diff --git a/app/site/_data/CMSgov/AB2D-Libs/AB2D-Libs_data.json b/app/site/_data/CMSgov/AB2D-Libs/AB2D-Libs_data.json index c27e9c6b71..a02b61a6fa 100644 --- a/app/site/_data/CMSgov/AB2D-Libs/AB2D-Libs_data.json +++ b/app/site/_data/CMSgov/AB2D-Libs/AB2D-Libs_data.json @@ -1,400 +1,400 @@ { - "url": "https://github.com/CMSgov/AB2D-Libs", - "owner": "CMSgov", - "name": "AB2D-Libs", - "description": null, - "commits_count": 161, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 419, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 137, - "closed_pull_requests_count": 282, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 9, - "total_project_lines": 31053, - "average_project_lines": 166, - "total_project_comment_lines": 1455, - "average_project_comment_lines": 8, - "total_project_blank_lines": 1775, - "average_blank_lines": 9, - "commits_by_month": { - "2025/1": 2, - "2024/12": 2, - "2024/11": 1, - "2024/10": 1, - "2024/9": 3, - "2024/8": 4, - "2024/7": 4, - "2024/6": 13 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/AB2D-Libs", + "owner": "CMSgov", + "name": "AB2D-Libs", + "description": null, + "commits_count": 161, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 419, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 137, + "closed_pull_requests_count": 282, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 9, + "total_project_lines": 31053, + "average_project_lines": 166, + "total_project_comment_lines": 1455, + "average_project_comment_lines": 8, + "total_project_blank_lines": 1775, + "average_blank_lines": 9, + "commits_by_month": { + "2025/1": 2, + "2024/12": 2, + "2024/11": 1, + "2024/10": 1, + "2024/9": 3, + "2024/8": 4, + "2024/7": 4, + "2024/6": 13 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-30T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-08-11T18:29:28Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:50Z", - "repo": { - "name": "github.com/CMSgov/AB2D-Libs", - "commit": "b2917cc59f35fe270faa1b97f1c23eb6bf1100be" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 9, - "reason": "28 out of 30 merged PRs checked by a CI test -- score normalized to 9", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 413830, - "CodeBytes": 0, - "Lines": 10752, - "Code": 7838, - "Comment": 1360, - "Blank": 1554, - "Complexity": 457, - "Count": 120, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1425560, - "CodeBytes": 0, - "Lines": 19075, - "Code": 19075, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 36, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 19788, - "CodeBytes": 0, - "Lines": 497, - "Code": 409, - "Comment": 21, - "Blank": 67, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 14733, - "CodeBytes": 0, - "Lines": 388, - "Code": 283, - "Comment": 0, - "Blank": 105, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 1906, - "CodeBytes": 0, - "Lines": 54, - "Code": 43, - "Comment": 4, - "Blank": 7, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1534, - "CodeBytes": 0, - "Lines": 47, - "Code": 38, - "Comment": 4, - "Blank": 5, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 5986, - "CodeBytes": 0, - "Lines": 155, - "Code": 67, - "Comment": 67, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 810847.5121218577, - "estimatedScheduleMonths_low": 13.152966481093669, - "estimatedPeople_low": 6.005718653523592, - "estimatedCost_high": 2526954.9892616887, - "estimatedScheduleMonths_high": 13.152966481093669, - "estimatedPeople_high": 6.005718653523592, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 120 10752 1554 1360 7838 457\n(ULOC) 5335\n-------------------------------------------------------------------------------\nJSON 36 19075 0 0 19075 0\n(ULOC) 2317\n-------------------------------------------------------------------------------\nGradle 10 497 67 21 409 0\n(ULOC) 299\n-------------------------------------------------------------------------------\nMarkdown 10 388 105 0 283 0\n(ULOC) 219\n-------------------------------------------------------------------------------\nProperties File 5 54 7 4 43 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nYAML 3 47 5 4 38 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nXML 1 155 21 67 67 0\n(ULOC) 121\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 187 31098 1773 1456 27869 457\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 8465\nDRYness % 0.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $889,145\nEstimated Schedule Effort (organic) 13.15 months\nEstimated People Required (organic) 6.01\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1890767 bytes, 1.891 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-09-18T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-08-11T18:29:28Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:50Z", + "repo": { + "name": "github.com/CMSgov/AB2D-Libs", + "commit": "b2917cc59f35fe270faa1b97f1c23eb6bf1100be" }, - "predominant_langs": { - "Java": 413830 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 9, + "reason": "28 out of 30 merged PRs checked by a CI test -- score normalized to 9", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 413830, + "CodeBytes": 0, + "Lines": 10752, + "Code": 7838, + "Comment": 1360, + "Blank": 1554, + "Complexity": 457, + "Count": 120, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1425560, + "CodeBytes": 0, + "Lines": 19075, + "Code": 19075, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 36, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 19788, + "CodeBytes": 0, + "Lines": 497, + "Code": 409, + "Comment": 21, + "Blank": 67, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 14733, + "CodeBytes": 0, + "Lines": 388, + "Code": 283, + "Comment": 0, + "Blank": 105, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 1906, + "CodeBytes": 0, + "Lines": 54, + "Code": 43, + "Comment": 4, + "Blank": 7, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1534, + "CodeBytes": 0, + "Lines": 47, + "Code": 38, + "Comment": 4, + "Blank": 5, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 5986, + "CodeBytes": 0, + "Lines": 155, + "Code": 67, + "Comment": 67, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 810847.5121218577, + "estimatedScheduleMonths_low": 13.152966481093669, + "estimatedPeople_low": 6.005718653523592, + "estimatedCost_high": 2526954.9892616887, + "estimatedScheduleMonths_high": 13.152966481093669, + "estimatedPeople_high": 6.005718653523592, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 120 10752 1554 1360 7838 457\n(ULOC) 5335\n-------------------------------------------------------------------------------\nJSON 36 19075 0 0 19075 0\n(ULOC) 2317\n-------------------------------------------------------------------------------\nGradle 10 497 67 21 409 0\n(ULOC) 299\n-------------------------------------------------------------------------------\nMarkdown 10 388 105 0 283 0\n(ULOC) 219\n-------------------------------------------------------------------------------\nProperties File 5 54 7 4 43 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nYAML 3 47 5 4 38 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nXML 1 155 21 67 67 0\n(ULOC) 121\n───────────────────────────────────────────────────────────────────────────────\nTotal 187 31098 1773 1456 27869 457\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 8465\nDRYness % 0.27\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $889,145\nEstimated Schedule Effort (organic) 13.15 months\nEstimated People Required (organic) 6.01\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1890767 bytes, 1.891 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 413830 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification-Staging/CMCS-DSG-DSS-Certification-Staging_data.json b/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification-Staging/CMCS-DSG-DSS-Certification-Staging_data.json index 8457c7b31a..b80a636d1d 100644 --- a/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification-Staging/CMCS-DSG-DSS-Certification-Staging_data.json +++ b/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification-Staging/CMCS-DSG-DSS-Certification-Staging_data.json @@ -1,448 +1,448 @@ { - "url": "https://github.com/CMSgov/CMCS-DSG-DSS-Certification-Staging", - "owner": "CMSgov", - "name": "CMCS-DSG-DSS-Certification-Staging", - "description": "(This is the STAGING repo.) Welcome to the MES Certification Repository, a collaborative community for CMS, states, and vendors. For more information about the repository, and how to use it, take a look at the ReadMe section.", - "commits_count": 1037, - "issues_count": 64, - "open_issues_count": 9, - "closed_issues_count": 55, - "pull_requests_count": 152, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 125, - "closed_pull_requests_count": 25, - "forks_count": 6, - "stargazers_count": 10, - "watchers_count": 13, - "total_project_lines": 28555, - "average_project_lines": 65, - "total_project_comment_lines": 5191, - "average_project_comment_lines": 12, - "total_project_blank_lines": 4879, - "average_blank_lines": 11, - "commits_by_month": { - "2024/9": 10, - "2024/8": 20 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-02T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/CMCS-DSG-DSS-Certification-Staging", + "owner": "CMSgov", + "name": "CMCS-DSG-DSS-Certification-Staging", + "description": "(This is the STAGING repo.) Welcome to the MES Certification Repository, a collaborative community for CMS, states, and vendors. For more information about the repository, and how to use it, take a look at the ReadMe section.", + "commits_count": 1037, + "issues_count": 64, + "open_issues_count": 9, + "closed_issues_count": 55, + "pull_requests_count": 152, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 125, + "closed_pull_requests_count": 25, + "forks_count": 6, + "stargazers_count": 10, + "watchers_count": 13, + "total_project_lines": 28555, + "average_project_lines": 65, + "total_project_comment_lines": 5191, + "average_project_comment_lines": 12, + "total_project_blank_lines": 4879, + "average_blank_lines": 11, + "commits_by_month": { + "2024/9": 10, + "2024/8": 20 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-02T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-01-13T20:04:01Z", - "ossf_scorecard": { - "date": "2025-01-11T00:37:07Z", - "repo": { - "name": "github.com/CMSgov/CMCS-DSG-DSS-Certification-Staging", - "commit": "b02952492044c7a65b5e3ee5ad20f692bca4a355" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 5, - "reason": "2 out of 4 merged PRs checked by a CI test -- score normalized to 5", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 11 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 759125, - "CodeBytes": 0, - "Lines": 17545, - "Code": 10927, - "Comment": 3307, - "Blank": 3311, - "Complexity": 3481, - "Count": 165, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 112278, - "CodeBytes": 0, - "Lines": 4923, - "Code": 3798, - "Comment": 370, - "Blank": 755, - "Complexity": 0, - "Count": 75, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 120338, - "CodeBytes": 0, - "Lines": 933, - "Code": 864, - "Comment": 0, - "Blank": 69, - "Complexity": 0, - "Count": 58, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 87178, - "CodeBytes": 0, - "Lines": 2719, - "Code": 1133, - "Comment": 1475, - "Blank": 111, - "Complexity": 194, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 173624, - "CodeBytes": 0, - "Lines": 1936, - "Code": 1328, - "Comment": 0, - "Blank": 608, - "Complexity": 0, - "Count": 37, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 15548, - "CodeBytes": 0, - "Lines": 31, - "Code": 31, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 7713, - "CodeBytes": 0, - "Lines": 233, - "Code": 220, - "Comment": 4, - "Blank": 9, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4701, - "CodeBytes": 0, - "Lines": 146, - "Code": 121, - "Comment": 17, - "Blank": 8, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 258514, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1570, - "CodeBytes": 0, - "Lines": 40, - "Code": 40, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 1130, - "CodeBytes": 0, - "Lines": 31, - "Code": 10, - "Comment": 17, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 453, - "CodeBytes": 0, - "Lines": 14, - "Code": 9, - "Comment": 1, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 526892.6754798384, - "estimatedScheduleMonths_low": 11.165578854823234, - "estimatedPeople_low": 4.5971685433886025, - "estimatedCost_high": 1642027.6996658326, - "estimatedScheduleMonths_high": 11.165578854823234, - "estimatedPeople_high": 4.5971685433886025, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 165 17545 3311 3307 10927 3481\n(ULOC) 4537\n-------------------------------------------------------------------------------\nSass 75 4923 755 370 3798 0\n(ULOC) 2429\n-------------------------------------------------------------------------------\nCSV 58 933 69 0 864 0\n(ULOC) 625\n-------------------------------------------------------------------------------\nTypeScript Typings 54 2719 111 1475 1133 194\n(ULOC) 1192\n-------------------------------------------------------------------------------\nMarkdown 37 1936 608 0 1328 0\n(ULOC) 900\n-------------------------------------------------------------------------------\nSVG 31 31 0 0 31 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nHTML 7 233 9 4 220 0\n(ULOC) 203\n-------------------------------------------------------------------------------\nYAML 5 146 8 17 121 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nCSS 4 4 0 0 4 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nJSON 3 40 0 0 40 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nGemfile 1 31 4 17 10 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nMakefile 1 14 4 1 9 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 441 28555 4879 5191 18485 3675\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 9604\nDRYness % 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $577,771\nEstimated Schedule Effort (organic) 11.17 months\nEstimated People Required (organic) 4.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1542172 bytes, 1.542 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-01-13T20:04:01Z", + "ossf_scorecard": { + "date": "2025-01-11T00:37:07Z", + "repo": { + "name": "github.com/CMSgov/CMCS-DSG-DSS-Certification-Staging", + "commit": "b02952492044c7a65b5e3ee5ad20f692bca4a355" }, - "predominant_langs": { - "JavaScript": 759125, - "SCSS": 112278, - "HTML": 7713, - "Ruby": 1130, - "Makefile": 453 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "cmcs-dsg-dss-certification-staging", - "44 days 19:42:21" - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 5, + "reason": "2 out of 4 merged PRs checked by a CI test -- score normalized to 5", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 11 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 759125, + "CodeBytes": 0, + "Lines": 17545, + "Code": 10927, + "Comment": 3307, + "Blank": 3311, + "Complexity": 3481, + "Count": 165, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 112278, + "CodeBytes": 0, + "Lines": 4923, + "Code": 3798, + "Comment": 370, + "Blank": 755, + "Complexity": 0, + "Count": 75, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 120338, + "CodeBytes": 0, + "Lines": 933, + "Code": 864, + "Comment": 0, + "Blank": 69, + "Complexity": 0, + "Count": 58, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 87178, + "CodeBytes": 0, + "Lines": 2719, + "Code": 1133, + "Comment": 1475, + "Blank": 111, + "Complexity": 194, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 173624, + "CodeBytes": 0, + "Lines": 1936, + "Code": 1328, + "Comment": 0, + "Blank": 608, + "Complexity": 0, + "Count": 37, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 15548, + "CodeBytes": 0, + "Lines": 31, + "Code": 31, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 7713, + "CodeBytes": 0, + "Lines": 233, + "Code": 220, + "Comment": 4, + "Blank": 9, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4701, + "CodeBytes": 0, + "Lines": 146, + "Code": 121, + "Comment": 17, + "Blank": 8, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 258514, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1570, + "CodeBytes": 0, + "Lines": 40, + "Code": 40, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 1130, + "CodeBytes": 0, + "Lines": 31, + "Code": 10, + "Comment": 17, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 453, + "CodeBytes": 0, + "Lines": 14, + "Code": 9, + "Comment": 1, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 526892.6754798384, + "estimatedScheduleMonths_low": 11.165578854823234, + "estimatedPeople_low": 4.5971685433886025, + "estimatedCost_high": 1642027.6996658326, + "estimatedScheduleMonths_high": 11.165578854823234, + "estimatedPeople_high": 4.5971685433886025, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 165 17545 3311 3307 10927 3481\n(ULOC) 4537\n-------------------------------------------------------------------------------\nSass 75 4923 755 370 3798 0\n(ULOC) 2429\n-------------------------------------------------------------------------------\nCSV 58 933 69 0 864 0\n(ULOC) 625\n-------------------------------------------------------------------------------\nTypeScript Typings 54 2719 111 1475 1133 194\n(ULOC) 1192\n-------------------------------------------------------------------------------\nMarkdown 37 1936 608 0 1328 0\n(ULOC) 900\n-------------------------------------------------------------------------------\nSVG 31 31 0 0 31 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nHTML 7 233 9 4 220 0\n(ULOC) 203\n-------------------------------------------------------------------------------\nYAML 5 146 8 17 121 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nCSS 4 4 0 0 4 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nJSON 3 40 0 0 40 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nGemfile 1 31 4 17 10 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nMakefile 1 14 4 1 9 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 441 28555 4879 5191 18485 3675\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 9604\nDRYness % 0.34\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $577,771\nEstimated Schedule Effort (organic) 11.17 months\nEstimated People Required (organic) 4.60\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1542172 bytes, 1.542 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 759125, + "SCSS": 112278, + "HTML": 7713, + "Ruby": 1130, + "Makefile": 453 + }, + "average_issue_resolution_time": [ + [ + "cmcs-dsg-dss-certification-staging", + "44 days 19:42:21" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification/CMCS-DSG-DSS-Certification_data.json b/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification/CMCS-DSG-DSS-Certification_data.json index bde204882a..7bd08b7fcc 100644 --- a/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification/CMCS-DSG-DSS-Certification_data.json +++ b/app/site/_data/CMSgov/CMCS-DSG-DSS-Certification/CMCS-DSG-DSS-Certification_data.json @@ -1,443 +1,443 @@ { - "url": "https://github.com/CMSgov/CMCS-DSG-DSS-Certification", - "owner": "CMSgov", - "name": "CMCS-DSG-DSS-Certification", - "description": "This is the PROD repo. Commits made to the main branch of the staging repo (https://github.com/CMSgov/CMCS-DSG-DSS-Certification-Staging) will be automatically merged in and deployed here. Please open Issues and Pull Requests in the Staging repo instead.", - "commits_count": 1041, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 10, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 4, - "closed_pull_requests_count": 6, - "forks_count": 2, - "stargazers_count": 10, - "watchers_count": 15, - "total_project_lines": 28555, - "average_project_lines": 65, - "total_project_comment_lines": 5191, - "average_project_comment_lines": 12, - "total_project_blank_lines": 4879, - "average_blank_lines": 11, - "commits_by_month": { - "2024/9": 12, - "2024/8": 18 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-02T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/CMCS-DSG-DSS-Certification", + "owner": "CMSgov", + "name": "CMCS-DSG-DSS-Certification", + "description": "This is the PROD repo. Commits made to the main branch of the staging repo (https://github.com/CMSgov/CMCS-DSG-DSS-Certification-Staging) will be automatically merged in and deployed here. Please open Issues and Pull Requests in the Staging repo instead.", + "commits_count": 1041, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 10, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 4, + "closed_pull_requests_count": 6, + "forks_count": 2, + "stargazers_count": 10, + "watchers_count": 15, + "total_project_lines": 28555, + "average_project_lines": 65, + "total_project_comment_lines": 5191, + "average_project_comment_lines": 12, + "total_project_blank_lines": 4879, + "average_blank_lines": 11, + "commits_by_month": { + "2024/9": 12, + "2024/8": 18 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-02T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-11-26T21:22:21Z", - "ossf_scorecard": { - "date": "2025-01-11T00:37:28Z", - "repo": { - "name": "github.com/CMSgov/CMCS-DSG-DSS-Certification", - "commit": "585b5a9be6c83a9d5698a6d1db93a78e4fdf6271" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 11 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 759125, - "CodeBytes": 0, - "Lines": 17545, - "Code": 10927, - "Comment": 3307, - "Blank": 3311, - "Complexity": 3481, - "Count": 165, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 112278, - "CodeBytes": 0, - "Lines": 4923, - "Code": 3798, - "Comment": 370, - "Blank": 755, - "Complexity": 0, - "Count": 75, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 120338, - "CodeBytes": 0, - "Lines": 933, - "Code": 864, - "Comment": 0, - "Blank": 69, - "Complexity": 0, - "Count": 58, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 87178, - "CodeBytes": 0, - "Lines": 2719, - "Code": 1133, - "Comment": 1475, - "Blank": 111, - "Complexity": 194, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 173624, - "CodeBytes": 0, - "Lines": 1936, - "Code": 1328, - "Comment": 0, - "Blank": 608, - "Complexity": 0, - "Count": 37, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 15548, - "CodeBytes": 0, - "Lines": 31, - "Code": 31, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 7713, - "CodeBytes": 0, - "Lines": 233, - "Code": 220, - "Comment": 4, - "Blank": 9, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4701, - "CodeBytes": 0, - "Lines": 146, - "Code": 121, - "Comment": 17, - "Blank": 8, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 258514, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1570, - "CodeBytes": 0, - "Lines": 40, - "Code": 40, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 1130, - "CodeBytes": 0, - "Lines": 31, - "Code": 10, - "Comment": 17, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 453, - "CodeBytes": 0, - "Lines": 14, - "Code": 9, - "Comment": 1, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 526892.6754798384, - "estimatedScheduleMonths_low": 11.165578854823234, - "estimatedPeople_low": 4.5971685433886025, - "estimatedCost_high": 1642027.6996658326, - "estimatedScheduleMonths_high": 11.165578854823234, - "estimatedPeople_high": 4.5971685433886025, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 165 17545 3311 3307 10927 3481\n(ULOC) 4537\n-------------------------------------------------------------------------------\nSass 75 4923 755 370 3798 0\n(ULOC) 2429\n-------------------------------------------------------------------------------\nCSV 58 933 69 0 864 0\n(ULOC) 625\n-------------------------------------------------------------------------------\nTypeScript Typings 54 2719 111 1475 1133 194\n(ULOC) 1192\n-------------------------------------------------------------------------------\nMarkdown 37 1936 608 0 1328 0\n(ULOC) 900\n-------------------------------------------------------------------------------\nSVG 31 31 0 0 31 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nHTML 7 233 9 4 220 0\n(ULOC) 203\n-------------------------------------------------------------------------------\nYAML 5 146 8 17 121 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nCSS 4 4 0 0 4 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nJSON 3 40 0 0 40 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nGemfile 1 31 4 17 10 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nMakefile 1 14 4 1 9 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 441 28555 4879 5191 18485 3675\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 9604\nDRYness % 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $577,771\nEstimated Schedule Effort (organic) 11.17 months\nEstimated People Required (organic) 4.