diff --git a/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json b/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json index f348016a00..d334d2c150 100644 --- a/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json +++ b/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json @@ -1,345 +1,345 @@ { - "url": "https://github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", - "owner": "Enterprise-CMCS", - "name": "T-MSIS-Analytic-File-Generation-Python", - "description": "Databricks Python code library to create interim T-MSIS Analytic Files (TAF)", - "commits_count": 393, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 223, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 210, - "closed_pull_requests_count": 11, - "forks_count": 3, - "stargazers_count": 3, - "watchers_count": 5, - "total_project_lines": 55574, - "average_project_lines": 289, - "total_project_comment_lines": 15805, - "average_project_comment_lines": 82, - "total_project_blank_lines": 6227, - "average_blank_lines": 32, - "commits_by_month": { - "2024/9": 1, - "2024/8": 3, - "2024/6": 5, - "2024/5": 2, - "2024/3": 2, - "2024/2": 2, - "2024/1": 3, - "2023/12": 3, - "2023/11": 6, - "2023/10": 3 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-30T00:00:00.000Z", - 1 - ], - [ - "2024-06-03T00:00:00.000Z", - 1 - ], - [ - "2024-06-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", + "owner": "Enterprise-CMCS", + "name": "T-MSIS-Analytic-File-Generation-Python", + "description": "Databricks Python code library to create interim T-MSIS Analytic Files (TAF)", + "commits_count": 393, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 223, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 210, + "closed_pull_requests_count": 11, + "forks_count": 3, + "stargazers_count": 3, + "watchers_count": 5, + "total_project_lines": 55574, + "average_project_lines": 289, + "total_project_comment_lines": 15805, + "average_project_comment_lines": 82, + "total_project_blank_lines": 6227, + "average_blank_lines": 32, + "commits_by_month": { + "2024/9": 1, + "2024/8": 3, + "2024/6": 5, + "2024/5": 2, + "2024/3": 2, + "2024/2": 2, + "2024/1": 3, + "2023/12": 3, + "2023/11": 6, + "2023/10": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-30T00:00:00.000Z", + 1 + ], + [ + "2024-06-03T00:00:00.000Z", + 1 + ], + [ + "2024-06-04T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-11-30T17:05:47Z", - "ossf_scorecard": { - "date": "2024-10-14T20:40:48Z", - "repo": { - "name": "github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", - "commit": "324219a86b8fb1474aa4e24ad3b0ffefa98c7684" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 20 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 3, - "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 9, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-09-04T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-11-30T17:05:47Z", + "ossf_scorecard": { + "date": "2024-10-14T20:40:48Z", + "repo": { + "name": "github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", + "commit": "324219a86b8fb1474aa4e24ad3b0ffefa98c7684" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 2480845, - "CodeBytes": 0, - "Lines": 55134, - "Code": 33197, - "Comment": 15794, - "Blank": 6143, - "Complexity": 849, - "Count": 186, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 5533, - "CodeBytes": 0, - "Lines": 97, - "Code": 53, - "Comment": 0, - "Blank": 44, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Powershell", - "Bytes": 17029, - "CodeBytes": 0, - "Lines": 132, - "Code": 117, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2770, - "CodeBytes": 0, - "Lines": 90, - "Code": 66, - "Comment": 11, - "Blank": 13, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 984986.1775283456, - "estimatedScheduleMonths_low": 14.162185331063238, - "estimatedPeople_low": 6.775625138411701, - "estimatedCost_high": 3069647.126554903, - "estimatedScheduleMonths_high": 14.162185331063238, - "estimatedPeople_high": 6.775625138411701, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 186 55134 6143 15794 33197 849\n(ULOC) 22810\n-------------------------------------------------------------------------------\nMarkdown 2 97 44 0 53 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nPowershell 2 132 15 0 117 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 90 13 11 66 0\n(ULOC) 69\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 192 55574 6227 15805 33542 849\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 23155\nDRYness % 0.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,080,099\nEstimated Schedule Effort (organic) 14.16 months\nEstimated People Required (organic) 6.78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2513225 bytes, 2.513 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "Python": 2480845, - "PowerShell": 17029 - } -} \ No newline at end of file + "score": 5.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 20 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 3, + "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 9, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 2480845, + "CodeBytes": 0, + "Lines": 55134, + "Code": 33197, + "Comment": 15794, + "Blank": 6143, + "Complexity": 849, + "Count": 186, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 5533, + "CodeBytes": 0, + "Lines": 97, + "Code": 53, + "Comment": 0, + "Blank": 44, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Powershell", + "Bytes": 17029, + "CodeBytes": 0, + "Lines": 132, + "Code": 117, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2770, + "CodeBytes": 0, + "Lines": 90, + "Code": 66, + "Comment": 11, + "Blank": 13, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 984986.1775283456, + "estimatedScheduleMonths_low": 14.162185331063238, + "estimatedPeople_low": 6.775625138411701, + "estimatedCost_high": 3069647.126554903, + "estimatedScheduleMonths_high": 14.162185331063238, + "estimatedPeople_high": 6.775625138411701, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 186 55134 6143 15794 33197 849\n(ULOC) 22810\n-------------------------------------------------------------------------------\nMarkdown 2 97 44 0 53 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nPowershell 2 132 15 0 117 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 90 13 11 66 0\n(ULOC) 69\n───────────────────────────────────────────────────────────────────────────────\nTotal 192 55574 6227 15805 33542 849\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 23155\nDRYness % 0.42\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,080,099\nEstimated Schedule Effort (organic) 14.16 months\nEstimated People Required (organic) 6.78\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2513225 bytes, 2.513 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 2480845, + "PowerShell": 17029 + } +} diff --git a/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json b/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json index 1eb4bc8d8b..d12f337986 100644 --- a/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json +++ b/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json @@ -1,629 +1,629 @@ { - "url": "https://github.com/Enterprise-CMCS/cmcs-eregulations", - "owner": "Enterprise-CMCS", - "name": "cmcs-eregulations", - "description": "Web application for viewing Medicaid and CHIP regulations and related policy information", - "commits_count": 1165, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1428, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 1169, - "closed_pull_requests_count": 255, - "forks_count": 10, - "stargazers_count": 15, - "watchers_count": 11, - "total_project_lines": 381590, - "average_project_lines": 489, - "total_project_comment_lines": 1908, - "average_project_comment_lines": 2, - "total_project_blank_lines": 8895, - "average_blank_lines": 11, - "commits_by_month": { - "2024/10": 13, - "2024/9": 17 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 2 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/cmcs-eregulations", + "owner": "Enterprise-CMCS", + "name": "cmcs-eregulations", + "description": "Web application for viewing Medicaid and CHIP regulations and related policy information", + "commits_count": 1165, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1428, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 1169, + "closed_pull_requests_count": 255, + "forks_count": 10, + "stargazers_count": 15, + "watchers_count": 11, + "total_project_lines": 381590, + "average_project_lines": 489, + "total_project_comment_lines": 1908, + "average_project_comment_lines": 2, + "total_project_blank_lines": 8895, + "average_blank_lines": 11, + "commits_by_month": { + "2024/10": 13, + "2024/9": 17 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 2 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-07T00:00:00.000Z", + 2 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-07T00:00:00.000Z", - 2 - ], - [ - "2024-05-08T00:00:00.000Z", - 1 - ], - [ - "2024-05-13T00:00:00.000Z", - 1 - ], - [ - "2024-05-21T00:00:00.000Z", - 1 - ] + [ + "2024-05-08T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-09-28T15:44:46Z", - "ossf_scorecard": { - "date": "2024-10-14T20:35:45Z", - "repo": { - "name": "github.com/Enterprise-CMCS/cmcs-eregulations", - "commit": "4b568ca6618f9a1b678ba6dc2d1b24d9bd6f66c6" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 6.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 11 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "17 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-05-13T00:00:00.000Z", + 1 + ], + [ + "2024-05-21T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-09-28T15:44:46Z", + "ossf_scorecard": { + "date": "2024-10-14T20:35:45Z", + "repo": { + "name": "github.com/Enterprise-CMCS/cmcs-eregulations", + "commit": "4b568ca6618f9a1b678ba6dc2d1b24d9bd6f66c6" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 535796, - "CodeBytes": 0, - "Lines": 14309, - "Code": 11244, - "Comment": 543, - "Blank": 2522, - "Complexity": 882, - "Count": 285, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1608492, - "CodeBytes": 0, - "Lines": 46327, - "Code": 44742, - "Comment": 728, - "Blank": 857, - "Complexity": 207, - "Count": 86, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Vue", - "Bytes": 216223, - "CodeBytes": 0, - "Lines": 7559, - "Code": 6693, - "Comment": 121, - "Blank": 745, - "Complexity": 210, - "Count": 81, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5809912, - "CodeBytes": 0, - "Lines": 211272, - "Code": 211271, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 77, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 243460, - "CodeBytes": 0, - "Lines": 4208, - "Code": 3768, - "Comment": 6, - "Blank": 434, - "Complexity": 0, - "Count": 74, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 3079878, - "CodeBytes": 0, - "Lines": 15705, - "Code": 15701, - "Comment": 4, - "Blank": 0, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1637649, - "CodeBytes": 0, - "Lines": 3097, - "Code": 941, - "Comment": 0, - "Blank": 2156, - "Complexity": 0, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 143903, - "CodeBytes": 0, - "Lines": 6263, - "Code": 4809, - "Comment": 299, - "Blank": 1155, - "Complexity": 0, - "Count": 29, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 227549, - "CodeBytes": 0, - "Lines": 8442, - "Code": 7747, - "Comment": 131, - "Blank": 564, - "Complexity": 1129, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 42046, - "CodeBytes": 0, - "Lines": 1304, - "Code": 1176, - "Comment": 74, - "Blank": 54, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 59446, - "CodeBytes": 0, - "Lines": 1171, - "Code": 791, - "Comment": 0, - "Blank": 380, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 42480, - "CodeBytes": 0, - "Lines": 1283, - "Code": 1215, - "Comment": 20, - "Blank": 48, - "Complexity": 28, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5879, - "CodeBytes": 0, - "Lines": 157, - "Code": 102, - "Comment": 29, - "Blank": 26, - "Complexity": 26, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 4136, - "CodeBytes": 0, - "Lines": 177, - "Code": 136, - "Comment": 18, - "Blank": 23, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1343, - "CodeBytes": 0, - "Lines": 57, - "Code": 31, - "Comment": 13, - "Blank": 13, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 9537017, - "CodeBytes": 0, - "Lines": 56218, - "Code": 56218, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 155, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2431, - "CodeBytes": 0, - "Lines": 61, - "Code": 37, - "Comment": 13, - "Blank": 11, - "Complexity": 7, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 171, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1061, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 9178, - "CodeBytes": 0, - "Lines": 221, - "Code": 174, - "Comment": 2, - "Blank": 45, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 207, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 2, - "Blank": 0, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 454, - "CodeBytes": 0, - "Lines": 19, - "Code": 18, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 12141322.13169684, - "estimatedScheduleMonths_low": 36.78306332678868, - "estimatedPeople_low": 32.156412793381314, - "estimatedCost_high": 37837662.542293005, - "estimatedScheduleMonths_high": 36.78306332678868, - "estimatedPeople_high": 32.156412793381314, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 285 14309 2522 543 11244 882\n(ULOC) 7458\n-------------------------------------------------------------------------------\nJavaScript 86 46327 857 728 44742 207\n(ULOC) 9841\n-------------------------------------------------------------------------------\nVue 81 7559 745 121 6693 210\n(ULOC) 3678\n-------------------------------------------------------------------------------\nJSON 77 211272 1 0 211271 0\n(ULOC) 34848\n-------------------------------------------------------------------------------\nHTML 74 4208 434 6 3768 0\n(ULOC) 1762\n-------------------------------------------------------------------------------\nSVG 31 15705 0 4 15701 0\n(ULOC) 14555\n-------------------------------------------------------------------------------\nPlain Text 30 3097 2156 0 941 0\n(ULOC) 763\n-------------------------------------------------------------------------------\nSass 29 6263 1155 299 4809 0\n(ULOC) 2895\n-------------------------------------------------------------------------------\nGo 28 8442 564 131 7747 1129\n(ULOC) 3420\n-------------------------------------------------------------------------------\nYAML 21 1304 54 74 1176 0\n(ULOC) 525\n-------------------------------------------------------------------------------\nMarkdown 11 1171 380 0 791 0\n(ULOC) 682\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 9 1283 48 20 1215 28\n(ULOC) 535\n-------------------------------------------------------------------------------\nShell 5 157 26 29 102 26\n(ULOC) 114\n-------------------------------------------------------------------------------\nTOML 4 177 23 18 136 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nDockerfile 3 57 13 13 31 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nXML 3 56218 0 0 56218 0\n(ULOC) 30642\n-------------------------------------------------------------------------------\nCSS 2 8 1 1 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nBASH 1 61 11 13 37 7\n(ULOC) 47\n-------------------------------------------------------------------------------\nCSV 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMakefile 1 221 45 2 174 0\n(ULOC) 161\n-------------------------------------------------------------------------------\nSQL 1 4 0 2 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript 1 19 1 0 18 0\n(ULOC) 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 785 377887 9040 2004 366843 2490\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 111627\nDRYness % 0.30\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $13,313,724\nEstimated Schedule Effort (organic) 36.78 months\nEstimated People Required (organic) 32.16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 23208866 bytes, 23.209 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 1608440, - "Python": 539715, - "Go": 227549, - "Vue": 222649, - "SCSS": 146929, - "HTML": 73597, - "Makefile": 9178, - "Shell": 7109, - "Dockerfile": 1343, - "TypeScript": 454, - "CSS": 155 - } -} \ No newline at end of file + "score": 6.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 11 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "17 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 539715, + "CodeBytes": 0, + "Lines": 14394, + "Code": 11300, + "Comment": 555, + "Blank": 2539, + "Complexity": 882, + "Count": 285, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1608440, + "CodeBytes": 0, + "Lines": 46327, + "Code": 44742, + "Comment": 728, + "Blank": 857, + "Complexity": 207, + "Count": 86, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Vue", + "Bytes": 222649, + "CodeBytes": 0, + "Lines": 7819, + "Code": 6914, + "Comment": 122, + "Blank": 783, + "Complexity": 227, + "Count": 84, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5809912, + "CodeBytes": 0, + "Lines": 211272, + "Code": 211271, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 77, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 243439, + "CodeBytes": 0, + "Lines": 4208, + "Code": 3768, + "Comment": 6, + "Blank": 434, + "Complexity": 0, + "Count": 74, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 3079878, + "CodeBytes": 0, + "Lines": 15705, + "Code": 15701, + "Comment": 4, + "Blank": 0, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1637649, + "CodeBytes": 0, + "Lines": 3097, + "Code": 941, + "Comment": 0, + "Blank": 2156, + "Complexity": 0, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 146929, + "CodeBytes": 0, + "Lines": 6402, + "Code": 4917, + "Comment": 306, + "Blank": 1179, + "Complexity": 0, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 227549, + "CodeBytes": 0, + "Lines": 8442, + "Code": 7747, + "Comment": 131, + "Blank": 564, + "Complexity": 1129, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 42002, + "CodeBytes": 0, + "Lines": 1302, + "Code": 1174, + "Comment": 74, + "Blank": 54, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 59446, + "CodeBytes": 0, + "Lines": 1171, + "Code": 791, + "Comment": 0, + "Blank": 380, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 42592, + "CodeBytes": 0, + "Lines": 1285, + "Code": 1217, + "Comment": 20, + "Blank": 48, + "Complexity": 28, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5879, + "CodeBytes": 0, + "Lines": 157, + "Code": 102, + "Comment": 29, + "Blank": 26, + "Complexity": 26, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 4136, + "CodeBytes": 0, + "Lines": 177, + "Code": 136, + "Comment": 18, + "Blank": 23, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1343, + "CodeBytes": 0, + "Lines": 57, + "Code": 31, + "Comment": 13, + "Blank": 13, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 9537017, + "CodeBytes": 0, + "Lines": 56218, + "Code": 56218, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 155, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2431, + "CodeBytes": 0, + "Lines": 61, + "Code": 37, + "Comment": 13, + "Blank": 11, + "Complexity": 7, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 171, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1061, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 9178, + "CodeBytes": 0, + "Lines": 221, + "Code": 174, + "Comment": 2, + "Blank": 45, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 207, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 2, + "Blank": 0, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 454, + "CodeBytes": 0, + "Lines": 19, + "Code": 18, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 12154701.856007872, + "estimatedScheduleMonths_low": 36.79846132886391, + "estimatedPeople_low": 32.178378722185755, + "estimatedCost_high": 37879359.60690412, + "estimatedScheduleMonths_high": 36.79846132886391, + "estimatedPeople_high": 32.178378722185755, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 285 14394 2539 555 11300 882\n(ULOC) 7513\n-------------------------------------------------------------------------------\nJavaScript 86 46327 857 728 44742 207\n(ULOC) 9840\n-------------------------------------------------------------------------------\nVue 84 7819 783 122 6914 227\n(ULOC) 3837\n-------------------------------------------------------------------------------\nJSON 77 211272 1 0 211271 0\n(ULOC) 34848\n-------------------------------------------------------------------------------\nHTML 74 4208 434 6 3768 0\n(ULOC) 1762\n-------------------------------------------------------------------------------\nSVG 31 15705 0 4 15701 0\n(ULOC) 14555\n-------------------------------------------------------------------------------\nPlain Text 30 3097 2156 0 941 0\n(ULOC) 763\n-------------------------------------------------------------------------------\nSass 30 6402 1179 306 4917 0\n(ULOC) 2959\n-------------------------------------------------------------------------------\nGo 28 8442 564 131 7747 1129\n(ULOC) 3420\n-------------------------------------------------------------------------------\nYAML 21 1302 54 74 1174 0\n(ULOC) 525\n-------------------------------------------------------------------------------\nMarkdown 11 1171 380 0 791 0\n(ULOC) 682\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 9 1285 48 20 1217 28\n(ULOC) 536\n-------------------------------------------------------------------------------\nShell 5 157 26 29 102 26\n(ULOC) 114\n-------------------------------------------------------------------------------\nTOML 4 177 23 18 136 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nDockerfile 3 57 13 13 31 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nXML 3 56218 0 0 56218 0\n(ULOC) 30642\n-------------------------------------------------------------------------------\nCSS 2 8 1 1 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nBASH 1 61 11 13 37 7\n(ULOC) 47\n-------------------------------------------------------------------------------\nCSV 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMakefile 1 221 45 2 174 0\n(ULOC) 161\n-------------------------------------------------------------------------------\nSQL 1 4 0 2 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript 1 19 1 0 18 0\n(ULOC) 18\n───────────────────────────────────────────────────────────────────────────────\nTotal 789 378371 9119 2024 367228 2507\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 111907\nDRYness % 0.30\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $13,328,396\nEstimated Schedule Effort (organic) 36.80 months\nEstimated People Required (organic) 32.18\n───────────────────────────────────────────────────────────────────────────────\nProcessed 23222232 bytes, 23.222 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 1608440, + "Python": 539715, + "Go": 227549, + "Vue": 222649, + "SCSS": 146929, + "HTML": 73597, + "Makefile": 9178, + "Shell": 7109, + "Dockerfile": 1343, + "TypeScript": 454, + "CSS": 155 + } +} diff --git a/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json b/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json index 913ee6322a..925f97768f 100644 --- a/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json +++ b/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json @@ -1,491 +1,491 @@ { - "url": "https://github.com/Enterprise-CMCS/eAPD", - "owner": "Enterprise-CMCS", - "name": "eAPD", - "description": "CMS (Centers for Medicare and Medicaid Services) eAPD - Modernizing the APD experience", - "commits_count": 6958, - "issues_count": 2840, - "open_issues_count": 294, - "closed_issues_count": 2546, - "pull_requests_count": 1822, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1604, - "closed_pull_requests_count": 218, - "forks_count": 25, - "stargazers_count": 58, - "watchers_count": 14, - "total_project_lines": 183752, - "average_project_lines": 143, - "total_project_comment_lines": 5216, - "average_project_comment_lines": 4, - "total_project_blank_lines": 12193, - "average_blank_lines": 10, - "commits_by_month": { - "2023/4": 26, - "2023/3": 4 + "url": "https://github.com/Enterprise-CMCS/eAPD", + "owner": "Enterprise-CMCS", + "name": "eAPD", + "description": "CMS (Centers for Medicare and Medicaid Services) eAPD - Modernizing the APD experience", + "commits_count": 6958, + "issues_count": 2840, + "open_issues_count": 294, + "closed_issues_count": 2546, + "pull_requests_count": 1822, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1604, + "closed_pull_requests_count": 218, + "forks_count": 25, + "stargazers_count": 58, + "watchers_count": 14, + "total_project_lines": 183752, + "average_project_lines": 143, + "total_project_comment_lines": 5216, + "average_project_comment_lines": 4, + "total_project_blank_lines": 12193, + "average_blank_lines": 10, + "commits_by_month": { + "2023/4": 26, + "2023/3": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2017-12-05T21:20:35Z", + "ossf_scorecard": { + "date": "2024-10-14T20:46:31Z", + "repo": { + "name": "github.com/Enterprise-CMCS/eAPD", + "commit": "e3eb85c03858858cbeefbc09862d502ee3ca60d0" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2017-12-05T21:20:35Z", - "ossf_scorecard": { - "date": "2024-10-14T20:46:31Z", - "repo": { - "name": "github.com/Enterprise-CMCS/eAPD", - "commit": "e3eb85c03858858cbeefbc09862d502ee3ca60d0" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 4.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 30 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 10 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "52 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 4758720, - "CodeBytes": 0, - "Lines": 147101, - "Code": 132205, - "Comment": 4351, - "Blank": 10545, - "Complexity": 3113, - "Count": 959, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 312668, - "CodeBytes": 0, - "Lines": 1150, - "Code": 1146, - "Comment": 3, - "Blank": 1, - "Complexity": 0, - "Count": 80, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 92328, - "CodeBytes": 0, - "Lines": 3332, - "Code": 2632, - "Comment": 244, - "Blank": 456, - "Complexity": 79, - "Count": 65, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 830468, - "CodeBytes": 0, - "Lines": 23086, - "Code": 22962, - "Comment": 0, - "Blank": 124, - "Complexity": 0, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 122436, - "CodeBytes": 0, - "Lines": 3271, - "Code": 2922, - "Comment": 136, - "Blank": 213, - "Complexity": 0, - "Count": 41, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 33485, - "CodeBytes": 0, - "Lines": 1549, - "Code": 1289, - "Comment": 50, - "Blank": 210, - "Complexity": 0, - "Count": 24, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 84459, - "CodeBytes": 0, - "Lines": 2371, - "Code": 1642, - "Comment": 427, - "Blank": 302, - "Complexity": 87, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 55654, - "CodeBytes": 0, - "Lines": 1206, - "Code": 942, - "Comment": 0, - "Blank": 264, - "Complexity": 0, - "Count": 17, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Raku", - "Bytes": 6680, - "CodeBytes": 0, - "Lines": 252, - "Code": 214, - "Comment": 0, - "Blank": 38, - "Complexity": 5, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 732, - "CodeBytes": 0, - "Lines": 40, - "Code": 30, - "Comment": 0, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1811, - "CodeBytes": 0, - "Lines": 62, - "Code": 57, - "Comment": 5, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 573, - "CodeBytes": 0, - "Lines": 23, - "Code": 18, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 2052, - "CodeBytes": 0, - "Lines": 22, - "Code": 22, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 281, - "CodeBytes": 0, - "Lines": 21, - "Code": 21, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "MDX", - "Bytes": 5285, - "CodeBytes": 0, - "Lines": 219, - "Code": 195, - "Comment": 0, - "Blank": 24, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 1611, - "CodeBytes": 0, - "Lines": 47, - "Code": 46, - "Comment": 0, - "Blank": 1, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 5291959.232844879, - "estimatedScheduleMonths_low": 26.828790111268844, - "estimatedPeople_low": 19.216084952719797, - "estimatedCost_high": 16492056.257795038, - "estimatedScheduleMonths_high": 26.828790111268844, - "estimatedPeople_high": 19.216084952719797, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 959 147101 10545 4351 132205 3113\n(ULOC) 47432\n-------------------------------------------------------------------------------\nSVG 80 1150 1 3 1146 0\n(ULOC) 671\n-------------------------------------------------------------------------------\nTerraform 65 3332 456 244 2632 79\n(ULOC) 1235\n-------------------------------------------------------------------------------\nJSON 54 23086 124 0 22962 0\n(ULOC) 9193\n-------------------------------------------------------------------------------\nYAML 41 3271 213 136 2922 0\n(ULOC) 1821\n-------------------------------------------------------------------------------\nSass 24 1549 210 50 1289 0\n(ULOC) 864\n-------------------------------------------------------------------------------\nShell 19 2371 302 427 1642 87\n(ULOC) 1102\n-------------------------------------------------------------------------------\nMarkdown 17 1206 264 0 942 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nRaku 12 252 38 0 214 5\n(ULOC) 149\n-------------------------------------------------------------------------------\nDockerfile 2 40 10 0 30 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 62 0 5 57 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nSQL 2 23 5 0 18 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nCSV 1 22 0 0 22 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nDocker ignore 1 21 0 0 21 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nMDX 1 219 24 0 195 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nSmarty Template 1 47 1 0 46 3\n(ULOC) 44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1281 183752 12193 5216 166343 3287\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 63392\nDRYness % 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,802,966\nEstimated Schedule Effort (organic) 26.83 months\nEstimated People Required (organic) 19.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 6309243 bytes, 6.309 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 4766765, - "HCL": 102233, - "Shell": 84459, - "SCSS": 33485, - "EJS": 6680, - "HTML": 1811, - "Smarty": 1611, - "Dockerfile": 732 - } -} \ No newline at end of file + "score": 4.