpenSSF scorecard badge has been added to the README.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@marcwrobel marcwrobel

Labels
internal
Projects
None yet
Milestone
3.3.0
Development

No branches or pull requests
1 participant
@marcwrobel