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1542172 bytes, 1.542 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-11-26T21:22:21Z", + "ossf_scorecard": { + "date": "2025-01-11T00:37:28Z", + "repo": { + "name": "github.com/CMSgov/CMCS-DSG-DSS-Certification", + "commit": "585b5a9be6c83a9d5698a6d1db93a78e4fdf6271" }, - "predominant_langs": { - "JavaScript": 759125, - "SCSS": 112278, - "HTML": 7713, - "Ruby": 1130, - "Makefile": 453 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 11 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 759125, + "CodeBytes": 0, + "Lines": 17545, + "Code": 10927, + "Comment": 3307, + "Blank": 3311, + "Complexity": 3481, + "Count": 165, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 112278, + "CodeBytes": 0, + "Lines": 4923, + "Code": 3798, + "Comment": 370, + "Blank": 755, + "Complexity": 0, + "Count": 75, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 120338, + "CodeBytes": 0, + "Lines": 933, + "Code": 864, + "Comment": 0, + "Blank": 69, + "Complexity": 0, + "Count": 58, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 87178, + "CodeBytes": 0, + "Lines": 2719, + "Code": 1133, + "Comment": 1475, + "Blank": 111, + "Complexity": 194, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 173624, + "CodeBytes": 0, + "Lines": 1936, + "Code": 1328, + "Comment": 0, + "Blank": 608, + "Complexity": 0, + "Count": 37, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 15548, + "CodeBytes": 0, + "Lines": 31, + "Code": 31, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 7713, + "CodeBytes": 0, + "Lines": 233, + "Code": 220, + "Comment": 4, + "Blank": 9, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4701, + "CodeBytes": 0, + "Lines": 146, + "Code": 121, + "Comment": 17, + "Blank": 8, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 258514, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1570, + "CodeBytes": 0, + "Lines": 40, + "Code": 40, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 1130, + "CodeBytes": 0, + "Lines": 31, + "Code": 10, + "Comment": 17, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 453, + "CodeBytes": 0, + "Lines": 14, + "Code": 9, + "Comment": 1, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 526892.6754798384, + "estimatedScheduleMonths_low": 11.165578854823234, + "estimatedPeople_low": 4.5971685433886025, + "estimatedCost_high": 1642027.6996658326, + "estimatedScheduleMonths_high": 11.165578854823234, + "estimatedPeople_high": 4.5971685433886025, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 165 17545 3311 3307 10927 3481\n(ULOC) 4537\n-------------------------------------------------------------------------------\nSass 75 4923 755 370 3798 0\n(ULOC) 2429\n-------------------------------------------------------------------------------\nCSV 58 933 69 0 864 0\n(ULOC) 625\n-------------------------------------------------------------------------------\nTypeScript Typings 54 2719 111 1475 1133 194\n(ULOC) 1192\n-------------------------------------------------------------------------------\nMarkdown 37 1936 608 0 1328 0\n(ULOC) 900\n-------------------------------------------------------------------------------\nSVG 31 31 0 0 31 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nHTML 7 233 9 4 220 0\n(ULOC) 203\n-------------------------------------------------------------------------------\nYAML 5 146 8 17 121 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nCSS 4 4 0 0 4 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nJSON 3 40 0 0 40 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nGemfile 1 31 4 17 10 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nMakefile 1 14 4 1 9 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 441 28555 4879 5191 18485 3675\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 9604\nDRYness % 0.34\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $577,771\nEstimated Schedule Effort (organic) 11.17 months\nEstimated People Required (organic) 4.60\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1542172 bytes, 1.542 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 759125, + "SCSS": 112278, + "HTML": 7713, + "Ruby": 1130, + "Makefile": 453 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/CMCS-DSG-DSS-Oversight/CMCS-DSG-DSS-Oversight_data.json b/app/site/_data/CMSgov/CMCS-DSG-DSS-Oversight/CMCS-DSG-DSS-Oversight_data.json index 293d4a012f..e1ae73a202 100644 --- a/app/site/_data/CMSgov/CMCS-DSG-DSS-Oversight/CMCS-DSG-DSS-Oversight_data.json +++ b/app/site/_data/CMSgov/CMCS-DSG-DSS-Oversight/CMCS-DSG-DSS-Oversight_data.json @@ -1,284 +1,284 @@ { - "url": "https://github.com/CMSgov/CMCS-DSG-DSS-Oversight", - "owner": "CMSgov", - "name": "CMCS-DSG-DSS-Oversight", - "description": "This repo supports the Division of State Systems ongoing oversight projects.", - "commits_count": 49, - "issues_count": 288, - "open_issues_count": 23, - "closed_issues_count": 265, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 2, - "stargazers_count": 3, - "watchers_count": 17, - "total_project_lines": 63, - "average_project_lines": 13, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 15, - "average_blank_lines": 3, - "commits_by_month": { - "2021/3": 1, - "2021/1": 3, - "2020/12": 4, - "2020/11": 5, - "2020/10": 1, - "2020/8": 15, - "2020/7": 1 + "url": "https://github.com/CMSgov/CMCS-DSG-DSS-Oversight", + "owner": "CMSgov", + "name": "CMCS-DSG-DSS-Oversight", + "description": "This repo supports the Division of State Systems ongoing oversight projects.", + "commits_count": 49, + "issues_count": 288, + "open_issues_count": 23, + "closed_issues_count": 265, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 2, + "stargazers_count": 3, + "watchers_count": 17, + "total_project_lines": 63, + "average_project_lines": 13, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 15, + "average_blank_lines": 3, + "commits_by_month": { + "2021/3": 1, + "2021/1": 3, + "2020/12": 4, + "2020/11": 5, + "2020/10": 1, + "2020/8": 15, + "2020/7": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-06-04T17:51:42Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:40Z", + "repo": { + "name": "github.com/CMSgov/CMCS-DSG-DSS-Oversight", + "commit": "76e63ec213e5ab51cea250265bdff6d70dda98fc" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-06-04T17:51:42Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:40Z", - "repo": { - "name": "github.com/CMSgov/CMCS-DSG-DSS-Oversight", - "commit": "76e63ec213e5ab51cea250265bdff6d70dda98fc" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 1906, - "CodeBytes": 0, - "Lines": 62, - "Code": 47, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 28, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1015.9329191060046, - "estimatedScheduleMonths_low": 1.0380912591205569, - "estimatedPeople_low": 0.09534084719256201, - "estimatedCost_high": 3166.090689446793, - "estimatedScheduleMonths_high": 1.0380912591205569, - "estimatedPeople_high": 0.09534084719256201, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 4 62 15 0 47 0\n(ULOC) 35\n-------------------------------------------------------------------------------\nYAML 1 1 0 0 1 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 5 63 15 0 48 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 36\nDRYness % 0.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,114\nEstimated Schedule Effort (organic) 1.04 months\nEstimated People Required (organic) 0.10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1934 bytes, 0.002 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [ - [ - "cmcs-dsg-dss-oversight", - "40 days 28:42:25.6" - ] + "score": 2.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 1906, + "CodeBytes": 0, + "Lines": 62, + "Code": 47, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 28, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 1015.9329191060046, + "estimatedScheduleMonths_low": 1.0380912591205569, + "estimatedPeople_low": 0.09534084719256201, + "estimatedCost_high": 3166.090689446793, + "estimatedScheduleMonths_high": 1.0380912591205569, + "estimatedPeople_high": 0.09534084719256201, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 4 62 15 0 47 0\n(ULOC) 35\n-------------------------------------------------------------------------------\nYAML 1 1 0 0 1 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 5 63 15 0 48 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 36\nDRYness % 0.57\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,114\nEstimated Schedule Effort (organic) 1.04 months\nEstimated People Required (organic) 0.10\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1934 bytes, 0.002 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [ + [ + "cmcs-dsg-dss-oversight", + "40 days 28:42:25.6" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/CMMI-Health-Equity/CMMI-Health-Equity_data.json b/app/site/_data/CMSgov/CMMI-Health-Equity/CMMI-Health-Equity_data.json index 34ecfd1fed..f4c37830a7 100644 --- a/app/site/_data/CMSgov/CMMI-Health-Equity/CMMI-Health-Equity_data.json +++ b/app/site/_data/CMSgov/CMMI-Health-Equity/CMMI-Health-Equity_data.json @@ -1,258 +1,258 @@ { - "url": "https://github.com/CMSgov/CMMI-Health-Equity", - "owner": "CMSgov", - "name": "CMMI-Health-Equity", - "description": null, - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 6, - "total_project_lines": 132, - "average_project_lines": 66, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 27, - "average_blank_lines": 14, - "commits_by_month": { - "2022/10": 1 + "url": "https://github.com/CMSgov/CMMI-Health-Equity", + "owner": "CMSgov", + "name": "CMMI-Health-Equity", + "description": null, + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 6, + "total_project_lines": 132, + "average_project_lines": 66, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 27, + "average_blank_lines": 14, + "commits_by_month": { + "2022/10": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-04-12T17:24:44Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:45Z", + "repo": { + "name": "github.com/CMSgov/CMMI-Health-Equity", + "commit": "0526432a43a133bf9f03db19ce40e9aa9ad05fd1" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-04-12T17:24:44Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:45Z", - "repo": { - "name": "github.com/CMSgov/CMMI-Health-Equity", - "commit": "0526432a43a133bf9f03db19ce40e9aa9ad05fd1" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 8175, - "CodeBytes": 0, - "Lines": 132, - "Code": 105, - "Comment": 0, - "Blank": 27, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2311.056151960821, - "estimatedScheduleMonths_low": 1.4186485250100653, - "estimatedPeople_low": 0.1587030213705032, - "estimatedCost_high": 7202.260334226276, - "estimatedScheduleMonths_high": 1.4186485250100653, - "estimatedPeople_high": 0.1587030213705032, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 2 132 27 0 105 0\n(ULOC) 106\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2 132 27 0 105 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 106\nDRYness % 0.80\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,534\nEstimated Schedule Effort (organic) 1.42 months\nEstimated People Required (organic) 0.16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 8175 bytes, 0.008 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 8175, + "CodeBytes": 0, + "Lines": 132, + "Code": 105, + "Comment": 0, + "Blank": 27, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2311.056151960821, + "estimatedScheduleMonths_low": 1.4186485250100653, + "estimatedPeople_low": 0.1587030213705032, + "estimatedCost_high": 7202.260334226276, + "estimatedScheduleMonths_high": 1.4186485250100653, + "estimatedPeople_high": 0.1587030213705032, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 2 132 27 0 105 0\n(ULOC) 106\n───────────────────────────────────────────────────────────────────────────────\nTotal 2 132 27 0 105 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 106\nDRYness % 0.80\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,534\nEstimated Schedule Effort (organic) 1.42 months\nEstimated People Required (organic) 0.16\n───────────────────────────────────────────────────────────────────────────────\nProcessed 8175 bytes, 0.008 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/CMS-GoogleMaps-Socrata-Integration/CMS-GoogleMaps-Socrata-Integration_data.json b/app/site/_data/CMSgov/CMS-GoogleMaps-Socrata-Integration/CMS-GoogleMaps-Socrata-Integration_data.json index 9139823cf6..ae084e02bd 100644 --- a/app/site/_data/CMSgov/CMS-GoogleMaps-Socrata-Integration/CMS-GoogleMaps-Socrata-Integration_data.json +++ b/app/site/_data/CMSgov/CMS-GoogleMaps-Socrata-Integration/CMS-GoogleMaps-Socrata-Integration_data.json @@ -1,305 +1,305 @@ { - "url": "https://github.com/CMSgov/CMS-GoogleMaps-Socrata-Integration", - "owner": "CMSgov", - "name": "CMS-GoogleMaps-Socrata-Integration", - "description": "Google Maps and Socrata Integration (originally developed for innovation.cms.gov)", - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 8, - "stargazers_count": 7, - "watchers_count": 10, - "total_project_lines": 3941, - "average_project_lines": 493, - "total_project_comment_lines": 283, - "average_project_comment_lines": 35, - "total_project_blank_lines": 609, - "average_blank_lines": 76, - "commits_by_month": { - "2013/6": 1 + "url": "https://github.com/CMSgov/CMS-GoogleMaps-Socrata-Integration", + "owner": "CMSgov", + "name": "CMS-GoogleMaps-Socrata-Integration", + "description": "Google Maps and Socrata Integration (originally developed for innovation.cms.gov)", + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 8, + "stargazers_count": 7, + "watchers_count": 10, + "total_project_lines": 3941, + "average_project_lines": 493, + "total_project_comment_lines": 283, + "average_project_comment_lines": 35, + "total_project_blank_lines": 609, + "average_blank_lines": 76, + "commits_by_month": { + "2013/6": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2013-06-13T12:11:21Z", + "ossf_scorecard": { + "date": "2025-01-11T00:37:34Z", + "repo": { + "name": "github.com/CMSgov/CMS-GoogleMaps-Socrata-Integration", + "commit": "eb7ef2e72cf506c67ffa42e77e623122118f75f5" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2013-06-13T12:11:21Z", - "ossf_scorecard": { - "date": "2025-01-11T00:37:34Z", - "repo": { - "name": "github.com/CMSgov/CMS-GoogleMaps-Socrata-Integration", - "commit": "eb7ef2e72cf506c67ffa42e77e623122118f75f5" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 224095, - "CodeBytes": 0, - "Lines": 3130, - "Code": 2431, - "Comment": 246, - "Blank": 453, - "Complexity": 85, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 13094, - "CodeBytes": 0, - "Lines": 672, - "Code": 511, - "Comment": 29, - "Blank": 132, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 5355, - "CodeBytes": 0, - "Lines": 136, - "Code": 105, - "Comment": 8, - "Blank": 23, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 266, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 79419.47818498501, - "estimatedScheduleMonths_low": 5.440002419360171, - "estimatedPeople_low": 1.4222549188723992, - "estimatedCost_high": 247505.7808575322, - "estimatedScheduleMonths_high": 5.440002419360171, - "estimatedPeople_high": 1.4222549188723992, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 4 3130 453 246 2431 85\n(ULOC) 1452\n-------------------------------------------------------------------------------\nCSS 2 672 132 29 511 0\n(ULOC) 323\n-------------------------------------------------------------------------------\nHTML 1 136 23 8 105 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nPlain Text 1 3 1 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 8 3941 609 283 3049 85\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1872\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $87,088\nEstimated Schedule Effort (organic) 5.44 months\nEstimated People Required (organic) 1.