Branch-Protection

[scottschreckengaust]

Open Source Security Foundation (OpenSSF) Scorecard: Branch-Protection

https://github.com/ossf/scorecard/blob/ab2f6e92482462fe66246d9e32f642855a691dc1/docs/checks.md#branch-protection

Tier 1 Requirements (3/10 points):

• Prevent force push
• Prevent branch deletion

Tier 2 Requirements (6/10 points):

• Require at least 1 reviewer for approval before merging (for administrators, this requirement weights twice than the others in this tier)
• For administrators: Require PRs prior to make any code changes
• For administrators: Require branch to be up to date before merging
• For administrators: Require approval of the most recent reviewable push

Tier 3 Requirements (8/10 points):

• Require branch to pass at least 1 status check before merging

Tier 4 Requirements (9/10 points):

• Require at least 2 reviewers for approval before merging
• Require review from code owners

Tier 5 Requirements (10/10 points):

• For administrators: Dismiss stale reviews and approvals when new commits are pushed
• For administrators: Include administrator for review

[scottschreckengaust]

merging #942 should check

Tier 5
For administrators: Include administrator for review