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 30 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 10 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "52 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 4758720, + "CodeBytes": 0, + "Lines": 147101, + "Code": 132205, + "Comment": 4351, + "Blank": 10545, + "Complexity": 3113, + "Count": 959, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 312668, + "CodeBytes": 0, + "Lines": 1150, + "Code": 1146, + "Comment": 3, + "Blank": 1, + "Complexity": 0, + "Count": 80, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 92328, + "CodeBytes": 0, + "Lines": 3332, + "Code": 2632, + "Comment": 244, + "Blank": 456, + "Complexity": 79, + "Count": 65, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 830468, + "CodeBytes": 0, + "Lines": 23086, + "Code": 22962, + "Comment": 0, + "Blank": 124, + "Complexity": 0, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 122436, + "CodeBytes": 0, + "Lines": 3271, + "Code": 2922, + "Comment": 136, + "Blank": 213, + "Complexity": 0, + "Count": 41, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 33485, + "CodeBytes": 0, + "Lines": 1549, + "Code": 1289, + "Comment": 50, + "Blank": 210, + "Complexity": 0, + "Count": 24, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 84459, + "CodeBytes": 0, + "Lines": 2371, + "Code": 1642, + "Comment": 427, + "Blank": 302, + "Complexity": 87, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 55654, + "CodeBytes": 0, + "Lines": 1206, + "Code": 942, + "Comment": 0, + "Blank": 264, + "Complexity": 0, + "Count": 17, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Raku", + "Bytes": 6680, + "CodeBytes": 0, + "Lines": 252, + "Code": 214, + "Comment": 0, + "Blank": 38, + "Complexity": 5, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 732, + "CodeBytes": 0, + "Lines": 40, + "Code": 30, + "Comment": 0, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1811, + "CodeBytes": 0, + "Lines": 62, + "Code": 57, + "Comment": 5, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 573, + "CodeBytes": 0, + "Lines": 23, + "Code": 18, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 2052, + "CodeBytes": 0, + "Lines": 22, + "Code": 22, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 281, + "CodeBytes": 0, + "Lines": 21, + "Code": 21, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "MDX", + "Bytes": 5285, + "CodeBytes": 0, + "Lines": 219, + "Code": 195, + "Comment": 0, + "Blank": 24, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 1611, + "CodeBytes": 0, + "Lines": 47, + "Code": 46, + "Comment": 0, + "Blank": 1, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 5291959.232844879, + "estimatedScheduleMonths_low": 26.828790111268844, + "estimatedPeople_low": 19.216084952719797, + "estimatedCost_high": 16492056.257795038, + "estimatedScheduleMonths_high": 26.828790111268844, + "estimatedPeople_high": 19.216084952719797, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 959 147101 10545 4351 132205 3113\n(ULOC) 47432\n-------------------------------------------------------------------------------\nSVG 80 1150 1 3 1146 0\n(ULOC) 671\n-------------------------------------------------------------------------------\nTerraform 65 3332 456 244 2632 79\n(ULOC) 1235\n-------------------------------------------------------------------------------\nJSON 54 23086 124 0 22962 0\n(ULOC) 9193\n-------------------------------------------------------------------------------\nYAML 41 3271 213 136 2922 0\n(ULOC) 1821\n-------------------------------------------------------------------------------\nSass 24 1549 210 50 1289 0\n(ULOC) 864\n-------------------------------------------------------------------------------\nShell 19 2371 302 427 1642 87\n(ULOC) 1102\n-------------------------------------------------------------------------------\nMarkdown 17 1206 264 0 942 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nRaku 12 252 38 0 214 5\n(ULOC) 149\n-------------------------------------------------------------------------------\nDockerfile 2 40 10 0 30 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 62 0 5 57 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nSQL 2 23 5 0 18 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nCSV 1 22 0 0 22 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nDocker ignore 1 21 0 0 21 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nMDX 1 219 24 0 195 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nSmarty Template 1 47 1 0 46 3\n(ULOC) 44\n───────────────────────────────────────────────────────────────────────────────\nTotal 1281 183752 12193 5216 166343 3287\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 63392\nDRYness % 0.34\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,802,966\nEstimated Schedule Effort (organic) 26.83 months\nEstimated People Required (organic) 19.22\n───────────────────────────────────────────────────────────────────────────────\nProcessed 6309243 bytes, 6.309 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 4766765, + "HCL": 102233, + "Shell": 84459, + "SCSS": 33485, + "EJS": 6680, + "HTML": 1811, + "Smarty": 1611, + "Dockerfile": 732 + } +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json index 4ac216948e..5d222b3fb5 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json @@ -1,323 +1,323 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", - "owner": "Enterprise-CMCS", - "name": "mac-fc-amazon-ecs-run-task", - "description": "Runs an Amazon ECS task on ECS cluster", - "commits_count": 191, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 0, - "total_project_lines": 42589, - "average_project_lines": 3872, - "total_project_comment_lines": 6117, - "average_project_comment_lines": 556, - "total_project_blank_lines": 6719, - "average_blank_lines": 611, - "commits_by_month": { - "2023/9": 5, - "2023/6": 6, - "2023/3": 5, - "2023/2": 10, - "2021/3": 1, - "2020/10": 3 + "url": "https://github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", + "owner": "Enterprise-CMCS", + "name": "mac-fc-amazon-ecs-run-task", + "description": "Runs an Amazon ECS task on ECS cluster", + "commits_count": 191, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 0, + "total_project_lines": 42589, + "average_project_lines": 3872, + "total_project_comment_lines": 6117, + "average_project_comment_lines": 556, + "total_project_blank_lines": 6719, + "average_blank_lines": 611, + "commits_by_month": { + "2023/9": 5, + "2023/6": 6, + "2023/3": 5, + "2023/2": 10, + "2021/3": 1, + "2020/10": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-02-23T18:13:54Z", + "ossf_scorecard": { + "date": "2024-10-14T20:45:28Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", + "commit": "d0e41e15a6833b6aec7a31cf2e90adbfb61b9998" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-02-23T18:13:54Z", - "ossf_scorecard": { - "date": "2024-10-14T20:45:28Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", - "commit": "d0e41e15a6833b6aec7a31cf2e90adbfb61b9998" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 3.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 2/22 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 7 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "28 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 3309, - "CodeBytes": 0, - "Lines": 123, - "Code": 118, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1260, - "CodeBytes": 0, - "Lines": 54, - "Code": 54, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5724757, - "CodeBytes": 0, - "Lines": 42202, - "Code": 29414, - "Comment": 6117, - "Blank": 6671, - "Complexity": 4777, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 9119, - "CodeBytes": 0, - "Lines": 189, - "Code": 150, - "Comment": 0, - "Blank": 39, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1067, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 868498.4226988906, - "estimatedScheduleMonths_low": 13.500786040868586, - "estimatedPeople_low": 6.266997008876875, - "estimatedCost_high": 2706620.4059278728, - "estimatedScheduleMonths_high": 13.500786040868586, - "estimatedPeople_high": 6.266997008876875, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 4 123 5 0 118 0\n(ULOC) 101\n-------------------------------------------------------------------------------\nJSON 2 54 0 0 54 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nJavaScript 2 42202 6671 6117 29414 4777\n(ULOC) 20180\n-------------------------------------------------------------------------------\nMarkdown 2 189 39 0 150 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 11 42589 6719 6117 29753 4777\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 20452\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $952,363\nEstimated Schedule Effort (organic) 13.50 months\nEstimated People Required (organic) 6.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5739512 bytes, 5.740 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 7168 - } -} \ No newline at end of file + "score": 3.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 2/22 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 7 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "28 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 3309, + "CodeBytes": 0, + "Lines": 123, + "Code": 118, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1260, + "CodeBytes": 0, + "Lines": 54, + "Code": 54, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5724757, + "CodeBytes": 0, + "Lines": 42202, + "Code": 29414, + "Comment": 6117, + "Blank": 6671, + "Complexity": 4777, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 9119, + "CodeBytes": 0, + "Lines": 189, + "Code": 150, + "Comment": 0, + "Blank": 39, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1067, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 868498.4226988906, + "estimatedScheduleMonths_low": 13.500786040868586, + "estimatedPeople_low": 6.266997008876875, + "estimatedCost_high": 2706620.4059278728, + "estimatedScheduleMonths_high": 13.500786040868586, + "estimatedPeople_high": 6.266997008876875, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 4 123 5 0 118 0\n(ULOC) 101\n-------------------------------------------------------------------------------\nJSON 2 54 0 0 54 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nJavaScript 2 42202 6671 6117 29414 4777\n(ULOC) 20180\n-------------------------------------------------------------------------------\nMarkdown 2 189 39 0 150 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n───────────────────────────────────────────────────────────────────────────────\nTotal 11 42589 6719 6117 29753 4777\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 20452\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $952,363\nEstimated Schedule Effort (organic) 13.50 months\nEstimated People Required (organic) 6.27\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5739512 bytes, 5.740 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 7168 + } +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json index 7bf66ece07..6892ebd545 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json @@ -1,406 +1,406 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", - "owner": "Enterprise-CMCS", - "name": "mac-fc-github-actions-runner-aws", - "description": "This repository will house infrastructure related to standing up an internally hosted GitHub Actions Runner within an AWS environment", - "commits_count": 349, - "issues_count": 10, - "open_issues_count": 0, - "closed_issues_count": 10, - "pull_requests_count": 215, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 154, - "closed_pull_requests_count": 57, - "forks_count": 11, - "stargazers_count": 16, - "watchers_count": 9, - "total_project_lines": 2318, - "average_project_lines": 68, - "total_project_comment_lines": 47, - "average_project_comment_lines": 1, - "total_project_blank_lines": 393, - "average_blank_lines": 12, - "commits_by_month": { - "2024/10": 1, - "2024/8": 9, - "2024/5": 2, - "2024/4": 1, - "2024/3": 1, - "2024/2": 2, - "2024/1": 4, - "2023/12": 10 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-10-07T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", + "owner": "Enterprise-CMCS", + "name": "mac-fc-github-actions-runner-aws", + "description": "This repository will house infrastructure related to standing up an internally hosted GitHub Actions Runner within an AWS environment", + "commits_count": 349, + "issues_count": 10, + "open_issues_count": 0, + "closed_issues_count": 10, + "pull_requests_count": 215, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 154, + "closed_pull_requests_count": 57, + "forks_count": 11, + "stargazers_count": 16, + "watchers_count": 9, + "total_project_lines": 2318, + "average_project_lines": 68, + "total_project_comment_lines": 47, + "average_project_comment_lines": 1, + "total_project_blank_lines": 393, + "average_blank_lines": 12, + "commits_by_month": { + "2024/10": 1, + "2024/8": 9, + "2024/5": 2, + "2024/4": 1, + "2024/3": 1, + "2024/2": 2, + "2024/1": 4, + "2023/12": 10 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-10-07T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-30T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ] + [ + "2024-08-06T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-06-11T18:35:45Z", - "ossf_scorecard": { - "date": "2024-10-14T20:40:58Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", - "commit": "ab9f42f6d2dd762f6285c1dc11403d09689798a8" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 6.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 20/21 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 8, - "reason": "10 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 8", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-08-30T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-06-11T18:35:45Z", + "ossf_scorecard": { + "date": "2024-10-14T20:40:58Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", + "commit": "ab9f42f6d2dd762f6285c1dc11403d09689798a8" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Terraform", - "Bytes": 22908, - "CodeBytes": 0, - "Lines": 851, - "Code": 697, - "Comment": 14, - "Blank": 140, - "Complexity": 18, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 23898, - "CodeBytes": 0, - "Lines": 683, - "Code": 581, - "Comment": 11, - "Blank": 91, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 24570, - "CodeBytes": 0, - "Lines": 487, - "Code": 360, - "Comment": 0, - "Blank": 127, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 2976, - "CodeBytes": 0, - "Lines": 93, - "Code": 62, - "Comment": 10, - "Blank": 21, - "Complexity": 20, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 3816, - "CodeBytes": 0, - "Lines": 107, - "Code": 100, - "Comment": 1, - "Blank": 6, - "Complexity": 6, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 334, - "CodeBytes": 0, - "Lines": 14, - "Code": 14, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 50, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 1804, - "CodeBytes": 0, - "Lines": 50, - "Code": 31, - "Comment": 11, - "Blank": 8, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 901, - "CodeBytes": 0, - "Lines": 32, - "Code": 32, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 47746.56149595536, - "estimatedScheduleMonths_low": 4.483578935367991, - "estimatedPeople_low": 1.0374490776935328, - "estimatedCost_high": 148799.1391581924, - "estimatedScheduleMonths_high": 4.483578935367991, - "estimatedPeople_high": 1.0374490776935328, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTerraform 14 851 140 14 697 18\n(ULOC) 389\n-------------------------------------------------------------------------------\nYAML 8 683 91 11 581 0\n(ULOC) 423\n-------------------------------------------------------------------------------\nMarkdown 5 487 127 0 360 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nDockerfile 2 93 21 10 62 20\n(ULOC) 40\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 1 107 6 1 100 6\n(ULOC) 86\n-------------------------------------------------------------------------------\nJSON 1 14 0 0 14 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nProperties File 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nShell 1 50 8 11 31 2\n(ULOC) 43\n-------------------------------------------------------------------------------\nSmarty Template 1 32 0 0 32 0\n(ULOC) 31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 34 2318 393 47 1878 46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1278\nDRYness % 0.55\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $52,357\nEstimated Schedule Effort (organic) 4.48 months\nEstimated People Required (organic) 1.04\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 81257 bytes, 0.081 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "HCL": 22908, - "Dockerfile": 2976, - "Shell": 1804, - "Smarty": 901 - } -} \ No newline at end of file + "score": 6.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 20/21 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 8, + "reason": "10 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 8", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Terraform", + "Bytes": 22908, + "CodeBytes": 0, + "Lines": 851, + "Code": 697, + "Comment": 14, + "Blank": 140, + "Complexity": 18, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 23898, + "CodeBytes": 0, + "Lines": 683, + "Code": 581, + "Comment": 11, + "Blank": 91, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 24570, + "CodeBytes": 0, + "Lines": 487, + "Code": 360, + "Comment": 0, + "Blank": 127, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 2976, + "CodeBytes": 0, + "Lines": 93, + "Code": 62, + "Comment": 10, + "Blank": 21, + "Complexity": 20, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 3816, + "CodeBytes": 0, + "Lines": 107, + "Code": 100, + "Comment": 1, + "Blank": 6, + "Complexity": 6, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 334, + "CodeBytes": 0, + "Lines": 14, + "Code": 14, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 50, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 1804, + "CodeBytes": 0, + "Lines": 50, + "Code": 31, + "Comment": 11, + "Blank": 8, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 901, + "CodeBytes": 0, + "Lines": 32, + "Code": 32, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 47746.56149595536, + "estimatedScheduleMonths_low": 4.483578935367991, + "estimatedPeople_low": 1.0374490776935328, + "estimatedCost_high": 148799.1391581924, + "estimatedScheduleMonths_high": 4.483578935367991, + "estimatedPeople_high": 1.0374490776935328, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTerraform 14 851 140 14 697 18\n(ULOC) 389\n-------------------------------------------------------------------------------\nYAML 8 683 91 11 581 0\n(ULOC) 423\n-------------------------------------------------------------------------------\nMarkdown 5 487 127 0 360 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nDockerfile 2 93 21 10 62 20\n(ULOC) 40\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 1 107 6 1 100 6\n(ULOC) 86\n-------------------------------------------------------------------------------\nJSON 1 14 0 0 14 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nProperties File 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nShell 1 50 8 11 31 2\n(ULOC) 43\n-------------------------------------------------------------------------------\nSmarty Template 1 32 0 0 32 0\n(ULOC) 31\n───────────────────────────────────────────────────────────────────────────────\nTotal 34 2318 393 47 1878 46\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1278\nDRYness % 0.55\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $52,357\nEstimated Schedule Effort (organic) 4.48 months\nEstimated People Required (organic) 1.04\n───────────────────────────────────────────────────────────────────────────────\nProcessed 81257 bytes, 0.081 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HCL": 22908, + "Dockerfile": 2976, + "Shell": 1804, + "Smarty": 901 + } +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json index 560adddf7e..1ded9f921e 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json @@ -1,393 +1,393 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-collector", - "owner": "Enterprise-CMCS", - "name": "mac-fc-security-hub-collector", - "description": "Repo for security hub findings collector tool", - "commits_count": 86, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 28, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 25, - "closed_pull_requests_count": 3, - "forks_count": 1, - "stargazers_count": 5, - "watchers_count": 10, - "total_project_lines": 2144, - "average_project_lines": 69, - "total_project_comment_lines": 151, - "average_project_comment_lines": 5, - "total_project_blank_lines": 301, - "average_blank_lines": 10, - "commits_by_month": { - "2024/7": 2, - "2024/1": 1, - "2023/4": 4, - "2022/8": 2, - "2022/2": 1, - "2021/12": 2, - "2021/10": 4, - "2021/6": 14 + "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-collector", + "owner": "Enterprise-CMCS", + "name": "mac-fc-security-hub-collector", + "description": "Repo for security hub findings collector tool", + "commits_count": 86, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 28, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 25, + "closed_pull_requests_count": 3, + "forks_count": 1, + "stargazers_count": 5, + "watchers_count": 10, + "total_project_lines": 2144, + "average_project_lines": 69, + "total_project_comment_lines": 151, + "average_project_comment_lines": 5, + "total_project_blank_lines": 301, + "average_blank_lines": 10, + "commits_by_month": { + "2024/7": 2, + "2024/1": 1, + "2023/4": 4, + "2022/8": 2, + "2022/2": 1, + "2021/12": 2, + "2021/10": 4, + "2021/6": 14 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-15T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-04-05T13:31:36Z", + "ossf_scorecard": { + "date": "2024-10-14T20:41:35Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-collector", + "commit": "57ace6f0f26348b0972ea026bd3a12eb5e5788fa" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-15T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-04-05T13:31:36Z", - "ossf_scorecard": { - "date": "2024-10-14T20:41:35Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-collector", - "commit": "57ace6f0f26348b0972ea026bd3a12eb5e5788fa" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 2, - "reason": "3 out of 14 merged PRs checked by a CI test -- score normalized to 2", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 13/16 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Go", - "Bytes": 28095, - "CodeBytes": 0, - "Lines": 943, - "Code": 777, - "Comment": 65, - "Blank": 101, - "Complexity": 138, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 13084, - "CodeBytes": 0, - "Lines": 494, - "Code": 358, - "Comment": 64, - "Blank": 72, - "Complexity": 4, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2134, - "CodeBytes": 0, - "Lines": 101, - "Code": 101, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3424, - "CodeBytes": 0, - "Lines": 140, - "Code": 115, - "Comment": 4, - "Blank": 21, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 8380, - "CodeBytes": 0, - "Lines": 210, - "Code": 148, - "Comment": 0, - "Blank": 62, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 912, - "CodeBytes": 0, - "Lines": 34, - "Code": 9, - "Comment": 17, - "Blank": 8, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 190, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11336, - "CodeBytes": 0, - "Lines": 202, - "Code": 169, - "Comment": 0, - "Blank": 33, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 255, - "CodeBytes": 0, - "Lines": 14, - "Code": 9, - "Comment": 1, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 42793.92392735825, - "estimatedScheduleMonths_low": 4.300827496712634, - "estimatedPeople_low": 0.9693477234967882, - "estimatedCost_high": 133364.55740653686, - "estimatedScheduleMonths_high": 4.300827496712634, - "estimatedPeople_high": 0.9693477234967882, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGo 8 943 101 65 777 138\n(ULOC) 466\n-------------------------------------------------------------------------------\nTerraform 8 494 72 64 358 4\n(ULOC) 248\n-------------------------------------------------------------------------------\nJSON 4 101 0 0 101 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nYAML 4 140 21 4 115 0\n(ULOC) 111\n-------------------------------------------------------------------------------\nMarkdown 3 210 62 0 148 0\n(ULOC) 147\n-------------------------------------------------------------------------------\nBASH 1 34 8 17 9 1\n(ULOC) 24\n-------------------------------------------------------------------------------\nDockerfile 1 6 0 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 202 33 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nShell 1 14 4 1 9 0\n(ULOC) 11\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 31 2144 301 151 1692 143\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1190\nDRYness % 0.56\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $46,926\nEstimated Schedule Effort (organic) 4.30 months\nEstimated People Required (organic) 0.97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 67810 bytes, 0.068 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "Go": 28095, - "HCL": 13777, - "Shell": 1167, - "Dockerfile": 190 - } -} \ No newline at end of file + "score": 5.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 2, + "reason": "3 out of 14 merged PRs checked by a CI test -- score normalized to 2", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 13/16 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Go", + "Bytes": 28095, + "CodeBytes": 0, + "Lines": 943, + "Code": 777, + "Comment": 65, + "Blank": 101, + "Complexity": 138, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 13084, + "CodeBytes": 0, + "Lines": 494, + "Code": 358, + "Comment": 64, + "Blank": 72, + "Complexity": 4, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2134, + "CodeBytes": 0, + "Lines": 101, + "Code": 101, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3424, + "CodeBytes": 0, + "Lines": 140, + "Code": 115, + "Comment": 4, + "Blank": 21, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 8380, + "CodeBytes": 0, + "Lines": 210, + "Code": 148, + "Comment": 0, + "Blank": 62, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 912, + "CodeBytes": 0, + "Lines": 34, + "Code": 9, + "Comment": 17, + "Blank": 8, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 190, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11336, + "CodeBytes": 0, + "Lines": 202, + "Code": 169, + "Comment": 0, + "Blank": 33, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 255, + "CodeBytes": 0, + "Lines": 14, + "Code": 9, + "Comment": 1, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 42793.92392735825, + "estimatedScheduleMonths_low": 4.300827496712634, + "estimatedPeople_low": 0.9693477234967882, + "estimatedCost_high": 133364.55740653686, + "estimatedScheduleMonths_high": 4.300827496712634, + "estimatedPeople_high": 0.9693477234967882, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGo 8 943 101 65 777 138\n(ULOC) 466\n-------------------------------------------------------------------------------\nTerraform 8 494 72 64 358 4\n(ULOC) 248\n-------------------------------------------------------------------------------\nJSON 4 101 0 0 101 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nYAML 4 140 21 4 115 0\n(ULOC) 111\n-------------------------------------------------------------------------------\nMarkdown 3 210 62 0 148 0\n(ULOC) 147\n-------------------------------------------------------------------------------\nBASH 1 34 8 17 9 1\n(ULOC) 24\n-------------------------------------------------------------------------------\nDockerfile 1 6 0 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 202 33 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nShell 1 14 4 1 9 0\n(ULOC) 11\n───────────────────────────────────────────────────────────────────────────────\nTotal 31 2144 301 151 1692 143\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1190\nDRYness % 0.56\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $46,926\nEstimated Schedule Effort (organic) 4.30 months\nEstimated People Required (organic) 0.97\n───────────────────────────────────────────────────────────────────────────────\nProcessed 67810 bytes, 0.068 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 28095, + "HCL": 13777, + "Shell": 1167, + "Dockerfile": 190 + } +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json index 5f39a3b8a9..6abccdc38c 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json @@ -1,331 +1,331 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", - "owner": "Enterprise-CMCS", - "name": "mac-fc-security-hub-visibility", - "description": null, - "commits_count": 31, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 57, - "open_pull_requests_count": 11, - "merged_pull_requests_count": 32, - "closed_pull_requests_count": 14, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 3, - "total_project_lines": 119890, - "average_project_lines": 8564, - "total_project_comment_lines": 4132, - "average_project_comment_lines": 295, - "total_project_blank_lines": 8555, - "average_blank_lines": 611, - "commits_by_month": { - "2024/8": 4, - "2024/7": 10, - "2024/6": 5, - "2024/5": 2, - "2024/3": 2, - "2024/1": 1, - "2023/8": 1, - "2023/6": 1, - "2023/3": 4 + "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", + "owner": "Enterprise-CMCS", + "name": "mac-fc-security-hub-visibility", + "description": null, + "commits_count": 31, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 57, + "open_pull_requests_count": 11, + "merged_pull_requests_count": 32, + "closed_pull_requests_count": 14, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 3, + "total_project_lines": 119890, + "average_project_lines": 8564, + "total_project_comment_lines": 4132, + "average_project_comment_lines": 295, + "total_project_blank_lines": 8555, + "average_blank_lines": 611, + "commits_by_month": { + "2024/8": 4, + "2024/7": 10, + "2024/6": 5, + "2024/5": 2, + "2024/3": 2, + "2024/1": 1, + "2023/8": 1, + "2023/6": 1, + "2023/3": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-31T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2024-01-10T16:11:19Z", + "ossf_scorecard": { + "date": "2024-10-14T20:41:26Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", + "commit": "369785cc85cc90a49a265f1ee78920aae9b95e4b" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-31T00:00:00.000Z", - 2 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2024-01-10T16:11:19Z", - "ossf_scorecard": { - "date": "2024-10-14T20:41:26Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", - "commit": "369785cc85cc90a49a265f1ee78920aae9b95e4b" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "17 out of 17 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 4, - "reason": "Found 13/28 approved changesets -- score normalized to 4", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 5303, - "CodeBytes": 0, - "Lines": 179, - "Code": 158, - "Comment": 4, - "Blank": 17, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1243, - "CodeBytes": 0, - "Lines": 51, - "Code": 51, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 4948060, - "CodeBytes": 0, - "Lines": 119564, - "Code": 106918, - "Comment": 4128, - "Blank": 8518, - "Complexity": 9380, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2188, - "CodeBytes": 0, - "Lines": 44, - "Code": 29, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 1914, - "CodeBytes": 0, - "Lines": 52, - "Code": 47, - "Comment": 0, - "Blank": 5, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3336406.968315081, - "estimatedScheduleMonths_low": 22.51504654777715, - "estimatedPeople_low": 14.436292684145918, - "estimatedCost_high": 10397701.30480985, - "estimatedScheduleMonths_high": 22.51504654777715, - "estimatedPeople_high": 14.436292684145918, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 6 179 17 4 158 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nJSON 3 51 0 0 51 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nJavaScript 2 119564 8518 4128 106918 9380\n(ULOC) 56029\n-------------------------------------------------------------------------------\nMarkdown 2 44 15 0 29 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nTypeScript 1 52 5 0 47 2\n(ULOC) 48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 119890 8555 4132 107203 9382\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 56268\nDRYness % 0.47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,658,580\nEstimated Schedule Effort (organic) 22.52 months\nEstimated People Required (organic) 14.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 4958708 bytes, 4.959 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 1914 - } -} \ No newline at end of file + "score": 5.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "17 out of 17 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 4, + "reason": "Found 13/28 approved changesets -- score normalized to 4", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 5303, + "CodeBytes": 0, + "Lines": 179, + "Code": 158, + "Comment": 4, + "Blank": 17, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1243, + "CodeBytes": 0, + "Lines": 51, + "Code": 51, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 4948060, + "CodeBytes": 0, + "Lines": 119564, + "Code": 106918, + "Comment": 4128, + "Blank": 8518, + "Complexity": 9380, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2188, + "CodeBytes": 0, + "Lines": 44, + "Code": 29, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 1914, + "CodeBytes": 0, + "Lines": 52, + "Code": 47, + "Comment": 0, + "Blank": 5, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3336406.968315081, + "estimatedScheduleMonths_low": 22.51504654777715, + "estimatedPeople_low": 14.436292684145918, + "estimatedCost_high": 10397701.30480985, + "estimatedScheduleMonths_high": 22.51504654777715, + "estimatedPeople_high": 14.436292684145918, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 6 179 17 4 158 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nJSON 3 51 0 0 51 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nJavaScript 2 119564 8518 4128 106918 9380\n(ULOC) 56029\n-------------------------------------------------------------------------------\nMarkdown 2 44 15 0 29 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nTypeScript 1 52 5 0 47 2\n(ULOC) 48\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 119890 8555 4132 107203 9382\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 56268\nDRYness % 0.47\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,658,580\nEstimated Schedule Effort (organic) 22.52 months\nEstimated People Required (organic) 14.