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 242810 bytes, 0.243 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 217200 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 224095, + "CodeBytes": 0, + "Lines": 3130, + "Code": 2431, + "Comment": 246, + "Blank": 453, + "Complexity": 85, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 13094, + "CodeBytes": 0, + "Lines": 672, + "Code": 511, + "Comment": 29, + "Blank": 132, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 5355, + "CodeBytes": 0, + "Lines": 136, + "Code": 105, + "Comment": 8, + "Blank": 23, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 266, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 79419.47818498501, + "estimatedScheduleMonths_low": 5.440002419360171, + "estimatedPeople_low": 1.4222549188723992, + "estimatedCost_high": 247505.7808575322, + "estimatedScheduleMonths_high": 5.440002419360171, + "estimatedPeople_high": 1.4222549188723992, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 4 3130 453 246 2431 85\n(ULOC) 1452\n-------------------------------------------------------------------------------\nCSS 2 672 132 29 511 0\n(ULOC) 323\n-------------------------------------------------------------------------------\nHTML 1 136 23 8 105 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nPlain Text 1 3 1 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 8 3941 609 283 3049 85\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1872\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $87,088\nEstimated Schedule Effort (organic) 5.44 months\nEstimated People Required (organic) 1.42\n───────────────────────────────────────────────────────────────────────────────\nProcessed 242810 bytes, 0.243 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 217200 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/Chargemasters/Chargemasters_data.json b/app/site/_data/CMSgov/Chargemasters/Chargemasters_data.json index 86cf82a091..425d316750 100644 --- a/app/site/_data/CMSgov/Chargemasters/Chargemasters_data.json +++ b/app/site/_data/CMSgov/Chargemasters/Chargemasters_data.json @@ -1,273 +1,273 @@ { - "url": "https://github.com/CMSgov/Chargemasters", - "owner": "CMSgov", - "name": "Chargemasters", - "description": null, - "commits_count": 5, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 6, - "total_project_lines": 14, - "average_project_lines": 7, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 1, - "average_blank_lines": 1, - "commits_by_month": { - "2019/2": 5 + "url": "https://github.com/CMSgov/Chargemasters", + "owner": "CMSgov", + "name": "Chargemasters", + "description": null, + "commits_count": 5, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 6, + "total_project_lines": 14, + "average_project_lines": 7, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 1, + "average_blank_lines": 1, + "commits_by_month": { + "2019/2": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2019-02-05T16:14:39Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:36Z", + "repo": { + "name": "github.com/CMSgov/Chargemasters", + "commit": "1797a59e2dea1e11aee16908d89fd50a8073be0f" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2019-02-05T16:14:39Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:36Z", - "repo": { - "name": "github.com/CMSgov/Chargemasters", - "commit": "1797a59e2dea1e11aee16908d89fd50a8073be0f" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/5 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "CSV", - "Bytes": 95, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 921, - "CodeBytes": 0, - "Lines": 13, - "Code": 12, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 257.7521244979255, - "estimatedScheduleMonths_low": 0.6164298744994396, - "estimatedPeople_low": 0.04073503403797182, - "estimatedCost_high": 803.2681943962705, - "estimatedScheduleMonths_high": 0.6164298744994396, - "estimatedPeople_high": 0.04073503403797182, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nCSV 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nMarkdown 1 13 1 0 12 0\n(ULOC) 13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2 14 1 0 13 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 14\nDRYness % 1.00\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $282\nEstimated Schedule Effort (organic) 0.62 months\nEstimated People Required (organic) 0.04\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1016 bytes, 0.001 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/5 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "CSV", + "Bytes": 95, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 921, + "CodeBytes": 0, + "Lines": 13, + "Code": 12, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 257.7521244979255, + "estimatedScheduleMonths_low": 0.6164298744994396, + "estimatedPeople_low": 0.04073503403797182, + "estimatedCost_high": 803.2681943962705, + "estimatedScheduleMonths_high": 0.6164298744994396, + "estimatedPeople_high": 0.04073503403797182, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nCSV 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nMarkdown 1 13 1 0 12 0\n(ULOC) 13\n───────────────────────────────────────────────────────────────────────────────\nTotal 2 14 1 0 13 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 14\nDRYness % 1.00\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $282\nEstimated Schedule Effort (organic) 0.62 months\nEstimated People Required (organic) 0.04\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1016 bytes, 0.001 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ECTA/ECTA_data.json b/app/site/_data/CMSgov/ECTA/ECTA_data.json index 8b4c126e75..70a1b1346c 100644 --- a/app/site/_data/CMSgov/ECTA/ECTA_data.json +++ b/app/site/_data/CMSgov/ECTA/ECTA_data.json @@ -1,306 +1,306 @@ { - "url": "https://github.com/CMSgov/ECTA", - "owner": "CMSgov", - "name": "ECTA", - "description": null, - "commits_count": 193, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 59, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 57, - "closed_pull_requests_count": 2, - "forks_count": 2, - "stargazers_count": 1, - "watchers_count": 4, - "total_project_lines": 256855, - "average_project_lines": 585, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 84, - "average_blank_lines": 0, - "commits_by_month": { - "2025/1": 8, - "2024/12": 8, - "2024/11": 7, - "2024/10": 7 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-26T00:00:00.000Z", - 2 - ] + "url": "https://github.com/CMSgov/ECTA", + "owner": "CMSgov", + "name": "ECTA", + "description": null, + "commits_count": 193, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 59, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 57, + "closed_pull_requests_count": 2, + "forks_count": 2, + "stargazers_count": 1, + "watchers_count": 4, + "total_project_lines": 256855, + "average_project_lines": 585, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 84, + "average_blank_lines": 0, + "commits_by_month": { + "2025/1": 8, + "2024/12": 8, + "2024/11": 7, + "2024/10": 7 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-26T00:00:00.000Z", + 2 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 + ], + [ + "2024-07-30T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-20T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ] + [ + "2024-08-20T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2023-01-09T17:06:00Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:41Z", - "repo": { - "name": "github.com/CMSgov/ECTA", - "commit": "e258f48295eb7a7ed5c9ac5a76b7c2872112024b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 10 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + [ + "2024-09-09T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2023-01-09T17:06:00Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:41Z", + "repo": { + "name": "github.com/CMSgov/ECTA", + "commit": "e258f48295eb7a7ed5c9ac5a76b7c2872112024b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 10927862, - "CodeBytes": 0, - "Lines": 258533, - "Code": 258471, - "Comment": 0, - "Blank": 62, - "Complexity": 0, - "Count": 458, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 3813, - "CodeBytes": 0, - "Lines": 54, - "Code": 35, - "Comment": 0, - "Blank": 19, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 8407287.377640197, - "estimatedScheduleMonths_low": 31.988660958840697, - "estimatedPeople_low": 25.604089686925224, - "estimatedCost_high": 26200779.39129441, - "estimatedScheduleMonths_high": 31.988660958840697, - "estimatedPeople_high": 25.604089686925224, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 458 258533 62 0 258471 0\n(ULOC) 79423\n-------------------------------------------------------------------------------\nMarkdown 8 54 19 0 35 0\n(ULOC) 36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 466 258587 81 0 258506 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 79458\nDRYness % 0.31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,219,120\nEstimated Schedule Effort (organic) 31.99 months\nEstimated People Required (organic) 25.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 10931675 bytes, 10.932 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 10 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 10927862, + "CodeBytes": 0, + "Lines": 258533, + "Code": 258471, + "Comment": 0, + "Blank": 62, + "Complexity": 0, + "Count": 458, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 3813, + "CodeBytes": 0, + "Lines": 54, + "Code": 35, + "Comment": 0, + "Blank": 19, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 8407287.377640197, + "estimatedScheduleMonths_low": 31.988660958840697, + "estimatedPeople_low": 25.604089686925224, + "estimatedCost_high": 26200779.39129441, + "estimatedScheduleMonths_high": 31.988660958840697, + "estimatedPeople_high": 25.604089686925224, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 458 258533 62 0 258471 0\n(ULOC) 79423\n-------------------------------------------------------------------------------\nMarkdown 8 54 19 0 35 0\n(ULOC) 36\n───────────────────────────────────────────────────────────────────────────────\nTotal 466 258587 81 0 258506 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 79458\nDRYness % 0.31\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,219,120\nEstimated Schedule Effort (organic) 31.99 months\nEstimated People Required (organic) 25.60\n───────────────────────────────────────────────────────────────────────────────\nProcessed 10931675 bytes, 10.932 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/GHubSecrtsFlow/GHubSecrtsFlow_data.json b/app/site/_data/CMSgov/GHubSecrtsFlow/GHubSecrtsFlow_data.json index 6364a6db7d..d6b929c148 100644 --- a/app/site/_data/CMSgov/GHubSecrtsFlow/GHubSecrtsFlow_data.json +++ b/app/site/_data/CMSgov/GHubSecrtsFlow/GHubSecrtsFlow_data.json @@ -1,260 +1,260 @@ { - "url": "https://github.com/CMSgov/GHubSecrtsFlow", - "owner": "CMSgov", - "name": "GHubSecrtsFlow", - "description": null, - "commits_count": 15, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 10, - "total_project_lines": 1, - "average_project_lines": 1, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 0, - "average_blank_lines": 0, - "commits_by_month": { - "2022/1": 8, - "2021/12": 3, - "2021/11": 4 + "url": "https://github.com/CMSgov/GHubSecrtsFlow", + "owner": "CMSgov", + "name": "GHubSecrtsFlow", + "description": null, + "commits_count": 15, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 10, + "total_project_lines": 1, + "average_project_lines": 1, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 0, + "average_blank_lines": 0, + "commits_by_month": { + "2022/1": 8, + "2021/12": 3, + "2021/11": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-11-16T17:30:30Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:00Z", + "repo": { + "name": "github.com/CMSgov/GHubSecrtsFlow", + "commit": "8b4f444f5f1fd174ca75fe6c5bd671d4f82141f2" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-11-16T17:30:30Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:00Z", - "repo": { - "name": "github.com/CMSgov/GHubSecrtsFlow", - "commit": "8b4f444f5f1fd174ca75fe6c5bd671d4f82141f2" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/11 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 16, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 17.44061253011111, - "estimatedScheduleMonths_low": 0.2215237428056705, - "estimatedPeople_low": 0.007669922244011662, - "estimatedCost_high": 54.35256591392355, - "estimatedScheduleMonths_high": 0.2215237428056705, - "estimatedPeople_high": 0.007669922244011662, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 1 1 0 0 1 0\n(ULOC) 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1 1 0 0 1 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1\nDRYness % 1.00\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $19\nEstimated Schedule Effort (organic) 0.22 months\nEstimated People Required (organic) 0.01\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 16 bytes, 0.000 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/11 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 16, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 17.44061253011111, + "estimatedScheduleMonths_low": 0.2215237428056705, + "estimatedPeople_low": 0.007669922244011662, + "estimatedCost_high": 54.35256591392355, + "estimatedScheduleMonths_high": 0.2215237428056705, + "estimatedPeople_high": 0.007669922244011662, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 1 1 0 0 1 0\n(ULOC) 1\n───────────────────────────────────────────────────────────────────────────────\nTotal 1 1 0 0 1 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1\nDRYness % 1.00\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $19\nEstimated Schedule Effort (organic) 0.22 months\nEstimated People Required (organic) 0.01\n───────────────────────────────────────────────────────────────────────────────\nProcessed 16 bytes, 0.000 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/HealthCare.gov-Styleguide/HealthCare.gov-Styleguide_data.json b/app/site/_data/CMSgov/HealthCare.gov-Styleguide/HealthCare.gov-Styleguide_data.json index 5dd93212ae..2eace52b98 100644 --- a/app/site/_data/CMSgov/HealthCare.gov-Styleguide/HealthCare.gov-Styleguide_data.json +++ b/app/site/_data/CMSgov/HealthCare.gov-Styleguide/HealthCare.gov-Styleguide_data.json @@ -1,361 +1,361 @@ { - "url": "https://github.com/CMSgov/HealthCare.gov-Styleguide", - "owner": "CMSgov", - "name": "HealthCare.gov-Styleguide", - "description": "CMS Developer Site", - "commits_count": 75, - "issues_count": 15, - "open_issues_count": 3, - "closed_issues_count": 12, - "pull_requests_count": 181, - "open_pull_requests_count": 3, - "merged_pull_requests_count": 174, - "closed_pull_requests_count": 4, - "forks_count": 20, - "stargazers_count": 58, - "watchers_count": 62, - "total_project_lines": 43717, - "average_project_lines": 409, - "total_project_comment_lines": 2133, - "average_project_comment_lines": 20, - "total_project_blank_lines": 2201, - "average_blank_lines": 21, - "commits_by_month": { - "2020/3": 2, - "2015/6": 5, - "2015/5": 7, - "2015/3": 8, - "2015/2": 8 + "url": "https://github.com/CMSgov/HealthCare.gov-Styleguide", + "owner": "CMSgov", + "name": "HealthCare.gov-Styleguide", + "description": "CMS Developer Site", + "commits_count": 75, + "issues_count": 15, + "open_issues_count": 3, + "closed_issues_count": 12, + "pull_requests_count": 181, + "open_pull_requests_count": 3, + "merged_pull_requests_count": 174, + "closed_pull_requests_count": 4, + "forks_count": 20, + "stargazers_count": 58, + "watchers_count": 62, + "total_project_lines": 43717, + "average_project_lines": 409, + "total_project_comment_lines": 2133, + "average_project_comment_lines": 20, + "total_project_blank_lines": 2201, + "average_blank_lines": 21, + "commits_by_month": { + "2020/3": 2, + "2015/6": 5, + "2015/5": 7, + "2015/3": 8, + "2015/2": 8 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2015-02-06T19:04:18Z", + "ossf_scorecard": { + "date": "2025-01-11T00:32:31Z", + "repo": { + "name": "github.com/CMSgov/HealthCare.gov-Styleguide", + "commit": "e9c7e9a5f30410c30f62bbf8c4e0f95186fdad29" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2015-02-06T19:04:18Z", - "ossf_scorecard": { - "date": "2025-01-11T00:32:31Z", - "repo": { - "name": "github.com/CMSgov/HealthCare.gov-Styleguide", - "commit": "e9c7e9a5f30410c30f62bbf8c4e0f95186fdad29" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/29 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "LESS", - "Bytes": 385832, - "CodeBytes": 0, - "Lines": 15319, - "Code": 11466, - "Comment": 1783, - "Blank": 2070, - "Complexity": 0, - "Count": 87, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 1372568, - "CodeBytes": 0, - "Lines": 9144, - "Code": 9138, - "Comment": 2, - "Blank": 4, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 383643, - "CodeBytes": 0, - "Lines": 16491, - "Code": 16169, - "Comment": 322, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 11181, - "CodeBytes": 0, - "Lines": 201, - "Code": 143, - "Comment": 0, - "Blank": 58, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 20834, - "CodeBytes": 0, - "Lines": 215, - "Code": 137, - "Comment": 26, - "Blank": 52, - "Complexity": 18, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 178212, - "CodeBytes": 0, - "Lines": 2344, - "Code": 2328, - "Comment": 0, - "Blank": 16, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 279, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1165831.9923324971, - "estimatedScheduleMonths_low": 15.099010596480644, - "estimatedPeople_low": 7.52206335589824, - "estimatedCost_high": 3633241.6707504927, - "estimatedScheduleMonths_high": 15.099010596480644, - "estimatedPeople_high": 7.52206335589824, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLESS 87 15319 2070 1783 11466 0\n(ULOC) 7503\n-------------------------------------------------------------------------------\nSVG 6 9144 4 2 9138 0\n(ULOC) 4781\n-------------------------------------------------------------------------------\nCSS 4 16491 0 322 16169 0\n(ULOC) 8092\n-------------------------------------------------------------------------------\nMarkdown 4 201 58 0 143 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nJavaScript 3 215 52 26 137 18\n(ULOC) 141\n-------------------------------------------------------------------------------\nHTML 2 2344 16 0 2328 0\n(ULOC) 2179\n-------------------------------------------------------------------------------\nPlain Text 1 3 1 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 107 43717 2201 2133 39383 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 21794\nDRYness % 0.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,278,408\nEstimated Schedule Effort (organic) 15.10 months\nEstimated People Required (organic) 7.52\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2352549 bytes, 2.353 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "CSS": 588677, - "HTML": 178212, - "JavaScript": 5644 - }, - "average_issue_resolution_time": [ - [ - "healthcare.gov-styleguide", - "60 days 17:10:18.333333" - ] + "score": 2.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/29 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "LESS", + "Bytes": 385832, + "CodeBytes": 0, + "Lines": 15319, + "Code": 11466, + "Comment": 1783, + "Blank": 2070, + "Complexity": 0, + "Count": 87, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 1372568, + "CodeBytes": 0, + "Lines": 9144, + "Code": 9138, + "Comment": 2, + "Blank": 4, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 383643, + "CodeBytes": 0, + "Lines": 16491, + "Code": 16169, + "Comment": 322, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 11181, + "CodeBytes": 0, + "Lines": 201, + "Code": 143, + "Comment": 0, + "Blank": 58, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 20834, + "CodeBytes": 0, + "Lines": 215, + "Code": 137, + "Comment": 26, + "Blank": 52, + "Complexity": 18, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 178212, + "CodeBytes": 0, + "Lines": 2344, + "Code": 2328, + "Comment": 0, + "Blank": 16, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 279, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 1165831.9923324971, + "estimatedScheduleMonths_low": 15.099010596480644, + "estimatedPeople_low": 7.52206335589824, + "estimatedCost_high": 3633241.6707504927, + "estimatedScheduleMonths_high": 15.099010596480644, + "estimatedPeople_high": 7.52206335589824, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nLESS 87 15319 2070 1783 11466 0\n(ULOC) 7503\n-------------------------------------------------------------------------------\nSVG 6 9144 4 2 9138 0\n(ULOC) 4781\n-------------------------------------------------------------------------------\nCSS 4 16491 0 322 16169 0\n(ULOC) 8092\n-------------------------------------------------------------------------------\nMarkdown 4 201 58 0 143 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nJavaScript 3 215 52 26 137 18\n(ULOC) 141\n-------------------------------------------------------------------------------\nHTML 2 2344 16 0 2328 0\n(ULOC) 2179\n-------------------------------------------------------------------------------\nPlain Text 1 3 1 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 107 43717 2201 2133 39383 18\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 21794\nDRYness % 0.50\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,278,408\nEstimated Schedule Effort (organic) 15.10 months\nEstimated People Required (organic) 7.52\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2352549 bytes, 2.353 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "CSS": 588677, + "HTML": 178212, + "JavaScript": 5644 + }, + "average_issue_resolution_time": [ + [ + "healthcare.gov-styleguide", + "60 days 17:10:18.333333" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/Medicaid-Information-Technology-Architecture-MITA/Medicaid-Information-Technology-Architecture-MITA_data.json b/app/site/_data/CMSgov/Medicaid-Information-Technology-Architecture-MITA/Medicaid-Information-Technology-Architecture-MITA_data.json index 95ad30166d..dffd55855a 100644 --- a/app/site/_data/CMSgov/Medicaid-Information-Technology-Architecture-MITA/Medicaid-Information-Technology-Architecture-MITA_data.json +++ b/app/site/_data/CMSgov/Medicaid-Information-Technology-Architecture-MITA/Medicaid-Information-Technology-Architecture-MITA_data.json @@ -1,319 +1,319 @@ { - "url": "https://github.com/CMSgov/Medicaid-Information-Technology-Architecture-MITA", - "owner": "CMSgov", - "name": "Medicaid-Information-Technology-Architecture-MITA", - "description": "Site dedicated to providing MITA content to states and partners", - "commits_count": 99, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 8, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 8, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 2, - "watchers_count": 9, - "total_project_lines": 426, - "average_project_lines": 53, - "total_project_comment_lines": 8, - "average_project_comment_lines": 1, - "total_project_blank_lines": 55, - "average_blank_lines": 7, - "commits_by_month": { - "2024/10": 4, - "2024/9": 6, - "2024/8": 12, - "2024/7": 3, - "2024/6": 4, - "2024/5": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/Medicaid-Information-Technology-Architecture-MITA", + "owner": "CMSgov", + "name": "Medicaid-Information-Technology-Architecture-MITA", + "description": "Site dedicated to providing MITA content to states and partners", + "commits_count": 99, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 8, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 8, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 2, + "watchers_count": 9, + "total_project_lines": 426, + "average_project_lines": 53, + "total_project_comment_lines": 8, + "average_project_comment_lines": 1, + "total_project_blank_lines": 55, + "average_blank_lines": 7, + "commits_by_month": { + "2024/10": 4, + "2024/9": 6, + "2024/8": 12, + "2024/7": 3, + "2024/6": 4, + "2024/5": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-06T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "created_at": "2024-01-31T16:37:22Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:08Z", - "repo": { - "name": "github.com/CMSgov/Medicaid-Information-Technology-Architecture-MITA", - "commit": "3d005783406f1cb2ed8c081b2f4470f679bd53a6" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 5 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/25 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 10, - "reason": "GitHub workflow tokens follow principle of least privilege", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "HTML", - "Bytes": 17608, - "CodeBytes": 0, - "Lines": 278, - "Code": 246, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1273, - "CodeBytes": 0, - "Lines": 45, - "Code": 32, - "Comment": 8, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1097, - "CodeBytes": 0, - "Lines": 42, - "Code": 42, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4392, - "CodeBytes": 0, - "Lines": 61, - "Code": 43, - "Comment": 0, - "Blank": 18, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 8500.87616993095, - "estimatedScheduleMonths_low": 2.327142747924924, - "estimatedPeople_low": 0.3558690132215479, - "estimatedCost_high": 26492.44294342054, - "estimatedScheduleMonths_high": 2.327142747924924, - "estimatedPeople_high": 0.3558690132215479, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nHTML 4 278 32 0 246 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nYAML 2 45 5 8 32 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nJSON 1 42 0 0 42 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nMarkdown 1 61 18 0 43 0\n(ULOC) 41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 8 426 55 8 363 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 248\nDRYness % 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,321\nEstimated Schedule Effort (organic) 2.33 months\nEstimated People Required (organic) 0.36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 24370 bytes, 0.024 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-11T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "created_at": "2024-01-31T16:37:22Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:08Z", + "repo": { + "name": "github.com/CMSgov/Medicaid-Information-Technology-Architecture-MITA", + "commit": "3d005783406f1cb2ed8c081b2f4470f679bd53a6" }, - "predominant_langs": { - "HTML": 17608 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 5 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/25 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 10, + "reason": "GitHub workflow tokens follow principle of least privilege", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "HTML", + "Bytes": 17608, + "CodeBytes": 0, + "Lines": 278, + "Code": 246, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1273, + "CodeBytes": 0, + "Lines": 45, + "Code": 32, + "Comment": 8, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1097, + "CodeBytes": 0, + "Lines": 42, + "Code": 42, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4392, + "CodeBytes": 0, + "Lines": 61, + "Code": 43, + "Comment": 0, + "Blank": 18, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 8500.87616993095, + "estimatedScheduleMonths_low": 2.327142747924924, + "estimatedPeople_low": 0.3558690132215479, + "estimatedCost_high": 26492.44294342054, + "estimatedScheduleMonths_high": 2.327142747924924, + "estimatedPeople_high": 0.3558690132215479, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nHTML 4 278 32 0 246 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nYAML 2 45 5 8 32 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nJSON 1 42 0 0 42 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nMarkdown 1 61 18 0 43 0\n(ULOC) 41\n───────────────────────────────────────────────────────────────────────────────\nTotal 8 426 55 8 363 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 248\nDRYness % 0.58\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,321\nEstimated Schedule Effort (organic) 2.33 months\nEstimated People Required (organic) 0.36\n───────────────────────────────────────────────────────────────────────────────\nProcessed 24370 bytes, 0.024 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HTML": 17608 + }, + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/QHP-provider-formulary-APIs/QHP-provider-formulary-APIs_data.json b/app/site/_data/CMSgov/QHP-provider-formulary-APIs/QHP-provider-formulary-APIs_data.json index 431ad10323..eb2243de05 100644 --- a/app/site/_data/CMSgov/QHP-provider-formulary-APIs/QHP-provider-formulary-APIs_data.json +++ b/app/site/_data/CMSgov/QHP-provider-formulary-APIs/QHP-provider-formulary-APIs_data.json @@ -1,318 +1,318 @@ { - "url": "https://github.com/CMSgov/QHP-provider-formulary-APIs", - "owner": "CMSgov", - "name": "QHP-provider-formulary-APIs", - "description": null, - "commits_count": 26, - "issues_count": 28, - "open_issues_count": 25, - "closed_issues_count": 3, - "pull_requests_count": 8, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 4, - "closed_pull_requests_count": 3, - "forks_count": 21, - "stargazers_count": 40, - "watchers_count": 43, - "total_project_lines": 1014, - "average_project_lines": 92, - "total_project_comment_lines": 18, - "average_project_comment_lines": 2, - "total_project_blank_lines": 92, - "average_blank_lines": 8, - "commits_by_month": { - "2019/10": 1, - "2017/12": 1, - "2016/5": 1, - "2015/10": 3, - "2015/9": 7, - "2015/8": 6, - "2015/7": 4, - "2015/5": 2, - "2015/4": 1 + "url": "https://github.com/CMSgov/QHP-provider-formulary-APIs", + "owner": "CMSgov", + "name": "QHP-provider-formulary-APIs", + "description": null, + "commits_count": 26, + "issues_count": 28, + "open_issues_count": 25, + "closed_issues_count": 3, + "pull_requests_count": 8, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 4, + "closed_pull_requests_count": 3, + "forks_count": 21, + "stargazers_count": 40, + "watchers_count": 43, + "total_project_lines": 1014, + "average_project_lines": 92, + "total_project_comment_lines": 18, + "average_project_comment_lines": 2, + "total_project_blank_lines": 92, + "average_blank_lines": 8, + "commits_by_month": { + "2019/10": 1, + "2017/12": 1, + "2016/5": 1, + "2015/10": 3, + "2015/9": 7, + "2015/8": 6, + "2015/7": 4, + "2015/5": 2, + "2015/4": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2015-03-30T15:21:26Z", + "ossf_scorecard": { + "date": "2025-01-11T00:34:45Z", + "repo": { + "name": "github.com/CMSgov/QHP-provider-formulary-APIs", + "commit": "1b667bd691633cd1080878ff44cf44cd38393751" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2015-03-30T15:21:26Z", - "ossf_scorecard": { - "date": "2025-01-11T00:34:45Z", - "repo": { - "name": "github.com/CMSgov/QHP-provider-formulary-APIs", - "commit": "1b667bd691633cd1080878ff44cf44cd38393751" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/26 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 13448, - "CodeBytes": 0, - "Lines": 435, - "Code": 435, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 4495, - "CodeBytes": 0, - "Lines": 105, - "Code": 79, - "Comment": 18, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 25683, - "CodeBytes": 0, - "Lines": 449, - "Code": 370, - "Comment": 0, - "Blank": 79, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1211, - "CodeBytes": 0, - "Lines": 25, - "Code": 20, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 22158.40957967216, - "estimatedScheduleMonths_low": 3.349125980828976, - "estimatedPeople_low": 0.6445499950860939, - "estimatedCost_high": 69055.28204055419, - "estimatedScheduleMonths_high": 3.349125980828976, - "estimatedPeople_high": 0.6445499950860939, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 6 435 0 0 435 0\n(ULOC) 134\n-------------------------------------------------------------------------------\nHTML 2 105 8 18 79 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nMarkdown 2 449 79 0 370 0\n(ULOC) 247\n-------------------------------------------------------------------------------\nLicense 1 25 5 0 20 0\n(ULOC) 21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 11 1014 92 18 904 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 425\nDRYness % 0.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $24,298\nEstimated Schedule Effort (organic) 3.35 months\nEstimated People Required (organic) 0.64\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 44837 bytes, 0.045 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "HTML": 4495 - }, - "average_issue_resolution_time": [ - [ - "qhp-provider-formulary-apis", - "258 days 33:35:03.666667" - ] + "score": 2.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/26 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 13448, + "CodeBytes": 0, + "Lines": 435, + "Code": 435, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 4495, + "CodeBytes": 0, + "Lines": 105, + "Code": 79, + "Comment": 18, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 25683, + "CodeBytes": 0, + "Lines": 449, + "Code": 370, + "Comment": 0, + "Blank": 79, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1211, + "CodeBytes": 0, + "Lines": 25, + "Code": 20, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 22158.40957967216, + "estimatedScheduleMonths_low": 3.349125980828976, + "estimatedPeople_low": 0.6445499950860939, + "estimatedCost_high": 69055.28204055419, + "estimatedScheduleMonths_high": 3.349125980828976, + "estimatedPeople_high": 0.6445499950860939, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 6 435 0 0 435 0\n(ULOC) 134\n-------------------------------------------------------------------------------\nHTML 2 105 8 18 79 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nMarkdown 2 449 79 0 370 0\n(ULOC) 247\n-------------------------------------------------------------------------------\nLicense 1 25 5 0 20 0\n(ULOC) 21\n───────────────────────────────────────────────────────────────────────────────\nTotal 11 1014 92 18 904 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 425\nDRYness % 0.42\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $24,298\nEstimated Schedule Effort (organic) 3.35 months\nEstimated People Required (organic) 0.64\n───────────────────────────────────────────────────────────────────────────────\nProcessed 44837 bytes, 0.045 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HTML": 4495 + }, + "average_issue_resolution_time": [ + [ + "qhp-provider-formulary-apis", + "258 days 33:35:03.666667" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/SMA-Endpoint-Directory/SMA-Endpoint-Directory_data.json b/app/site/_data/CMSgov/SMA-Endpoint-Directory/SMA-Endpoint-Directory_data.json index 6f1d74b547..d23d9f1045 100644 --- a/app/site/_data/CMSgov/SMA-Endpoint-Directory/SMA-Endpoint-Directory_data.json +++ b/app/site/_data/CMSgov/SMA-Endpoint-Directory/SMA-Endpoint-Directory_data.json @@ -1,275 +1,275 @@ { - "url": "https://github.com/CMSgov/SMA-Endpoint-Directory", - "owner": "CMSgov", - "name": "SMA-Endpoint-Directory", - "description": null, - "commits_count": 15, - "issues_count": 1, - "open_issues_count": 1, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 5, - "stargazers_count": 14, - "watchers_count": 8, - "total_project_lines": 457, - "average_project_lines": 229, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 130, - "average_blank_lines": 65, - "commits_by_month": { - "2023/8": 7, - "2023/7": 2, - "2023/6": 6 + "url": "https://github.com/CMSgov/SMA-Endpoint-Directory", + "owner": "CMSgov", + "name": "SMA-Endpoint-Directory", + "description": null, + "commits_count": 15, + "issues_count": 1, + "open_issues_count": 1, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 5, + "stargazers_count": 14, + "watchers_count": 8, + "total_project_lines": 457, + "average_project_lines": 229, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 130, + "average_blank_lines": 65, + "commits_by_month": { + "2023/8": 7, + "2023/7": 2, + "2023/6": 6 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2023-03-28T13:34:15Z", + "ossf_scorecard": { + "date": "2025-01-11T00:36:40Z", + "repo": { + "name": "github.com/CMSgov/SMA-Endpoint-Directory", + "commit": "2c307c94122fba8f32d665b267e67ffcc1f57846" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2023-03-28T13:34:15Z", - "ossf_scorecard": { - "date": "2025-01-11T00:36:40Z", - "repo": { - "name": "github.com/CMSgov/SMA-Endpoint-Directory", - "commit": "2c307c94122fba8f32d665b267e67ffcc1f57846" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/15 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "CSV", - "Bytes": 52086, - "CodeBytes": 0, - "Lines": 448, - "Code": 322, - "Comment": 0, - "Blank": 126, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 964, - "CodeBytes": 0, - "Lines": 9, - "Code": 5, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7617.928180935305, - "estimatedScheduleMonths_low": 2.2321574941899915, - "estimatedPeople_low": 0.3324769548273905, - "estimatedCost_high": 23740.791377995483, - "estimatedScheduleMonths_high": 2.2321574941899915, - "estimatedPeople_high": 0.3324769548273905, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nCSV 1 448 126 0 322 0\n(ULOC) 225\n-------------------------------------------------------------------------------\nMarkdown 1 9 4 0 5 0\n(ULOC) 6\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2 457 130 0 327 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 230\nDRYness % 0.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,353\nEstimated Schedule Effort (organic) 2.23 months\nEstimated People Required (organic) 0.33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 53050 bytes, 0.053 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/15 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "CSV", + "Bytes": 52086, + "CodeBytes": 0, + "Lines": 448, + "Code": 322, + "Comment": 0, + "Blank": 126, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 964, + "CodeBytes": 0, + "Lines": 9, + "Code": 5, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7617.928180935305, + "estimatedScheduleMonths_low": 2.2321574941899915, + "estimatedPeople_low": 0.3324769548273905, + "estimatedCost_high": 23740.791377995483, + "estimatedScheduleMonths_high": 2.2321574941899915, + "estimatedPeople_high": 0.3324769548273905, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nCSV 1 448 126 0 322 0\n(ULOC) 225\n-------------------------------------------------------------------------------\nMarkdown 1 9 4 0 5 0\n(ULOC) 6\n───────────────────────────────────────────────────────────────────────────────\nTotal 2 457 130 0 327 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 230\nDRYness % 0.50\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,353\nEstimated Schedule Effort (organic) 2.23 months\nEstimated People Required (organic) 0.33\n───────────────────────────────────────────────────────────────────────────────\nProcessed 53050 bytes, 0.053 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code/T-MSIS-Data-Quality-Measures-Generation-Code_data.json b/app/site/_data/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code/T-MSIS-Data-Quality-Measures-Generation-Code_data.json index 2d8d076746..142f6837e6 100644 --- a/app/site/_data/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code/T-MSIS-Data-Quality-Measures-Generation-Code_data.json +++ b/app/site/_data/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code/T-MSIS-Data-Quality-Measures-Generation-Code_data.json @@ -1,749 +1,749 @@ { - "url": "https://github.com/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code", - "owner": "CMSgov", - "name": "T-MSIS-Data-Quality-Measures-Generation-Code", - "description": null, - "commits_count": 184, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 33, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 12, - "closed_pull_requests_count": 20, - "forks_count": 1, - "stargazers_count": 18, - "watchers_count": 14, - "total_project_lines": 160949, - "average_project_lines": 952, - "total_project_comment_lines": 14749, - "average_project_comment_lines": 87, - "total_project_blank_lines": 5301, - "average_blank_lines": 31, - "commits_by_month": { - "2025/1": 2, - "2024/12": 6, - "2024/10": 8, - "2024/9": 2, - "2024/8": 2, - "2024/6": 7, - "2024/4": 3 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-23T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-21T00:00:00.000Z", - 2 - ], - [ - "2024-10-15T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-02-03T18:06:21Z", - "ossf_scorecard": { - "date": "2025-01-11T00:38:54Z", - "repo": { - "name": "github.com/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code", - "commit": "054facf0f1dfd1098dd9c96ac42e2317caafa157" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "2 out of 2 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/28 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "16 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 10, - "reason": "GitHub workflow tokens follow principle of least privilege", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 5, - "reason": "5 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 1771271, - "CodeBytes": 0, - "Lines": 36513, - "Code": 16627, - "Comment": 14726, - "Blank": 5160, - "Complexity": 647, - "Count": 134, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 3791615, - "CodeBytes": 0, - "Lines": 123735, - "Code": 123735, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 23, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 16728, - "CodeBytes": 0, - "Lines": 329, - "Code": 223, - "Comment": 0, - "Blank": 106, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 11465, - "CodeBytes": 0, - "Lines": 129, - "Code": 125, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Jupyter", - "Bytes": 13652, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 140, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 2389, - "CodeBytes": 0, - "Lines": 56, - "Code": 48, - "Comment": 8, - "Blank": 0, - "Complexity": 11, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1580, - "CodeBytes": 0, - "Lines": 57, - "Code": 31, - "Comment": 15, - "Blank": 11, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4445476.0665648775, - "estimatedScheduleMonths_low": 25.109367136592304, - "estimatedPeople_low": 17.247732886873322, - "estimatedCost_high": 13854045.006135903, - "estimatedScheduleMonths_high": 25.109367136592304, - "estimatedPeople_high": 17.247732886873322, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 134 36513 5160 14726 16627 647\n(ULOC) 9439\n-------------------------------------------------------------------------------\nCSV 23 123735 0 0 123735 0\n(ULOC) 111598\n-------------------------------------------------------------------------------\nMarkdown 4 329 106 0 223 0\n(ULOC) 189\n-------------------------------------------------------------------------------\nBatch 2 129 4 0 125 0\n(ULOC) 126\n-------------------------------------------------------------------------------\nJupyter 2 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 13 0 0 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nShell 1 56 0 8 48 11\n(ULOC) 50\n-------------------------------------------------------------------------------\nYAML 1 57 11 15 31 0\n(ULOC) 45\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 169 160950 5301 14749 140900 658\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 121535\nDRYness % 0.76\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,874,744\nEstimated Schedule Effort (organic) 25.11 months\nEstimated People Required (organic) 17.