Skip to content

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

Sign in

Sign up

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

reactive-graph / meta Public

Notifications You must be signed in to change notification settings
Fork 0
Star 0

Code
Issues 22
Pull requests
Actions
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Security
Insights

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OpenSSF Best Practices Badge Program #1

Open

20 tasks

aschaeffer opened this issue Sep 14, 2024 · 0 comments

Open

20 tasks

OpenSSF Best Practices Badge Program #1

aschaeffer opened this issue Sep 14, 2024 · 0 comments

Comments

Copy link

Contributor

aschaeffer commented Sep 14, 2024 •

edited

Loading

OpenSSF Best Practices Badge Program

About

The Open Source Security Foundation (OpenSSF) Best Practices badge is a way for Free/Libre and Open Source Software (FLOSS) projects to show that they follow best practices. Projects can voluntarily self-certify, at no cost, by using this web application to explain how they follow each best practice. The OpenSSF Best Practices Badge is inspired by the many badges available to projects on GitHub. Consumers of the badge can quickly assess which FLOSS projects are following best practices and as a result are more likely to produce higher-quality secure software.

https://www.bestpractices.dev/en

Criteria

Basics

Basic project website content #2
FLOSS license #3
Documentation #4
Other #5

Change Control

Public version-controlled source repository #6
Unique version numbering #7
Release notes #8

Reporting

Bug-reporting process #9
Vulnerability report process #10

Quality

Working build system #11
Automated test suite #12
New functionality testing #13
Warning flags #14

Security

Secure development knowledge #15
Use basic good cryptographic practices #16
Secured delivery against man-in-the-middle (MITM) attacks #17
Publicly known vulnerabilities fixed #18
Other security issues #19

Analysis

Static code analysis #20
Dynamic code analysis #21

The text was updated successfully, but these errors were encountered:

All reactions

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

No branches or pull requests

1 participant

Footer

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.

OpenSSF Best Practices Badge Program #1

OpenSSF Best Practices Badge Program #1

Comments

aschaeffer commented Sep 14, 2024 • edited Loading

OpenSSF Best Practices Badge Program

About

Criteria

Basics

Change Control

Reporting

Quality

Security

Analysis

aschaeffer commented Sep 14, 2024 •

edited

Loading