add OSSF Best Practices and Scorecard Badge in README.md #2118
Conversation
✅ Deploy Preview for testcontainers-go ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
mmorel-35
force-pushed
the
patch-1
branch
2 times, most recently
from
d6651ef
to
391ec7a
Compare
|
Any question on this @mdelapenya ? |
Hey @mmorel-35 as always, thanks for your contributions, much appreciated because they are adding value in the maintenance, so I personally love them! I'm doubting on this one as it could be better to wait for resolving the issues/recommendations showed by the badge (please see #1823). But let's not close it, or instead we can move it to an open issue. |
|
Sorry, I forgot this suppression . |
mmorel-35
changed the title
mmorel-35
force-pushed
the
patch-1
branch
2 times, most recently
from
d306fd1
to
4125a6f
Compare
|
What is your good enough threshold ? 7.2 seems to be a good grade to me. |
Signed-off-by: Matthieu MOREL <[email protected]>
|
Hi @mmorel-35 I've discussed about this badge internally, and I'm afraid I'm not going to add this badge at the moment. I do not see lots of projects apart from prometheus (as you shared), so I did a very quick search:
I do appreciate your work, so I'd keep an issue to evaluate this badge again in the future. I hope you understand 🙏 Nevertheless, your work improving the project with the things the badge promote are humungous, so please keep sending them. I'll be more than glad to review and merge them. Thanks for your patience with this one, and see you in another review. BTW, this is not final, so if you consider or find a great place to find projects demonstrating the value of the badge, please let me know. I'll discuss it again internally with those insights. |
What does this PR do?
add OSSF Scorecard Badge in README.md
Signed-off-by: Matthieu MOREL [email protected]