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5615395 bytes, 5.615 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code", + "owner": "CMSgov", + "name": "T-MSIS-Data-Quality-Measures-Generation-Code", + "description": null, + "commits_count": 184, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 33, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 12, + "closed_pull_requests_count": 20, + "forks_count": 1, + "stargazers_count": 18, + "watchers_count": 14, + "total_project_lines": 160949, + "average_project_lines": 952, + "total_project_comment_lines": 14749, + "average_project_comment_lines": 87, + "total_project_blank_lines": 5301, + "average_blank_lines": 31, + "commits_by_month": { + "2025/1": 2, + "2024/12": 6, + "2024/10": 8, + "2024/9": 2, + "2024/8": 2, + "2024/6": 7, + "2024/4": 3 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-23T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-21T00:00:00.000Z", + 2 + ], + [ + "2024-10-15T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-02-03T18:06:21Z", + "ossf_scorecard": { + "date": "2025-01-11T00:38:54Z", + "repo": { + "name": "github.com/CMSgov/T-MSIS-Data-Quality-Measures-Generation-Code", + "commit": "054facf0f1dfd1098dd9c96ac42e2317caafa157" }, - "predominant_langs": { - "Python": 1771271, - "Jupyter Notebook": 13652, - "Batchfile": 11465, - "Shell": 2389 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "Babel", - 2.4876712329, - "2023-11-29T02:46:00.000" - ], - [ - "Jinja2", - 0.9424657534, - "2023-11-29T02:46:00.000" - ], - [ - "MarkupSafe", - 2.0410958904, - "2023-11-29T02:46:00.000" - ], - [ - "PyYAML", - 2.4876712329, - "2023-11-29T02:46:00.000" - ], - [ - "Pygments", - 2.5534246575, - "2023-11-29T02:46:00.000" - ], - [ - "Sphinx", - 2.1342465753, - "2023-11-29T02:46:00.000" - ], - [ - "alabaster", - 4.2821917808, - "2023-11-29T02:46:00.000" - ], - [ - "astroid", - 2.5506849315, - "2023-11-29T02:46:00.000" - ], - [ - "attrs", - 1.9424657534, - "2023-11-29T02:46:00.000" - ], - [ - "autoflake", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "awscli", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "bandit", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "black", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "boto3", - 0.0, - "2023-11-29T02:46:00.000" - ], - [ - "certifi", - 2.4684931507, - "2023-11-29T02:46:00.000" - ], - [ - "charset-normalizer", - 2.2931506849, - "2023-11-29T02:46:00.000" - ], - [ - "click", - 2.2438356164, - "2023-11-29T02:46:00.000" - ], - [ - "colorama", - 2.0246575342, - "2023-11-29T02:46:00.000" - ], - [ - "databricks-cli", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "databricks-cli", - 2.5534246575, - "2023-11-29T02:46:00.000" - ], - [ - "docutils", - 3.3424657534, - "2023-11-29T02:46:00.000" - ], - [ - "flake8", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "flake8", - 2.2219178082, - "2023-11-29T02:46:00.000" - ], - [ - "flake8-bugbear", - 2.6547945205, - "2023-11-29T02:46:00.000" - ], - [ - "flake8-comprehensions", - 1.898630137, - "2023-11-29T02:46:00.000" - ], - [ - "idna", - 2.4904109589, - "2023-11-29T02:46:00.000" - ], - [ - "imagesize", - 2.5123287671, - "2023-11-29T02:46:00.000" - ], - [ - "isort", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "isort", - 1.8575342466, - "2023-11-29T02:46:00.000" - ], - [ - "koalas", - 0.3369863014, - "2023-11-29T02:46:00.000" - ], - [ - "lazy-object-proxy", - 1.7863013699, - "2023-11-29T02:46:00.000" - ], - [ - "markdown-it-py", - 2.0712328767, - "2023-11-29T02:46:00.000" - ], - [ - "mccabe", - 4.9945205479, - "2023-11-29T02:46:00.000" - ], - [ - "mdit-py-plugins", - 2.0876712329, - "2023-11-29T02:46:00.000" - ], - [ - "myst-parser", - 1.9863013699, - "2023-11-29T02:46:00.000" - ], - [ - "numpy", - 2.6273972603, - "2023-11-29T02:46:00.000" - ], - [ - "numpy", - 3.0054794521, - "2025-01-01T18:38:04.000" - ], - [ - "packaging", - 2.2465753425, - "2023-11-29T02:46:00.000" - ], - [ - "pandas", - 2.0575342466, - "2025-01-01T18:38:04.000" - ], - [ - "pandas", - 2.5808219178, - "2023-11-29T02:46:00.000" - ], - [ - "pep8", - 0.0, - "2023-11-29T02:46:00.000" - ], - [ - "pip", - 1.6246575342, - "2023-11-29T02:46:00.000" - ], - [ - "py4j", - 2.5479452055, - "2023-11-29T02:46:00.000" - ], - [ - "pyarrow", - 2.2794520548, - "2023-11-29T02:46:00.000" - ], - [ - "pycodestyle", - 2.5808219178, - "2023-11-29T02:46:00.000" - ], - [ - "pylint", - 2.5643835616, - "2023-11-29T02:46:00.000" - ], - [ - "pyparsing", - 3.3150684932, - "2023-11-29T02:46:00.000" - ], - [ - "pyspark", - 1.6876712329, - "2025-01-01T18:38:04.000" - ], - [ - "pyspark", - 2.5698630137, - "2023-11-29T02:46:00.000" - ], - [ - "pytest", - 0.0, - "2025-01-01T18:38:04.000" - ], - [ - "python-dateutil", - 1.695890411, - "2023-11-29T02:46:00.000" - ], - [ - "pytz", - 2.5890410959, - "2023-11-29T02:46:00.000" - ], - [ - "requests", - 1.8575342466, - "2023-11-29T02:46:00.000" - ], - [ - "setuptools", - 2.301369863, - "2025-01-01T18:38:04.000" - ], - [ - "setuptools", - 3.304109589, - "2023-11-29T02:46:00.000" - ], - [ - "six", - 0.9534246575, - "2023-11-29T02:46:00.000" - ], - [ - "snowballstemmer", - 0.8191780822, - "2023-11-29T02:46:00.000" - ], - [ - "sphinx-rtd-theme", - 2.6465753425, - "2023-11-29T02:46:00.000" - ], - [ - "sphinxcontrib-applehelp", - 3.4575342466, - "2023-11-29T02:46:00.000" - ], - [ - "sphinxcontrib-devhelp", - 3.4575342466, - "2023-11-29T02:46:00.000" - ], - [ - "sphinxcontrib-htmlhelp", - 2.2301369863, - "2023-11-29T02:46:00.000" - ], - [ - "sphinxcontrib-jsmath", - 0.0, - "2023-11-29T02:46:00.000" - ], - [ - "sphinxcontrib-qthelp", - 3.4575342466, - "2023-11-29T02:46:00.000" - ], - [ - "sphinxcontrib-serializinghtml", - 2.2465753425, - "2023-11-29T02:46:00.000" - ], - [ - "tabulate", - 1.6191780822, - "2023-11-29T02:46:00.000" - ], - [ - "toml", - 0.0, - "2023-11-29T02:46:00.000" - ], - [ - "urllib3", - 2.3835616438, - "2023-11-29T02:46:00.000" - ], - [ - "wheel", - 2.9205479452, - "2025-01-01T18:38:04.000" - ], - [ - "wheel", - 2.9506849315, - "2023-11-29T02:46:00.000" - ] + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "2 out of 2 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/28 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "16 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 10, + "reason": "GitHub workflow tokens follow principle of least privilege", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 5, + "reason": "5 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 1771271, + "CodeBytes": 0, + "Lines": 36513, + "Code": 16627, + "Comment": 14726, + "Blank": 5160, + "Complexity": 647, + "Count": 134, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 3791615, + "CodeBytes": 0, + "Lines": 123735, + "Code": 123735, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 23, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 16728, + "CodeBytes": 0, + "Lines": 329, + "Code": 223, + "Comment": 0, + "Blank": 106, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 11465, + "CodeBytes": 0, + "Lines": 129, + "Code": 125, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Jupyter", + "Bytes": 13652, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 140, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 2389, + "CodeBytes": 0, + "Lines": 56, + "Code": 48, + "Comment": 8, + "Blank": 0, + "Complexity": 11, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1580, + "CodeBytes": 0, + "Lines": 57, + "Code": 31, + "Comment": 15, + "Blank": 11, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4445476.0665648775, + "estimatedScheduleMonths_low": 25.109367136592304, + "estimatedPeople_low": 17.247732886873322, + "estimatedCost_high": 13854045.006135903, + "estimatedScheduleMonths_high": 25.109367136592304, + "estimatedPeople_high": 17.247732886873322, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 134 36513 5160 14726 16627 647\n(ULOC) 9439\n-------------------------------------------------------------------------------\nCSV 23 123735 0 0 123735 0\n(ULOC) 111598\n-------------------------------------------------------------------------------\nMarkdown 4 329 106 0 223 0\n(ULOC) 189\n-------------------------------------------------------------------------------\nBatch 2 129 4 0 125 0\n(ULOC) 126\n-------------------------------------------------------------------------------\nJupyter 2 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 13 0 0 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nShell 1 56 0 8 48 11\n(ULOC) 50\n-------------------------------------------------------------------------------\nYAML 1 57 11 15 31 0\n(ULOC) 45\n───────────────────────────────────────────────────────────────────────────────\nTotal 169 160950 5301 14749 140900 658\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 121535\nDRYness % 0.76\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,874,744\nEstimated Schedule Effort (organic) 25.11 months\nEstimated People Required (organic) 17.25\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5615395 bytes, 5.615 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 1771271, + "Jupyter Notebook": 13652, + "Batchfile": 11465, + "Shell": 2389 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "Babel", + 2.4876712329, + "2023-11-29T02:46:00.000" + ], + [ + "Jinja2", + 0.9424657534, + "2023-11-29T02:46:00.000" + ], + [ + "MarkupSafe", + 2.0410958904, + "2023-11-29T02:46:00.000" + ], + [ + "PyYAML", + 2.4876712329, + "2023-11-29T02:46:00.000" + ], + [ + "Pygments", + 2.5534246575, + "2023-11-29T02:46:00.000" + ], + [ + "Sphinx", + 2.1342465753, + "2023-11-29T02:46:00.000" + ], + [ + "alabaster", + 4.2821917808, + "2023-11-29T02:46:00.000" + ], + [ + "astroid", + 2.5506849315, + "2023-11-29T02:46:00.000" + ], + [ + "attrs", + 1.9424657534, + "2023-11-29T02:46:00.000" + ], + [ + "autoflake", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "awscli", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "bandit", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "black", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "boto3", + 0, + "2023-11-29T02:46:00.000" + ], + [ + "certifi", + 2.4684931507, + "2023-11-29T02:46:00.000" + ], + [ + "charset-normalizer", + 2.2931506849, + "2023-11-29T02:46:00.000" + ], + [ + "click", + 2.2438356164, + "2023-11-29T02:46:00.000" + ], + [ + "colorama", + 2.0246575342, + "2023-11-29T02:46:00.000" + ], + [ + "databricks-cli", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "databricks-cli", + 2.5534246575, + "2023-11-29T02:46:00.000" + ], + [ + "docutils", + 3.3424657534, + "2023-11-29T02:46:00.000" + ], + [ + "flake8", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "flake8", + 2.2219178082, + "2023-11-29T02:46:00.000" + ], + [ + "flake8-bugbear", + 2.6547945205, + "2023-11-29T02:46:00.000" + ], + [ + "flake8-comprehensions", + 1.898630137, + "2023-11-29T02:46:00.000" + ], + [ + "idna", + 2.4904109589, + "2023-11-29T02:46:00.000" + ], + [ + "imagesize", + 2.5123287671, + "2023-11-29T02:46:00.000" + ], + [ + "isort", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "isort", + 1.8575342466, + "2023-11-29T02:46:00.000" + ], + [ + "koalas", + 0.3369863014, + "2023-11-29T02:46:00.000" + ], + [ + "lazy-object-proxy", + 1.7863013699, + "2023-11-29T02:46:00.000" + ], + [ + "markdown-it-py", + 2.0712328767, + "2023-11-29T02:46:00.000" + ], + [ + "mccabe", + 4.9945205479, + "2023-11-29T02:46:00.000" + ], + [ + "mdit-py-plugins", + 2.0876712329, + "2023-11-29T02:46:00.000" + ], + [ + "myst-parser", + 1.9863013699, + "2023-11-29T02:46:00.000" + ], + [ + "numpy", + 2.6273972603, + "2023-11-29T02:46:00.000" + ], + [ + "numpy", + 3.0054794521, + "2025-01-01T18:38:04.000" + ], + [ + "packaging", + 2.2465753425, + "2023-11-29T02:46:00.000" + ], + [ + "pandas", + 2.0575342466, + "2025-01-01T18:38:04.000" + ], + [ + "pandas", + 2.5808219178, + "2023-11-29T02:46:00.000" + ], + [ + "pep8", + 0, + "2023-11-29T02:46:00.000" + ], + [ + "pip", + 1.6246575342, + "2023-11-29T02:46:00.000" + ], + [ + "py4j", + 2.5479452055, + "2023-11-29T02:46:00.000" + ], + [ + "pyarrow", + 2.2794520548, + "2023-11-29T02:46:00.000" + ], + [ + "pycodestyle", + 2.5808219178, + "2023-11-29T02:46:00.000" + ], + [ + "pylint", + 2.5643835616, + "2023-11-29T02:46:00.000" + ], + [ + "pyparsing", + 3.3150684932, + "2023-11-29T02:46:00.000" + ], + [ + "pyspark", + 1.6876712329, + "2025-01-01T18:38:04.000" + ], + [ + "pyspark", + 2.5698630137, + "2023-11-29T02:46:00.000" + ], + [ + "pytest", + 0, + "2025-01-01T18:38:04.000" + ], + [ + "python-dateutil", + 1.695890411, + "2023-11-29T02:46:00.000" + ], + [ + "pytz", + 2.5890410959, + "2023-11-29T02:46:00.000" + ], + [ + "requests", + 1.8575342466, + "2023-11-29T02:46:00.000" + ], + [ + "setuptools", + 2.301369863, + "2025-01-01T18:38:04.000" + ], + [ + "setuptools", + 3.304109589, + "2023-11-29T02:46:00.000" + ], + [ + "six", + 0.9534246575, + "2023-11-29T02:46:00.000" + ], + [ + "snowballstemmer", + 0.8191780822, + "2023-11-29T02:46:00.000" + ], + [ + "sphinx-rtd-theme", + 2.6465753425, + "2023-11-29T02:46:00.000" + ], + [ + "sphinxcontrib-applehelp", + 3.4575342466, + "2023-11-29T02:46:00.000" + ], + [ + "sphinxcontrib-devhelp", + 3.4575342466, + "2023-11-29T02:46:00.000" + ], + [ + "sphinxcontrib-htmlhelp", + 2.2301369863, + "2023-11-29T02:46:00.000" + ], + [ + "sphinxcontrib-jsmath", + 0, + "2023-11-29T02:46:00.000" + ], + [ + "sphinxcontrib-qthelp", + 3.4575342466, + "2023-11-29T02:46:00.000" + ], + [ + "sphinxcontrib-serializinghtml", + 2.2465753425, + "2023-11-29T02:46:00.000" + ], + [ + "tabulate", + 1.6191780822, + "2023-11-29T02:46:00.000" + ], + [ + "toml", + 0, + "2023-11-29T02:46:00.000" + ], + [ + "urllib3", + 2.3835616438, + "2023-11-29T02:46:00.000" + ], + [ + "wheel", + 2.9205479452, + "2025-01-01T18:38:04.000" + ], + [ + "wheel", + 2.9506849315, + "2023-11-29T02:46:00.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/ab2d-bcda-dpc-platform/ab2d-bcda-dpc-platform_data.json b/app/site/_data/CMSgov/ab2d-bcda-dpc-platform/ab2d-bcda-dpc-platform_data.json index 105af07143..d5a8990d13 100644 --- a/app/site/_data/CMSgov/ab2d-bcda-dpc-platform/ab2d-bcda-dpc-platform_data.json +++ b/app/site/_data/CMSgov/ab2d-bcda-dpc-platform/ab2d-bcda-dpc-platform_data.json @@ -1,611 +1,611 @@ { - "url": "https://github.com/CMSgov/ab2d-bcda-dpc-platform", - "owner": "CMSgov", - "name": "ab2d-bcda-dpc-platform", - "description": "Platform team code for supporting AB2D, BCDA, and DPC.", - "commits_count": 149, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 161, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 140, - "closed_pull_requests_count": 15, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 12, - "total_project_lines": 52104, - "average_project_lines": 324, - "total_project_comment_lines": 2143, - "average_project_comment_lines": 13, - "total_project_blank_lines": 4788, - "average_blank_lines": 30, - "commits_by_month": { - "2025/1": 4, - "2024/12": 2, - "2024/11": 10, - "2024/10": 9, - "2024/9": 5 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-19T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-09-16T00:00:00.000Z", - 1 - ], - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-10-29T00:00:00.000Z", - 1 - ], - [ - "2024-11-14T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-04-04T12:40:46Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:33Z", - "repo": { - "name": "github.com/CMSgov/ab2d-bcda-dpc-platform", - "commit": "0ee92fe77855e8ea026995df58dd37b058d356d8" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 5, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 8, - "reason": "25 out of 29 merged PRs checked by a CI test -- score normalized to 8", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 28/29 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 11 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "22 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Terraform", - "Bytes": 111071, - "CodeBytes": 0, - "Lines": 4167, - "Code": 2881, - "Comment": 825, - "Blank": 461, - "Complexity": 287, - "Count": 88, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 54297, - "CodeBytes": 0, - "Lines": 1624, - "Code": 1464, - "Comment": 49, - "Blank": 111, - "Complexity": 0, - "Count": 38, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 14778, - "CodeBytes": 0, - "Lines": 348, - "Code": 227, - "Comment": 0, - "Blank": 121, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 6238, - "CodeBytes": 0, - "Lines": 225, - "Code": 210, - "Comment": 0, - "Blank": 15, - "Complexity": 14, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2211, - "CodeBytes": 0, - "Lines": 79, - "Code": 52, - "Comment": 11, - "Blank": 16, - "Complexity": 10, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5076, - "CodeBytes": 0, - "Lines": 123, - "Code": 123, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15193, - "CodeBytes": 0, - "Lines": 397, - "Code": 298, - "Comment": 30, - "Blank": 69, - "Complexity": 58, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1448853, - "CodeBytes": 0, - "Lines": 35290, - "Code": 31229, - "Comment": 1832, - "Blank": 2229, - "Complexity": 2887, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 17264, - "CodeBytes": 0, - "Lines": 448, - "Code": 371, - "Comment": 44, - "Blank": 33, - "Complexity": 26, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1096, - "CodeBytes": 0, - "Lines": 22, - "Code": 17, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 623310, - "CodeBytes": 0, - "Lines": 11179, - "Code": 9338, - "Comment": 0, - "Blank": 1841, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1379124.8144163424, - "estimatedScheduleMonths_low": 16.094451458451957, - "estimatedPeople_low": 8.347893530441686, - "estimatedCost_high": 4297955.261013661, - "estimatedScheduleMonths_high": 16.094451458451957, - "estimatedPeople_high": 8.347893530441686, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTerraform 88 4167 461 825 2881 287\n(ULOC) 1743\n-------------------------------------------------------------------------------\nYAML 38 1624 111 49 1464 0\n(ULOC) 347\n-------------------------------------------------------------------------------\nMarkdown 22 348 121 0 227 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nTypeScript 5 225 15 0 210 14\n(ULOC) 150\n-------------------------------------------------------------------------------\nBASH 4 79 16 11 52 10\n(ULOC) 37\n-------------------------------------------------------------------------------\nJSON 4 123 0 0 123 0\n(ULOC) 114\n-------------------------------------------------------------------------------\nShell 4 397 69 30 298 58\n(ULOC) 249\n-------------------------------------------------------------------------------\nJavaScript 3 35290 2229 1832 31229 2887\n(ULOC) 16558\n-------------------------------------------------------------------------------\nPython 2 448 33 44 371 26\n(ULOC) 320\n-------------------------------------------------------------------------------\nLicense 1 22 5 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nPlain Text 1 11179 1841 0 9338 0\n(ULOC) 290\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 173 53911 4903 2791 46217 3282\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 19899\nDRYness % 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,512,297\nEstimated Schedule Effort (organic) 16.09 months\nEstimated People Required (organic) 8.35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2299769 bytes, 2.300 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/ab2d-bcda-dpc-platform", + "owner": "CMSgov", + "name": "ab2d-bcda-dpc-platform", + "description": "Platform team code for supporting AB2D, BCDA, and DPC.", + "commits_count": 149, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 161, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 140, + "closed_pull_requests_count": 15, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 12, + "total_project_lines": 52104, + "average_project_lines": 324, + "total_project_comment_lines": 2143, + "average_project_comment_lines": 13, + "total_project_blank_lines": 4788, + "average_blank_lines": 30, + "commits_by_month": { + "2025/1": 4, + "2024/12": 2, + "2024/11": 10, + "2024/10": 9, + "2024/9": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-31T00:00:00.000Z", + 1 + ], + [ + "2024-08-06T00:00:00.000Z", + 1 + ], + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-19T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-09-16T00:00:00.000Z", + 1 + ], + [ + "2024-09-17T00:00:00.000Z", + 1 + ], + [ + "2024-10-29T00:00:00.000Z", + 1 + ], + [ + "2024-11-14T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-04-04T12:40:46Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:33Z", + "repo": { + "name": "github.com/CMSgov/ab2d-bcda-dpc-platform", + "commit": "0ee92fe77855e8ea026995df58dd37b058d356d8" }, - "predominant_langs": { - "HCL": 114689, - "Shell": 17404, - "Python": 17264, - "TypeScript": 6238, - "JavaScript": 172 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@actions/core", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "@aws-sdk/client-ssm", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:38:24.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.1616438356, - "2025-01-01T18:38:24.000" - ], - [ - "@vercel/ncc", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "aws-sdk-client-mock", - 1.304109589, - "2025-01-01T18:38:24.000" - ], - [ - "boto3", - 0.4904109589, - "2024-06-18T11:33:23.000" - ], - [ - "botocore", - 0.4904109589, - "2024-06-18T11:33:23.000" - ], - [ - "certifi", - 0.5369863014, - "2024-06-18T11:33:23.000" - ], - [ - "charset-normalizer", - 0.0, - "2024-06-18T11:33:23.000" - ], - [ - "docopt", - 0.0, - "2024-06-18T11:33:23.000" - ], - [ - "eslint", - 0.2410958904, - "2025-01-01T18:38:24.000" - ], - [ - "eslint-plugin-github", - 1.3863013699, - "2025-01-01T18:38:24.000" - ], - [ - "eslint-plugin-jest", - 0.8410958904, - "2025-01-01T18:38:24.000" - ], - [ - "idna", - 0.0, - "2024-06-18T11:33:23.000" - ], - [ - "jest", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "jmespath", - 0.0, - "2024-06-18T11:33:23.000" - ], - [ - "js-yaml", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "pipreqs", - 0.8493150685, - "2024-06-18T11:33:23.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "python-dateutil", - 2.6328767123, - "2024-06-18T11:33:23.000" - ], - [ - "requests", - 1.0219178082, - "2024-06-18T11:33:23.000" - ], - [ - "s3transfer", - 0.2493150685, - "2024-06-18T11:33:23.000" - ], - [ - "six", - 0.0, - "2024-06-18T11:33:23.000" - ], - [ - "ts-jest", - 0.0, - "2025-01-01T18:38:24.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T18:38:24.000" - ], - [ - "urllib3", - 0.6657534247, - "2024-06-18T11:33:23.000" - ], - [ - "yarg", - 0.0, - "2024-06-18T11:33:23.000" - ] + "score": 6.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 5, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 8, + "reason": "25 out of 29 merged PRs checked by a CI test -- score normalized to 8", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 28/29 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 11 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "22 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Terraform", + "Bytes": 111071, + "CodeBytes": 0, + "Lines": 4167, + "Code": 2881, + "Comment": 825, + "Blank": 461, + "Complexity": 287, + "Count": 88, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 54297, + "CodeBytes": 0, + "Lines": 1624, + "Code": 1464, + "Comment": 49, + "Blank": 111, + "Complexity": 0, + "Count": 38, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 14778, + "CodeBytes": 0, + "Lines": 348, + "Code": 227, + "Comment": 0, + "Blank": 121, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 6238, + "CodeBytes": 0, + "Lines": 225, + "Code": 210, + "Comment": 0, + "Blank": 15, + "Complexity": 14, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2211, + "CodeBytes": 0, + "Lines": 79, + "Code": 52, + "Comment": 11, + "Blank": 16, + "Complexity": 10, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5076, + "CodeBytes": 0, + "Lines": 123, + "Code": 123, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 15193, + "CodeBytes": 0, + "Lines": 397, + "Code": 298, + "Comment": 30, + "Blank": 69, + "Complexity": 58, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1448853, + "CodeBytes": 0, + "Lines": 35290, + "Code": 31229, + "Comment": 1832, + "Blank": 2229, + "Complexity": 2887, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 17264, + "CodeBytes": 0, + "Lines": 448, + "Code": 371, + "Comment": 44, + "Blank": 33, + "Complexity": 26, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1096, + "CodeBytes": 0, + "Lines": 22, + "Code": 17, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 623310, + "CodeBytes": 0, + "Lines": 11179, + "Code": 9338, + "Comment": 0, + "Blank": 1841, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1379124.8144163424, + "estimatedScheduleMonths_low": 16.094451458451957, + "estimatedPeople_low": 8.347893530441686, + "estimatedCost_high": 4297955.261013661, + "estimatedScheduleMonths_high": 16.094451458451957, + "estimatedPeople_high": 8.347893530441686, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTerraform 88 4167 461 825 2881 287\n(ULOC) 1743\n-------------------------------------------------------------------------------\nYAML 38 1624 111 49 1464 0\n(ULOC) 347\n-------------------------------------------------------------------------------\nMarkdown 22 348 121 0 227 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nTypeScript 5 225 15 0 210 14\n(ULOC) 150\n-------------------------------------------------------------------------------\nBASH 4 79 16 11 52 10\n(ULOC) 37\n-------------------------------------------------------------------------------\nJSON 4 123 0 0 123 0\n(ULOC) 114\n-------------------------------------------------------------------------------\nShell 4 397 69 30 298 58\n(ULOC) 249\n-------------------------------------------------------------------------------\nJavaScript 3 35290 2229 1832 31229 2887\n(ULOC) 16558\n-------------------------------------------------------------------------------\nPython 2 448 33 44 371 26\n(ULOC) 320\n-------------------------------------------------------------------------------\nLicense 1 22 5 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nPlain Text 1 11179 1841 0 9338 0\n(ULOC) 290\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 173 53911 4903 2791 46217 3282\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 19899\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,512,297\nEstimated Schedule Effort (organic) 16.09 months\nEstimated People Required (organic) 8.35\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2299769 bytes, 2.300 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HCL": 114689, + "Shell": 17404, + "Python": 17264, + "TypeScript": 6238, + "JavaScript": 172 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@actions/core", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "@aws-sdk/client-ssm", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:38:24.