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 4958708 bytes, 4.959 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1914 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json b/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json index 149d8f1a66..b47b9c422f 100644 --- a/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json +++ b/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json @@ -1,330 +1,330 @@ { - "url": "https://github.com/Enterprise-CMCS/macfc-security-scan-report", - "owner": "Enterprise-CMCS", - "name": "macfc-security-scan-report", - "description": null, - "commits_count": 245, - "issues_count": 4, - "open_issues_count": 4, - "closed_issues_count": 0, - "pull_requests_count": 42, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 28, - "closed_pull_requests_count": 10, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 4, - "total_project_lines": 11495, - "average_project_lines": 821, - "total_project_comment_lines": 1779, - "average_project_comment_lines": 127, - "total_project_blank_lines": 1746, - "average_blank_lines": 125, - "commits_by_month": { - "2024/9": 4, - "2024/4": 10, - "2024/3": 7, - "2024/2": 9 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macfc-security-scan-report", + "owner": "Enterprise-CMCS", + "name": "macfc-security-scan-report", + "description": null, + "commits_count": 245, + "issues_count": 4, + "open_issues_count": 4, + "closed_issues_count": 0, + "pull_requests_count": 42, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 28, + "closed_pull_requests_count": 10, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 4, + "total_project_lines": 11495, + "average_project_lines": 821, + "total_project_comment_lines": 1779, + "average_project_comment_lines": 127, + "total_project_blank_lines": 1746, + "average_blank_lines": 125, + "commits_by_month": { + "2024/9": 4, + "2024/4": 10, + "2024/3": 7, + "2024/2": 9 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-17T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-06-06T16:15:58Z", - "ossf_scorecard": { - "date": "2024-10-14T20:41:08Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macfc-security-scan-report", - "commit": "ba67c243db85dcea5186098258841735a44fe34e" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "6 out of 6 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 3, - "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 9, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-09-18T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-06-06T16:15:58Z", + "ossf_scorecard": { + "date": "2024-10-14T20:41:08Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macfc-security-scan-report", + "commit": "ba67c243db85dcea5186098258841735a44fe34e" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 4905, - "CodeBytes": 0, - "Lines": 177, - "Code": 162, - "Comment": 3, - "Blank": 12, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 501705, - "CodeBytes": 0, - "Lines": 10534, - "Code": 7192, - "Comment": 1776, - "Blank": 1566, - "Complexity": 1527, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 21173, - "CodeBytes": 0, - "Lines": 420, - "Code": 341, - "Comment": 0, - "Blank": 79, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 863, - "CodeBytes": 0, - "Lines": 27, - "Code": 27, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 17925, - "CodeBytes": 0, - "Lines": 337, - "Code": 248, - "Comment": 0, - "Blank": 89, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 217817.60132431585, - "estimatedScheduleMonths_low": 7.981824063254876, - "estimatedPeople_low": 2.658522427565319, - "estimatedCost_high": 678814.7785952318, - "estimatedScheduleMonths_high": 7.981824063254876, - "estimatedPeople_high": 2.658522427565319, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 7 177 12 3 162 0\n(ULOC) 131\n-------------------------------------------------------------------------------\nJavaScript 3 10534 1566 1776 7192 1527\n(ULOC) 5636\n-------------------------------------------------------------------------------\nMarkdown 2 420 79 0 341 0\n(ULOC) 224\n-------------------------------------------------------------------------------\nJSON 1 27 0 0 27 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nPlain Text 1 337 89 0 248 0\n(ULOC) 124\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 11495 1746 1779 7970 1527\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 6111\nDRYness % 0.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $238,850\nEstimated Schedule Effort (organic) 7.98 months\nEstimated People Required (organic) 2.66\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 546571 bytes, 0.547 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 20306 - } -} \ No newline at end of file + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "6 out of 6 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 3, + "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 9, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 4905, + "CodeBytes": 0, + "Lines": 177, + "Code": 162, + "Comment": 3, + "Blank": 12, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 501705, + "CodeBytes": 0, + "Lines": 10534, + "Code": 7192, + "Comment": 1776, + "Blank": 1566, + "Complexity": 1527, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 21173, + "CodeBytes": 0, + "Lines": 420, + "Code": 341, + "Comment": 0, + "Blank": 79, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 863, + "CodeBytes": 0, + "Lines": 27, + "Code": 27, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 17925, + "CodeBytes": 0, + "Lines": 337, + "Code": 248, + "Comment": 0, + "Blank": 89, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 217817.60132431585, + "estimatedScheduleMonths_low": 7.981824063254876, + "estimatedPeople_low": 2.658522427565319, + "estimatedCost_high": 678814.7785952318, + "estimatedScheduleMonths_high": 7.981824063254876, + "estimatedPeople_high": 2.658522427565319, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 7 177 12 3 162 0\n(ULOC) 131\n-------------------------------------------------------------------------------\nJavaScript 3 10534 1566 1776 7192 1527\n(ULOC) 5636\n-------------------------------------------------------------------------------\nMarkdown 2 420 79 0 341 0\n(ULOC) 224\n-------------------------------------------------------------------------------\nJSON 1 27 0 0 27 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nPlain Text 1 337 89 0 248 0\n(ULOC) 124\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 11495 1746 1779 7970 1527\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 6111\nDRYness % 0.53\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $238,850\nEstimated Schedule Effort (organic) 7.98 months\nEstimated People Required (organic) 2.66\n───────────────────────────────────────────────────────────────────────────────\nProcessed 546571 bytes, 0.547 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 20306 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json b/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json index 1d2273428e..c4cec35d56 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json @@ -1,445 +1,445 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-appian-connector", - "owner": "Enterprise-CMCS", - "name": "macpro-appian-connector", - "description": "MACPro Platform team is working on building a Kafka Connector to stream data changes from Appian to Bigmac.", - "commits_count": 144, - "issues_count": 10, - "open_issues_count": 0, - "closed_issues_count": 10, - "pull_requests_count": 71, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 54, - "closed_pull_requests_count": 11, - "forks_count": 0, - "stargazers_count": 3, - "watchers_count": 5, - "total_project_lines": 5864, - "average_project_lines": 54, - "total_project_comment_lines": 150, - "average_project_comment_lines": 1, - "total_project_blank_lines": 735, - "average_blank_lines": 7, - "commits_by_month": { - "2023/12": 2, - "2023/7": 3, - "2023/6": 2, - "2023/5": 1, - "2023/4": 4, - "2023/3": 18 + "url": "https://github.com/Enterprise-CMCS/macpro-appian-connector", + "owner": "Enterprise-CMCS", + "name": "macpro-appian-connector", + "description": "MACPro Platform team is working on building a Kafka Connector to stream data changes from Appian to Bigmac.", + "commits_count": 144, + "issues_count": 10, + "open_issues_count": 0, + "closed_issues_count": 10, + "pull_requests_count": 71, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 54, + "closed_pull_requests_count": 11, + "forks_count": 0, + "stargazers_count": 3, + "watchers_count": 5, + "total_project_lines": 5864, + "average_project_lines": 54, + "total_project_comment_lines": 150, + "average_project_comment_lines": 1, + "total_project_blank_lines": 735, + "average_blank_lines": 7, + "commits_by_month": { + "2023/12": 2, + "2023/7": 3, + "2023/6": 2, + "2023/5": 1, + "2023/4": 4, + "2023/3": 18 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-12-12T21:16:45Z", + "ossf_scorecard": { + "date": "2024-10-14T20:43:05Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-appian-connector", + "commit": "c294d5670e6cab4d5c155710228797cd3da7e670" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-12-12T21:16:45Z", - "ossf_scorecard": { - "date": "2024-10-14T20:43:05Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-appian-connector", - "commit": "c294d5670e6cab4d5c155710228797cd3da7e670" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 5, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 2, - "reason": "4 out of 14 merged PRs checked by a CI test -- score normalized to 2", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 9/11 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "24 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 59069, - "CodeBytes": 0, - "Lines": 1261, - "Code": 906, - "Comment": 0, - "Blank": 355, - "Complexity": 0, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 44349, - "CodeBytes": 0, - "Lines": 1579, - "Code": 1428, - "Comment": 22, - "Blank": 129, - "Complexity": 79, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 32067, - "CodeBytes": 0, - "Lines": 1024, - "Code": 834, - "Comment": 70, - "Blank": 120, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 19430, - "CodeBytes": 0, - "Lines": 593, - "Code": 513, - "Comment": 29, - "Blank": 51, - "Complexity": 34, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 10180, - "CodeBytes": 0, - "Lines": 234, - "Code": 227, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 27158, - "CodeBytes": 0, - "Lines": 758, - "Code": 725, - "Comment": 2, - "Blank": 31, - "Complexity": 26, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 4628, - "CodeBytes": 0, - "Lines": 152, - "Code": 111, - "Comment": 19, - "Blank": 22, - "Complexity": 29, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 1439, - "CodeBytes": 0, - "Lines": 43, - "Code": 27, - "Comment": 8, - "Blank": 8, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5758, - "CodeBytes": 0, - "Lines": 179, - "Code": 177, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 85, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 132911.01245407187, - "estimatedScheduleMonths_low": 6.615763762363063, - "estimatedPeople_low": 1.9571787212398326, - "estimatedCost_high": 414208.7643208614, - "estimatedScheduleMonths_high": 6.615763762363063, - "estimatedPeople_high": 1.9571787212398326, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 28 1261 355 0 906 0\n(ULOC) 512\n-------------------------------------------------------------------------------\nTypeScript 28 1579 129 22 1428 79\n(ULOC) 1049\n-------------------------------------------------------------------------------\nYAML 19 1024 120 70 834 0\n(ULOC) 567\n-------------------------------------------------------------------------------\nJavaScript 11 593 51 29 513 34\n(ULOC) 354\n-------------------------------------------------------------------------------\nJSON 10 234 7 0 227 0\n(ULOC) 185\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 4 758 31 2 725 26\n(ULOC) 477\n-------------------------------------------------------------------------------\nShell 2 152 22 19 111 29\n(ULOC) 105\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 179 2 0 177 0\n(ULOC) 95\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 108 5864 735 150 4979 177\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3353\nDRYness % 0.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $145,745\nEstimated Schedule Effort (organic) 6.62 months\nEstimated People Required (organic) 1.96\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 205618 bytes, 0.206 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 19260, - "TypeScript": 16670, - "Shell": 1969 - } -} \ No newline at end of file + "score": 5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 5, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 2, + "reason": "4 out of 14 merged PRs checked by a CI test -- score normalized to 2", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 9/11 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "24 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 59069, + "CodeBytes": 0, + "Lines": 1261, + "Code": 906, + "Comment": 0, + "Blank": 355, + "Complexity": 0, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 44349, + "CodeBytes": 0, + "Lines": 1579, + "Code": 1428, + "Comment": 22, + "Blank": 129, + "Complexity": 79, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 32067, + "CodeBytes": 0, + "Lines": 1024, + "Code": 834, + "Comment": 70, + "Blank": 120, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 19430, + "CodeBytes": 0, + "Lines": 593, + "Code": 513, + "Comment": 29, + "Blank": 51, + "Complexity": 34, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 10180, + "CodeBytes": 0, + "Lines": 234, + "Code": 227, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 27158, + "CodeBytes": 0, + "Lines": 758, + "Code": 725, + "Comment": 2, + "Blank": 31, + "Complexity": 26, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 4628, + "CodeBytes": 0, + "Lines": 152, + "Code": 111, + "Comment": 19, + "Blank": 22, + "Complexity": 29, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 1439, + "CodeBytes": 0, + "Lines": 43, + "Code": 27, + "Comment": 8, + "Blank": 8, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5758, + "CodeBytes": 0, + "Lines": 179, + "Code": 177, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 85, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 132911.01245407187, + "estimatedScheduleMonths_low": 6.615763762363063, + "estimatedPeople_low": 1.9571787212398326, + "estimatedCost_high": 414208.7643208614, + "estimatedScheduleMonths_high": 6.615763762363063, + "estimatedPeople_high": 1.9571787212398326, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 28 1261 355 0 906 0\n(ULOC) 512\n-------------------------------------------------------------------------------\nTypeScript 28 1579 129 22 1428 79\n(ULOC) 1049\n-------------------------------------------------------------------------------\nYAML 19 1024 120 70 834 0\n(ULOC) 567\n-------------------------------------------------------------------------------\nJavaScript 11 593 51 29 513 34\n(ULOC) 354\n-------------------------------------------------------------------------------\nJSON 10 234 7 0 227 0\n(ULOC) 185\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 4 758 31 2 725 26\n(ULOC) 477\n-------------------------------------------------------------------------------\nShell 2 152 22 19 111 29\n(ULOC) 105\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 179 2 0 177 0\n(ULOC) 95\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 108 5864 735 150 4979 177\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3353\nDRYness % 0.57\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $145,745\nEstimated Schedule Effort (organic) 6.62 months\nEstimated People Required (organic) 1.96\n───────────────────────────────────────────────────────────────────────────────\nProcessed 205618 bytes, 0.206 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 19260, + "TypeScript": 16670, + "Shell": 1969 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json b/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json index 369f89a12f..6a0dfa56a1 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json @@ -1,302 +1,302 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-auth", - "owner": "Enterprise-CMCS", - "name": "macpro-auth", - "description": "An npm package that will bootstrap new applications with IDM authentication", - "commits_count": 12, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 35, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 28, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 5, - "total_project_lines": 369, - "average_project_lines": 34, - "total_project_comment_lines": 11, - "average_project_comment_lines": 1, - "total_project_blank_lines": 65, - "average_blank_lines": 6, - "commits_by_month": { - "2023/1": 11, - "2022/12": 1 + "url": "https://github.com/Enterprise-CMCS/macpro-auth", + "owner": "Enterprise-CMCS", + "name": "macpro-auth", + "description": "An npm package that will bootstrap new applications with IDM authentication", + "commits_count": 12, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 35, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 28, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 5, + "total_project_lines": 369, + "average_project_lines": 34, + "total_project_comment_lines": 11, + "average_project_comment_lines": 1, + "total_project_blank_lines": 65, + "average_blank_lines": 6, + "commits_by_month": { + "2023/1": 11, + "2022/12": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-12-22T20:07:38Z", + "ossf_scorecard": { + "date": "2024-10-14T20:46:16Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-auth", + "commit": "b85736a39ee9be4525ed7728be3224f9be809fb1" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-12-22T20:07:38Z", - "ossf_scorecard": { - "date": "2024-10-14T20:46:16Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-auth", - "commit": "b85736a39ee9be4525ed7728be3224f9be809fb1" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 3.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 2/4 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "10 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 3438, - "CodeBytes": 0, - "Lines": 122, - "Code": 74, - "Comment": 0, - "Blank": 48, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 12559, - "CodeBytes": 0, - "Lines": 157, - "Code": 151, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1451, - "CodeBytes": 0, - "Lines": 56, - "Code": 43, - "Comment": 11, - "Blank": 2, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1373, - "CodeBytes": 0, - "Lines": 34, - "Code": 25, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6788.483004543454, - "estimatedScheduleMonths_low": 2.1364880156586867, - "estimatedPeople_low": 0.3095435664276062, - "estimatedCost_high": 21155.87794425057, - "estimatedScheduleMonths_high": 2.1364880156586867, - "estimatedPeople_high": 0.3095435664276062, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 6 122 48 0 74 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nJSON 2 157 6 0 151 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nYAML 2 56 2 11 43 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 34 9 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 11 369 65 11 293 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 271\nDRYness % 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,443\nEstimated Schedule Effort (organic) 2.14 months\nEstimated People Required (organic) 0.31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 18821 bytes, 0.019 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {} -} \ No newline at end of file + "score": 3.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 2/4 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "10 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 3438, + "CodeBytes": 0, + "Lines": 122, + "Code": 74, + "Comment": 0, + "Blank": 48, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 12559, + "CodeBytes": 0, + "Lines": 157, + "Code": 151, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1451, + "CodeBytes": 0, + "Lines": 56, + "Code": 43, + "Comment": 11, + "Blank": 2, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1373, + "CodeBytes": 0, + "Lines": 34, + "Code": 25, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 6788.483004543454, + "estimatedScheduleMonths_low": 2.1364880156586867, + "estimatedPeople_low": 0.3095435664276062, + "estimatedCost_high": 21155.87794425057, + "estimatedScheduleMonths_high": 2.1364880156586867, + "estimatedPeople_high": 0.3095435664276062, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 6 122 48 0 74 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nJSON 2 157 6 0 151 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nYAML 2 56 2 11 43 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 34 9 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 11 369 65 11 293 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 271\nDRYness % 0.73\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,443\nEstimated Schedule Effort (organic) 2.14 months\nEstimated People Required (organic) 0.31\n───────────────────────────────────────────────────────────────────────────────\nProcessed 18821 bytes, 0.019 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {} +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json b/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json index e74e0ceb86..d0c8dc93a0 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json @@ -1,548 +1,563 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mako", - "owner": "Enterprise-CMCS", - "name": "macpro-mako", - "description": "The macpro-mako project, a.k.a. MAKO, a.k.a. Micro, is a redesign of MACPRO Onemac. The mission to be a modern submission and review portal for select CMS data remains the same, but the architecture is different in some important ways.", - "commits_count": 1539, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 791, - "open_pull_requests_count": 10, - "merged_pull_requests_count": 652, - "closed_pull_requests_count": 129, - "forks_count": 2, - "stargazers_count": 8, - "watchers_count": 5, - "total_project_lines": 73129, - "average_project_lines": 101, - "total_project_comment_lines": 3078, - "average_project_comment_lines": 4, - "total_project_blank_lines": 4391, - "average_blank_lines": 6, - "commits_by_month": { - "2024/10": 7, - "2024/9": 23 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 3 - ], - [ - "2024-09-24T00:00:00.000Z", - 2 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ], - [ - "2024-10-02T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mako", + "owner": "Enterprise-CMCS", + "name": "macpro-mako", + "description": "The macpro-mako project, a.k.a. MAKO, a.k.a. Micro, is a redesign of MACPRO Onemac. The mission to be a modern submission and review portal for select CMS data remains the same, but the architecture is different in some important ways.", + "commits_count": 1539, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 791, + "open_pull_requests_count": 10, + "merged_pull_requests_count": 652, + "closed_pull_requests_count": 129, + "forks_count": 2, + "stargazers_count": 8, + "watchers_count": 5, + "total_project_lines": 73129, + "average_project_lines": 101, + "total_project_comment_lines": 3078, + "average_project_comment_lines": 4, + "total_project_blank_lines": 4391, + "average_blank_lines": 6, + "commits_by_month": { + "2024/10": 7, + "2024/9": 23 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 3 + ], + [ + "2024-09-24T00:00:00.000Z", + 2 + ], + [ + "2024-09-25T00:00:00.000Z", + 1 + ], + [ + "2024-10-02T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-06T00:00:00.000Z", + 1 + ], + [ + "2024-05-07T00:00:00.000Z", + 1 + ], + [ + "2024-05-08T00:00:00.000Z", + 3 + ], + [ + "2024-05-13T00:00:00.000Z", + 2 + ], + [ + "2024-05-16T00:00:00.000Z", + 1 + ], + [ + "2024-05-23T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-06T00:00:00.000Z", - 1 - ], - [ - "2024-05-07T00:00:00.000Z", - 1 - ], - [ - "2024-05-08T00:00:00.000Z", - 3 - ], - [ - "2024-05-13T00:00:00.000Z", - 2 - ], - [ - "2024-05-16T00:00:00.000Z", - 1 - ], - [ - "2024-05-23T00:00:00.000Z", - 1 - ], - [ - "2024-05-28T00:00:00.000Z", - 1 - ], - [ - "2024-05-29T00:00:00.000Z", - 1 - ], - [ - "2024-06-06T00:00:00.000Z", - 2 - ], - [ - "2024-06-26T00:00:00.000Z", - 1 - ], - [ - "2024-06-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-10T00:00:00.000Z", - 1 - ] + [ + "2024-05-28T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-01-23T21:43:54Z", - "ossf_scorecard": { - "date": "2024-10-14T20:36:16Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mako", - "commit": "1daf6d51871018b1995ee43184a98d09b5cc1f90" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 6.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-05-29T00:00:00.000Z", + 1 + ], + [ + "2024-06-06T00:00:00.000Z", + 2 + ], + [ + "2024-06-26T00:00:00.000Z", + 1 + ], + [ + "2024-06-27T00:00:00.000Z", + 1 + ], + [ + "2024-08-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-06T00:00:00.000Z", + 1 + ], + [ + "2024-09-10T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-01-23T21:43:54Z", + "ossf_scorecard": { + "date": "2024-10-14T20:36:16Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mako", + "commit": "1daf6d51871018b1995ee43184a98d09b5cc1f90" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 2310395, - "CodeBytes": 0, - "Lines": 67389, - "Code": 59774, - "Comment": 3532, - "Blank": 4083, - "Complexity": 3082, - "Count": 679, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 95593, - "CodeBytes": 0, - "Lines": 1908, - "Code": 1369, - "Comment": 0, - "Blank": 539, - "Complexity": 0, - "Count": 44, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 415454, - "CodeBytes": 0, - "Lines": 12290, - "Code": 12283, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 24512, - "CodeBytes": 0, - "Lines": 847, - "Code": 699, - "Comment": 43, - "Blank": 105, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 712526, - "CodeBytes": 0, - "Lines": 17, - "Code": 15, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 1364, - "CodeBytes": 0, - "Lines": 43, - "Code": 34, - "Comment": 3, - "Blank": 6, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5546, - "CodeBytes": 0, - "Lines": 188, - "Code": 168, - "Comment": 12, - "Blank": 8, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 361, - "CodeBytes": 0, - "Lines": 23, - "Code": 12, - "Comment": 6, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 999, - "CodeBytes": 0, - "Lines": 36, - "Code": 20, - "Comment": 8, - "Blank": 8, - "Complexity": 5, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 2835, - "CodeBytes": 0, - "Lines": 146, - "Code": 112, - "Comment": 0, - "Blank": 34, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 360, - "CodeBytes": 0, - "Lines": 10, - "Code": 10, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 143, - "CodeBytes": 0, - "Lines": 8, - "Code": 7, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 914, - "CodeBytes": 0, - "Lines": 29, - "Code": 28, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 4183, - "CodeBytes": 0, - "Lines": 150, - "Code": 109, - "Comment": 19, - "Blank": 22, - "Complexity": 29, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2282003.646241755, - "estimatedScheduleMonths_low": 19.48888660282345, - "estimatedPeople_low": 11.40719362751374, - "estimatedCost_high": 7111720.037586241, - "estimatedScheduleMonths_high": 19.48888660282345, - "estimatedPeople_high": 11.40719362751374, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 679 67389 4083 3532 59774 3082\n(ULOC) 25921\n-------------------------------------------------------------------------------\nMarkdown 44 1908 539 0 1369 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nJSON 31 12290 7 0 12283 0\n(ULOC) 1684\n-------------------------------------------------------------------------------\nYAML 14 847 105 43 699 0\n(ULOC) 487\n-------------------------------------------------------------------------------\nSVG 6 17 1 1 15 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nTypeScript Typings 5 43 6 3 34 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nJavaScript 4 188 8 12 168 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nDocker ignore 2 23 5 6 12 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nBASH 1 36 8 8 20 5\n(ULOC) 23\n-------------------------------------------------------------------------------\nCSS 1 146 34 0 112 0\n(ULOC) 91\n-------------------------------------------------------------------------------\nDockerfile 1 10 0 0 10 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nGemfile 1 8 1 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nHTML 1 29 1 0 28 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 150 22 19 109 29\n(ULOC) 103\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 792 83115 4829 3624 74662 3116\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 29386\nDRYness % 0.35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,502,360\nEstimated Schedule Effort (organic) 19.49 months\nEstimated People Required (organic) 11.41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3576512 bytes, 3.577 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 2356763, - "JavaScript": 6749, - "CSS": 2835, - "Shell": 1624, - "HTML": 914, - "Dockerfile": 360 - } -} \ No newline at end of file + "score": 6.