OpenSSF Scorecard - Security health metrics for Open Source
-
Updated
Apr 6, 2026 - Go
#
openssf-scorecard
Here are 16 public repositories matching this topic...
Official GitHub Action for OpenSSF Scorecard.
-
Updated
Apr 3, 2026 - Go
Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
-
Updated
Mar 28, 2026 - JavaScript
Tool for visualizing the Open SSF Scorecard Api data in a human friendly way
-
Updated
Nov 27, 2025 - TypeScript
Dead code doesn't get patched. Detect abandoned & end-of-life dependencies that SCA tools miss — before they become the next xz-utils.
go cli golang security-tools devsecops purl sbom cyclonedx supply-chain-security openssf-scorecard eol-detection abandoned-software
-
Updated
Apr 6, 2026 - Go
Audit your Gemfile for dependency health: maintenance activity, outdated versions, archived repos, OpenSSF scores, vulnerabilities, libyear drift, and composite health scores. Terminal, JSON, or markdown output with CI quality gates.
ruby rubygems bundler devops security-audit ci-cd outdated-dependencies vulnerability-scanner dependency-checker health-score supply-chain-security libyear openssf-scorecard dependency-health gem-maintenance
-
Updated
Mar 21, 2026 - Ruby
scir-oss is a tool that integrates public data and information regarding open source software projects and their products into a Project, Product, Protection, and Policy report (OSS-P4/R).
-
Updated
Feb 20, 2026 - Shell
Scorecard action for checking when new dependencies are added to the repository.
-
Updated
Jun 10, 2024 - Go
OpenSSF Dashboard allows you to check the OpenSSF scorecards for entire organisations and users on GitHub or Gitlab.
-
Updated
May 30, 2025 - TypeScript
Azure Pipelines Task for OpenSSF Scorecard
security azure-devops azure-devops-extension azure-pipelines azure-pipelines-task openssf openssf-scorecard
-
Updated
Apr 3, 2026 - TypeScript
⚙️ Reusable GitHub repository governance kit: CI/CD workflows, CodeQL SAST, Dependabot auto-merge, AI-assisted issue generation via Llama, structured issue templates, and a browser-based PR uploader for deploying governance files to any target repo
python open-source yaml github-api devops automation ci-cd developer-tools code-quality llama sast security-scanning dependabot github-actions issue-templates codeql pull-request-automation openssf-scorecard ai-code-review repository-governance
-
Updated
Mar 24, 2026 - Python
🔐 Repositories security and analysis.
-
Updated
Mar 14, 2026
FastMCP server that provides comprehensive security analysis for software packages across multiple ecosystems. It integrates seamlessly with Claude Desktop to provide AI-powered security evaluation capabilities.
-
Updated
Aug 17, 2025 - Python
Project to generate statistics about OpenSSF Compliance in the BEAM ecosystem.
-
Updated
Apr 6, 2026 - Elixir
An exporter for storing OpenSSF Scorecard data as Prometheus metrics.
-
Updated
Mar 21, 2026 - Go
Improve this page
Add a description, image, and links to the openssf-scorecard topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the openssf-scorecard topic, visit your repo's landing page and select "manage topics."