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.1616438356, + "2025-01-01T18:38:24.000" + ], + [ + "@vercel/ncc", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "aws-sdk-client-mock", + 1.304109589, + "2025-01-01T18:38:24.000" + ], + [ + "boto3", + 0.4904109589, + "2024-06-18T11:33:23.000" + ], + [ + "botocore", + 0.4904109589, + "2024-06-18T11:33:23.000" + ], + [ + "certifi", + 0.5369863014, + "2024-06-18T11:33:23.000" + ], + [ + "charset-normalizer", + 0, + "2024-06-18T11:33:23.000" + ], + [ + "docopt", + 0, + "2024-06-18T11:33:23.000" + ], + [ + "eslint", + 0.2410958904, + "2025-01-01T18:38:24.000" + ], + [ + "eslint-plugin-github", + 1.3863013699, + "2025-01-01T18:38:24.000" + ], + [ + "eslint-plugin-jest", + 0.8410958904, + "2025-01-01T18:38:24.000" + ], + [ + "idna", + 0, + "2024-06-18T11:33:23.000" + ], + [ + "jest", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "jmespath", + 0, + "2024-06-18T11:33:23.000" + ], + [ + "js-yaml", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "pipreqs", + 0.8493150685, + "2024-06-18T11:33:23.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "python-dateutil", + 2.6328767123, + "2024-06-18T11:33:23.000" + ], + [ + "requests", + 1.0219178082, + "2024-06-18T11:33:23.000" + ], + [ + "s3transfer", + 0.2493150685, + "2024-06-18T11:33:23.000" + ], + [ + "six", + 0, + "2024-06-18T11:33:23.000" + ], + [ + "ts-jest", + 0, + "2025-01-01T18:38:24.000" + ], + [ + "typescript", + -0.1095890411, + "2025-01-01T18:38:24.000" + ], + [ + "urllib3", + 0.6657534247, + "2024-06-18T11:33:23.000" + ], + [ + "yarg", + 0, + "2024-06-18T11:33:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/ab2d-contracts/ab2d-contracts_data.json b/app/site/_data/CMSgov/ab2d-contracts/ab2d-contracts_data.json index 2e3e72844a..ecc50706fc 100644 --- a/app/site/_data/CMSgov/ab2d-contracts/ab2d-contracts_data.json +++ b/app/site/_data/CMSgov/ab2d-contracts/ab2d-contracts_data.json @@ -1,423 +1,423 @@ { - "url": "https://github.com/CMSgov/ab2d-contracts", - "owner": "CMSgov", - "name": "ab2d-contracts", - "description": null, - "commits_count": 79, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 106, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 24, - "closed_pull_requests_count": 81, - "forks_count": 1, - "stargazers_count": 3, - "watchers_count": 8, - "total_project_lines": 3097, - "average_project_lines": 44, - "total_project_comment_lines": 159, - "average_project_comment_lines": 2, - "total_project_blank_lines": 539, - "average_blank_lines": 8, - "commits_by_month": { - "2024/11": 1, - "2024/9": 1, - "2024/8": 1, - "2024/7": 1, - "2024/6": 2, - "2024/5": 1, - "2023/9": 1, - "2023/8": 1, - "2023/7": 1, - "2023/6": 1, - "2023/5": 8, - "2023/4": 1, - "2023/3": 5, - "2023/2": 5 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-contracts", + "owner": "CMSgov", + "name": "ab2d-contracts", + "description": null, + "commits_count": 79, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 106, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 24, + "closed_pull_requests_count": 81, + "forks_count": 1, + "stargazers_count": 3, + "watchers_count": 8, + "total_project_lines": 3097, + "average_project_lines": 44, + "total_project_comment_lines": 159, + "average_project_comment_lines": 2, + "total_project_blank_lines": 539, + "average_blank_lines": 8, + "commits_by_month": { + "2024/11": 1, + "2024/9": 1, + "2024/8": 1, + "2024/7": 1, + "2024/6": 2, + "2024/5": 1, + "2023/9": 1, + "2023/8": 1, + "2023/7": 1, + "2023/6": 1, + "2023/5": 8, + "2023/4": 1, + "2023/3": 5, + "2023/2": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-28T17:22:35Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:07Z", - "repo": { - "name": "github.com/CMSgov/ab2d-contracts", - "commit": "cae3199cc4b44acaa91402c3dd2c1eaf0b3ebf0e" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 18 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 17/18 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 86863, - "CodeBytes": 0, - "Lines": 2368, - "Code": 1877, - "Comment": 87, - "Blank": 404, - "Complexity": 69, - "Count": 50, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2511, - "CodeBytes": 0, - "Lines": 77, - "Code": 62, - "Comment": 12, - "Blank": 3, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 3566, - "CodeBytes": 0, - "Lines": 85, - "Code": 54, - "Comment": 0, - "Blank": 31, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 2361, - "CodeBytes": 0, - "Lines": 43, - "Code": 38, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 9509, - "CodeBytes": 0, - "Lines": 260, - "Code": 186, - "Comment": 24, - "Blank": 50, - "Complexity": 18, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 4435, - "CodeBytes": 0, - "Lines": 101, - "Code": 80, - "Comment": 10, - "Blank": 11, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 4998, - "CodeBytes": 0, - "Lines": 118, - "Code": 63, - "Comment": 26, - "Blank": 29, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1107, - "CodeBytes": 0, - "Lines": 27, - "Code": 25, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 236, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 61743.81984409776, - "estimatedScheduleMonths_low": 4.943702743384202, - "estimatedPeople_low": 1.216720016054081, - "estimatedCost_high": 192420.7095398595, - "estimatedScheduleMonths_high": 4.943702743384202, - "estimatedPeople_high": 1.216720016054081, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 50 2368 404 87 1877 69\n(ULOC) 1162\n-------------------------------------------------------------------------------\nYAML 4 77 3 12 62 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nMarkdown 3 85 31 0 54 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nSQL 3 43 5 0 38 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nShell 3 260 50 24 186 18\n(ULOC) 141\n-------------------------------------------------------------------------------\nGradle 2 101 11 10 80 0\n(ULOC) 83\n-------------------------------------------------------------------------------\nProperties File 2 118 29 26 63 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nXML 2 27 2 0 25 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nDockerfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 71 3097 539 159 2399 87\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1639\nDRYness % 0.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $67,705\nEstimated Schedule Effort (organic) 4.94 months\nEstimated People Required (organic) 1.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 115968 bytes, 0.116 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-28T17:22:35Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:07Z", + "repo": { + "name": "github.com/CMSgov/ab2d-contracts", + "commit": "cae3199cc4b44acaa91402c3dd2c1eaf0b3ebf0e" }, - "predominant_langs": { - "Java": 86863, - "Shell": 9509, - "Dockerfile": 236 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 18 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 17/18 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 86863, + "CodeBytes": 0, + "Lines": 2368, + "Code": 1877, + "Comment": 87, + "Blank": 404, + "Complexity": 69, + "Count": 50, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2511, + "CodeBytes": 0, + "Lines": 77, + "Code": 62, + "Comment": 12, + "Blank": 3, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 3566, + "CodeBytes": 0, + "Lines": 85, + "Code": 54, + "Comment": 0, + "Blank": 31, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 2361, + "CodeBytes": 0, + "Lines": 43, + "Code": 38, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 9509, + "CodeBytes": 0, + "Lines": 260, + "Code": 186, + "Comment": 24, + "Blank": 50, + "Complexity": 18, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 4435, + "CodeBytes": 0, + "Lines": 101, + "Code": 80, + "Comment": 10, + "Blank": 11, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 4998, + "CodeBytes": 0, + "Lines": 118, + "Code": 63, + "Comment": 26, + "Blank": 29, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1107, + "CodeBytes": 0, + "Lines": 27, + "Code": 25, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 236, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 61743.81984409776, + "estimatedScheduleMonths_low": 4.943702743384202, + "estimatedPeople_low": 1.216720016054081, + "estimatedCost_high": 192420.7095398595, + "estimatedScheduleMonths_high": 4.943702743384202, + "estimatedPeople_high": 1.216720016054081, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 50 2368 404 87 1877 69\n(ULOC) 1162\n-------------------------------------------------------------------------------\nYAML 4 77 3 12 62 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nMarkdown 3 85 31 0 54 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nSQL 3 43 5 0 38 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nShell 3 260 50 24 186 18\n(ULOC) 141\n-------------------------------------------------------------------------------\nGradle 2 101 11 10 80 0\n(ULOC) 83\n-------------------------------------------------------------------------------\nProperties File 2 118 29 26 63 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nXML 2 27 2 0 25 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nDockerfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 71 3097 539 159 2399 87\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1639\nDRYness % 0.53\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $67,705\nEstimated Schedule Effort (organic) 4.94 months\nEstimated People Required (organic) 1.22\n───────────────────────────────────────────────────────────────────────────────\nProcessed 115968 bytes, 0.116 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 86863, + "Shell": 9509, + "Dockerfile": 236 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-events/ab2d-events_data.json b/app/site/_data/CMSgov/ab2d-events/ab2d-events_data.json index ed34c3ea7c..8849a1287b 100644 --- a/app/site/_data/CMSgov/ab2d-events/ab2d-events_data.json +++ b/app/site/_data/CMSgov/ab2d-events/ab2d-events_data.json @@ -1,427 +1,427 @@ { - "url": "https://github.com/CMSgov/ab2d-events", - "owner": "CMSgov", - "name": "ab2d-events", - "description": null, - "commits_count": 215, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 199, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 49, - "closed_pull_requests_count": 148, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 8, - "total_project_lines": 4374, - "average_project_lines": 69, - "total_project_comment_lines": 240, - "average_project_comment_lines": 4, - "total_project_blank_lines": 704, - "average_blank_lines": 11, - "commits_by_month": { - "2024/12": 1, - "2024/11": 1, - "2024/9": 1, - "2024/8": 4, - "2024/6": 2, - "2024/5": 2, - "2024/4": 1, - "2024/3": 1, - "2023/9": 1, - "2023/8": 1, - "2023/7": 1, - "2023/6": 3, - "2023/5": 9, - "2023/4": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-07T00:00:00.000Z", - 1 - ], - [ - "2024-08-08T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-events", + "owner": "CMSgov", + "name": "ab2d-events", + "description": null, + "commits_count": 215, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 199, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 49, + "closed_pull_requests_count": 148, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 8, + "total_project_lines": 4374, + "average_project_lines": 69, + "total_project_comment_lines": 240, + "average_project_comment_lines": 4, + "total_project_blank_lines": 704, + "average_blank_lines": 11, + "commits_by_month": { + "2024/12": 1, + "2024/11": 1, + "2024/9": 1, + "2024/8": 4, + "2024/6": 2, + "2024/5": 2, + "2024/4": 1, + "2024/3": 1, + "2023/9": 1, + "2023/8": 1, + "2023/7": 1, + "2023/6": 3, + "2023/5": 9, + "2023/4": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-07T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-28T17:24:10Z", - "ossf_scorecard": { - "date": "2025-01-11T01:02:38Z", - "repo": { - "name": "github.com/CMSgov/ab2d-events", - "commit": "6d46af5532949e567ee00d4f283f4f2a411f65c5" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 5, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "10 out of 23 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 1, - "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 127575, - "CodeBytes": 0, - "Lines": 3125, - "Code": 2512, - "Comment": 114, - "Blank": 499, - "Complexity": 111, - "Count": 36, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 10989, - "CodeBytes": 0, - "Lines": 379, - "Code": 316, - "Comment": 12, - "Blank": 51, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10687, - "CodeBytes": 0, - "Lines": 297, - "Code": 202, - "Comment": 34, - "Blank": 61, - "Complexity": 18, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4088, - "CodeBytes": 0, - "Lines": 92, - "Code": 63, - "Comment": 0, - "Blank": 29, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 7733, - "CodeBytes": 0, - "Lines": 140, - "Code": 126, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 4777, - "CodeBytes": 0, - "Lines": 104, - "Code": 85, - "Comment": 10, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 2071, - "CodeBytes": 0, - "Lines": 60, - "Code": 41, - "Comment": 3, - "Blank": 16, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 197, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 6159, - "CodeBytes": 0, - "Lines": 159, - "Code": 71, - "Comment": 67, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 89871.20395322963, - "estimatedScheduleMonths_low": 5.70167730893516, - "estimatedPeople_low": 1.535562272564331, - "estimatedCost_high": 280077.92319209676, - "estimatedScheduleMonths_high": 5.70167730893516, - "estimatedPeople_high": 1.535562272564331, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 36 3125 499 114 2512 111\n(ULOC) 1450\n-------------------------------------------------------------------------------\nYAML 9 379 51 12 316 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nShell 5 297 61 34 202 18\n(ULOC) 149\n-------------------------------------------------------------------------------\nMarkdown 3 92 29 0 63 0\n(ULOC) 61\n-------------------------------------------------------------------------------\nSQL 3 140 14 0 126 0\n(ULOC) 85\n-------------------------------------------------------------------------------\nGradle 2 104 9 10 85 0\n(ULOC) 89\n-------------------------------------------------------------------------------\nProperties File 2 60 16 3 41 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nDockerfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nXML 1 159 21 67 71 0\n(ULOC) 124\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 63 4374 704 240 3430 129\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 2144\nDRYness % 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $98,549\nEstimated Schedule Effort (organic) 5.70 months\nEstimated People Required (organic) 1.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 174658 bytes, 0.175 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-08T00:00:00.000Z", + 1 + ], + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-28T17:24:10Z", + "ossf_scorecard": { + "date": "2025-01-11T01:02:38Z", + "repo": { + "name": "github.com/CMSgov/ab2d-events", + "commit": "6d46af5532949e567ee00d4f283f4f2a411f65c5" }, - "predominant_langs": { - "Java": 127575, - "Shell": 10687, - "Dockerfile": 197 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 5, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "10 out of 23 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 1, + "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 127575, + "CodeBytes": 0, + "Lines": 3125, + "Code": 2512, + "Comment": 114, + "Blank": 499, + "Complexity": 111, + "Count": 36, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 10989, + "CodeBytes": 0, + "Lines": 379, + "Code": 316, + "Comment": 12, + "Blank": 51, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10687, + "CodeBytes": 0, + "Lines": 297, + "Code": 202, + "Comment": 34, + "Blank": 61, + "Complexity": 18, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4088, + "CodeBytes": 0, + "Lines": 92, + "Code": 63, + "Comment": 0, + "Blank": 29, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 7733, + "CodeBytes": 0, + "Lines": 140, + "Code": 126, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 4777, + "CodeBytes": 0, + "Lines": 104, + "Code": 85, + "Comment": 10, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 2071, + "CodeBytes": 0, + "Lines": 60, + "Code": 41, + "Comment": 3, + "Blank": 16, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 197, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 6159, + "CodeBytes": 0, + "Lines": 159, + "Code": 71, + "Comment": 67, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 89871.20395322963, + "estimatedScheduleMonths_low": 5.70167730893516, + "estimatedPeople_low": 1.535562272564331, + "estimatedCost_high": 280077.92319209676, + "estimatedScheduleMonths_high": 5.70167730893516, + "estimatedPeople_high": 1.535562272564331, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 36 3125 499 114 2512 111\n(ULOC) 1450\n-------------------------------------------------------------------------------\nYAML 9 379 51 12 316 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nShell 5 297 61 34 202 18\n(ULOC) 149\n-------------------------------------------------------------------------------\nMarkdown 3 92 29 0 63 0\n(ULOC) 61\n-------------------------------------------------------------------------------\nSQL 3 140 14 0 126 0\n(ULOC) 85\n-------------------------------------------------------------------------------\nGradle 2 104 9 10 85 0\n(ULOC) 89\n-------------------------------------------------------------------------------\nProperties File 2 60 16 3 41 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nDockerfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nXML 1 159 21 67 71 0\n(ULOC) 124\n───────────────────────────────────────────────────────────────────────────────\nTotal 63 4374 704 240 3430 129\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 2144\nDRYness % 0.49\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $98,549\nEstimated Schedule Effort (organic) 5.70 months\nEstimated People Required (organic) 1.54\n───────────────────────────────────────────────────────────────────────────────\nProcessed 174658 bytes, 0.175 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 127575, + "Shell": 10687, + "Dockerfile": 197 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-gradle/ab2d-gradle_data.json b/app/site/_data/CMSgov/ab2d-gradle/ab2d-gradle_data.json index 9d5b623626..724f3090d6 100644 --- a/app/site/_data/CMSgov/ab2d-gradle/ab2d-gradle_data.json +++ b/app/site/_data/CMSgov/ab2d-gradle/ab2d-gradle_data.json @@ -1,315 +1,315 @@ { - "url": "https://github.com/CMSgov/ab2d-gradle", - "owner": "CMSgov", - "name": "ab2d-gradle", - "description": null, - "commits_count": 22, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 14, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 5, - "closed_pull_requests_count": 9, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 9, - "total_project_lines": 421, - "average_project_lines": 60, - "total_project_comment_lines": 12, - "average_project_comment_lines": 2, - "total_project_blank_lines": 74, - "average_blank_lines": 11, - "commits_by_month": { - "2024/6": 2, - "2023/8": 2, - "2023/7": 1, - "2023/6": 1, - "2023/5": 4, - "2023/3": 2, - "2023/1": 3, - "2022/12": 1, - "2022/11": 1, - "2022/5": 3, - "2022/3": 2 + "url": "https://github.com/CMSgov/ab2d-gradle", + "owner": "CMSgov", + "name": "ab2d-gradle", + "description": null, + "commits_count": 22, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 14, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 5, + "closed_pull_requests_count": 9, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 