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 2390689, + "CodeBytes": 0, + "Lines": 69987, + "Code": 62213, + "Comment": 3582, + "Blank": 4192, + "Complexity": 3265, + "Count": 724, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 95593, + "CodeBytes": 0, + "Lines": 1908, + "Code": 1369, + "Comment": 0, + "Blank": 539, + "Complexity": 0, + "Count": 44, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 416855, + "CodeBytes": 0, + "Lines": 12334, + "Code": 12327, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 32, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 24461, + "CodeBytes": 0, + "Lines": 844, + "Code": 698, + "Comment": 43, + "Blank": 103, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 712526, + "CodeBytes": 0, + "Lines": 17, + "Code": 15, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 1356, + "CodeBytes": 0, + "Lines": 42, + "Code": 34, + "Comment": 3, + "Blank": 5, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5546, + "CodeBytes": 0, + "Lines": 188, + "Code": 168, + "Comment": 12, + "Blank": 8, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 361, + "CodeBytes": 0, + "Lines": 23, + "Code": 12, + "Comment": 6, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 999, + "CodeBytes": 0, + "Lines": 36, + "Code": 20, + "Comment": 8, + "Blank": 8, + "Complexity": 5, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 2835, + "CodeBytes": 0, + "Lines": 146, + "Code": 112, + "Comment": 0, + "Blank": 34, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 360, + "CodeBytes": 0, + "Lines": 10, + "Code": 10, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 143, + "CodeBytes": 0, + "Lines": 8, + "Code": 7, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 914, + "CodeBytes": 0, + "Lines": 29, + "Code": 28, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 4183, + "CodeBytes": 0, + "Lines": 150, + "Code": 109, + "Comment": 19, + "Blank": 22, + "Complexity": 29, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 70, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2361819.631808024, + "estimatedScheduleMonths_low": 19.745156415437975, + "estimatedPeople_low": 11.652943957175049, + "estimatedCost_high": 7360461.50862033, + "estimatedScheduleMonths_high": 19.745156415437975, + "estimatedPeople_high": 11.652943957175049, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 724 69987 4192 3582 62213 3265\n(ULOC) 26574\n-------------------------------------------------------------------------------\nMarkdown 44 1908 539 0 1369 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nJSON 32 12334 7 0 12327 0\n(ULOC) 1713\n-------------------------------------------------------------------------------\nYAML 14 844 103 43 698 0\n(ULOC) 488\n-------------------------------------------------------------------------------\nSVG 6 17 1 1 15 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nTypeScript Typings 5 42 5 3 34 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nJavaScript 4 188 8 12 168 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nDocker ignore 2 23 5 6 12 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nBASH 1 36 8 8 20 5\n(ULOC) 23\n-------------------------------------------------------------------------------\nCSS 1 146 34 0 112 0\n(ULOC) 91\n-------------------------------------------------------------------------------\nDockerfile 1 10 0 0 10 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nGemfile 1 8 1 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nHTML 1 29 1 0 28 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 150 22 19 109 29\n(ULOC) 103\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 839 85756 4935 3674 77147 3299\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 30072\nDRYness % 0.35\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,589,884\nEstimated Schedule Effort (organic) 19.75 months\nEstimated People Required (organic) 11.65\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3658218 bytes, 3.658 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 2356763, + "JavaScript": 6749, + "CSS": 2835, + "Shell": 1624, + "HTML": 914, + "Dockerfile": 360 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json index c55e7a847c..854f9b03c3 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json @@ -1,578 +1,578 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-carts", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-carts", - "description": "CARTS is the CMCS MDCT application for collecting state data related to coverage of CHIP state plans on an annual basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 4007, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1662, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 1328, - "closed_pull_requests_count": 330, - "forks_count": 1, - "stargazers_count": 4, - "watchers_count": 9, - "total_project_lines": 108356, - "average_project_lines": 254, - "total_project_comment_lines": 1588, - "average_project_comment_lines": 4, - "total_project_blank_lines": 3308, - "average_blank_lines": 8, - "commits_by_month": { - "2024/10": 7, - "2024/9": 18, - "2024/8": 5 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-10-09T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-carts", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-carts", + "description": "CARTS is the CMCS MDCT application for collecting state data related to coverage of CHIP state plans on an annual basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 4007, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1662, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 1328, + "closed_pull_requests_count": 330, + "forks_count": 1, + "stargazers_count": 4, + "watchers_count": 9, + "total_project_lines": 108356, + "average_project_lines": 254, + "total_project_comment_lines": 1588, + "average_project_comment_lines": 4, + "total_project_blank_lines": 3308, + "average_blank_lines": 8, + "commits_by_month": { + "2024/10": 7, + "2024/9": 18, + "2024/8": 5 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-10-09T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-08T00:00:00.000Z", + 2 + ], + [ + "2024-05-10T00:00:00.000Z", + 1 + ], + [ + "2024-05-15T00:00:00.000Z", + 1 + ], + [ + "2024-05-20T00:00:00.000Z", + 1 + ], + [ + "2024-06-05T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-08T00:00:00.000Z", - 2 - ], - [ - "2024-05-10T00:00:00.000Z", - 1 - ], - [ - "2024-05-15T00:00:00.000Z", - 1 - ], - [ - "2024-05-20T00:00:00.000Z", - 1 - ], - [ - "2024-06-05T00:00:00.000Z", - 1 - ], - [ - "2024-06-06T00:00:00.000Z", - 1 - ], - [ - "2024-06-10T00:00:00.000Z", - 1 - ], - [ - "2024-07-10T00:00:00.000Z", - 1 - ], - [ - "2024-07-22T00:00:00.000Z", - 1 - ], - [ - "2024-07-25T00:00:00.000Z", - 1 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ] + [ + "2024-06-06T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2019-12-06T19:56:57Z", - "ossf_scorecard": { - "date": "2024-10-14T20:39:42Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-carts", - "commit": "c2df4839b0ba21c855af74ba0dd9a2380bd154ce" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 27/30 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 13 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "22 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-06-10T00:00:00.000Z", + 1 + ], + [ + "2024-07-10T00:00:00.000Z", + 1 + ], + [ + "2024-07-22T00:00:00.000Z", + 1 + ], + [ + "2024-07-25T00:00:00.000Z", + 1 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2019-12-06T19:56:57Z", + "ossf_scorecard": { + "date": "2024-10-14T20:39:42Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-carts", + "commit": "c2df4839b0ba21c855af74ba0dd9a2380bd154ce" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSX", - "Bytes": 306908, - "CodeBytes": 0, - "Lines": 10354, - "Code": 8901, - "Comment": 418, - "Blank": 1035, - "Complexity": 274, - "Count": 123, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 217793, - "CodeBytes": 0, - "Lines": 7758, - "Code": 6225, - "Comment": 779, - "Blank": 754, - "Complexity": 337, - "Count": 98, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 383019, - "CodeBytes": 0, - "Lines": 307, - "Code": 305, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 57, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 125563, - "CodeBytes": 0, - "Lines": 4452, - "Code": 3824, - "Comment": 210, - "Blank": 418, - "Complexity": 252, - "Count": 50, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3965774, - "CodeBytes": 0, - "Lines": 81963, - "Code": 81959, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 51114, - "CodeBytes": 0, - "Lines": 901, - "Code": 602, - "Comment": 0, - "Blank": 299, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 39645, - "CodeBytes": 0, - "Lines": 2163, - "Code": 1785, - "Comment": 57, - "Blank": 321, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 34934, - "CodeBytes": 0, - "Lines": 943, - "Code": 853, - "Comment": 28, - "Blank": 62, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15401, - "CodeBytes": 0, - "Lines": 486, - "Code": 344, - "Comment": 58, - "Blank": 84, - "Complexity": 72, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 61946, - "CodeBytes": 0, - "Lines": 1746, - "Code": 1689, - "Comment": 10, - "Blank": 47, - "Complexity": 132, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1176, - "CodeBytes": 0, - "Lines": 31, - "Code": 24, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2599, - "CodeBytes": 0, - "Lines": 48, - "Code": 47, - "Comment": 0, - "Blank": 1, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2405, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 2678, - "CodeBytes": 0, - "Lines": 80, - "Code": 58, - "Comment": 17, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "ReStructuredText", - "Bytes": 59263, - "CodeBytes": 0, - "Lines": 1200, - "Code": 896, - "Comment": 0, - "Blank": 304, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 38, - "CodeBytes": 0, - "Lines": 1, - "Code": 0, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 326, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3348531.7191040465, - "estimatedScheduleMonths_low": 22.546103702819963, - "estimatedPeople_low": 14.468797049969693, - "estimatedCost_high": 10435487.32381058, - "estimatedScheduleMonths_high": 22.546103702819963, - "estimatedPeople_high": 14.468797049969693, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSX 123 10354 1035 418 8901 274\n(ULOC) 5075\n-------------------------------------------------------------------------------\nJavaScript 98 7758 754 779 6225 337\n(ULOC) 3721\n-------------------------------------------------------------------------------\nSVG 57 307 0 2 305 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nTypeScript 50 4452 418 210 3824 252\n(ULOC) 2062\n-------------------------------------------------------------------------------\nJSON 28 81963 4 0 81959 0\n(ULOC) 8828\n-------------------------------------------------------------------------------\nMarkdown 16 901 299 0 602 0\n(ULOC) 481\n-------------------------------------------------------------------------------\nSass 15 2163 321 57 1785 0\n(ULOC) 1047\n-------------------------------------------------------------------------------\nYAML 15 943 62 28 853 0\n(ULOC) 593\n-------------------------------------------------------------------------------\nShell 12 486 84 58 344 72\n(ULOC) 312\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1746 47 10 1689 132\n(ULOC) 967\n-------------------------------------------------------------------------------\nPlain Text 2 31 7 0 24 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nSmarty Template 2 48 1 0 47 1\n(ULOC) 41\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 80 5 17 58 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nReStructuredText 1 1200 304 0 896 0\n(ULOC) 626\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 430 112525 3355 1596 107574 1077\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 23533\nDRYness % 0.21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,671,876\nEstimated Schedule Effort (organic) 22.55 months\nEstimated People Required (organic) 14.47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5270621 bytes, 5.271 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 553436, - "TypeScript": 125563, - "SCSS": 39645, - "Shell": 7587, - "HTML": 2678, - "Smarty": 2599 - } -} \ No newline at end of file + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 27/30 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 13 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "22 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSX", + "Bytes": 306908, + "CodeBytes": 0, + "Lines": 10354, + "Code": 8901, + "Comment": 418, + "Blank": 1035, + "Complexity": 274, + "Count": 123, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 246528, + "CodeBytes": 0, + "Lines": 8810, + "Code": 7214, + "Comment": 804, + "Blank": 792, + "Complexity": 357, + "Count": 99, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 383019, + "CodeBytes": 0, + "Lines": 307, + "Code": 305, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 57, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 125563, + "CodeBytes": 0, + "Lines": 4452, + "Code": 3824, + "Comment": 210, + "Blank": 418, + "Complexity": 252, + "Count": 50, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3965774, + "CodeBytes": 0, + "Lines": 81963, + "Code": 81959, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 51114, + "CodeBytes": 0, + "Lines": 901, + "Code": 602, + "Comment": 0, + "Blank": 299, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 39645, + "CodeBytes": 0, + "Lines": 2163, + "Code": 1785, + "Comment": 57, + "Blank": 321, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 35048, + "CodeBytes": 0, + "Lines": 947, + "Code": 857, + "Comment": 28, + "Blank": 62, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 15401, + "CodeBytes": 0, + "Lines": 486, + "Code": 344, + "Comment": 58, + "Blank": 84, + "Complexity": 72, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 61946, + "CodeBytes": 0, + "Lines": 1746, + "Code": 1689, + "Comment": 10, + "Blank": 47, + "Complexity": 132, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1176, + "CodeBytes": 0, + "Lines": 31, + "Code": 24, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 2599, + "CodeBytes": 0, + "Lines": 48, + "Code": 47, + "Comment": 0, + "Blank": 1, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2405, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 2678, + "CodeBytes": 0, + "Lines": 80, + "Code": 58, + "Comment": 17, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "ReStructuredText", + "Bytes": 59263, + "CodeBytes": 0, + "Lines": 1200, + "Code": 896, + "Comment": 0, + "Blank": 304, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 38, + "CodeBytes": 0, + "Lines": 1, + "Code": 0, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 326, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3380994.488501575, + "estimatedScheduleMonths_low": 22.628914295153336, + "estimatedPeople_low": 14.555604723750745, + "estimatedCost_high": 10536655.491521508, + "estimatedScheduleMonths_high": 22.628914295153336, + "estimatedPeople_high": 14.555604723750745, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSX 123 10354 1035 418 8901 274\n(ULOC) 5075\n-------------------------------------------------------------------------------\nJavaScript 99 8810 792 804 7214 357\n(ULOC) 4385\n-------------------------------------------------------------------------------\nSVG 57 307 0 2 305 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nTypeScript 50 4452 418 210 3824 252\n(ULOC) 2062\n-------------------------------------------------------------------------------\nJSON 28 81963 4 0 81959 0\n(ULOC) 8828\n-------------------------------------------------------------------------------\nMarkdown 16 901 299 0 602 0\n(ULOC) 481\n-------------------------------------------------------------------------------\nSass 15 2163 321 57 1785 0\n(ULOC) 1047\n-------------------------------------------------------------------------------\nYAML 15 947 62 28 857 0\n(ULOC) 596\n-------------------------------------------------------------------------------\nShell 12 486 84 58 344 72\n(ULOC) 312\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1746 47 10 1689 132\n(ULOC) 967\n-------------------------------------------------------------------------------\nPlain Text 2 31 7 0 24 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nSmarty Template 2 48 1 0 47 1\n(ULOC) 41\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 80 5 17 58 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nReStructuredText 1 1200 304 0 896 0\n(ULOC) 626\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 431 113581 3393 1621 108567 1097\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 24197\nDRYness % 0.21\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,707,473\nEstimated Schedule Effort (organic) 22.63 months\nEstimated People Required (organic) 14.56\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5299470 bytes, 5.299 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 553436, + "TypeScript": 125563, + "SCSS": 39645, + "Shell": 7587, + "HTML": 2678, + "Smarty": 2599 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json index 513ace3df6..5d732dd67c 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json @@ -1,302 +1,302 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-core", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-core", - "description": "mdct-core is a CMCS MDCT repo currently being used for spiking consolidation of CI actions.", - "commits_count": 80, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 78, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 57, - "closed_pull_requests_count": 21, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 10, - "total_project_lines": 373, - "average_project_lines": 37, - "total_project_comment_lines": 5, - "average_project_comment_lines": 1, - "total_project_blank_lines": 66, - "average_blank_lines": 7, - "commits_by_month": { - "2024/7": 10, - "2024/6": 2, - "2024/4": 17, - "2024/3": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-06-11T00:00:00.000Z", - 2 - ], - [ - "2024-07-08T00:00:00.000Z", - 1 - ], - [ - "2024-07-11T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-core", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-core", + "description": "mdct-core is a CMCS MDCT repo currently being used for spiking consolidation of CI actions.", + "commits_count": 80, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 78, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 57, + "closed_pull_requests_count": 21, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 10, + "total_project_lines": 373, + "average_project_lines": 37, + "total_project_comment_lines": 5, + "average_project_comment_lines": 1, + "total_project_blank_lines": 66, + "average_blank_lines": 7, + "commits_by_month": { + "2024/7": 10, + "2024/6": 2, + "2024/4": 17, + "2024/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-06-11T00:00:00.000Z", + 2 + ], + [ + "2024-07-08T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-07-24T14:47:20Z", - "ossf_scorecard": { - "date": "2024-10-14T20:41:18Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-core", - "commit": "d324e425febaafbf32a9d8af448b99b04d2ef828" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 7/30 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 1, - "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-07-11T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-07-24T14:47:20Z", + "ossf_scorecard": { + "date": "2024-10-14T20:41:18Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-core", + "commit": "d324e425febaafbf32a9d8af448b99b04d2ef828" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 6820, - "CodeBytes": 0, - "Lines": 236, - "Code": 209, - "Comment": 5, - "Blank": 22, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4615, - "CodeBytes": 0, - "Lines": 106, - "Code": 71, - "Comment": 0, - "Blank": 35, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7007.595479296463, - "estimatedScheduleMonths_low": 2.1624349440332704, - "estimatedPeople_low": 0.31570065362504834, - "estimatedCost_high": 21838.72811399171, - "estimatedScheduleMonths_high": 2.1624349440332704, - "estimatedPeople_high": 0.31570065362504834, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 7 236 22 5 209 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nMarkdown 2 106 35 0 71 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 373 66 5 302 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 240\nDRYness % 0.64\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,684\nEstimated Schedule Effort (organic) 2.16 months\nEstimated People Required (organic) 0.32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 12762 bytes, 0.013 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": {} -} \ No newline at end of file + "score": 5.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 7/30 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 1, + "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 6820, + "CodeBytes": 0, + "Lines": 236, + "Code": 209, + "Comment": 5, + "Blank": 22, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4615, + "CodeBytes": 0, + "Lines": 106, + "Code": 71, + "Comment": 0, + "Blank": 35, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7007.595479296463, + "estimatedScheduleMonths_low": 2.1624349440332704, + "estimatedPeople_low": 0.31570065362504834, + "estimatedCost_high": 21838.72811399171, + "estimatedScheduleMonths_high": 2.1624349440332704, + "estimatedPeople_high": 0.31570065362504834, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 7 236 22 5 209 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nMarkdown 2 106 35 0 71 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 373 66 5 302 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 240\nDRYness % 0.64\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,684\nEstimated Schedule Effort (organic) 2.16 months\nEstimated People Required (organic) 0.32\n───────────────────────────────────────────────────────────────────────────────\nProcessed 12762 bytes, 0.013 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {} +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json index 5d8ebd7a38..b9b34082df 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json @@ -1,556 +1,556 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mcr", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-mcr", - "description": "MCR is the CMCS MDCT application for collecting state data related to Managed Care plans and performance. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 1453, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1498, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 1248, - "closed_pull_requests_count": 246, - "forks_count": 3, - "stargazers_count": 5, - "watchers_count": 11, - "total_project_lines": 73094, - "average_project_lines": 148, - "total_project_comment_lines": 2523, - "average_project_comment_lines": 5, - "total_project_blank_lines": 4595, - "average_blank_lines": 9, - "commits_by_month": { - "2024/10": 9, - "2024/9": 15, - "2024/8": 6 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-10-08T00:00:00.000Z", - 1 - ], - [ - "2024-10-16T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mcr", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-mcr", + "description": "MCR is the CMCS MDCT application for collecting state data related to Managed Care plans and performance. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 1453, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1498, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 1248, + "closed_pull_requests_count": 246, + "forks_count": 3, + "stargazers_count": 5, + "watchers_count": 11, + "total_project_lines": 73094, + "average_project_lines": 148, + "total_project_comment_lines": 2523, + "average_project_comment_lines": 5, + "total_project_blank_lines": 4595, + "average_blank_lines": 9, + "commits_by_month": { + "2024/10": 9, + "2024/9": 15, + "2024/8": 6 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-10-08T00:00:00.000Z", + 1 + ], + [ + "2024-10-16T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-06T00:00:00.000Z", + 2 + ], + [ + "2024-05-07T00:00:00.000Z", + 2 + ], + [ + "2024-05-10T00:00:00.000Z", + 1 + ], + [ + "2024-05-13T00:00:00.000Z", + 1 + ], + [ + "2024-05-20T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-06T00:00:00.000Z", - 2 - ], - [ - "2024-05-07T00:00:00.000Z", - 2 - ], - [ - "2024-05-10T00:00:00.000Z", - 1 - ], - [ - "2024-05-13T00:00:00.000Z", - 1 - ], - [ - "2024-05-20T00:00:00.000Z", - 1 - ], - [ - "2024-05-22T00:00:00.000Z", - 1 - ], - [ - "2024-06-05T00:00:00.000Z", - 1 - ], - [ - "2024-06-06T00:00:00.000Z", - 1 - ], - [ - "2024-06-14T00:00:00.000Z", - 1 - ], - [ - "2024-06-18T00:00:00.000Z", - 1 - ], - [ - "2024-07-10T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ] + [ + "2024-05-22T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-04T14:51:19Z", - "ossf_scorecard": { - "date": "2024-10-14T20:38:38Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-mcr", - "commit": "8955a5601f0ca9511abd95a86145cf1c488055f7" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "20 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-06-05T00:00:00.000Z", + 1 + ], + [ + "2024-06-06T00:00:00.000Z", + 1 + ], + [ + "2024-06-14T00:00:00.000Z", + 1 + ], + [ + "2024-06-18T00:00:00.000Z", + 1 + ], + [ + "2024-07-10T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-04T14:51:19Z", + "ossf_scorecard": { + "date": "2024-10-14T20:38:38Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-mcr", + "commit": "8955a5601f0ca9511abd95a86145cf1c488055f7" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 1266354, - "CodeBytes": 0, - "Lines": 43738, - "Code": 37943, - "Comment": 2080, - "Blank": 3715, - "Complexity": 1939, - "Count": 345, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 774711, - "CodeBytes": 0, - "Lines": 17058, - "Code": 17052, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 53, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 77520, - "CodeBytes": 0, - "Lines": 2580, - "Code": 1931, - "Comment": 323, - "Blank": 326, - "Complexity": 103, - "Count": 35, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 36825, - "CodeBytes": 0, - "Lines": 993, - "Code": 897, - "Comment": 29, - "Blank": 67, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 57260, - "CodeBytes": 0, - "Lines": 943, - "Code": 632, - "Comment": 0, - "Blank": 311, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15397, - "CodeBytes": 0, - "Lines": 470, - "Code": 343, - "Comment": 49, - "Blank": 78, - "Complexity": 67, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 62109, - "CodeBytes": 0, - "Lines": 1765, - "Code": 1712, - "Comment": 11, - "Blank": 42, - "Complexity": 126, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 288472, - "CodeBytes": 0, - "Lines": 60, - "Code": 60, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2816, - "CodeBytes": 0, - "Lines": 61, - "Code": 59, - "Comment": 0, - "Blank": 2, - "Complexity": 2, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 164, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 572, - "CodeBytes": 0, - "Lines": 20, - "Code": 20, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2443, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1493, - "CodeBytes": 0, - "Lines": 38, - "Code": 36, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 2286, - "CodeBytes": 0, - "Lines": 135, - "Code": 108, - "Comment": 8, - "Blank": 19, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 60, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1840921.8201426242, - "estimatedScheduleMonths_low": 17.961402823251365, - "estimatedPeople_low": 9.984920248812626, - "estimatedCost_high": 5737116.422885441, - "estimatedScheduleMonths_high": 17.961402823251365, - "estimatedPeople_high": 9.984920248812626, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 345 43738 3715 2080 37943 1939\n(ULOC) 18115\n-------------------------------------------------------------------------------\nJSON 53 17058 6 0 17052 0\n(ULOC) 3891\n-------------------------------------------------------------------------------\nJavaScript 35 2580 326 323 1931 103\n(ULOC) 1360\n-------------------------------------------------------------------------------\nYAML 15 993 67 29 897 0\n(ULOC) 615\n-------------------------------------------------------------------------------\nMarkdown 14 943 311 0 632 0\n(ULOC) 519\n-------------------------------------------------------------------------------\nShell 9 470 78 49 343 67\n(ULOC) 321\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1765 42 11 1712 126\n(ULOC) 955\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nSmarty Template 2 61 2 0 59 2\n(ULOC) 55\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 38 1 1 36 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSass 1 135 19 8 108 0\n(ULOC) 67\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 491 67949 4581 2518 60850 2246\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 25878\nDRYness % 0.38\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,018,686\nEstimated Schedule Effort (organic) 17.96 months\nEstimated People Required (organic) 9.98\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2588549 bytes, 2.589 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 1268315, - "JavaScript": 77499, - "Shell": 6683, - "Smarty": 2816, - "SCSS": 2286, - "HTML": 1492 - } -} \ No newline at end of file + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "20 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 1278062, + "CodeBytes": 0, + "Lines": 44101, + "Code": 38277, + "Comment": 2085, + "Blank": 3739, + "Complexity": 1956, + "Count": 347, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1020252, + "CodeBytes": 0, + "Lines": 21953, + "Code": 21947, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 77499, + "CodeBytes": 0, + "Lines": 2580, + "Code": 1931, + "Comment": 323, + "Blank": 326, + "Complexity": 103, + "Count": 35, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 36825, + "CodeBytes": 0, + "Lines": 993, + "Code": 897, + "Comment": 29, + "Blank": 67, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 57260, + "CodeBytes": 0, + "Lines": 943, + "Code": 632, + "Comment": 0, + "Blank": 311, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 15397, + "CodeBytes": 0, + "Lines": 470, + "Code": 343, + "Comment": 49, + "Blank": 78, + "Complexity": 67, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 62109, + "CodeBytes": 0, + "Lines": 1765, + "Code": 1712, + "Comment": 11, + "Blank": 42, + "Complexity": 126, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 288472, + "CodeBytes": 0, + "Lines": 60, + "Code": 60, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 2816, + "CodeBytes": 0, + "Lines": 61, + "Code": 59, + "Comment": 0, + "Blank": 2, + "Complexity": 2, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 164, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 572, + "CodeBytes": 0, + "Lines": 20, + "Code": 20, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2443, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1492, + "CodeBytes": 0, + "Lines": 38, + "Code": 36, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 2286, + "CodeBytes": 0, + "Lines": 135, + "Code": 108, + "Comment": 8, + "Blank": 19, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 60, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2007374.34217034, + "estimatedScheduleMonths_low": 18.562035625524494, + "estimatedPeople_low": 10.535430220017354, + "estimatedCost_high": 6255855.180450892, + "estimatedScheduleMonths_high": 18.562035625524494, + "estimatedPeople_high": 10.535430220017354, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 347 44101 3739 2085 38277 1956\n(ULOC) 18301\n-------------------------------------------------------------------------------\nJSON 54 21953 6 0 21947 0\n(ULOC) 3997\n-------------------------------------------------------------------------------\nJavaScript 35 2580 326 323 1931 103\n(ULOC) 1360\n-------------------------------------------------------------------------------\nYAML 15 993 67 29 897 0\n(ULOC) 615\n-------------------------------------------------------------------------------\nMarkdown 14 943 311 0 632 0\n(ULOC) 519\n-------------------------------------------------------------------------------\nShell 9 470 78 49 343 67\n(ULOC) 321\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1765 42 11 1712 126\n(ULOC) 955\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nSmarty Template 2 61 2 0 59 2\n(ULOC) 55\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 38 1 1 36 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSass 1 135 19 8 108 0\n(ULOC) 67\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 494 73207 4605 2523 66079 2263\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 26171\nDRYness % 0.36\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,201,212\nEstimated Schedule Effort (organic) 18.56 months\nEstimated People Required (organic) 10.54\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2845776 bytes, 2.846 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1268315, + "JavaScript": 77499, + "Shell": 6683, + "Smarty": 2816, + "SCSS": 2286, + "HTML": 1492 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json index 50bda44bf2..a0379519e5 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json @@ -1,582 +1,582 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mfp", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-mfp", - "description": "MFP is the CMCS MDCT application for collecting state data related to the Money Follows the Person program. The collected data assists CMCS in monitoring and managing grantee progress and identifying challenges and improvement opportunities.", - "commits_count": 671, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 793, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 664, - "closed_pull_requests_count": 125, - "forks_count": 3, - "stargazers_count": 3, - "watchers_count": 11, - "total_project_lines": 65461, - "average_project_lines": 124, - "total_project_comment_lines": 2671, - "average_project_comment_lines": 5, - "total_project_blank_lines": 5283, - "average_blank_lines": 10, - "commits_by_month": { - "2024/10": 14, - "2024/9": 16 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 2 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ], - [ - "2024-10-01T00:00:00.000Z", - 2 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mfp", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-mfp", + "description": "MFP is the CMCS MDCT application for collecting state data related to the Money Follows the Person program. The collected data assists CMCS in monitoring and managing grantee progress and identifying challenges and improvement opportunities.", + "commits_count": 671, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 793, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 664, + "closed_pull_requests_count": 125, + "forks_count": 3, + "stargazers_count": 3, + "watchers_count": 11, + "total_project_lines": 65461, + "average_project_lines": 124, + "total_project_comment_lines": 2671, + "average_project_comment_lines": 5, + "total_project_blank_lines": 5283, + "average_blank_lines": 10, + "commits_by_month": { + "2024/10": 14, + "2024/9": 16 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 2 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ], + [ + "2024-10-01T00:00:00.000Z", + 2 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-06T00:00:00.000Z", + 1 + ], + [ + "2024-05-07T00:00:00.000Z", + 1 + ], + [ + "2024-05-08T00:00:00.000Z", + 2 + ], + [ + "2024-05-13T00:00:00.000Z", + 1 + ], + [ + "2024-05-14T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-06T00:00:00.000Z", - 1 - ], - [ - "2024-05-07T00:00:00.000Z", - 1 - ], - [ - "2024-05-08T00:00:00.000Z", - 2 - ], - [ - "2024-05-13T00:00:00.000Z", - 1 - ], - [ - "2024-05-14T00:00:00.000Z", - 1 - ], - [ - "2024-05-16T00:00:00.000Z", - 1 - ], - [ - "2024-05-18T00:00:00.000Z", - 1 - ], - [ - "2024-05-22T00:00:00.000Z", - 1 - ], - [ - "2024-06-04T00:00:00.000Z", - 1 - ], - [ - "2024-06-05T00:00:00.000Z", - 1 - ], - [ - "2024-06-10T00:00:00.000Z", - 2 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ] + [ + "2024-05-16T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-02-02T15:07:39Z", - "ossf_scorecard": { - "date": "2024-10-14T20:32:15Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-mfp", - "commit": "fe1fb0156fd2aeabcc5cbcf2e8b2b0c5a37a1512" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "17 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-05-18T00:00:00.000Z", + 1 + ], + [ + "2024-05-22T00:00:00.000Z", + 1 + ], + [ + "2024-06-04T00:00:00.000Z", + 1 + ], + [ + "2024-06-05T00:00:00.000Z", + 1 + ], + [ + "2024-06-10T00:00:00.000Z", + 2 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-02-02T15:07:39Z", + "ossf_scorecard": { + "date": "2024-10-14T20:32:15Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-mfp", + "commit": "fe1fb0156fd2aeabcc5cbcf2e8b2b0c5a37a1512" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 1598975, - "CodeBytes": 0, - "Lines": 55273, - "Code": 48271, - "Comment": 2276, - "Blank": 4726, - "Complexity": 2796, - "Count": 453, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 66200, - "CodeBytes": 0, - "Lines": 2188, - "Code": 1608, - "Comment": 297, - "Blank": 283, - "Complexity": 85, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 157569, - "CodeBytes": 0, - "Lines": 4099, - "Code": 4094, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 23, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 42837, - "CodeBytes": 0, - "Lines": 1145, - "Code": 1029, - "Comment": 40, - "Blank": 76, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 41209, - "CodeBytes": 0, - "Lines": 616, - "Code": 408, - "Comment": 0, - "Blank": 208, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15399, - "CodeBytes": 0, - "Lines": 470, - "Code": 344, - "Comment": 49, - "Blank": 77, - "Complexity": 67, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 59392, - "CodeBytes": 0, - "Lines": 1701, - "Code": 1649, - "Comment": 11, - "Blank": 41, - "Complexity": 122, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 256, - "CodeBytes": 0, - "Lines": 6, - "Code": 5, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 277703, - "CodeBytes": 0, - "Lines": 60, - "Code": 60, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 898, - "CodeBytes": 0, - "Lines": 31, - "Code": 31, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2910, - "CodeBytes": 0, - "Lines": 61, - "Code": 58, - "Comment": 0, - "Blank": 3, - "Complexity": 2, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2404, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1661, - "CodeBytes": 0, - "Lines": 52, - "Code": 47, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 4110, - "CodeBytes": 0, - "Lines": 113, - "Code": 74, - "Comment": 30, - "Blank": 9, - "Complexity": 16, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 2390, - "CodeBytes": 0, - "Lines": 138, - "Code": 111, - "Comment": 8, - "Blank": 19, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1748974.9277750284, - "estimatedScheduleMonths_low": 17.61507852562794, - "estimatedPeople_low": 9.672717593847594, - "estimatedCost_high": 5450569.748027438, - "estimatedScheduleMonths_high": 17.61507852562794, - "estimatedPeople_high": 9.672717593847594, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 453 55273 4726 2276 48271 2796\n(ULOC) 23525\n-------------------------------------------------------------------------------\nJavaScript 30 2188 283 297 1608 85\n(ULOC) 1233\n-------------------------------------------------------------------------------\nJSON 23 4099 5 0 4094 0\n(ULOC) 1558\n-------------------------------------------------------------------------------\nYAML 16 1145 76 40 1029 0\n(ULOC) 698\n-------------------------------------------------------------------------------\nMarkdown 13 616 208 0 408 0\n(ULOC) 328\n-------------------------------------------------------------------------------\nShell 9 470 77 49 344 67\n(ULOC) 322\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1701 41 11 1649 122\n(ULOC) 926\n-------------------------------------------------------------------------------\nTypeScript Typings 4 6 0 1 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nXML 3 31 0 0 31 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nSmarty Template 2 61 3 0 58 2\n(ULOC) 55\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 52 3 2 47 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 113 9 30 74 16\n(ULOC) 86\n-------------------------------------------------------------------------------\nSass 1 138 19 8 111 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 569 66158 5476 2730 57952 3097\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 28885\nDRYness % 0.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,917,861\nEstimated Schedule Effort (organic) 17.62 months\nEstimated People Required (organic) 9.67\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2281067 bytes, 2.281 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 1598656, - "JavaScript": 66200, - "Shell": 6646, - "Python": 4110, - "Smarty": 2910, - "SCSS": 2390, - "HTML": 1661 - } -} \ No newline at end of file + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "17 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 1606776, + "CodeBytes": 0, + "Lines": 55484, + "Code": 48463, + "Comment": 2277, + "Blank": 4744, + "Complexity": 2804, + "Count": 454, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 66200, + "CodeBytes": 0, + "Lines": 2188, + "Code": 1608, + "Comment": 297, + "Blank": 283, + "Complexity": 85, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 157569, + "CodeBytes": 0, + "Lines": 4099, + "Code": 4094, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 23, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 42837, + "CodeBytes": 0, + "Lines": 1145, + "Code": 1029, + "Comment": 40, + "Blank": 76, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 41209, + "CodeBytes": 0, + "Lines": 616, + "Code": 408, + "Comment": 0, + "Blank": 208, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 15399, + "CodeBytes": 0, + "Lines": 470, + "Code": 344, + "Comment": 49, + "Blank": 77, + "Complexity": 67, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 59392, + "CodeBytes": 0, + "Lines": 1701, + "Code": 1649, + "Comment": 11, + "Blank": 41, + "Complexity": 122, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 256, + "CodeBytes": 0, + "Lines": 6, + "Code": 5, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 277703, + "CodeBytes": 0, + "Lines": 60, + "Code": 60, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 898, + "CodeBytes": 0, + "Lines": 31, + "Code": 31, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 2910, + "CodeBytes": 0, + "Lines": 61, + "Code": 58, + "Comment": 0, + "Blank": 3, + "Complexity": 2, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2404, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1661, + "CodeBytes": 0, + "Lines": 52, + "Code": 47, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 4110, + "CodeBytes": 0, + "Lines": 113, + "Code": 74, + "Comment": 30, + "Blank": 9, + "Complexity": 16, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 2390, + "CodeBytes": 0, + "Lines": 138, + "Code": 111, + "Comment": 8, + "Blank": 19, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1755059.662023326, + "estimatedScheduleMonths_low": 17.63834113625768, + "estimatedPeople_low": 9.693567855893894, + "estimatedCost_high": 5469532.437481625, + "estimatedScheduleMonths_high": 17.63834113625768, + "estimatedPeople_high": 9.693567855893894, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 454 55484 4744 2277 48463 2804\n(ULOC) 23643\n-------------------------------------------------------------------------------\nJavaScript 30 2188 283 297 1608 85\n(ULOC) 1233\n-------------------------------------------------------------------------------\nJSON 23 4099 5 0 4094 0\n(ULOC) 1558\n-------------------------------------------------------------------------------\nYAML 16 1145 76 40 1029 0\n(ULOC) 698\n-------------------------------------------------------------------------------\nMarkdown 13 616 208 0 408 0\n(ULOC) 328\n-------------------------------------------------------------------------------\nShell 9 470 77 49 344 67\n(ULOC) 322\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1701 41 11 1649 122\n(ULOC) 926\n-------------------------------------------------------------------------------\nTypeScript Typings 4 6 0 1 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nXML 3 31 0 0 31 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nSmarty Template 2 61 3 0 58 2\n(ULOC) 55\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 52 3 2 47 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 113 9 30 74 16\n(ULOC) 86\n-------------------------------------------------------------------------------\nSass 1 138 19 8 111 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 570 66369 5494 2731 58144 3105\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 29003\nDRYness % 0.44\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,924,533\nEstimated Schedule Effort (organic) 17.64 months\nEstimated People Required (organic) 9.69\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2288868 bytes, 2.289 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1598656, + "JavaScript": 66200, + "Shell": 6646, + "Python": 4110, + "Smarty": 2910, + "SCSS": 2390, + "HTML": 1661 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json index 9f5898950c..e2235af017 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json @@ -1,563 +1,563 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-qmr", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-qmr", - "description": "QMR is the CMCS MDCT application for collecting state data for related to measuring and quantifying healthcare processes and ensuring quality healthcare for Medicaid beneficiaries. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 4551, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1773, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 1527, - "closed_pull_requests_count": 242, - "forks_count": 2, - "stargazers_count": 3, - "watchers_count": 11, - "total_project_lines": 201347, - "average_project_lines": 103, - "total_project_comment_lines": 5330, - "average_project_comment_lines": 3, - "total_project_blank_lines": 14899, - "average_blank_lines": 8, - "commits_by_month": { - "2024/10": 10, - "2024/9": 20 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 2 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ], - [ - "2024-09-30T00:00:00.000Z", - 1 - ], - [ - "2024-10-03T00:00:00.000Z", - 1 - ], - [ - "2024-10-09T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-qmr", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-qmr", + "description": "QMR is the CMCS MDCT application for collecting state data for related to measuring and quantifying healthcare processes and ensuring quality healthcare for Medicaid beneficiaries. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 4551, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1773, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 1527, + "closed_pull_requests_count": 242, + "forks_count": 2, + "stargazers_count": 3, + "watchers_count": 11, + "total_project_lines": 201347, + "average_project_lines": 103, + "total_project_comment_lines": 5330, + "average_project_comment_lines": 3, + "total_project_blank_lines": 14899, + "average_blank_lines": 8, + "commits_by_month": { + "2024/10": 10, + "2024/9": 20 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 2 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-09-25T00:00:00.000Z", + 1 + ], + [ + "2024-09-30T00:00:00.000Z", + 1 + ], + [ + "2024-10-03T00:00:00.000Z", + 1 + ], + [ + "2024-10-09T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-06T00:00:00.000Z", + 2 + ], + [ + "2024-05-07T00:00:00.000Z", + 2 + ], + [ + "2024-05-08T00:00:00.000Z", + 2 + ], + [ + "2024-05-10T00:00:00.000Z", + 2 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-06T00:00:00.000Z", - 2 - ], - [ - "2024-05-07T00:00:00.000Z", - 2 - ], - [ - "2024-05-08T00:00:00.000Z", - 2 - ], - [ - "2024-05-10T00:00:00.000Z", - 2 - ], - [ - "2024-05-14T00:00:00.000Z", - 1 - ], - [ - "2024-05-16T00:00:00.000Z", - 1 - ], - [ - "2024-05-20T00:00:00.000Z", - 1 - ], - [ - "2024-06-04T00:00:00.000Z", - 1 - ], - [ - "2024-06-06T00:00:00.000Z", - 1 - ], - [ - "2024-07-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ] + [ + "2024-05-14T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-02-25T16:57:16Z", - "ossf_scorecard": { - "date": "2024-10-14T20:36:29Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-qmr", - "commit": "f1a2bd2beb2d38022b9a4fd2465526b7fda029fd" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "29 out of 29 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 28/29 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "24 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-05-16T00:00:00.000Z", + 1 + ], + [ + "2024-05-20T00:00:00.000Z", + 1 + ], + [ + "2024-06-04T00:00:00.000Z", + 1 + ], + [ + "2024-06-06T00:00:00.000Z", + 1 + ], + [ + "2024-07-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-02-25T16:57:16Z", + "ossf_scorecard": { + "date": "2024-10-14T20:36:29Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-qmr", + "commit": "f1a2bd2beb2d38022b9a4fd2465526b7fda029fd" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 6873611, - "CodeBytes": 0, - "Lines": 207500, - "Code": 187872, - "Comment": 5224, - "Blank": 14404, - "Complexity": 6846, - "Count": 1941, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 40517, - "CodeBytes": 0, - "Lines": 1860, - "Code": 1860, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 34830, - "CodeBytes": 0, - "Lines": 1151, - "Code": 825, - "Comment": 180, - "Blank": 146, - "Complexity": 41, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 36875, - "CodeBytes": 0, - "Lines": 1008, - "Code": 917, - "Comment": 25, - "Blank": 66, - "Complexity": 0, - "Count": 17, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 67428, - "CodeBytes": 0, - "Lines": 1200, - "Code": 780, - "Comment": 0, - "Blank": 420, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15018, - "CodeBytes": 0, - "Lines": 465, - "Code": 339, - "Comment": 49, - "Blank": 77, - "Complexity": 68, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 366107, - "CodeBytes": 0, - "Lines": 117, - "Code": 117, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 61057, - "CodeBytes": 0, - "Lines": 1726, - "Code": 1684, - "Comment": 11, - "Blank": 31, - "Complexity": 155, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 3388, - "CodeBytes": 0, - "Lines": 105, - "Code": 57, - "Comment": 24, - "Blank": 24, - "Complexity": 4, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5436, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 2848, - "CodeBytes": 0, - "Lines": 84, - "Code": 79, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 1503, - "CodeBytes": 0, - "Lines": 107, - "Code": 88, - "Comment": 0, - "Blank": 19, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2137, - "CodeBytes": 0, - "Lines": 63, - "Code": 49, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2404, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 326, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6244856.156014163, - "estimatedScheduleMonths_low": 28.57099391271479, - "estimatedPeople_low": 21.2934777714114, - "estimatedCost_high": 19461699.25263334, - "estimatedScheduleMonths_high": 28.57099391271479, - "estimatedPeople_high": 21.2934777714114, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 1941 207500 14404 5224 187872 6846\n(ULOC) 23325\n-------------------------------------------------------------------------------\nJSON 18 1860 0 0 1860 0\n(ULOC) 614\n-------------------------------------------------------------------------------\nJavaScript 18 1151 146 180 825 41\n(ULOC) 709\n-------------------------------------------------------------------------------\nYAML 17 1008 66 25 917 0\n(ULOC) 599\n-------------------------------------------------------------------------------\nMarkdown 13 1200 420 0 780 0\n(ULOC) 610\n-------------------------------------------------------------------------------\nShell 11 465 77 49 339 68\n(ULOC) 314\n-------------------------------------------------------------------------------\nSVG 7 117 0 0 117 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 5 1726 31 11 1684 155\n(ULOC) 928\n-------------------------------------------------------------------------------\nTypeScript Typings 5 105 24 24 57 4\n(ULOC) 75\n-------------------------------------------------------------------------------\nPlain Text 4 28 3 0 25 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 84 3 2 79 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nSass 2 107 19 0 88 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nSmarty Template 2 63 14 0 49 0\n(ULOC) 43\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2048 215506 15221 5531 194754 7123\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 27414\nDRYness % 0.13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,847,878\nEstimated Schedule Effort (organic) 28.57 months\nEstimated People Required (organic) 21.29\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7513524 bytes, 7.514 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 6855564, - "JavaScript": 34830, - "Shell": 7203, - "HTML": 2848, - "Smarty": 2137, - "SCSS": 1503 - } -} \ No newline at end of file + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "29 out of 29 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 28/29 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "24 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 6873611, + "CodeBytes": 0, + "Lines": 207500, + "Code": 187872, + "Comment": 5224, + "Blank": 14404, + "Complexity": 6846, + "Count": 1941, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 40517, + "CodeBytes": 0, + "Lines": 1860, + "Code": 1860, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 34830, + "CodeBytes": 0, + "Lines": 1151, + "Code": 825, + "Comment": 180, + "Blank": 146, + "Complexity": 41, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 36875, + "CodeBytes": 0, + "Lines": 1008, + "Code": 917, + "Comment": 25, + "Blank": 66, + "Complexity": 0, + "Count": 17, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 67428, + "CodeBytes": 0, + "Lines": 1200, + "Code": 780, + "Comment": 0, + "Blank": 420, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 15018, + "CodeBytes": 0, + "Lines": 465, + "Code": 339, + "Comment": 49, + "Blank": 77, + "Complexity": 68, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 366107, + "CodeBytes": 0, + "Lines": 117, + "Code": 117, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 61057, + "CodeBytes": 0, + "Lines": 1726, + "Code": 1684, + "Comment": 11, + "Blank": 31, + "Complexity": 155, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 3388, + "CodeBytes": 0, + "Lines": 105, + "Code": 57, + "Comment": 24, + "Blank": 24, + "Complexity": 4, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5436, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 2848, + "CodeBytes": 0, + "Lines": 84, + "Code": 79, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 1503, + "CodeBytes": 0, + "Lines": 107, + "Code": 88, + "Comment": 0, + "Blank": 19, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 2137, + "CodeBytes": 0, + "Lines": 63, + "Code": 49, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2404, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 326, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 6244856.156014163, + "estimatedScheduleMonths_low": 28.57099391271479, + "estimatedPeople_low": 21.2934777714114, + "estimatedCost_high": 19461699.25263334, + "estimatedScheduleMonths_high": 28.57099391271479, + "estimatedPeople_high": 21.2934777714114, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 1941 207500 14404 5224 187872 6846\n(ULOC) 23325\n-------------------------------------------------------------------------------\nJSON 18 1860 0 0 1860 0\n(ULOC) 614\n-------------------------------------------------------------------------------\nJavaScript 18 1151 146 180 825 41\n(ULOC) 709\n-------------------------------------------------------------------------------\nYAML 17 1008 66 25 917 0\n(ULOC) 599\n-------------------------------------------------------------------------------\nMarkdown 13 1200 420 0 780 0\n(ULOC) 610\n-------------------------------------------------------------------------------\nShell 11 465 77 49 339 68\n(ULOC) 314\n-------------------------------------------------------------------------------\nSVG 7 117 0 0 117 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 5 1726 31 11 1684 155\n(ULOC) 928\n-------------------------------------------------------------------------------\nTypeScript Typings 5 105 24 24 57 4\n(ULOC) 75\n-------------------------------------------------------------------------------\nPlain Text 4 28 3 0 25 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 84 3 2 79 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nSass 2 107 19 0 88 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nSmarty Template 2 63 14 0 49 0\n(ULOC) 43\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 2048 215506 15221 5531 194754 7123\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 27414\nDRYness % 0.13\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $6,847,878\nEstimated Schedule Effort (organic) 28.57 months\nEstimated People Required (organic) 21.29\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7513524 bytes, 7.514 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 6855564, + "JavaScript": 34830, + "Shell": 7203, + "HTML": 2848, + "Smarty": 2137, + "SCSS": 1503 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json index 8cbc81eb9b..f4da8a5350 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json @@ -1,607 +1,607 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-seds", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-seds", - "description": "SEDS is the CMCS MDCT application for collecting state data related to Medicaid and CHIP quarterly enrollment data on a quarterly basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 2714, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1012, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 845, - "closed_pull_requests_count": 163, - "forks_count": 4, - "stargazers_count": 3, - "watchers_count": 10, - "total_project_lines": 715687, - "average_project_lines": 1590, - "total_project_comment_lines": 1445, - "average_project_comment_lines": 3, - "total_project_blank_lines": 2842, - "average_blank_lines": 6, - "commits_by_month": { - "2024/10": 2, - "2024/9": 15, - "2024/8": 10, - "2024/7": 3 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-10-03T00:00:00.000Z", - 1 - ], - [ - "2024-10-10T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-seds", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-seds", + "description": "SEDS is the CMCS MDCT application for collecting state data related to Medicaid and CHIP quarterly enrollment data on a quarterly basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 2714, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1012, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 845, + "closed_pull_requests_count": 163, + "forks_count": 4, + "stargazers_count": 3, + "watchers_count": 10, + "total_project_lines": 715687, + "average_project_lines": 1590, + "total_project_comment_lines": 1445, + "average_project_comment_lines": 3, + "total_project_blank_lines": 2842, + "average_blank_lines": 6, + "commits_by_month": { + "2024/10": 2, + "2024/9": 15, + "2024/8": 10, + "2024/7": 3 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-10-03T00:00:00.000Z", + 1 + ], + [ + "2024-10-10T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-07T00:00:00.000Z", + 1 + ], + [ + "2024-05-10T00:00:00.000Z", + 1 + ], + [ + "2024-05-13T00:00:00.000Z", + 1 + ], + [ + "2024-05-15T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-07T00:00:00.000Z", - 1 - ], - [ - "2024-05-10T00:00:00.000Z", - 1 - ], - [ - "2024-05-13T00:00:00.000Z", - 1 - ], - [ - "2024-05-15T00:00:00.000Z", - 1 - ], - [ - "2024-05-31T00:00:00.000Z", - 1 - ], - [ - "2024-06-05T00:00:00.000Z", - 2 - ], - [ - "2024-06-06T00:00:00.000Z", - 2 - ], - [ - "2024-07-18T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ] + [ + "2024-05-31T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-12-04T19:41:29Z", - "ossf_scorecard": { - "date": "2024-10-14T20:37:29Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-seds", - "commit": "9a01f6e586f1c6c130fb3db6c333bd43aa560d9c" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "27 out of 27 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 26/27 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 7 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "25 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-06-05T00:00:00.000Z", + 2 + ], + [ + "2024-06-06T00:00:00.000Z", + 2 + ], + [ + "2024-07-18T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-12-04T19:41:29Z", + "ossf_scorecard": { + "date": "2024-10-14T20:37:29Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-seds", + "commit": "9a01f6e586f1c6c130fb3db6c333bd43aa560d9c" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 14048484, - "CodeBytes": 0, - "Lines": 548345, - "Code": 548345, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 140, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 589008, - "CodeBytes": 0, - "Lines": 21136, - "Code": 19402, - "Comment": 792, - "Blank": 942, - "Complexity": 316, - "Count": 106, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSX", - "Bytes": 272232, - "CodeBytes": 0, - "Lines": 8920, - "Code": 7534, - "Comment": 336, - "Blank": 1050, - "Complexity": 274, - "Count": 84, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 26273, - "CodeBytes": 0, - "Lines": 1637, - "Code": 1343, - "Comment": 54, - "Blank": 240, - "Complexity": 0, - "Count": 57, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 33606, - "CodeBytes": 0, - "Lines": 918, - "Code": 821, - "Comment": 29, - "Blank": 68, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 35777, - "CodeBytes": 0, - "Lines": 826, - "Code": 538, - "Comment": 0, - "Blank": 288, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 11701, - "CodeBytes": 0, - "Lines": 364, - "Code": 250, - "Comment": 46, - "Blank": 68, - "Complexity": 59, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 66379, - "CodeBytes": 0, - "Lines": 1833, - "Code": 1735, - "Comment": 56, - "Blank": 42, - "Complexity": 102, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 18699, - "CodeBytes": 0, - "Lines": 560, - "Code": 384, - "Comment": 80, - "Blank": 96, - "Complexity": 90, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 48437356, - "CodeBytes": 0, - "Lines": 52079, - "Code": 52079, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 9422, - "CodeBytes": 0, - "Lines": 375, - "Code": 320, - "Comment": 24, - "Blank": 31, - "Complexity": 16, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 5534, - "CodeBytes": 0, - "Lines": 176, - "Code": 146, - "Comment": 20, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1937026, - "CodeBytes": 0, - "Lines": 78531, - "Code": 78531, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 170923, - "CodeBytes": 0, - "Lines": 28, - "Code": 28, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2311, - "CodeBytes": 0, - "Lines": 79, - "Code": 41, - "Comment": 23, - "Blank": 15, - "Complexity": 8, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gherkin Specification", - "Bytes": 87, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 1887, - "CodeBytes": 0, - "Lines": 42, - "Code": 38, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 38, - "CodeBytes": 0, - "Lines": 1, - "Code": 0, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 246, - "CodeBytes": 0, - "Lines": 9, - "Code": 9, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 24343150.66018224, - "estimatedScheduleMonths_low": 47.91262891242688, - "estimatedPeople_low": 49.49670560888197, - "estimatedCost_high": 75863889.44343445, - "estimatedScheduleMonths_high": 47.91262891242688, - "estimatedPeople_high": 49.49670560888197, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 140 548345 0 0 548345 0\n(ULOC) 10790\n-------------------------------------------------------------------------------\nJavaScript 106 21136 942 792 19402 316\n(ULOC) 4873\n-------------------------------------------------------------------------------\nJSX 84 8920 1050 336 7534 274\n(ULOC) 4683\n-------------------------------------------------------------------------------\nSass 57 1637 240 54 1343 0\n(ULOC) 719\n-------------------------------------------------------------------------------\nYAML 16 918 68 29 821 0\n(ULOC) 548\n-------------------------------------------------------------------------------\nMarkdown 9 826 288 0 538 0\n(ULOC) 487\n-------------------------------------------------------------------------------\nShell 8 364 68 46 250 59\n(ULOC) 240\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1833 42 56 1735 102\n(ULOC) 995\n-------------------------------------------------------------------------------\nPython 6 560 96 80 384 90\n(ULOC) 301\n-------------------------------------------------------------------------------\nCSV 5 52079 0 0 52079 0\n(ULOC) 52076\n-------------------------------------------------------------------------------\nTypeScript 3 375 31 24 320 16\n(ULOC) 251\n-------------------------------------------------------------------------------\nHTML 2 176 10 20 146 0\n(ULOC) 136\n-------------------------------------------------------------------------------\nPlain Text 2 78531 0 0 78531 0\n(ULOC) 78532\n-------------------------------------------------------------------------------\nSVG 2 28 0 0 28 0\n(ULOC) 29\n-------------------------------------------------------------------------------\nBASH 1 79 15 23 41 8\n(ULOC) 59\n-------------------------------------------------------------------------------\nGherkin Specificati\u2026 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nSmarty Template 1 42 4 0 38 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 9 0 0 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 452 715864 2854 1461 711549 865\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 154437\nDRYness % 0.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $26,693,798\nEstimated Schedule Effort (organic) 47.91 months\nEstimated People Required (organic) 49.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 65667028 bytes, 65.667 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 861309, - "SCSS": 26273, - "Python": 18699, - "TypeScript": 9422, - "HTML": 5534, - "Shell": 3815, - "Smarty": 1887, - "Gherkin": 87 - } -} \ No newline at end of file + "score": 5.1, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "27 out of 27 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 26/27 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 7 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "25 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 14048484, + "CodeBytes": 0, + "Lines": 548345, + "Code": 548345, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 140, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 589008, + "CodeBytes": 0, + "Lines": 21136, + "Code": 19402, + "Comment": 792, + "Blank": 942, + "Complexity": 316, + "Count": 106, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSX", + "Bytes": 272232, + "CodeBytes": 0, + "Lines": 8920, + "Code": 7534, + "Comment": 336, + "Blank": 1050, + "Complexity": 274, + "Count": 84, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 26273, + "CodeBytes": 0, + "Lines": 1637, + "Code": 1343, + "Comment": 54, + "Blank": 240, + "Complexity": 0, + "Count": 57, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 33606, + "CodeBytes": 0, + "Lines": 918, + "Code": 821, + "Comment": 29, + "Blank": 68, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 35777, + "CodeBytes": 0, + "Lines": 826, + "Code": 538, + "Comment": 0, + "Blank": 288, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 11701, + "CodeBytes": 0, + "Lines": 364, + "Code": 250, + "Comment": 46, + "Blank": 68, + "Complexity": 59, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 66379, + "CodeBytes": 0, + "Lines": 1833, + "Code": 1735, + "Comment": 56, + "Blank": 42, + "Complexity": 102, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 18699, + "CodeBytes": 0, + "Lines": 560, + "Code": 384, + "Comment": 80, + "Blank": 96, + "Complexity": 90, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 48437356, + "CodeBytes": 0, + "Lines": 52079, + "Code": 52079, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 9422, + "CodeBytes": 0, + "Lines": 375, + "Code": 320, + "Comment": 24, + "Blank": 31, + "Complexity": 16, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 5534, + "CodeBytes": 0, + "Lines": 176, + "Code": 146, + "Comment": 20, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1937026, + "CodeBytes": 0, + "Lines": 78531, + "Code": 78531, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 170923, + "CodeBytes": 0, + "Lines": 28, + "Code": 28, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2311, + "CodeBytes": 0, + "Lines": 79, + "Code": 41, + "Comment": 23, + "Blank": 15, + "Complexity": 8, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gherkin Specification", + "Bytes": 87, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 1887, + "CodeBytes": 0, + "Lines": 42, + "Code": 38, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 38, + "CodeBytes": 0, + "Lines": 1, + "Code": 0, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 246, + "CodeBytes": 0, + "Lines": 9, + "Code": 9, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 24343150.66018224, + "estimatedScheduleMonths_low": 47.91262891242688, + "estimatedPeople_low": 49.49670560888197, + "estimatedCost_high": 75863889.44343445, + "estimatedScheduleMonths_high": 47.91262891242688, + "estimatedPeople_high": 49.49670560888197, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 140 548345 0 0 548345 0\n(ULOC) 10790\n-------------------------------------------------------------------------------\nJavaScript 106 21136 942 792 19402 316\n(ULOC) 4873\n-------------------------------------------------------------------------------\nJSX 84 8920 1050 336 7534 274\n(ULOC) 4683\n-------------------------------------------------------------------------------\nSass 57 1637 240 54 1343 0\n(ULOC) 719\n-------------------------------------------------------------------------------\nYAML 16 918 68 29 821 0\n(ULOC) 548\n-------------------------------------------------------------------------------\nMarkdown 9 826 288 0 538 0\n(ULOC) 487\n-------------------------------------------------------------------------------\nShell 8 364 68 46 250 59\n(ULOC) 240\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1833 42 56 1735 102\n(ULOC) 995\n-------------------------------------------------------------------------------\nPython 6 560 96 80 384 90\n(ULOC) 301\n-------------------------------------------------------------------------------\nCSV 5 52079 0 0 52079 0\n(ULOC) 52076\n-------------------------------------------------------------------------------\nTypeScript 3 375 31 24 320 16\n(ULOC) 251\n-------------------------------------------------------------------------------\nHTML 2 176 10 20 146 0\n(ULOC) 136\n-------------------------------------------------------------------------------\nPlain Text 2 78531 0 0 78531 0\n(ULOC) 78532\n-------------------------------------------------------------------------------\nSVG 2 28 0 0 28 0\n(ULOC) 29\n-------------------------------------------------------------------------------\nBASH 1 79 15 23 41 8\n(ULOC) 59\n-------------------------------------------------------------------------------\nGherkin Specificati… 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nSmarty Template 1 42 4 0 38 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 9 0 0 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 452 715864 2854 1461 711549 865\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 154437\nDRYness % 0.22\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $26,693,798\nEstimated Schedule Effort (organic) 47.91 months\nEstimated People Required (organic) 49.50\n───────────────────────────────────────────────────────────────────────────────\nProcessed 65667028 bytes, 65.667 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 861309, + "SCSS": 26273, + "Python": 18699, + "TypeScript": 9422, + "HTML": 5534, + "Shell": 3815, + "Smarty": 1887, + "Gherkin": 87 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json b/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json index 8fb284e8b5..6ffc3cc567 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json @@ -1,519 +1,519 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-onemac", - "owner": "Enterprise-CMCS", - "name": "macpro-onemac", - "description": "An official submission system for email-based state plan amendments (SPAs) and section 1915 waivers.", - "commits_count": 1950, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1535, - "open_pull_requests_count": 35, - "merged_pull_requests_count": 1147, - "closed_pull_requests_count": 353, - "forks_count": 0, - "stargazers_count": 4, - "watchers_count": 12, - "total_project_lines": 241000, - "average_project_lines": 309, - "total_project_comment_lines": 2655, - "average_project_comment_lines": 3, - "total_project_blank_lines": 5136, - "average_blank_lines": 7, - "commits_by_month": { - "2024/10": 17, - "2024/9": 9, - "2024/8": 4 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-27T00:00:00.000Z", - 1 - ], - [ - "2024-10-02T00:00:00.000Z", - 1 - ], - [ - "2024-10-04T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-onemac", + "owner": "Enterprise-CMCS", + "name": "macpro-onemac", + "description": "An official submission system for email-based state plan amendments (SPAs) and section 1915 waivers.", + "commits_count": 1950, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1535, + "open_pull_requests_count": 35, + "merged_pull_requests_count": 1147, + "closed_pull_requests_count": 353, + "forks_count": 0, + "stargazers_count": 4, + "watchers_count": 12, + "total_project_lines": 241000, + "average_project_lines": 309, + "total_project_comment_lines": 2655, + "average_project_comment_lines": 3, + "total_project_blank_lines": 5136, + "average_blank_lines": 7, + "commits_by_month": { + "2024/10": 17, + "2024/9": 9, + "2024/8": 4 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-27T00:00:00.000Z", + 1 + ], + [ + "2024-10-02T00:00:00.000Z", + 1 + ], + [ + "2024-10-04T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-06T00:00:00.000Z", + 1 + ], + [ + "2024-05-07T00:00:00.000Z", + 1 + ], + [ + "2024-05-08T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-06T00:00:00.000Z", - 1 - ], - [ - "2024-05-07T00:00:00.000Z", - 1 - ], - [ - "2024-05-08T00:00:00.000Z", - 1 - ], - [ - "2024-06-14T00:00:00.000Z", - 1 - ], - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ] + [ + "2024-06-14T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-08-03T13:54:40Z", - "ossf_scorecard": { - "date": "2024-10-14T20:33:55Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-onemac", - "commit": "676faa24ec44c99670ac9e34752f187e3440fd17" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 6.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "16 out of 16 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 16/17 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 9, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "33 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-07-30T00:00:00.000Z", + 1 + ], + [ + "2024-09-04T00:00:00.000Z", + 1 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-08-03T13:54:40Z", + "ossf_scorecard": { + "date": "2024-10-14T20:33:55Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-onemac", + "commit": "676faa24ec44c99670ac9e34752f187e3440fd17" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 1016849, - "CodeBytes": 0, - "Lines": 32774, - "Code": 27680, - "Comment": 1945, - "Blank": 3149, - "Complexity": 720, - "Count": 433, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 313286, - "CodeBytes": 0, - "Lines": 9558, - "Code": 8689, - "Comment": 307, - "Blank": 562, - "Complexity": 763, - "Count": 86, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5549605, - "CodeBytes": 0, - "Lines": 179527, - "Code": 179525, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 79, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gherkin Specification", - "Bytes": 446114, - "CodeBytes": 0, - "Lines": 7810, - "Code": 7271, - "Comment": 147, - "Blank": 392, - "Complexity": 286, - "Count": 77, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 364705, - "CodeBytes": 0, - "Lines": 934, - "Code": 934, - "Comment": 0, - "Blank": 0, - "Complexity": 2, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 40174, - "CodeBytes": 0, - "Lines": 942, - "Code": 882, - "Comment": 16, - "Blank": 44, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 115276, - "CodeBytes": 0, - "Lines": 3431, - "Code": 3170, - "Comment": 83, - "Blank": 178, - "Complexity": 170, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 19265, - "CodeBytes": 0, - "Lines": 610, - "Code": 453, - "Comment": 61, - "Blank": 96, - "Complexity": 70, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 25413, - "CodeBytes": 0, - "Lines": 434, - "Code": 280, - "Comment": 0, - "Blank": 154, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 25229, - "CodeBytes": 0, - "Lines": 726, - "Code": 607, - "Comment": 53, - "Blank": 66, - "Complexity": 43, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 35135, - "CodeBytes": 0, - "Lines": 871, - "Code": 823, - "Comment": 4, - "Blank": 44, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 6128, - "CodeBytes": 0, - "Lines": 229, - "Code": 208, - "Comment": 9, - "Blank": 12, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 4162, - "CodeBytes": 0, - "Lines": 10, - "Code": 10, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 5848, - "CodeBytes": 0, - "Lines": 181, - "Code": 162, - "Comment": 2, - "Blank": 17, - "Complexity": 6, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 53875, - "CodeBytes": 0, - "Lines": 2963, - "Code": 2515, - "Comment": 28, - "Blank": 420, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7545609.149980246, - "estimatedScheduleMonths_low": 30.700868248608728, - "estimatedPeople_low": 23.943804389594984, - "estimatedCost_high": 23515413.691860348, - "estimatedScheduleMonths_high": 30.700868248608728, - "estimatedPeople_high": 23.943804389594984, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 433 32774 3149 1945 27680 720\n(ULOC) 14691\n-------------------------------------------------------------------------------\nTypeScript 86 9558 562 307 8689 763\n(ULOC) 5430\n-------------------------------------------------------------------------------\nJSON 79 179527 2 0 179525 0\n(ULOC) 10518\n-------------------------------------------------------------------------------\nGherkin Specificati\u2026 77 7810 392 147 7271 286\n(ULOC) 1146\n-------------------------------------------------------------------------------\nSVG 25 934 0 0 934 2\n(ULOC) 456\n-------------------------------------------------------------------------------\nYAML 18 942 44 16 882 0\n(ULOC) 518\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 16 3431 178 83 3170 170\n(ULOC) 1668\n-------------------------------------------------------------------------------\nShell 15 610 96 61 453 70\n(ULOC) 417\n-------------------------------------------------------------------------------\nMarkdown 14 434 154 0 280 0\n(ULOC) 240\n-------------------------------------------------------------------------------\nPython 5 726 66 53 607 43\n(ULOC) 461\n-------------------------------------------------------------------------------\nHTML 4 871 44 4 823 0\n(ULOC) 426\n-------------------------------------------------------------------------------\nCSS 3 229 12 9 208 0\n(ULOC) 181\n-------------------------------------------------------------------------------\nPlain Text 3 10 0 0 10 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nTypeScript Typings 2 181 17 2 162 6\n(ULOC) 148\n-------------------------------------------------------------------------------\nSass 1 2963 420 28 2515 0\n(ULOC) 1364\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 781 241000 5136 2655 233209 2060\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 36849\nDRYness % 0.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,274,235\nEstimated Schedule Effort (organic) 30.70 months\nEstimated People Required (organic) 23.94\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 8021064 bytes, 8.021 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 999259, - "Gherkin": 446114, - "TypeScript": 313286, - "SCSS": 53875, - "HTML": 35135, - "Python": 25229, - "Shell": 15779, - "CSS": 5452 - } -} \ No newline at end of file + "score": 6.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "16 out of 16 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 16/17 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 9, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "33 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 1016849, + "CodeBytes": 0, + "Lines": 32774, + "Code": 27680, + "Comment": 1945, + "Blank": 3149, + "Complexity": 720, + "Count": 433, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 313286, + "CodeBytes": 0, + "Lines": 9558, + "Code": 8689, + "Comment": 307, + "Blank": 562, + "Complexity": 763, + "Count": 86, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5549747, + "CodeBytes": 0, + "Lines": 179537, + "Code": 179535, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 80, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gherkin Specification", + "Bytes": 446114, + "CodeBytes": 0, + "Lines": 7810, + "Code": 7271, + "Comment": 147, + "Blank": 392, + "Complexity": 286, + "Count": 77, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 364705, + "CodeBytes": 0, + "Lines": 934, + "Code": 934, + "Comment": 0, + "Blank": 0, + "Complexity": 2, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 40398, + "CodeBytes": 0, + "Lines": 958, + "Code": 893, + "Comment": 18, + "Blank": 47, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 115548, + "CodeBytes": 0, + "Lines": 3431, + "Code": 3170, + "Comment": 83, + "Blank": 178, + "Complexity": 170, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 19775, + "CodeBytes": 0, + "Lines": 625, + "Code": 462, + "Comment": 64, + "Blank": 99, + "Complexity": 72, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 25413, + "CodeBytes": 0, + "Lines": 434, + "Code": 280, + "Comment": 0, + "Blank": 154, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 25229, + "CodeBytes": 0, + "Lines": 726, + "Code": 607, + "Comment": 53, + "Blank": 66, + "Complexity": 43, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 35135, + "CodeBytes": 0, + "Lines": 871, + "Code": 823, + "Comment": 4, + "Blank": 44, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 6128, + "CodeBytes": 0, + "Lines": 229, + "Code": 208, + "Comment": 9, + "Blank": 12, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 4162, + "CodeBytes": 0, + "Lines": 10, + "Code": 10, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 5848, + "CodeBytes": 0, + "Lines": 181, + "Code": 162, + "Comment": 2, + "Blank": 17, + "Complexity": 6, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 53875, + "CodeBytes": 0, + "Lines": 2963, + "Code": 2515, + "Comment": 28, + "Blank": 420, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7546628.3535812795, + "estimatedScheduleMonths_low": 30.70244398191287, + "estimatedPeople_low": 23.94580950948014, + "estimatedCost_high": 23518589.975423165, + "estimatedScheduleMonths_high": 30.70244398191287, + "estimatedPeople_high": 23.94580950948014, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 433 32774 3149 1945 27680 720\n(ULOC) 14691\n-------------------------------------------------------------------------------\nTypeScript 86 9558 562 307 8689 763\n(ULOC) 5430\n-------------------------------------------------------------------------------\nJSON 80 179537 2 0 179535 0\n(ULOC) 10518\n-------------------------------------------------------------------------------\nGherkin Specificati… 77 7810 392 147 7271 286\n(ULOC) 1146\n-------------------------------------------------------------------------------\nSVG 25 934 0 0 934 2\n(ULOC) 456\n-------------------------------------------------------------------------------\nYAML 19 958 47 18 893 0\n(ULOC) 526\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 16 3431 178 83 3170 170\n(ULOC) 1671\n-------------------------------------------------------------------------------\nShell 15 625 99 64 462 72\n(ULOC) 427\n-------------------------------------------------------------------------------\nMarkdown 14 434 154 0 280 0\n(ULOC) 240\n-------------------------------------------------------------------------------\nPython 5 726 66 53 607 43\n(ULOC) 461\n-------------------------------------------------------------------------------\nHTML 4 871 44 4 823 0\n(ULOC) 426\n-------------------------------------------------------------------------------\nCSS 3 229 12 9 208 0\n(ULOC) 181\n-------------------------------------------------------------------------------\nPlain Text 3 10 0 0 10 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nTypeScript Typings 2 181 17 2 162 6\n(ULOC) 148\n-------------------------------------------------------------------------------\nSass 1 2963 420 28 2515 0\n(ULOC) 1364\n───────────────────────────────────────────────────────────────────────────────\nTotal 783 241041 5142 2660 233239 2062\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 36869\nDRYness % 0.15\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,275,353\nEstimated Schedule Effort (organic) 30.70 months\nEstimated People Required (organic) 23.95\n───────────────────────────────────────────────────────────────────────────────\nProcessed 8022212 bytes, 8.022 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 999259, + "Gherkin": 446114, + "TypeScript": 313286, + "SCSS": 53875, + "HTML": 35135, + "Python": 25229, + "Shell": 15779, + "CSS": 5452 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json b/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json index 9423a920a2..69807cc5bf 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json @@ -1,414 +1,414 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-platform-doc-conversion", - "owner": "Enterprise-CMCS", - "name": "macpro-platform-doc-conversion", - "description": null, - "commits_count": 120, - "issues_count": 2, - "open_issues_count": 0, - "closed_issues_count": 2, - "pull_requests_count": 109, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 81, - "closed_pull_requests_count": 27, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 5, - "total_project_lines": 11009, - "average_project_lines": 180, - "total_project_comment_lines": 127, - "average_project_comment_lines": 2, - "total_project_blank_lines": 556, - "average_blank_lines": 9, - "commits_by_month": { - "2023/7": 2, - "2023/5": 1, - "2023/1": 1, - "2022/12": 3, - "2022/7": 9, - "2022/5": 14 + "url": "https://github.com/Enterprise-CMCS/macpro-platform-doc-conversion", + "owner": "Enterprise-CMCS", + "name": "macpro-platform-doc-conversion", + "description": null, + "commits_count": 120, + "issues_count": 2, + "open_issues_count": 0, + "closed_issues_count": 2, + "pull_requests_count": 109, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 81, + "closed_pull_requests_count": 27, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 5, + "total_project_lines": 11009, + "average_project_lines": 180, + "total_project_comment_lines": 127, + "average_project_comment_lines": 2, + "total_project_blank_lines": 556, + "average_blank_lines": 9, + "commits_by_month": { + "2023/7": 2, + "2023/5": 1, + "2023/1": 1, + "2022/12": 3, + "2022/7": 9, + "2022/5": 14 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-01-14T15:00:20Z", + "ossf_scorecard": { + "date": "2024-10-14T20:45:50Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-platform-doc-conversion", + "commit": "3c47af732c4c17181a7ba183dd20a40e6fb938bf" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-01-14T15:00:20Z", - "ossf_scorecard": { - "date": "2024-10-14T20:45:50Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-platform-doc-conversion", - "commit": "3c47af732c4c17181a7ba183dd20a40e6fb938bf" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "1 out of 19 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 15/16 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "20 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 19371, - "CodeBytes": 0, - "Lines": 685, - "Code": 560, - "Comment": 34, - "Blank": 91, - "Complexity": 43, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 35625, - "CodeBytes": 0, - "Lines": 595, - "Code": 409, - "Comment": 0, - "Blank": 186, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10750, - "CodeBytes": 0, - "Lines": 376, - "Code": 284, - "Comment": 24, - "Blank": 68, - "Complexity": 41, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 12855, - "CodeBytes": 0, - "Lines": 339, - "Code": 307, - "Comment": 10, - "Blank": 22, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4350, - "CodeBytes": 0, - "Lines": 147, - "Code": 147, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1614756, - "CodeBytes": 0, - "Lines": 7978, - "Code": 7920, - "Comment": 0, - "Blank": 58, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 15803, - "CodeBytes": 0, - "Lines": 444, - "Code": 417, - "Comment": 2, - "Blank": 25, - "Complexity": 10, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 7132, - "CodeBytes": 0, - "Lines": 229, - "Code": 100, - "Comment": 56, - "Blank": 73, - "Complexity": 3, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1334, - "CodeBytes": 0, - "Lines": 25, - "Code": 25, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 8816, - "CodeBytes": 0, - "Lines": 187, - "Code": 154, - "Comment": 0, - "Blank": 33, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 191106, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 285884.40183720394, - "estimatedScheduleMonths_low": 8.85073212569239, - "estimatedPeople_low": 3.1467393554425556, - "estimatedCost_high": 890940.6574907859, - "estimatedScheduleMonths_high": 8.85073212569239, - "estimatedPeople_high": 3.1467393554425556, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 11 685 91 34 560 43\n(ULOC) 448\n-------------------------------------------------------------------------------\nMarkdown 11 595 186 0 409 0\n(ULOC) 332\n-------------------------------------------------------------------------------\nShell 9 376 68 24 284 41\n(ULOC) 192\n-------------------------------------------------------------------------------\nYAML 8 339 22 10 307 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nJSON 7 147 0 0 147 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nPlain Text 6 7978 58 0 7920 0\n(ULOC) 7917\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 3 444 25 2 417 10\n(ULOC) 354\n-------------------------------------------------------------------------------\nPython 3 229 73 56 100 3\n(ULOC) 121\n-------------------------------------------------------------------------------\nHTML 1 25 0 0 25 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nLicense 1 187 33 0 154 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nSVG 1 4 0 1 3 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 61 11009 556 127 10326 97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 9736\nDRYness % 0.88\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $313,490\nEstimated Schedule Effort (organic) 8.85 months\nEstimated People Required (organic) 3.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1921898 bytes, 1.922 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 19371, - "Shell": 6853 - } -} \ No newline at end of file + "score": 4.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "1 out of 19 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 15/16 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "20 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 19371, + "CodeBytes": 0, + "Lines": 685, + "Code": 560, + "Comment": 34, + "Blank": 91, + "Complexity": 43, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 35625, + "CodeBytes": 0, + "Lines": 595, + "Code": 409, + "Comment": 0, + "Blank": 186, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10750, + "CodeBytes": 0, + "Lines": 376, + "Code": 284, + "Comment": 24, + "Blank": 68, + "Complexity": 41, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 12855, + "CodeBytes": 0, + "Lines": 339, + "Code": 307, + "Comment": 10, + "Blank": 22, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4350, + "CodeBytes": 0, + "Lines": 147, + "Code": 147, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1614756, + "CodeBytes": 0, + "Lines": 7978, + "Code": 7920, + "Comment": 0, + "Blank": 58, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 15803, + "CodeBytes": 0, + "Lines": 444, + "Code": 417, + "Comment": 2, + "Blank": 25, + "Complexity": 10, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 7132, + "CodeBytes": 0, + "Lines": 229, + "Code": 100, + "Comment": 56, + "Blank": 73, + "Complexity": 3, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1334, + "CodeBytes": 0, + "Lines": 25, + "Code": 25, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 8816, + "CodeBytes": 0, + "Lines": 187, + "Code": 154, + "Comment": 0, + "Blank": 33, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 191106, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 285884.40183720394, + "estimatedScheduleMonths_low": 8.85073212569239, + "estimatedPeople_low": 3.1467393554425556, + "estimatedCost_high": 890940.6574907859, + "estimatedScheduleMonths_high": 8.85073212569239, + "estimatedPeople_high": 3.1467393554425556, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 11 685 91 34 560 43\n(ULOC) 448\n-------------------------------------------------------------------------------\nMarkdown 11 595 186 0 409 0\n(ULOC) 332\n-------------------------------------------------------------------------------\nShell 9 376 68 24 284 41\n(ULOC) 192\n-------------------------------------------------------------------------------\nYAML 8 339 22 10 307 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nJSON 7 147 0 0 147 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nPlain Text 6 7978 58 0 7920 0\n(ULOC) 7917\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 3 444 25 2 417 10\n(ULOC) 354\n-------------------------------------------------------------------------------\nPython 3 229 73 56 100 3\n(ULOC) 121\n-------------------------------------------------------------------------------\nHTML 1 25 0 0 25 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nLicense 1 187 33 0 154 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nSVG 1 4 0 1 3 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 61 11009 556 127 10326 97\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 9736\nDRYness % 0.88\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $313,490\nEstimated Schedule Effort (organic) 8.85 months\nEstimated People Required (organic) 3.15\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1921898 bytes, 1.922 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 19371, + "Shell": 6853 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json b/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json index 92b3953157..972ec60433 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json @@ -1,447 +1,447 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-quickstart-serverless", - "owner": "Enterprise-CMCS", - "name": "macpro-quickstart-serverless", - "description": null, - "commits_count": 279, - "issues_count": 271, - "open_issues_count": 14, - "closed_issues_count": 257, - "pull_requests_count": 328, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 237, - "closed_pull_requests_count": 86, - "forks_count": 14, - "stargazers_count": 18, - "watchers_count": 11, - "total_project_lines": 8280, - "average_project_lines": 52, - "total_project_comment_lines": 395, - "average_project_comment_lines": 2, - "total_project_blank_lines": 917, - "average_blank_lines": 6, - "commits_by_month": { - "2022/12": 1, - "2022/11": 3, - "2022/9": 5, - "2022/8": 20, - "2022/7": 1 + "url": "https://github.com/Enterprise-CMCS/macpro-quickstart-serverless", + "owner": "Enterprise-CMCS", + "name": "macpro-quickstart-serverless", + "description": null, + "commits_count": 279, + "issues_count": 271, + "open_issues_count": 14, + "closed_issues_count": 257, + "pull_requests_count": 328, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 237, + "closed_pull_requests_count": 86, + "forks_count": 14, + "stargazers_count": 18, + "watchers_count": 11, + "total_project_lines": 8280, + "average_project_lines": 52, + "total_project_comment_lines": 395, + "average_project_comment_lines": 2, + "total_project_blank_lines": 917, + "average_blank_lines": 6, + "commits_by_month": { + "2022/12": 1, + "2022/11": 3, + "2022/9": 5, + "2022/8": 20, + "2022/7": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-08-27T12:30:25Z", + "ossf_scorecard": { + "date": "2024-10-14T20:44:35Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-quickstart-serverless", + "commit": "ebfcf4622237dabd872df171ddb9896970ec3bee" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-08-27T12:30:25Z", - "ossf_scorecard": { - "date": "2024-10-14T20:44:35Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-quickstart-serverless", - "commit": "ebfcf4622237dabd872df171ddb9896970ec3bee" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 17 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "69 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 102526, - "CodeBytes": 0, - "Lines": 3654, - "Code": 3031, - "Comment": 243, - "Blank": 380, - "Complexity": 157, - "Count": 67, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 17963, - "CodeBytes": 0, - "Lines": 567, - "Code": 560, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 49850, - "CodeBytes": 0, - "Lines": 849, - "Code": 559, - "Comment": 0, - "Blank": 290, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 19535, - "CodeBytes": 0, - "Lines": 641, - "Code": 450, - "Comment": 86, - "Blank": 105, - "Complexity": 67, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 24121, - "CodeBytes": 0, - "Lines": 625, - "Code": 578, - "Comment": 13, - "Blank": 34, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 41782, - "CodeBytes": 0, - "Lines": 1217, - "Code": 1161, - "Comment": 11, - "Blank": 45, - "Complexity": 105, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1051, - "CodeBytes": 0, - "Lines": 62, - "Code": 56, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 215741, - "CodeBytes": 0, - "Lines": 116, - "Code": 116, - "Comment": 0, - "Blank": 0, - "Complexity": 4, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 3776, - "CodeBytes": 0, - "Lines": 215, - "Code": 189, - "Comment": 0, - "Blank": 26, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 3312, - "CodeBytes": 0, - "Lines": 101, - "Code": 78, - "Comment": 23, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 5609, - "CodeBytes": 0, - "Lines": 210, - "Code": 167, - "Comment": 19, - "Blank": 24, - "Complexity": 11, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 572, - "CodeBytes": 0, - "Lines": 20, - "Code": 20, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 189158.24795231767, - "estimatedScheduleMonths_low": 7.565200266423692, - "estimatedPeople_low": 2.435871429814394, - "estimatedCost_high": 589499.7163798087, - "estimatedScheduleMonths_high": 7.565200266423692, - "estimatedPeople_high": 2.435871429814394, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 67 3654 380 243 3031 157\n(ULOC) 2157\n-------------------------------------------------------------------------------\nJSON 21 567 7 0 560 0\n(ULOC) 315\n-------------------------------------------------------------------------------\nMarkdown 19 849 290 0 559 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nShell 13 641 105 86 450 67\n(ULOC) 363\n-------------------------------------------------------------------------------\nYAML 10 625 34 13 578 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 7 1217 45 11 1161 105\n(ULOC) 731\n-------------------------------------------------------------------------------\nCSS 6 62 6 0 56 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nSVG 5 116 0 0 116 4\n(ULOC) 114\n-------------------------------------------------------------------------------\nSass 4 215 26 0 189 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nHTML 2 101 0 23 78 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nTypeScript 2 210 24 19 167 11\n(ULOC) 145\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 159 8280 917 395 6968 344\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 4755\nDRYness % 0.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $207,423\nEstimated Schedule Effort (organic) 7.57 months\nEstimated People Required (organic) 2.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 485905 bytes, 0.486 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 102526, - "Shell": 16148, - "TypeScript": 5609, - "SCSS": 3776, - "HTML": 3312, - "CSS": 1051 - } -} \ No newline at end of file + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 17 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "69 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 102526, + "CodeBytes": 0, + "Lines": 3654, + "Code": 3031, + "Comment": 243, + "Blank": 380, + "Complexity": 157, + "Count": 67, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 17963, + "CodeBytes": 0, + "Lines": 567, + "Code": 560, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 49850, + "CodeBytes": 0, + "Lines": 849, + "Code": 559, + "Comment": 0, + "Blank": 290, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 19535, + "CodeBytes": 0, + "Lines": 641, + "Code": 450, + "Comment": 86, + "Blank": 105, + "Complexity": 67, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 24121, + "CodeBytes": 0, + "Lines": 625, + "Code": 578, + "Comment": 13, + "Blank": 34, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 41782, + "CodeBytes": 0, + "Lines": 1217, + "Code": 1161, + "Comment": 11, + "Blank": 45, + "Complexity": 105, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1051, + "CodeBytes": 0, + "Lines": 62, + "Code": 56, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 215741, + "CodeBytes": 0, + "Lines": 116, + "Code": 116, + "Comment": 0, + "Blank": 0, + "Complexity": 4, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 3776, + "CodeBytes": 0, + "Lines": 215, + "Code": 189, + "Comment": 0, + "Blank": 26, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 3312, + "CodeBytes": 0, + "Lines": 101, + "Code": 78, + "Comment": 23, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 5609, + "CodeBytes": 0, + "Lines": 210, + "Code": 167, + "Comment": 19, + "Blank": 24, + "Complexity": 11, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 572, + "CodeBytes": 0, + "Lines": 20, + "Code": 20, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 189158.24795231767, + "estimatedScheduleMonths_low": 7.565200266423692, + "estimatedPeople_low": 2.435871429814394, + "estimatedCost_high": 589499.7163798087, + "estimatedScheduleMonths_high": 7.565200266423692, + "estimatedPeople_high": 2.435871429814394, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 67 3654 380 243 3031 157\n(ULOC) 2157\n-------------------------------------------------------------------------------\nJSON 21 567 7 0 560 0\n(ULOC) 315\n-------------------------------------------------------------------------------\nMarkdown 19 849 290 0 559 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nShell 13 641 105 86 450 67\n(ULOC) 363\n-------------------------------------------------------------------------------\nYAML 10 625 34 13 578 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 7 1217 45 11 1161 105\n(ULOC) 731\n-------------------------------------------------------------------------------\nCSS 6 62 6 0 56 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nSVG 5 116 0 0 116 4\n(ULOC) 114\n-------------------------------------------------------------------------------\nSass 4 215 26 0 189 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nHTML 2 101 0 23 78 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nTypeScript 2 210 24 19 167 11\n(ULOC) 145\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 159 8280 917 395 6968 344\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 4755\nDRYness % 0.57\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $207,423\nEstimated Schedule Effort (organic) 7.57 months\nEstimated People Required (organic) 2.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 485905 bytes, 0.486 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 102526, + "Shell": 16148, + "TypeScript": 5609, + "SCSS": 3776, + "HTML": 3312, + "CSS": 1051 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json b/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json index c08e3fd598..d1053ddaed 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json @@ -1,347 +1,347 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-security-hub-sync", - "owner": "Enterprise-CMCS", - "name": "macpro-security-hub-sync", - "description": "Syncs AWS Security Hub findings to Atlassian Jira", - "commits_count": 72, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 223, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 56, - "closed_pull_requests_count": 158, - "forks_count": 2, - "stargazers_count": 2, - "watchers_count": 6, - "total_project_lines": 2410, - "average_project_lines": 73, - "total_project_comment_lines": 48, - "average_project_comment_lines": 1, - "total_project_blank_lines": 341, - "average_blank_lines": 10, - "commits_by_month": { - "2024/8": 4, - "2024/7": 9, - "2024/6": 10, - "2024/5": 2, - "2024/3": 3, - "2023/11": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-30T00:00:00.000Z", - 1 - ], - [ - "2024-06-03T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-security-hub-sync", + "owner": "Enterprise-CMCS", + "name": "macpro-security-hub-sync", + "description": "Syncs AWS Security Hub findings to Atlassian Jira", + "commits_count": 72, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 223, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 56, + "closed_pull_requests_count": 158, + "forks_count": 2, + "stargazers_count": 2, + "watchers_count": 6, + "total_project_lines": 2410, + "average_project_lines": 73, + "total_project_comment_lines": 48, + "average_project_comment_lines": 1, + "total_project_blank_lines": 341, + "average_blank_lines": 10, + "commits_by_month": { + "2024/8": 4, + "2024/7": 9, + "2024/6": 10, + "2024/5": 2, + "2024/3": 3, + "2023/11": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-30T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-01-23T21:47:31Z", - "ossf_scorecard": { - "date": "2024-10-14T20:38:25Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-security-hub-sync", - "commit": "4da170b9cc489f5da1dc40b54cc07d2edd64b4f9" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "24 out of 24 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 4, - "reason": "Found 14/30 approved changesets -- score normalized to 4", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "17 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-06-03T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-01-23T21:47:31Z", + "ossf_scorecard": { + "date": "2024-10-14T20:38:25Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-security-hub-sync", + "commit": "4da170b9cc489f5da1dc40b54cc07d2edd64b4f9" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 49976, - "CodeBytes": 0, - "Lines": 1643, - "Code": 1465, - "Comment": 30, - "Blank": 148, - "Complexity": 135, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6333, - "CodeBytes": 0, - "Lines": 262, - "Code": 216, - "Comment": 18, - "Blank": 28, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3297, - "CodeBytes": 0, - "Lines": 126, - "Code": 126, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 13257, - "CodeBytes": 0, - "Lines": 345, - "Code": 190, - "Comment": 0, - "Blank": 155, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 122, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 51571.096195548205, - "estimatedScheduleMonths_low": 4.616801895585476, - "estimatedPeople_low": 1.0882148079214973, - "estimatedCost_high": 160718.0596657615, - "estimatedScheduleMonths_high": 4.616801895585476, - "estimatedPeople_high": 1.0882148079214973, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 13 1643 148 30 1465 135\n(ULOC) 1056\n-------------------------------------------------------------------------------\nYAML 10 262 28 18 216 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nJSON 4 126 0 0 126 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 4 345 155 0 190 0\n(ULOC) 151\n-------------------------------------------------------------------------------\nJavaScript 1 3 1 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 33 2410 341 48 2021 135\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1484\nDRYness % 0.62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $56,550\nEstimated Schedule Effort (organic) 4.62 months\nEstimated People Required (organic) 1.09\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 74312 bytes, 0.074 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 49976 - } -} \ No newline at end of file + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "24 out of 24 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 4, + "reason": "Found 14/30 approved changesets -- score normalized to 4", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "17 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 49976, + "CodeBytes": 0, + "Lines": 1643, + "Code": 1465, + "Comment": 30, + "Blank": 148, + "Complexity": 135, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6333, + "CodeBytes": 0, + "Lines": 262, + "Code": 216, + "Comment": 18, + "Blank": 28, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3297, + "CodeBytes": 0, + "Lines": 126, + "Code": 126, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 13257, + "CodeBytes": 0, + "Lines": 345, + "Code": 190, + "Comment": 0, + "Blank": 155, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 122, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 51571.096195548205, + "estimatedScheduleMonths_low": 4.616801895585476, + "estimatedPeople_low": 1.0882148079214973, + "estimatedCost_high": 160718.0596657615, + "estimatedScheduleMonths_high": 4.616801895585476, + "estimatedPeople_high": 1.0882148079214973, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 13 1643 148 30 1465 135\n(ULOC) 1056\n-------------------------------------------------------------------------------\nYAML 10 262 28 18 216 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nJSON 4 126 0 0 126 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 4 345 155 0 190 0\n(ULOC) 151\n-------------------------------------------------------------------------------\nJavaScript 1 3 1 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n───────────────────────────────────────────────────────────────────────────────\nTotal 33 2410 341 48 2021 135\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1484\nDRYness % 0.62\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $56,550\nEstimated Schedule Effort (organic) 4.62 months\nEstimated People Required (organic) 1.09\n───────────────────────────────────────────────────────────────────────────────\nProcessed 74312 bytes, 0.074 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 49976 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json b/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json index 05212a989a..010febf4d5 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json @@ -1,328 +1,328 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-serverless-running-stages", - "owner": "Enterprise-CMCS", - "name": "macpro-serverless-running-stages", - "description": "MACPro Platform is building an npm module to be consumed by other projects (not restricted to macpro)", - "commits_count": 34, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 128, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 14, - "closed_pull_requests_count": 108, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 3, - "total_project_lines": 769, - "average_project_lines": 35, - "total_project_comment_lines": 11, - "average_project_comment_lines": 1, - "total_project_blank_lines": 130, - "average_blank_lines": 6, - "commits_by_month": { - "2024/5": 8, - "2023/6": 1, - "2023/5": 4, - "2023/4": 3, - "2023/2": 2, - "2023/1": 12 + "url": "https://github.com/Enterprise-CMCS/macpro-serverless-running-stages", + "owner": "Enterprise-CMCS", + "name": "macpro-serverless-running-stages", + "description": "MACPro Platform is building an npm module to be consumed by other projects (not restricted to macpro)", + "commits_count": 34, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 128, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 14, + "closed_pull_requests_count": 108, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 3, + "total_project_lines": 769, + "average_project_lines": 35, + "total_project_comment_lines": 11, + "average_project_comment_lines": 1, + "total_project_blank_lines": 130, + "average_blank_lines": 6, + "commits_by_month": { + "2024/5": 8, + "2023/6": 1, + "2023/5": 4, + "2023/4": 3, + "2023/2": 2, + "2023/1": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-17T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-01-09T20:47:58Z", + "ossf_scorecard": { + "date": "2024-10-14T20:45:37Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-serverless-running-stages", + "commit": "83d291683b6102eeebbda7e9e47cf7772dc0f7c3" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-17T00:00:00.000Z", - 2 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-01-09T20:47:58Z", - "ossf_scorecard": { - "date": "2024-10-14T20:45:37Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-serverless-running-stages", - "commit": "83d291683b6102eeebbda7e9e47cf7772dc0f7c3" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "6 out of 13 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 2/17 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "11 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 7491, - "CodeBytes": 0, - "Lines": 284, - "Code": 244, - "Comment": 11, - "Blank": 29, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 8280, - "CodeBytes": 0, - "Lines": 235, - "Code": 150, - "Comment": 0, - "Blank": 85, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 3107, - "CodeBytes": 0, - "Lines": 110, - "Code": 98, - "Comment": 0, - "Blank": 12, - "Complexity": 8, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3060, - "CodeBytes": 0, - "Lines": 119, - "Code": 119, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1097, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 15115.390086628171, - "estimatedScheduleMonths_low": 2.896050818446369, - "estimatedPeople_low": 0.5084669030827715, - "estimatedCost_high": 47106.15722811945, - "estimatedScheduleMonths_high": 2.896050818446369, - "estimatedPeople_high": 0.5084669030827715, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 9 284 29 11 244 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nMarkdown 5 235 85 0 150 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nTypeScript 4 110 12 0 98 8\n(ULOC) 83\n-------------------------------------------------------------------------------\nJSON 3 119 0 0 119 0\n(ULOC) 109\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 22 769 130 11 628 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 480\nDRYness % 0.62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,574\nEstimated Schedule Effort (organic) 2.90 months\nEstimated People Required (organic) 0.51\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 23035 bytes, 0.023 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 3107 - } -} \ No newline at end of file + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "6 out of 13 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 2/17 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "11 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 7491, + "CodeBytes": 0, + "Lines": 284, + "Code": 244, + "Comment": 11, + "Blank": 29, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 8280, + "CodeBytes": 0, + "Lines": 235, + "Code": 150, + "Comment": 0, + "Blank": 85, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 3107, + "CodeBytes": 0, + "Lines": 110, + "Code": 98, + "Comment": 0, + "Blank": 12, + "Complexity": 8, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3060, + "CodeBytes": 0, + "Lines": 119, + "Code": 119, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1097, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 15115.390086628171, + "estimatedScheduleMonths_low": 2.896050818446369, + "estimatedPeople_low": 0.5084669030827715, + "estimatedCost_high": 47106.15722811945, + "estimatedScheduleMonths_high": 2.896050818446369, + "estimatedPeople_high": 0.5084669030827715, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 9 284 29 11 244 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nMarkdown 5 235 85 0 150 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nTypeScript 4 110 12 0 98 8\n(ULOC) 83\n-------------------------------------------------------------------------------\nJSON 3 119 0 0 119 0\n(ULOC) 109\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n───────────────────────────────────────────────────────────────────────────────\nTotal 22 769 130 11 628 8\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 480\nDRYness % 0.62\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,574\nEstimated Schedule Effort (organic) 2.90 months\nEstimated People Required (organic) 0.51\n───────────────────────────────────────────────────────────────────────────────\nProcessed 23035 bytes, 0.023 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 3107 + } +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json b/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json index d268e8b134..340a8673f8 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json @@ -1,443 +1,443 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-ux-lib", - "owner": "Enterprise-CMCS", - "name": "macpro-ux-lib", - "description": "Common React UX library packaged for easier distribution throughout CMS ", - "commits_count": 285, - "issues_count": 4, - "open_issues_count": 1, - "closed_issues_count": 3, - "pull_requests_count": 294, - "open_pull_requests_count": 16, - "merged_pull_requests_count": 153, - "closed_pull_requests_count": 125, - "forks_count": 1, - "stargazers_count": 10, - "watchers_count": 6, - "total_project_lines": 25643, - "average_project_lines": 10, - "total_project_comment_lines": 1439, - "average_project_comment_lines": 1, - "total_project_blank_lines": 1953, - "average_blank_lines": 1, - "commits_by_month": { - "2023/9": 2, - "2023/8": 28 + "url": "https://github.com/Enterprise-CMCS/macpro-ux-lib", + "owner": "Enterprise-CMCS", + "name": "macpro-ux-lib", + "description": "Common React UX library packaged for easier distribution throughout CMS ", + "commits_count": 285, + "issues_count": 4, + "open_issues_count": 1, + "closed_issues_count": 3, + "pull_requests_count": 294, + "open_pull_requests_count": 16, + "merged_pull_requests_count": 153, + "closed_pull_requests_count": 125, + "forks_count": 1, + "stargazers_count": 10, + "watchers_count": 6, + "total_project_lines": 25643, + "average_project_lines": 10, + "total_project_comment_lines": 1439, + "average_project_comment_lines": 1, + "total_project_blank_lines": 1953, + "average_blank_lines": 1, + "commits_by_month": { + "2023/9": 2, + "2023/8": 28 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-06-28T16:26:54Z", + "ossf_scorecard": { + "date": "2024-10-14T20:43:38Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-ux-lib", + "commit": "6a9a4142e9a78452840ce684d1497c9530cf477c" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-06-28T16:26:54Z", - "ossf_scorecard": { - "date": "2024-10-14T20:43:38Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-ux-lib", - "commit": "6a9a4142e9a78452840ce684d1497c9530cf477c" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "28 out of 28 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 3/5 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "26 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "SVG", - "Bytes": 1119898, - "CodeBytes": 0, - "Lines": 2701, - "Code": 2697, - "Comment": 1, - "Blank": 3, - "Complexity": 0, - "Count": 2441, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 380027, - "CodeBytes": 0, - "Lines": 12649, - "Code": 10923, - "Comment": 645, - "Blank": 1081, - "Complexity": 538, - "Count": 126, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 18426, - "CodeBytes": 0, - "Lines": 891, - "Code": 724, - "Comment": 56, - "Blank": 111, - "Complexity": 0, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 889307, - "CodeBytes": 0, - "Lines": 7332, - "Code": 6369, - "Comment": 697, - "Blank": 266, - "Complexity": 360, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 34002, - "CodeBytes": 0, - "Lines": 566, - "Code": 552, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 44700, - "CodeBytes": 0, - "Lines": 1106, - "Code": 662, - "Comment": 0, - "Blank": 444, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6044, - "CodeBytes": 0, - "Lines": 217, - "Code": 190, - "Comment": 11, - "Blank": 16, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 475848, - "CodeBytes": 0, - "Lines": 63, - "Code": 54, - "Comment": 3, - "Blank": 6, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 2385, - "CodeBytes": 0, - "Lines": 63, - "Code": 40, - "Comment": 23, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 134, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 143, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 896, - "CodeBytes": 0, - "Lines": 14, - "Code": 9, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 640145.5695717756, - "estimatedScheduleMonths_low": 12.022997158886742, - "estimatedPeople_low": 5.18699115768749, - "estimatedCost_high": 1994973.1813940136, - "estimatedScheduleMonths_high": 12.022997158886742, - "estimatedPeople_high": 5.18699115768749, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSVG 2441 2701 3 1 2697 0\n(ULOC) 2323\n-------------------------------------------------------------------------------\nTypeScript 126 12649 1081 645 10923 538\n(ULOC) 6166\n-------------------------------------------------------------------------------\nSass 30 891 111 56 724 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nJavaScript 11 7332 266 697 6369 360\n(ULOC) 4332\n-------------------------------------------------------------------------------\nJSON 10 566 14 0 552 0\n(ULOC) 378\n-------------------------------------------------------------------------------\nMarkdown 9 1106 444 0 662 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nYAML 6 217 16 11 190 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nCSS 4 63 6 3 54 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nHTML 3 63 0 23 40 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nPlain Text 2 6 0 0 6 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 14 3 2 9 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2646 25643 1953 1439 22251 898\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 14266\nDRYness % 0.56\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $701,959\nEstimated Schedule Effort (organic) 12.02 months\nEstimated People Required (organic) 5.19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2973137 bytes, 2.973 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 801501, - "TypeScript": 357554, - "SCSS": 18426, - "Shell": 896, - "HTML": 79 - } -} \ No newline at end of file + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "28 out of 28 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 3/5 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "26 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "SVG", + "Bytes": 1119898, + "CodeBytes": 0, + "Lines": 2701, + "Code": 2697, + "Comment": 1, + "Blank": 3, + "Complexity": 0, + "Count": 2441, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 380027, + "CodeBytes": 0, + "Lines": 12649, + "Code": 10923, + "Comment": 645, + "Blank": 1081, + "Complexity": 538, + "Count": 126, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 18426, + "CodeBytes": 0, + "Lines": 891, + "Code": 724, + "Comment": 56, + "Blank": 111, + "Complexity": 0, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 889307, + "CodeBytes": 0, + "Lines": 7332, + "Code": 6369, + "Comment": 697, + "Blank": 266, + "Complexity": 360, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 34002, + "CodeBytes": 0, + "Lines": 566, + "Code": 552, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 44700, + "CodeBytes": 0, + "Lines": 1106, + "Code": 662, + "Comment": 0, + "Blank": 444, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6044, + "CodeBytes": 0, + "Lines": 217, + "Code": 190, + "Comment": 11, + "Blank": 16, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 475848, + "CodeBytes": 0, + "Lines": 63, + "Code": 54, + "Comment": 3, + "Blank": 6, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 2385, + "CodeBytes": 0, + "Lines": 63, + "Code": 40, + "Comment": 23, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 134, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 143, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 896, + "CodeBytes": 0, + "Lines": 14, + "Code": 9, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 640145.5695717756, + "estimatedScheduleMonths_low": 12.022997158886742, + "estimatedPeople_low": 5.18699115768749, + "estimatedCost_high": 1994973.1813940136, + "estimatedScheduleMonths_high": 12.022997158886742, + "estimatedPeople_high": 5.18699115768749, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSVG 2441 2701 3 1 2697 0\n(ULOC) 2323\n-------------------------------------------------------------------------------\nTypeScript 126 12649 1081 645 10923 538\n(ULOC) 6166\n-------------------------------------------------------------------------------\nSass 30 891 111 56 724 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nJavaScript 11 7332 266 697 6369 360\n(ULOC) 4332\n-------------------------------------------------------------------------------\nJSON 10 566 14 0 552 0\n(ULOC) 378\n-------------------------------------------------------------------------------\nMarkdown 9 1106 444 0 662 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nYAML 6 217 16 11 190 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nCSS 4 63 6 3 54 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nHTML 3 63 0 23 40 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nPlain Text 2 6 0 0 6 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 14 3 2 9 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 2646 25643 1953 1439 22251 898\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 14266\nDRYness % 0.56\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $701,959\nEstimated Schedule Effort (organic) 12.02 months\nEstimated People Required (organic) 5.19\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2973137 bytes, 2.973 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 801501, + "TypeScript": 357554, + "SCSS": 18426, + "Shell": 896, + "HTML": 79 + } +} diff --git a/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json b/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json index 8b35297459..fcb620c251 100644 --- a/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json +++ b/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json @@ -1,598 +1,598 @@ { - "url": "https://github.com/Enterprise-CMCS/managed-care-review", - "owner": "Enterprise-CMCS", - "name": "managed-care-review", - "description": null, - "commits_count": 2125, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2849, - "open_pull_requests_count": 8, - "merged_pull_requests_count": 2093, - "closed_pull_requests_count": 748, - "forks_count": 3, - "stargazers_count": 10, - "watchers_count": 13, - "total_project_lines": 158589, - "average_project_lines": 119, - "total_project_comment_lines": 7030, - "average_project_comment_lines": 5, - "total_project_blank_lines": 15136, - "average_blank_lines": 11, - "commits_by_month": { - "2024/10": 30 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-09-23T00:00:00.000Z", - 3 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ], - [ - "2024-09-30T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/managed-care-review", + "owner": "Enterprise-CMCS", + "name": "managed-care-review", + "description": null, + "commits_count": 2125, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2849, + "open_pull_requests_count": 8, + "merged_pull_requests_count": 2093, + "closed_pull_requests_count": 748, + "forks_count": 3, + "stargazers_count": 10, + "watchers_count": 13, + "total_project_lines": 158589, + "average_project_lines": 119, + "total_project_comment_lines": 7030, + "average_project_comment_lines": 5, + "total_project_blank_lines": 15136, + "average_blank_lines": 11, + "commits_by_month": { + "2024/10": 30 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-09-23T00:00:00.000Z", + 3 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ], + [ + "2024-09-30T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-05-06T00:00:00.000Z", + 2 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-05-06T00:00:00.000Z", - 2 - ], - [ - "2024-05-07T00:00:00.000Z", - 2 - ], - [ - "2024-05-20T00:00:00.000Z", - 1 - ], - [ - "2024-07-01T00:00:00.000Z", - 1 - ] + [ + "2024-05-07T00:00:00.000Z", + 2 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-07-27T19:02:24Z", - "ossf_scorecard": { - "date": "2024-10-14T20:33:10Z", - "repo": { - "name": "github.com/Enterprise-CMCS/managed-care-review", - "commit": "a2b414686f88d8e8b7cee84ad91074de78e40271" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 6.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "23 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-05-20T00:00:00.000Z", + 1 + ], + [ + "2024-07-01T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-07-27T19:02:24Z", + "ossf_scorecard": { + "date": "2024-10-14T20:33:10Z", + "repo": { + "name": "github.com/Enterprise-CMCS/managed-care-review", + "commit": "a2b414686f88d8e8b7cee84ad91074de78e40271" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 5099305, - "CodeBytes": 0, - "Lines": 138865, - "Code": 121154, - "Comment": 5617, - "Blank": 12094, - "Complexity": 9550, - "Count": 960, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 399168, - "CodeBytes": 0, - "Lines": 6172, - "Code": 4233, - "Comment": 0, - "Blank": 1939, - "Complexity": 0, - "Count": 84, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 59508, - "CodeBytes": 0, - "Lines": 2598, - "Code": 2132, - "Comment": 109, - "Blank": 357, - "Complexity": 0, - "Count": 64, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 2286613, - "CodeBytes": 0, - "Lines": 509, - "Code": 508, - "Comment": 1, - "Blank": 0, - "Complexity": 3, - "Count": 59, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 52402, - "CodeBytes": 0, - "Lines": 1296, - "Code": 724, - "Comment": 330, - "Blank": 242, - "Complexity": 0, - "Count": 56, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "GraphQL", - "Bytes": 167914, - "CodeBytes": 0, - "Lines": 6344, - "Code": 4970, - "Comment": 968, - "Blank": 406, - "Complexity": 229, - "Count": 36, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 132047, - "CodeBytes": 0, - "Lines": 3706, - "Code": 3700, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 68316, - "CodeBytes": 0, - "Lines": 2092, - "Code": 1803, - "Comment": 39, - "Blank": 250, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 19047, - "CodeBytes": 0, - "Lines": 442, - "Code": 296, - "Comment": 61, - "Blank": 85, - "Complexity": 34, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 73872, - "CodeBytes": 0, - "Lines": 2161, - "Code": 1989, - "Comment": 34, - "Blank": 138, - "Complexity": 180, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 2750, - "CodeBytes": 0, - "Lines": 96, - "Code": 86, - "Comment": 5, - "Blank": 5, - "Complexity": 10, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 11497, - "CodeBytes": 0, - "Lines": 337, - "Code": 196, - "Comment": 93, - "Blank": 48, - "Complexity": 45, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 314, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 8393, - "CodeBytes": 0, - "Lines": 238, - "Code": 209, - "Comment": 12, - "Blank": 17, - "Complexity": 10, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Protocol Buffers", - "Bytes": 26551, - "CodeBytes": 0, - "Lines": 915, - "Code": 756, - "Comment": 49, - "Blank": 110, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 327, - "CodeBytes": 0, - "Lines": 17, - "Code": 14, - "Comment": 1, - "Blank": 2, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 631, - "CodeBytes": 0, - "Lines": 17, - "Code": 17, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Systemd", - "Bytes": 251, - "CodeBytes": 0, - "Lines": 11, - "Code": 9, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 126, - "CodeBytes": 0, - "Lines": 3, - "Code": 1, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 326, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4508937.849533582, - "estimatedScheduleMonths_low": 25.24498031480637, - "estimatedPeople_low": 17.39997886449266, - "estimatedCost_high": 14051819.639100565, - "estimatedScheduleMonths_high": 25.24498031480637, - "estimatedPeople_high": 17.39997886449266, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 960 138865 12094 5617 121154 9550\n(ULOC) 49157\n-------------------------------------------------------------------------------\nMarkdown 84 6172 1939 0 4233 0\n(ULOC) 3491\n-------------------------------------------------------------------------------\nSass 64 2598 357 109 2132 0\n(ULOC) 1224\n-------------------------------------------------------------------------------\nSVG 59 509 0 1 508 3\n(ULOC) 437\n-------------------------------------------------------------------------------\nSQL 56 1296 242 330 724 0\n(ULOC) 547\n-------------------------------------------------------------------------------\nGraphQL 36 6344 406 968 4970 229\n(ULOC) 1550\n-------------------------------------------------------------------------------\nJSON 30 3706 6 0 3700 0\n(ULOC) 1119\n-------------------------------------------------------------------------------\nYAML 22 2092 250 39 1803 0\n(ULOC) 1022\n-------------------------------------------------------------------------------\nShell 14 442 85 61 296 34\n(ULOC) 302\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 8 2161 138 34 1989 180\n(ULOC) 1141\n-------------------------------------------------------------------------------\nTypeScript Typings 8 96 5 5 86 10\n(ULOC) 55\n-------------------------------------------------------------------------------\nBASH 5 337 48 93 196 45\n(ULOC) 164\n-------------------------------------------------------------------------------\nCSV 3 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nJavaScript 3 238 17 12 209 10\n(ULOC) 137\n-------------------------------------------------------------------------------\nProtocol Buffers 3 915 110 49 756 0\n(ULOC) 276\n-------------------------------------------------------------------------------\nDockerfile 1 17 2 1 14 3\n(ULOC) 16\n-------------------------------------------------------------------------------\nHTML 1 17 0 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSystemd 1 11 2 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nTOML 1 3 0 2 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1361 165837 15701 7321 142815 10064\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 60372\nDRYness % 0.36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,944,334\nEstimated Schedule Effort (organic) 25.24 months\nEstimated People Required (organic) 17.40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 8409425 bytes, 8.409 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "TypeScript": 5143870, - "SCSS": 59955, - "PLpgSQL": 39775, - "Shell": 28718, - "JavaScript": 8393, - "HTML": 631, - "Dockerfile": 327 - } -} \ No newline at end of file + "score": 6.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "23 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 5146672, + "CodeBytes": 0, + "Lines": 140230, + "Code": 122349, + "Comment": 5659, + "Blank": 12222, + "Complexity": 9688, + "Count": 970, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 399341, + "CodeBytes": 0, + "Lines": 6173, + "Code": 4234, + "Comment": 0, + "Blank": 1939, + "Complexity": 0, + "Count": 84, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 59955, + "CodeBytes": 0, + "Lines": 2627, + "Code": 2156, + "Comment": 109, + "Blank": 362, + "Complexity": 0, + "Count": 64, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 2286613, + "CodeBytes": 0, + "Lines": 509, + "Code": 508, + "Comment": 1, + "Blank": 0, + "Complexity": 3, + "Count": 59, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 52402, + "CodeBytes": 0, + "Lines": 1296, + "Code": 724, + "Comment": 330, + "Blank": 242, + "Complexity": 0, + "Count": 56, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "GraphQL", + "Bytes": 154833, + "CodeBytes": 0, + "Lines": 5792, + "Code": 4434, + "Comment": 968, + "Blank": 390, + "Complexity": 215, + "Count": 40, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 132049, + "CodeBytes": 0, + "Lines": 3706, + "Code": 3700, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 68380, + "CodeBytes": 0, + "Lines": 2094, + "Code": 1805, + "Comment": 39, + "Blank": 250, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 19047, + "CodeBytes": 0, + "Lines": 442, + "Code": 296, + "Comment": 61, + "Blank": 85, + "Complexity": 34, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 74195, + "CodeBytes": 0, + "Lines": 2172, + "Code": 1999, + "Comment": 34, + "Blank": 139, + "Complexity": 180, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 2750, + "CodeBytes": 0, + "Lines": 96, + "Code": 86, + "Comment": 5, + "Blank": 5, + "Complexity": 10, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 11497, + "CodeBytes": 0, + "Lines": 337, + "Code": 196, + "Comment": 93, + "Blank": 48, + "Complexity": 45, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 314, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 8393, + "CodeBytes": 0, + "Lines": 238, + "Code": 209, + "Comment": 12, + "Blank": 17, + "Complexity": 10, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Protocol Buffers", + "Bytes": 26551, + "CodeBytes": 0, + "Lines": 915, + "Code": 756, + "Comment": 49, + "Blank": 110, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 327, + "CodeBytes": 0, + "Lines": 17, + "Code": 14, + "Comment": 1, + "Blank": 2, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 631, + "CodeBytes": 0, + "Lines": 17, + "Code": 17, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Systemd", + "Bytes": 251, + "CodeBytes": 0, + "Lines": 11, + "Code": 9, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 126, + "CodeBytes": 0, + "Lines": 3, + "Code": 1, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 326, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4532013.385211391, + "estimatedScheduleMonths_low": 25.293997517373164, + "estimatedPeople_low": 17.455135332102397, + "estimatedCost_high": 14123733.08662208, + "estimatedScheduleMonths_high": 25.293997517373164, + "estimatedPeople_high": 17.455135332102397, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 970 140230 12222 5659 122349 9688\n(ULOC) 49590\n-------------------------------------------------------------------------------\nMarkdown 84 6173 1939 0 4234 0\n(ULOC) 3492\n-------------------------------------------------------------------------------\nSass 64 2627 362 109 2156 0\n(ULOC) 1230\n-------------------------------------------------------------------------------\nSVG 59 509 0 1 508 3\n(ULOC) 437\n-------------------------------------------------------------------------------\nSQL 56 1296 242 330 724 0\n(ULOC) 547\n-------------------------------------------------------------------------------\nGraphQL 40 5792 390 968 4434 215\n(ULOC) 1579\n-------------------------------------------------------------------------------\nJSON 30 3706 6 0 3700 0\n(ULOC) 1119\n-------------------------------------------------------------------------------\nYAML 22 2094 250 39 1805 0\n(ULOC) 1023\n-------------------------------------------------------------------------------\nShell 14 442 85 61 296 34\n(ULOC) 302\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 8 2172 139 34 1999 180\n(ULOC) 1143\n-------------------------------------------------------------------------------\nTypeScript Typings 8 96 5 5 86 10\n(ULOC) 55\n-------------------------------------------------------------------------------\nBASH 5 337 48 93 196 45\n(ULOC) 164\n-------------------------------------------------------------------------------\nCSV 3 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nJavaScript 3 238 17 12 209 10\n(ULOC) 137\n-------------------------------------------------------------------------------\nProtocol Buffers 3 915 110 49 756 0\n(ULOC) 276\n-------------------------------------------------------------------------------\nDockerfile 1 17 2 1 14 3\n(ULOC) 16\n-------------------------------------------------------------------------------\nHTML 1 17 0 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSystemd 1 11 2 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nTOML 1 3 0 2 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 1375 166693 15819 7363 143511 10188\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 60844\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,969,638\nEstimated Schedule Effort (organic) 25.29 months\nEstimated People Required (organic) 17.46\n───────────────────────────────────────────────────────────────────────────────\nProcessed 8444720 bytes, 8.445 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 5143870, + "SCSS": 59955, + "PLpgSQL": 39775, + "Shell": 28718, + "JavaScript": 8393, + "HTML": 631, + "Dockerfile": 327 + } +} diff --git a/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json b/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json index 0986281adb..56b496052c 100644 --- a/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json +++ b/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json @@ -1,458 +1,458 @@ { - "url": "https://github.com/Enterprise-CMCS/seatool-compare", - "owner": "Enterprise-CMCS", - "name": "seatool-compare", - "description": "Code repository", - "commits_count": 271, - "issues_count": 31, - "open_issues_count": 0, - "closed_issues_count": 31, - "pull_requests_count": 174, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 152, - "closed_pull_requests_count": 16, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 6, - "total_project_lines": 12851, - "average_project_lines": 63, - "total_project_comment_lines": 352, - "average_project_comment_lines": 2, - "total_project_blank_lines": 1677, - "average_blank_lines": 8, - "commits_by_month": { - "2023/12": 2, - "2023/8": 4, - "2023/7": 4, - "2023/6": 8, - "2023/5": 12 + "url": "https://github.com/Enterprise-CMCS/seatool-compare", + "owner": "Enterprise-CMCS", + "name": "seatool-compare", + "description": "Code repository", + "commits_count": 271, + "issues_count": 31, + "open_issues_count": 0, + "closed_issues_count": 31, + "pull_requests_count": 174, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 152, + "closed_pull_requests_count": 16, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 6, + "total_project_lines": 12851, + "average_project_lines": 63, + "total_project_comment_lines": 352, + "average_project_comment_lines": 2, + "total_project_blank_lines": 1677, + "average_blank_lines": 8, + "commits_by_month": { + "2023/12": 2, + "2023/8": 4, + "2023/7": 4, + "2023/6": 8, + "2023/5": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-09-16T18:46:05Z", + "ossf_scorecard": { + "date": "2024-10-14T20:42:23Z", + "repo": { + "name": "github.com/Enterprise-CMCS/seatool-compare", + "commit": "9ee31e2c2f8c5defba29f1cbf4cb501438c94a5d" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-09-16T18:46:05Z", - "ossf_scorecard": { - "date": "2024-10-14T20:42:23Z", - "repo": { - "name": "github.com/Enterprise-CMCS/seatool-compare", - "commit": "9ee31e2c2f8c5defba29f1cbf4cb501438c94a5d" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "9 out of 21 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 17/18 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "29 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 195375, - "CodeBytes": 0, - "Lines": 6944, - "Code": 5950, - "Comment": 194, - "Blank": 800, - "Complexity": 342, - "Count": 95, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 94122, - "CodeBytes": 0, - "Lines": 2123, - "Code": 1487, - "Comment": 0, - "Blank": 636, - "Complexity": 0, - "Count": 48, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 8944, - "CodeBytes": 0, - "Lines": 316, - "Code": 316, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 34264, - "CodeBytes": 0, - "Lines": 1079, - "Code": 866, - "Comment": 89, - "Blank": 124, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 65916, - "CodeBytes": 0, - "Lines": 1928, - "Code": 1821, - "Comment": 33, - "Blank": 74, - "Complexity": 53, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5380, - "CodeBytes": 0, - "Lines": 161, - "Code": 115, - "Comment": 23, - "Blank": 23, - "Complexity": 29, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 130850, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 176, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 1606, - "CodeBytes": 0, - "Lines": 48, - "Code": 29, - "Comment": 10, - "Blank": 9, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 170, - "CodeBytes": 0, - "Lines": 10, - "Code": 8, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 7463, - "CodeBytes": 0, - "Lines": 191, - "Code": 191, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 300320.2658721954, - "estimatedScheduleMonths_low": 9.017974124317655, - "estimatedPeople_low": 3.244331049653061, - "estimatedCost_high": 935929.1147557852, - "estimatedScheduleMonths_high": 9.017974124317655, - "estimatedPeople_high": 3.244331049653061, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 95 6944 800 194 5950 342\n(ULOC) 3356\n-------------------------------------------------------------------------------\nMarkdown 48 2123 636 0 1487 0\n(ULOC) 722\n-------------------------------------------------------------------------------\nJSON 19 316 0 0 316 0\n(ULOC) 190\n-------------------------------------------------------------------------------\nYAML 19 1079 124 89 866 0\n(ULOC) 606\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 11 1928 74 33 1821 53\n(ULOC) 855\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 48 9 10 29 9\n(ULOC) 33\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nJavaScript 1 10 1 1 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 191 0 0 191 0\n(ULOC) 98\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 205 12851 1677 352 10822 433\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 5982\nDRYness % 0.47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $329,320\nEstimated Schedule Effort (organic) 9.02 months\nEstimated People Required (organic) 3.24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 545721 bytes, 0.546 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "TypeScript": 167699, - "Shell": 2136 - } -} \ No newline at end of file + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "9 out of 21 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 17/18 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "29 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 195375, + "CodeBytes": 0, + "Lines": 6944, + "Code": 5950, + "Comment": 194, + "Blank": 800, + "Complexity": 342, + "Count": 95, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 94122, + "CodeBytes": 0, + "Lines": 2123, + "Code": 1487, + "Comment": 0, + "Blank": 636, + "Complexity": 0, + "Count": 48, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 8944, + "CodeBytes": 0, + "Lines": 316, + "Code": 316, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 34264, + "CodeBytes": 0, + "Lines": 1079, + "Code": 866, + "Comment": 89, + "Blank": 124, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 65916, + "CodeBytes": 0, + "Lines": 1928, + "Code": 1821, + "Comment": 33, + "Blank": 74, + "Complexity": 53, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5380, + "CodeBytes": 0, + "Lines": 161, + "Code": 115, + "Comment": 23, + "Blank": 23, + "Complexity": 29, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 130850, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 176, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 1606, + "CodeBytes": 0, + "Lines": 48, + "Code": 29, + "Comment": 10, + "Blank": 9, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 170, + "CodeBytes": 0, + "Lines": 10, + "Code": 8, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 7463, + "CodeBytes": 0, + "Lines": 191, + "Code": 191, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 300320.2658721954, + "estimatedScheduleMonths_low": 9.017974124317655, + "estimatedPeople_low": 3.244331049653061, + "estimatedCost_high": 935929.1147557852, + "estimatedScheduleMonths_high": 9.017974124317655, + "estimatedPeople_high": 3.244331049653061, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 95 6944 800 194 5950 342\n(ULOC) 3356\n-------------------------------------------------------------------------------\nMarkdown 48 2123 636 0 1487 0\n(ULOC) 722\n-------------------------------------------------------------------------------\nJSON 19 316 0 0 316 0\n(ULOC) 190\n-------------------------------------------------------------------------------\nYAML 19 1079 124 89 866 0\n(ULOC) 606\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 11 1928 74 33 1821 53\n(ULOC) 855\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 48 9 10 29 9\n(ULOC) 33\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nJavaScript 1 10 1 1 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 191 0 0 191 0\n(ULOC) 98\n───────────────────────────────────────────────────────────────────────────────\nTotal 205 12851 1677 352 10822 433\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 5982\nDRYness % 0.47\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $329,320\nEstimated Schedule Effort (organic) 9.02 months\nEstimated People Required (organic) 3.24\n───────────────────────────────────────────────────────────────────────────────\nProcessed 545721 bytes, 0.546 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 167699, + "Shell": 2136 + } +} diff --git a/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json b/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json index a3db65767c..b28ef770b7 100644 --- a/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json +++ b/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json @@ -1,495 +1,495 @@ { - "url": "https://github.com/Enterprise-CMCS/seatool-connectors", - "owner": "Enterprise-CMCS", - "name": "seatool-connectors", - "description": "Microservice streaming CMS SEA Tool data to CMS Bigmac.", - "commits_count": 196, - "issues_count": 31, - "open_issues_count": 0, - "closed_issues_count": 31, - "pull_requests_count": 94, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 73, - "closed_pull_requests_count": 19, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 5, - "total_project_lines": 12045, - "average_project_lines": 73, - "total_project_comment_lines": 186, - "average_project_comment_lines": 1, - "total_project_blank_lines": 1377, - "average_blank_lines": 8, - "commits_by_month": { - "2024/10": 1, - "2024/8": 5, - "2024/3": 1, - "2024/2": 5, - "2023/12": 3, - "2023/7": 2, - "2023/6": 1, - "2023/5": 12 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-10-07T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/seatool-connectors", + "owner": "Enterprise-CMCS", + "name": "seatool-connectors", + "description": "Microservice streaming CMS SEA Tool data to CMS Bigmac.", + "commits_count": 196, + "issues_count": 31, + "open_issues_count": 0, + "closed_issues_count": 31, + "pull_requests_count": 94, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 73, + "closed_pull_requests_count": 19, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 5, + "total_project_lines": 12045, + "average_project_lines": 73, + "total_project_comment_lines": 186, + "average_project_comment_lines": 1, + "total_project_blank_lines": 1377, + "average_blank_lines": 8, + "commits_by_month": { + "2024/10": 1, + "2024/8": 5, + "2024/3": 1, + "2024/2": 5, + "2023/12": 3, + "2023/7": 2, + "2023/6": 1, + "2023/5": 12 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-10-07T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-07T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-07T00:00:00.000Z", - 1 - ], - [ - "2024-08-08T00:00:00.000Z", - 1 - ], - [ - "2024-10-07T00:00:00.000Z", - 1 - ] + [ + "2024-08-08T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-09-16T18:48:38Z", - "ossf_scorecard": { - "date": "2024-10-14T20:41:44Z", - "repo": { - "name": "github.com/Enterprise-CMCS/seatool-connectors", - "commit": "5a4394b6b66eac5b32c1222b1927877eedb085e1" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 6, - "reason": "13 out of 20 merged PRs checked by a CI test -- score normalized to 6", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "27 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-10-07T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-09-16T18:48:38Z", + "ossf_scorecard": { + "date": "2024-10-14T20:41:44Z", + "repo": { + "name": "github.com/Enterprise-CMCS/seatool-connectors", + "commit": "5a4394b6b66eac5b32c1222b1927877eedb085e1" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 106527, - "CodeBytes": 0, - "Lines": 2273, - "Code": 1650, - "Comment": 0, - "Blank": 623, - "Complexity": 0, - "Count": 47, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 44533, - "CodeBytes": 0, - "Lines": 1579, - "Code": 1431, - "Comment": 20, - "Blank": 128, - "Complexity": 80, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 51717, - "CodeBytes": 0, - "Lines": 1229, - "Code": 1094, - "Comment": 35, - "Blank": 100, - "Complexity": 97, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 32176, - "CodeBytes": 0, - "Lines": 1060, - "Code": 850, - "Comment": 87, - "Blank": 123, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 13172, - "CodeBytes": 0, - "Lines": 335, - "Code": 328, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 108932, - "CodeBytes": 0, - "Lines": 2419, - "Code": 2136, - "Comment": 0, - "Blank": 283, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 105602, - "CodeBytes": 0, - "Lines": 2604, - "Code": 2521, - "Comment": 11, - "Blank": 72, - "Complexity": 71, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5379, - "CodeBytes": 0, - "Lines": 161, - "Code": 115, - "Comment": 23, - "Blank": 23, - "Complexity": 29, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 80919, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 2, - "Blank": 0, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 1439, - "CodeBytes": 0, - "Lines": 43, - "Code": 27, - "Comment": 8, - "Blank": 8, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 10077, - "CodeBytes": 0, - "Lines": 293, - "Code": 293, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 85, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 290421.05371797254, - "estimatedScheduleMonths_low": 8.90384310174569, - "estimatedPeople_low": 3.1776064351673567, - "estimatedCost_high": 905078.8461554493, - "estimatedScheduleMonths_high": 8.90384310174569, - "estimatedPeople_high": 3.1776064351673567, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 47 2273 623 0 1650 0\n(ULOC) 827\n-------------------------------------------------------------------------------\nTypeScript 28 1579 128 20 1431 80\n(ULOC) 1029\n-------------------------------------------------------------------------------\nJavaScript 25 1229 100 35 1094 97\n(ULOC) 471\n-------------------------------------------------------------------------------\nYAML 18 1060 123 87 850 0\n(ULOC) 553\n-------------------------------------------------------------------------------\nJSON 16 335 7 0 328 0\n(ULOC) 211\n-------------------------------------------------------------------------------\nSQL 12 2419 283 0 2136 0\n(ULOC) 940\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 8 2604 72 11 2521 71\n(ULOC) 948\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 1\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 293 0 0 293 0\n(ULOC) 116\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 165 12045 1377 186 10482 287\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 5215\nDRYness % 0.43\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $318,464\nEstimated Schedule Effort (organic) 8.90 months\nEstimated People Required (organic) 3.18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 562013 bytes, 0.562 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "predominant_langs": { - "JavaScript": 35734, - "TypeScript": 16857, - "Shell": 2780 - } -} \ No newline at end of file + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 6, + "reason": "13 out of 20 merged PRs checked by a CI test -- score normalized to 6", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "27 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 106527, + "CodeBytes": 0, + "Lines": 2273, + "Code": 1650, + "Comment": 0, + "Blank": 623, + "Complexity": 0, + "Count": 47, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 44533, + "CodeBytes": 0, + "Lines": 1579, + "Code": 1431, + "Comment": 20, + "Blank": 128, + "Complexity": 80, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 51717, + "CodeBytes": 0, + "Lines": 1229, + "Code": 1094, + "Comment": 35, + "Blank": 100, + "Complexity": 97, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 32176, + "CodeBytes": 0, + "Lines": 1060, + "Code": 850, + "Comment": 87, + "Blank": 123, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 13172, + "CodeBytes": 0, + "Lines": 335, + "Code": 328, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 108932, + "CodeBytes": 0, + "Lines": 2419, + "Code": 2136, + "Comment": 0, + "Blank": 283, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 105602, + "CodeBytes": 0, + "Lines": 2604, + "Code": 2521, + "Comment": 11, + "Blank": 72, + "Complexity": 71, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5379, + "CodeBytes": 0, + "Lines": 161, + "Code": 115, + "Comment": 23, + "Blank": 23, + "Complexity": 29, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 80919, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 2, + "Blank": 0, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 1439, + "CodeBytes": 0, + "Lines": 43, + "Code": 27, + "Comment": 8, + "Blank": 8, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 10077, + "CodeBytes": 0, + "Lines": 293, + "Code": 293, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 85, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 290421.05371797254, + "estimatedScheduleMonths_low": 8.90384310174569, + "estimatedPeople_low": 3.1776064351673567, + "estimatedCost_high": 905078.8461554493, + "estimatedScheduleMonths_high": 8.90384310174569, + "estimatedPeople_high": 3.1776064351673567, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 47 2273 623 0 1650 0\n(ULOC) 827\n-------------------------------------------------------------------------------\nTypeScript 28 1579 128 20 1431 80\n(ULOC) 1029\n-------------------------------------------------------------------------------\nJavaScript 25 1229 100 35 1094 97\n(ULOC) 471\n-------------------------------------------------------------------------------\nYAML 18 1060 123 87 850 0\n(ULOC) 553\n-------------------------------------------------------------------------------\nJSON 16 335 7 0 328 0\n(ULOC) 211\n-------------------------------------------------------------------------------\nSQL 12 2419 283 0 2136 0\n(ULOC) 940\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 8 2604 72 11 2521 71\n(ULOC) 948\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 1\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 293 0 0 293 0\n(ULOC) 116\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 165 12045 1377 186 10482 287\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 5215\nDRYness % 0.43\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $318,464\nEstimated Schedule Effort (organic) 8.90 months\nEstimated People Required (organic) 3.18\n───────────────────────────────────────────────────────────────────────────────\nProcessed 562013 bytes, 0.562 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 35734, + "TypeScript": 16857, + "Shell": 2780 + } +} diff --git a/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json b/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json index 7d88f0eb65..f6cec1cfef 100644 --- a/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json +++ b/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json @@ -1,305 +1,305 @@ { - "url": "https://github.com/Enterprise-CMCS/serverless-s3-bucket-helper", - "owner": "Enterprise-CMCS", - "name": "serverless-s3-bucket-helper", - "description": null, - "commits_count": 7, - "issues_count": 3, - "open_issues_count": 1, - "closed_issues_count": 2, - "pull_requests_count": 7, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 6, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 9, - "total_project_lines": 333, - "average_project_lines": 33, - "total_project_comment_lines": 5, - "average_project_comment_lines": 1, - "total_project_blank_lines": 74, - "average_blank_lines": 7, - "commits_by_month": { - "2023/6": 1, - "2022/5": 1, - "2021/9": 5 + "url": "https://github.com/Enterprise-CMCS/serverless-s3-bucket-helper", + "owner": "Enterprise-CMCS", + "name": "serverless-s3-bucket-helper", + "description": null, + "commits_count": 7, + "issues_count": 3, + "open_issues_count": 1, + "closed_issues_count": 2, + "pull_requests_count": 7, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 6, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 9, + "total_project_lines": 333, + "average_project_lines": 33, + "total_project_comment_lines": 5, + "average_project_comment_lines": 1, + "total_project_blank_lines": 74, + "average_blank_lines": 7, + "commits_by_month": { + "2023/6": 1, + "2022/5": 1, + "2021/9": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-08-26T16:41:01Z", + "ossf_scorecard": { + "date": "2024-10-14T20:46:26Z", + "repo": { + "name": "github.com/Enterprise-CMCS/serverless-s3-bucket-helper", + "commit": "3e519d15676de237ec8ede3ff9ae26abf3f3ef0a" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-08-26T16:41:01Z", - "ossf_scorecard": { - "date": "2024-10-14T20:46:26Z", - "repo": { - "name": "github.com/Enterprise-CMCS/serverless-s3-bucket-helper", - "commit": "3e519d15676de237ec8ede3ff9ae26abf3f3ef0a" - }, - "scorecard": { - "version": "v5.0.0-68-g28db9a99", - "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" - }, - "score": 3.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 6 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 2/7 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-68-g28db9a99", + "commit": "28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 4628, - "CodeBytes": 0, - "Lines": 154, - "Code": 98, - "Comment": 0, - "Blank": 56, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1242, - "CodeBytes": 0, - "Lines": 60, - "Code": 52, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 433, - "CodeBytes": 0, - "Lines": 18, - "Code": 18, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2787, - "CodeBytes": 0, - "Lines": 101, - "Code": 86, - "Comment": 5, - "Blank": 10, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 5843.016815117637, - "estimatedScheduleMonths_low": 2.018129047888061, - "estimatedPeople_low": 0.2820575379696487, - "estimatedCost_high": 18209.392361165064, - "estimatedScheduleMonths_high": 2.018129047888061, - "estimatedPeople_high": 0.2820575379696487, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 5 154 56 0 98 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nYAML 3 60 8 0 52 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nJSON 1 18 0 0 18 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nJavaScript 1 101 10 5 86 4\n(ULOC) 78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 333 74 5 254 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 210\nDRYness % 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,407\nEstimated Schedule Effort (organic) 2.02 months\nEstimated People Required (organic) 0.28\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 9090 bytes, 0.009 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 2787 - } -} \ No newline at end of file + "score": 3.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 6 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 2/7 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/28db9a99a4c2e43e1f90a5afed6753e6ef2c36d3/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 4628, + "CodeBytes": 0, + "Lines": 154, + "Code": 98, + "Comment": 0, + "Blank": 56, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1242, + "CodeBytes": 0, + "Lines": 60, + "Code": 52, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 433, + "CodeBytes": 0, + "Lines": 18, + "Code": 18, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2787, + "CodeBytes": 0, + "Lines": 101, + "Code": 86, + "Comment": 5, + "Blank": 10, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 5843.016815117637, + "estimatedScheduleMonths_low": 2.018129047888061, + "estimatedPeople_low": 0.2820575379696487, + "estimatedCost_high": 18209.392361165064, + "estimatedScheduleMonths_high": 2.018129047888061, + "estimatedPeople_high": 0.2820575379696487, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 5 154 56 0 98 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nYAML 3 60 8 0 52 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nJSON 1 18 0 0 18 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nJavaScript 1 101 10 5 86 4\n(ULOC) 78\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 333 74 5 254 4\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 210\nDRYness % 0.63\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $6,407\nEstimated Schedule Effort (organic) 2.02 months\nEstimated People Required (organic) 0.28\n───────────────────────────────────────────────────────────────────────────────\nProcessed 9090 bytes, 0.009 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 2787 + } +}