9, + "total_project_lines": 421, + "average_project_lines": 60, + "total_project_comment_lines": 12, + "average_project_comment_lines": 2, + "total_project_blank_lines": 74, + "average_blank_lines": 11, + "commits_by_month": { + "2024/6": 2, + "2023/8": 2, + "2023/7": 1, + "2023/6": 1, + "2023/5": 4, + "2023/3": 2, + "2023/1": 3, + "2022/12": 1, + "2022/11": 1, + "2022/5": 3, + "2022/3": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-28T17:16:56Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:18Z", + "repo": { + "name": "github.com/CMSgov/ab2d-gradle", + "commit": "3831db3c51de8537fd3968f0a7fcd0bc8fde5838" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-28T17:16:56Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:18Z", - "repo": { - "name": "github.com/CMSgov/ab2d-gradle", - "commit": "3831db3c51de8537fd3968f0a7fcd0bc8fde5838" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 5 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 3, - "reason": "Found 5/15 approved changesets -- score normalized to 3", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 3300, - "CodeBytes": 0, - "Lines": 69, - "Code": 54, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 2188, - "CodeBytes": 0, - "Lines": 83, - "Code": 71, - "Comment": 2, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Groovy", - "Bytes": 9576, - "CodeBytes": 0, - "Lines": 251, - "Code": 198, - "Comment": 6, - "Blank": 47, - "Complexity": 22, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 704, - "CodeBytes": 0, - "Lines": 18, - "Code": 12, - "Comment": 4, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7813.736850827548, - "estimatedScheduleMonths_low": 2.253788499827446, - "estimatedPeople_low": 0.3377498233661987, - "estimatedCost_high": 24351.01671374337, - "estimatedScheduleMonths_high": 2.253788499827446, - "estimatedPeople_high": 0.3377498233661987, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 3 69 15 0 54 0\n(ULOC) 49\n-------------------------------------------------------------------------------\nGradle 2 83 10 2 71 0\n(ULOC) 57\n-------------------------------------------------------------------------------\nGroovy 1 251 47 6 198 22\n(ULOC) 162\n-------------------------------------------------------------------------------\nYAML 1 18 2 4 12 0\n(ULOC) 14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 7 421 74 12 335 22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 267\nDRYness % 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,568\nEstimated Schedule Effort (organic) 2.25 months\nEstimated People Required (organic) 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 15768 bytes, 0.016 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Groovy": 9576 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 5 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 3, + "reason": "Found 5/15 approved changesets -- score normalized to 3", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 3300, + "CodeBytes": 0, + "Lines": 69, + "Code": 54, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 2188, + "CodeBytes": 0, + "Lines": 83, + "Code": 71, + "Comment": 2, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Groovy", + "Bytes": 9576, + "CodeBytes": 0, + "Lines": 251, + "Code": 198, + "Comment": 6, + "Blank": 47, + "Complexity": 22, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 704, + "CodeBytes": 0, + "Lines": 18, + "Code": 12, + "Comment": 4, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7813.736850827548, + "estimatedScheduleMonths_low": 2.253788499827446, + "estimatedPeople_low": 0.3377498233661987, + "estimatedCost_high": 24351.01671374337, + "estimatedScheduleMonths_high": 2.253788499827446, + "estimatedPeople_high": 0.3377498233661987, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 3 69 15 0 54 0\n(ULOC) 49\n-------------------------------------------------------------------------------\nGradle 2 83 10 2 71 0\n(ULOC) 57\n-------------------------------------------------------------------------------\nGroovy 1 251 47 6 198 22\n(ULOC) 162\n-------------------------------------------------------------------------------\nYAML 1 18 2 4 12 0\n(ULOC) 14\n───────────────────────────────────────────────────────────────────────────────\nTotal 7 421 74 12 335 22\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 267\nDRYness % 0.63\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,568\nEstimated Schedule Effort (organic) 2.25 months\nEstimated People Required (organic) 0.34\n───────────────────────────────────────────────────────────────────────────────\nProcessed 15768 bytes, 0.016 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Groovy": 9576 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-lambdas/ab2d-lambdas_data.json b/app/site/_data/CMSgov/ab2d-lambdas/ab2d-lambdas_data.json index 56470239d7..ec7afb93d6 100644 --- a/app/site/_data/CMSgov/ab2d-lambdas/ab2d-lambdas_data.json +++ b/app/site/_data/CMSgov/ab2d-lambdas/ab2d-lambdas_data.json @@ -1,470 +1,470 @@ { - "url": "https://github.com/CMSgov/ab2d-lambdas", - "owner": "CMSgov", - "name": "ab2d-lambdas", - "description": null, - "commits_count": 171, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 119, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 76, - "closed_pull_requests_count": 41, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 9, - "total_project_lines": 6382, - "average_project_lines": 45, - "total_project_comment_lines": 331, - "average_project_comment_lines": 2, - "total_project_blank_lines": 1010, - "average_blank_lines": 7, - "commits_by_month": { - "2024/11": 4, - "2024/10": 1, - "2024/9": 1, - "2024/8": 1, - "2024/6": 5, - "2024/5": 2, - "2024/4": 4, - "2024/3": 12 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-10-07T00:00:00.000Z", - 1 - ], - [ - "2024-11-08T00:00:00.000Z", - 1 - ], - [ - "2024-11-15T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-lambdas", + "owner": "CMSgov", + "name": "ab2d-lambdas", + "description": null, + "commits_count": 171, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 119, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 76, + "closed_pull_requests_count": 41, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 9, + "total_project_lines": 6382, + "average_project_lines": 45, + "total_project_comment_lines": 331, + "average_project_comment_lines": 2, + "total_project_blank_lines": 1010, + "average_blank_lines": 7, + "commits_by_month": { + "2024/11": 4, + "2024/10": 1, + "2024/9": 1, + "2024/8": 1, + "2024/6": 5, + "2024/5": 2, + "2024/4": 4, + "2024/3": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-26T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-28T17:35:35Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:30Z", - "repo": { - "name": "github.com/CMSgov/ab2d-lambdas", - "commit": "6a799d2d1e85aedfb0465d232850a75ef90a5181" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.4, - "checks": [ - { - "details": null, - "score": 8, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 7, - "reason": "23 out of 30 merged PRs checked by a CI test -- score normalized to 7", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 11 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 3, - "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 140320, - "CodeBytes": 0, - "Lines": 3718, - "Code": 2989, - "Comment": 126, - "Blank": 603, - "Complexity": 99, - "Count": 61, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 1250, - "CodeBytes": 0, - "Lines": 29, - "Code": 27, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 14813, - "CodeBytes": 0, - "Lines": 455, - "Code": 410, - "Comment": 13, - "Blank": 32, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 26110, - "CodeBytes": 0, - "Lines": 866, - "Code": 684, - "Comment": 23, - "Blank": 159, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 9884, - "CodeBytes": 0, - "Lines": 227, - "Code": 153, - "Comment": 0, - "Blank": 74, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 9237, - "CodeBytes": 0, - "Lines": 254, - "Code": 164, - "Comment": 67, - "Blank": 23, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 12077, - "CodeBytes": 0, - "Lines": 359, - "Code": 274, - "Comment": 52, - "Blank": 33, - "Complexity": 7, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 8142, - "CodeBytes": 0, - "Lines": 266, - "Code": 177, - "Comment": 47, - "Blank": 42, - "Complexity": 24, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 946, - "CodeBytes": 0, - "Lines": 31, - "Code": 23, - "Comment": 3, - "Blank": 5, - "Complexity": 3, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 205, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 2763, - "CodeBytes": 0, - "Lines": 89, - "Code": 68, - "Comment": 0, - "Blank": 21, - "Complexity": 18, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 790, - "CodeBytes": 0, - "Lines": 12, - "Code": 12, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 133471.64936832088, - "estimatedScheduleMonths_low": 6.626354283609346, - "estimatedPeople_low": 1.9622931292245935, - "estimatedCost_high": 415955.95380648796, - "estimatedScheduleMonths_high": 6.626354283609346, - "estimatedPeople_high": 1.9622931292245935, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 61 3718 603 126 2989 99\n(ULOC) 1890\n-------------------------------------------------------------------------------\nProperties File 15 29 2 0 27 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nYAML 14 455 32 13 410 0\n(ULOC) 184\n-------------------------------------------------------------------------------\nGradle 12 866 159 23 684 0\n(ULOC) 280\n-------------------------------------------------------------------------------\nMarkdown 11 227 74 0 153 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nXML 8 254 23 67 164 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nTerraform 6 359 33 52 274 7\n(ULOC) 208\n-------------------------------------------------------------------------------\nShell 5 266 42 47 177 24\n(ULOC) 188\n-------------------------------------------------------------------------------\nSQL 3 31 5 3 23 3\n(ULOC) 25\n-------------------------------------------------------------------------------\nPlain Text 2 11 0 0 11 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nBatch 1 89 21 0 68 18\n(ULOC) 57\n-------------------------------------------------------------------------------\nJSON 1 12 0 0 12 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 140 6326 996 331 4999 151\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3134\nDRYness % 0.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $146,360\nEstimated Schedule Effort (organic) 6.63 months\nEstimated People Required (organic) 1.96\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 226919 bytes, 0.227 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-10-07T00:00:00.000Z", + 1 + ], + [ + "2024-11-08T00:00:00.000Z", + 1 + ], + [ + "2024-11-15T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-28T17:35:35Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:30Z", + "repo": { + "name": "github.com/CMSgov/ab2d-lambdas", + "commit": "6a799d2d1e85aedfb0465d232850a75ef90a5181" }, - "predominant_langs": { - "Java": 140320, - "HCL": 12077, - "Shell": 2368 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 5.4, + "checks": [ + { + "details": null, + "score": 8, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 7, + "reason": "23 out of 30 merged PRs checked by a CI test -- score normalized to 7", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 11 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 3, + "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 140320, + "CodeBytes": 0, + "Lines": 3718, + "Code": 2989, + "Comment": 126, + "Blank": 603, + "Complexity": 99, + "Count": 61, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 1250, + "CodeBytes": 0, + "Lines": 29, + "Code": 27, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 14813, + "CodeBytes": 0, + "Lines": 455, + "Code": 410, + "Comment": 13, + "Blank": 32, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 26110, + "CodeBytes": 0, + "Lines": 866, + "Code": 684, + "Comment": 23, + "Blank": 159, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 9884, + "CodeBytes": 0, + "Lines": 227, + "Code": 153, + "Comment": 0, + "Blank": 74, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 9237, + "CodeBytes": 0, + "Lines": 254, + "Code": 164, + "Comment": 67, + "Blank": 23, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 12077, + "CodeBytes": 0, + "Lines": 359, + "Code": 274, + "Comment": 52, + "Blank": 33, + "Complexity": 7, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 8142, + "CodeBytes": 0, + "Lines": 266, + "Code": 177, + "Comment": 47, + "Blank": 42, + "Complexity": 24, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 946, + "CodeBytes": 0, + "Lines": 31, + "Code": 23, + "Comment": 3, + "Blank": 5, + "Complexity": 3, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 205, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 2763, + "CodeBytes": 0, + "Lines": 89, + "Code": 68, + "Comment": 0, + "Blank": 21, + "Complexity": 18, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 790, + "CodeBytes": 0, + "Lines": 12, + "Code": 12, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 133471.64936832088, + "estimatedScheduleMonths_low": 6.626354283609346, + "estimatedPeople_low": 1.9622931292245935, + "estimatedCost_high": 415955.95380648796, + "estimatedScheduleMonths_high": 6.626354283609346, + "estimatedPeople_high": 1.9622931292245935, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 61 3718 603 126 2989 99\n(ULOC) 1890\n-------------------------------------------------------------------------------\nProperties File 15 29 2 0 27 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nYAML 14 455 32 13 410 0\n(ULOC) 184\n-------------------------------------------------------------------------------\nGradle 12 866 159 23 684 0\n(ULOC) 280\n-------------------------------------------------------------------------------\nMarkdown 11 227 74 0 153 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nXML 8 254 23 67 164 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nTerraform 6 359 33 52 274 7\n(ULOC) 208\n-------------------------------------------------------------------------------\nShell 5 266 42 47 177 24\n(ULOC) 188\n-------------------------------------------------------------------------------\nSQL 3 31 5 3 23 3\n(ULOC) 25\n-------------------------------------------------------------------------------\nPlain Text 2 11 0 0 11 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nBatch 1 89 21 0 68 18\n(ULOC) 57\n-------------------------------------------------------------------------------\nJSON 1 12 0 0 12 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 140 6326 996 331 4999 151\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3134\nDRYness % 0.50\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $146,360\nEstimated Schedule Effort (organic) 6.63 months\nEstimated People Required (organic) 1.96\n───────────────────────────────────────────────────────────────────────────────\nProcessed 226919 bytes, 0.227 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 140320, + "HCL": 12077, + "Shell": 2368 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-pdp-documentation/ab2d-pdp-documentation_data.json b/app/site/_data/CMSgov/ab2d-pdp-documentation/ab2d-pdp-documentation_data.json index ecea43dcd9..7823e90b95 100644 --- a/app/site/_data/CMSgov/ab2d-pdp-documentation/ab2d-pdp-documentation_data.json +++ b/app/site/_data/CMSgov/ab2d-pdp-documentation/ab2d-pdp-documentation_data.json @@ -1,308 +1,308 @@ { - "url": "https://github.com/CMSgov/ab2d-pdp-documentation", - "owner": "CMSgov", - "name": "ab2d-pdp-documentation", - "description": "AB2D API documentation for PDPs", - "commits_count": 35, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 29, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 21, - "closed_pull_requests_count": 6, - "forks_count": 1, - "stargazers_count": 3, - "watchers_count": 14, - "total_project_lines": 2934, - "average_project_lines": 293, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 543, - "average_blank_lines": 54, - "commits_by_month": { - "2024/10": 1, - "2024/6": 2, - "2024/5": 2, - "2023/5": 1, - "2023/3": 1, - "2022/11": 1, - "2022/8": 2, - "2022/7": 1, - "2022/5": 1, - "2022/2": 1, - "2021/11": 1, - "2021/3": 1, - "2021/2": 2, - "2020/12": 8, - "2021/1": 3, - "2020/11": 2 + "url": "https://github.com/CMSgov/ab2d-pdp-documentation", + "owner": "CMSgov", + "name": "ab2d-pdp-documentation", + "description": "AB2D API documentation for PDPs", + "commits_count": 35, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 29, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 21, + "closed_pull_requests_count": 6, + "forks_count": 1, + "stargazers_count": 3, + "watchers_count": 14, + "total_project_lines": 2934, + "average_project_lines": 293, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 543, + "average_blank_lines": 54, + "commits_by_month": { + "2024/10": 1, + "2024/6": 2, + "2024/5": 2, + "2023/5": 1, + "2023/3": 1, + "2022/11": 1, + "2022/8": 2, + "2022/7": 1, + "2022/5": 1, + "2022/2": 1, + "2021/11": 1, + "2021/3": 1, + "2021/2": 2, + "2020/12": 8, + "2021/1": 3, + "2020/11": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-10-22T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-11-19T20:51:19Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:29Z", + "repo": { + "name": "github.com/CMSgov/ab2d-pdp-documentation", + "commit": "5d7ea426ee96f77d86c20714fa4b504741439126" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-10-22T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-11-19T20:51:19Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:29Z", - "repo": { - "name": "github.com/CMSgov/ab2d-pdp-documentation", - "commit": "5d7ea426ee96f77d86c20714fa4b504741439126" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 1, - "reason": "4 out of 21 merged PRs checked by a CI test -- score normalized to 1", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 20/25 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 107523, - "CodeBytes": 0, - "Lines": 2790, - "Code": 2261, - "Comment": 0, - "Blank": 529, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 770, - "CodeBytes": 0, - "Lines": 23, - "Code": 21, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 61527.64443673379, - "estimatedScheduleMonths_low": 4.937118274627151, - "estimatedPeople_low": 1.2140770936887586, - "estimatedCost_high": 191747.0125548807, - "estimatedScheduleMonths_high": 4.937118274627151, - "estimatedPeople_high": 1.2140770936887586, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 8 2790 529 0 2261 0\n(ULOC) 1017\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 23 2 0 21 0\n(ULOC) 20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 2934 543 0 2391 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1145\nDRYness % 0.39\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $67,468\nEstimated Schedule Effort (organic) 4.94 months\nEstimated People Required (organic) 1.21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 115341 bytes, 0.115 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 1, + "reason": "4 out of 21 merged PRs checked by a CI test -- score normalized to 1", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 20/25 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 107523, + "CodeBytes": 0, + "Lines": 2790, + "Code": 2261, + "Comment": 0, + "Blank": 529, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 770, + "CodeBytes": 0, + "Lines": 23, + "Code": 21, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 61527.64443673379, + "estimatedScheduleMonths_low": 4.937118274627151, + "estimatedPeople_low": 1.2140770936887586, + "estimatedCost_high": 191747.0125548807, + "estimatedScheduleMonths_high": 4.937118274627151, + "estimatedPeople_high": 1.2140770936887586, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 8 2790 529 0 2261 0\n(ULOC) 1017\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 23 2 0 21 0\n(ULOC) 20\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 2934 543 0 2391 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1145\nDRYness % 0.39\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $67,468\nEstimated Schedule Effort (organic) 4.94 months\nEstimated People Required (organic) 1.21\n───────────────────────────────────────────────────────────────────────────────\nProcessed 115341 bytes, 0.115 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-properties/ab2d-properties_data.json b/app/site/_data/CMSgov/ab2d-properties/ab2d-properties_data.json index e44ec39415..4e9eab2d34 100644 --- a/app/site/_data/CMSgov/ab2d-properties/ab2d-properties_data.json +++ b/app/site/_data/CMSgov/ab2d-properties/ab2d-properties_data.json @@ -1,442 +1,442 @@ { - "url": "https://github.com/CMSgov/ab2d-properties", - "owner": "CMSgov", - "name": "ab2d-properties", - "description": null, - "commits_count": 71, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 120, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 37, - "closed_pull_requests_count": 82, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 8, - "total_project_lines": 1829, - "average_project_lines": 49, - "total_project_comment_lines": 258, - "average_project_comment_lines": 7, - "total_project_blank_lines": 281, - "average_blank_lines": 8, - "commits_by_month": { - "2024/11": 1, - "2024/9": 1, - "2024/8": 1, - "2024/7": 1, - "2024/6": 1, - "2024/4": 1, - "2024/2": 1, - "2024/1": 1, - "2023/12": 1, - "2023/10": 1, - "2023/9": 2, - "2023/8": 1, - "2023/7": 1, - "2023/6": 1, - "2023/5": 6, - "2023/4": 1, - "2023/2": 6, - "2023/1": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-properties", + "owner": "CMSgov", + "name": "ab2d-properties", + "description": null, + "commits_count": 71, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 120, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 37, + "closed_pull_requests_count": 82, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 8, + "total_project_lines": 1829, + "average_project_lines": 49, + "total_project_comment_lines": 258, + "average_project_comment_lines": 7, + "total_project_blank_lines": 281, + "average_blank_lines": 8, + "commits_by_month": { + "2024/11": 1, + "2024/9": 1, + "2024/8": 1, + "2024/7": 1, + "2024/6": 1, + "2024/4": 1, + "2024/2": 1, + "2024/1": 1, + "2023/12": 1, + "2023/10": 1, + "2023/9": 2, + "2023/8": 1, + "2023/7": 1, + "2023/6": 1, + "2023/5": 6, + "2023/4": 1, + "2023/2": 6, + "2023/1": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-28T17:40:14Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:46Z", - "repo": { - "name": "github.com/CMSgov/ab2d-properties", - "commit": "d8b4b1903e4d1034d2189c9a662e169f4cbf2149" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 20 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 20676, - "CodeBytes": 0, - "Lines": 600, - "Code": 478, - "Comment": 37, - "Blank": 85, - "Complexity": 14, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5734, - "CodeBytes": 0, - "Lines": 171, - "Code": 158, - "Comment": 9, - "Blank": 4, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 3427, - "CodeBytes": 0, - "Lines": 75, - "Code": 55, - "Comment": 3, - "Blank": 17, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 17584, - "CodeBytes": 0, - "Lines": 494, - "Code": 284, - "Comment": 133, - "Blank": 77, - "Complexity": 30, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4508, - "CodeBytes": 0, - "Lines": 105, - "Code": 66, - "Comment": 0, - "Blank": 39, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 4288, - "CodeBytes": 0, - "Lines": 101, - "Code": 83, - "Comment": 9, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 658, - "CodeBytes": 0, - "Lines": 17, - "Code": 13, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 2674, - "CodeBytes": 0, - "Lines": 89, - "Code": 68, - "Comment": 0, - "Blank": 21, - "Complexity": 18, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 241, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 6159, - "CodeBytes": 0, - "Lines": 159, - "Code": 71, - "Comment": 67, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 32187.03183045177, - "estimatedScheduleMonths_low": 3.859629124788906, - "estimatedPeople_low": 0.8124279622512642, - "estimatedCost_high": 100308.84902223326, - "estimatedScheduleMonths_high": 3.859629124788906, - "estimatedPeople_high": 0.8124279622512642, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 13 600 85 37 478 14\n(ULOC) 309\n-------------------------------------------------------------------------------\nYAML 5 171 4 9 158 0\n(ULOC) 112\n-------------------------------------------------------------------------------\nSQL 4 75 17 3 55 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nShell 4 494 77 133 284 30\n(ULOC) 312\n-------------------------------------------------------------------------------\nMarkdown 3 105 39 0 66 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nGradle 2 101 9 9 83 0\n(ULOC) 85\n-------------------------------------------------------------------------------\nProperties File 2 17 4 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nBatch 1 89 21 0 68 18\n(ULOC) 56\n-------------------------------------------------------------------------------\nDockerfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nXML 1 159 21 67 71 0\n(ULOC) 124\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 37 1829 281 258 1290 62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1120\nDRYness % 0.61\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $35,295\nEstimated Schedule Effort (organic) 3.86 months\nEstimated People Required (organic) 0.81\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 66331 bytes, 0.066 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-28T17:40:14Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:46Z", + "repo": { + "name": "github.com/CMSgov/ab2d-properties", + "commit": "d8b4b1903e4d1034d2189c9a662e169f4cbf2149" }, - "predominant_langs": { - "Java": 20676, - "Shell": 9514, - "Dockerfile": 241 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 20 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 20676, + "CodeBytes": 0, + "Lines": 600, + "Code": 478, + "Comment": 37, + "Blank": 85, + "Complexity": 14, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5734, + "CodeBytes": 0, + "Lines": 171, + "Code": 158, + "Comment": 9, + "Blank": 4, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 3427, + "CodeBytes": 0, + "Lines": 75, + "Code": 55, + "Comment": 3, + "Blank": 17, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 17584, + "CodeBytes": 0, + "Lines": 494, + "Code": 284, + "Comment": 133, + "Blank": 77, + "Complexity": 30, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4508, + "CodeBytes": 0, + "Lines": 105, + "Code": 66, + "Comment": 0, + "Blank": 39, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 4288, + "CodeBytes": 0, + "Lines": 101, + "Code": 83, + "Comment": 9, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 658, + "CodeBytes": 0, + "Lines": 17, + "Code": 13, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 2674, + "CodeBytes": 0, + "Lines": 89, + "Code": 68, + "Comment": 0, + "Blank": 21, + "Complexity": 18, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 241, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 6159, + "CodeBytes": 0, + "Lines": 159, + "Code": 71, + "Comment": 67, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 32187.03183045177, + "estimatedScheduleMonths_low": 3.859629124788906, + "estimatedPeople_low": 0.8124279622512642, + "estimatedCost_high": 100308.84902223326, + "estimatedScheduleMonths_high": 3.859629124788906, + "estimatedPeople_high": 0.8124279622512642, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 13 600 85 37 478 14\n(ULOC) 309\n-------------------------------------------------------------------------------\nYAML 5 171 4 9 158 0\n(ULOC) 112\n-------------------------------------------------------------------------------\nSQL 4 75 17 3 55 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nShell 4 494 77 133 284 30\n(ULOC) 312\n-------------------------------------------------------------------------------\nMarkdown 3 105 39 0 66 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nGradle 2 101 9 9 83 0\n(ULOC) 85\n-------------------------------------------------------------------------------\nProperties File 2 17 4 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nBatch 1 89 21 0 68 18\n(ULOC) 56\n-------------------------------------------------------------------------------\nDockerfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nXML 1 159 21 67 71 0\n(ULOC) 124\n───────────────────────────────────────────────────────────────────────────────\nTotal 37 1829 281 258 1290 62\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1120\nDRYness % 0.61\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $35,295\nEstimated Schedule Effort (organic) 3.86 months\nEstimated People Required (organic) 0.81\n───────────────────────────────────────────────────────────────────────────────\nProcessed 66331 bytes, 0.066 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 20676, + "Shell": 9514, + "Dockerfile": 241 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-sample-client-bash/ab2d-sample-client-bash_data.json b/app/site/_data/CMSgov/ab2d-sample-client-bash/ab2d-sample-client-bash_data.json index 981a2db5a4..74a82d7d10 100644 --- a/app/site/_data/CMSgov/ab2d-sample-client-bash/ab2d-sample-client-bash_data.json +++ b/app/site/_data/CMSgov/ab2d-sample-client-bash/ab2d-sample-client-bash_data.json @@ -1,330 +1,330 @@ { - "url": "https://github.com/CMSgov/ab2d-sample-client-bash", - "owner": "CMSgov", - "name": "ab2d-sample-client-bash", - "description": null, - "commits_count": 46, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 16, - "open_pull_requests_count": 3, - "merged_pull_requests_count": 13, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 19, - "total_project_lines": 839, - "average_project_lines": 65, - "total_project_comment_lines": 27, - "average_project_comment_lines": 2, - "total_project_blank_lines": 166, - "average_blank_lines": 13, - "commits_by_month": { - "2024/10": 1, - "2024/9": 1, - "2024/8": 1, - "2024/7": 6, - "2024/6": 2, - "2023/10": 6, - "2023/5": 6, - "2023/3": 1, - "2022/5": 2, - "2022/4": 1, - "2022/2": 1, - "2021/11": 1, - "2021/4": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-10-21T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-sample-client-bash", + "owner": "CMSgov", + "name": "ab2d-sample-client-bash", + "description": null, + "commits_count": 46, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 16, + "open_pull_requests_count": 3, + "merged_pull_requests_count": 13, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 19, + "total_project_lines": 839, + "average_project_lines": 65, + "total_project_comment_lines": 27, + "average_project_comment_lines": 2, + "total_project_blank_lines": 166, + "average_blank_lines": 13, + "commits_by_month": { + "2024/10": 1, + "2024/9": 1, + "2024/8": 1, + "2024/7": 6, + "2024/6": 2, + "2023/10": 6, + "2023/5": 6, + "2023/3": 1, + "2022/5": 2, + "2022/4": 1, + "2022/2": 1, + "2021/11": 1, + "2021/4": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-11-03T16:41:07Z", - "ossf_scorecard": { - "date": "2025-01-11T00:59:50Z", - "repo": { - "name": "github.com/CMSgov/ab2d-sample-client-bash", - "commit": "7ea4abf610f2b5c30ef01923ca59310041f97b37" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "4 out of 10 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 9/11 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Shell", - "Bytes": 12077, - "CodeBytes": 0, - "Lines": 453, - "Code": 344, - "Comment": 27, - "Blank": 82, - "Complexity": 81, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 11568, - "CodeBytes": 0, - "Lines": 242, - "Code": 172, - "Comment": 0, - "Blank": 70, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 770, - "CodeBytes": 0, - "Lines": 23, - "Code": 21, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 15570.618984374682, - "estimatedScheduleMonths_low": 2.928889959298202, - "estimatedPeople_low": 0.5179076552310745, - "estimatedCost_high": 48524.84929687401, - "estimatedScheduleMonths_high": 2.928889959298202, - "estimatedPeople_high": 0.5179076552310745, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nShell 8 453 82 27 344 81\n(ULOC) 244\n-------------------------------------------------------------------------------\nMarkdown 3 242 70 0 172 0\n(ULOC) 138\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 23 2 0 21 0\n(ULOC) 20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 13 839 166 27 646 81\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 499\nDRYness % 0.59\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $17,074\nEstimated Schedule Effort (organic) 2.93 months\nEstimated People Required (organic) 0.52\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 31463 bytes, 0.031 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-10-21T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-11-03T16:41:07Z", + "ossf_scorecard": { + "date": "2025-01-11T00:59:50Z", + "repo": { + "name": "github.com/CMSgov/ab2d-sample-client-bash", + "commit": "7ea4abf610f2b5c30ef01923ca59310041f97b37" }, - "predominant_langs": { - "Shell": 12077 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "4 out of 10 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 9/11 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Shell", + "Bytes": 12077, + "CodeBytes": 0, + "Lines": 453, + "Code": 344, + "Comment": 27, + "Blank": 82, + "Complexity": 81, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 11568, + "CodeBytes": 0, + "Lines": 242, + "Code": 172, + "Comment": 0, + "Blank": 70, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 770, + "CodeBytes": 0, + "Lines": 23, + "Code": 21, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 15570.618984374682, + "estimatedScheduleMonths_low": 2.928889959298202, + "estimatedPeople_low": 0.5179076552310745, + "estimatedCost_high": 48524.84929687401, + "estimatedScheduleMonths_high": 2.928889959298202, + "estimatedPeople_high": 0.5179076552310745, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nShell 8 453 82 27 344 81\n(ULOC) 244\n-------------------------------------------------------------------------------\nMarkdown 3 242 70 0 172 0\n(ULOC) 138\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 23 2 0 21 0\n(ULOC) 20\n───────────────────────────────────────────────────────────────────────────────\nTotal 13 839 166 27 646 81\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 499\nDRYness % 0.59\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $17,074\nEstimated Schedule Effort (organic) 2.93 months\nEstimated People Required (organic) 0.52\n───────────────────────────────────────────────────────────────────────────────\nProcessed 31463 bytes, 0.031 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Shell": 12077 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-sample-client-powershell/ab2d-sample-client-powershell_data.json b/app/site/_data/CMSgov/ab2d-sample-client-powershell/ab2d-sample-client-powershell_data.json index 431feabb02..a3f4153b09 100644 --- a/app/site/_data/CMSgov/ab2d-sample-client-powershell/ab2d-sample-client-powershell_data.json +++ b/app/site/_data/CMSgov/ab2d-sample-client-powershell/ab2d-sample-client-powershell_data.json @@ -1,330 +1,330 @@ { - "url": "https://github.com/CMSgov/ab2d-sample-client-powershell", - "owner": "CMSgov", - "name": "ab2d-sample-client-powershell", - "description": null, - "commits_count": 36, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 14, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 13, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 3, - "watchers_count": 18, - "total_project_lines": 671, - "average_project_lines": 84, - "total_project_comment_lines": 21, - "average_project_comment_lines": 3, - "total_project_blank_lines": 159, - "average_blank_lines": 20, - "commits_by_month": { - "2024/10": 1, - "2024/9": 1, - "2024/8": 1, - "2024/7": 2, - "2024/6": 2, - "2023/5": 6, - "2022/5": 1, - "2022/4": 1, - "2022/2": 1, - "2021/11": 1, - "2021/3": 3, - "2020/12": 1, - "2020/11": 9 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-10-21T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-sample-client-powershell", + "owner": "CMSgov", + "name": "ab2d-sample-client-powershell", + "description": null, + "commits_count": 36, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 14, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 13, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 3, + "watchers_count": 18, + "total_project_lines": 671, + "average_project_lines": 84, + "total_project_comment_lines": 21, + "average_project_comment_lines": 3, + "total_project_blank_lines": 159, + "average_blank_lines": 20, + "commits_by_month": { + "2024/10": 1, + "2024/9": 1, + "2024/8": 1, + "2024/7": 2, + "2024/6": 2, + "2023/5": 6, + "2022/5": 1, + "2022/4": 1, + "2022/2": 1, + "2021/11": 1, + "2021/3": 3, + "2020/12": 1, + "2020/11": 9 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-31T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-11-03T16:42:23Z", - "ossf_scorecard": { - "date": "2025-01-11T00:57:57Z", - "repo": { - "name": "github.com/CMSgov/ab2d-sample-client-powershell", - "commit": "f3bd0f2998e6562a7cafc5ed88f012fab6118698" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 1, - "reason": "2 out of 13 merged PRs checked by a CI test -- score normalized to 1", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 13/14 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 10669, - "CodeBytes": 0, - "Lines": 260, - "Code": 166, - "Comment": 0, - "Blank": 94, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Powershell", - "Bytes": 9656, - "CodeBytes": 0, - "Lines": 267, - "Code": 195, - "Comment": 21, - "Blank": 51, - "Complexity": 33, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 770, - "CodeBytes": 0, - "Lines": 23, - "Code": 21, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 11673.398202413422, - "estimatedScheduleMonths_low": 2.6251963749356158, - "estimatedPeople_low": 0.43319657327914207, - "estimatedCost_high": 36379.40721065431, - "estimatedScheduleMonths_high": 2.6251963749356158, - "estimatedPeople_high": 0.43319657327914207, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 3 260 94 0 166 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nPowershell 3 267 51 21 195 33\n(ULOC) 142\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 23 2 0 21 0\n(ULOC) 20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 8 671 159 21 491 33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 402\nDRYness % 0.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $12,800\nEstimated Schedule Effort (organic) 2.63 months\nEstimated People Required (organic) 0.43\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 28143 bytes, 0.028 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-10-21T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-11-03T16:42:23Z", + "ossf_scorecard": { + "date": "2025-01-11T00:57:57Z", + "repo": { + "name": "github.com/CMSgov/ab2d-sample-client-powershell", + "commit": "f3bd0f2998e6562a7cafc5ed88f012fab6118698" }, - "predominant_langs": { - "PowerShell": 9656 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 1, + "reason": "2 out of 13 merged PRs checked by a CI test -- score normalized to 1", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 13/14 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 10669, + "CodeBytes": 0, + "Lines": 260, + "Code": 166, + "Comment": 0, + "Blank": 94, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Powershell", + "Bytes": 9656, + "CodeBytes": 0, + "Lines": 267, + "Code": 195, + "Comment": 21, + "Blank": 51, + "Complexity": 33, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 770, + "CodeBytes": 0, + "Lines": 23, + "Code": 21, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 11673.398202413422, + "estimatedScheduleMonths_low": 2.6251963749356158, + "estimatedPeople_low": 0.43319657327914207, + "estimatedCost_high": 36379.40721065431, + "estimatedScheduleMonths_high": 2.6251963749356158, + "estimatedPeople_high": 0.43319657327914207, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 3 260 94 0 166 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nPowershell 3 267 51 21 195 33\n(ULOC) 142\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 23 2 0 21 0\n(ULOC) 20\n───────────────────────────────────────────────────────────────────────────────\nTotal 8 671 159 21 491 33\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 402\nDRYness % 0.60\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $12,800\nEstimated Schedule Effort (organic) 2.63 months\nEstimated People Required (organic) 0.43\n───────────────────────────────────────────────────────────────────────────────\nProcessed 28143 bytes, 0.028 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "PowerShell": 9656 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d-sample-client-python/ab2d-sample-client-python_data.json b/app/site/_data/CMSgov/ab2d-sample-client-python/ab2d-sample-client-python_data.json index 92ccec4a87..c13fb3596e 100644 --- a/app/site/_data/CMSgov/ab2d-sample-client-python/ab2d-sample-client-python_data.json +++ b/app/site/_data/CMSgov/ab2d-sample-client-python/ab2d-sample-client-python_data.json @@ -1,325 +1,325 @@ { - "url": "https://github.com/CMSgov/ab2d-sample-client-python", - "owner": "CMSgov", - "name": "ab2d-sample-client-python", - "description": null, - "commits_count": 31, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 12, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 10, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 17, - "total_project_lines": 1216, - "average_project_lines": 174, - "total_project_comment_lines": 95, - "average_project_comment_lines": 14, - "total_project_blank_lines": 343, - "average_blank_lines": 49, - "commits_by_month": { - "2024/10": 1, - "2024/8": 3, - "2024/7": 2, - "2024/6": 2, - "2023/5": 8, - "2022/5": 1, - "2022/4": 1, - "2022/2": 1, - "2021/11": 1, - "2021/3": 1, - "2020/12": 4, - "2020/11": 5 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-10-21T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d-sample-client-python", + "owner": "CMSgov", + "name": "ab2d-sample-client-python", + "description": null, + "commits_count": 31, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 12, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 10, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 17, + "total_project_lines": 1216, + "average_project_lines": 174, + "total_project_comment_lines": 95, + "average_project_comment_lines": 14, + "total_project_blank_lines": 343, + "average_blank_lines": 49, + "commits_by_month": { + "2024/10": 1, + "2024/8": 3, + "2024/7": 2, + "2024/6": 2, + "2023/5": 8, + "2022/5": 1, + "2022/4": 1, + "2022/2": 1, + "2021/11": 1, + "2021/3": 1, + "2020/12": 4, + "2020/11": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-31T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-11-03T16:43:27Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:53Z", - "repo": { - "name": "github.com/CMSgov/ab2d-sample-client-python", - "commit": "167cf5cdbb56c4378ba934f9a597818b837f332d" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 2, - "reason": "2 out of 10 merged PRs checked by a CI test -- score normalized to 2", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 10/13 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 19135, - "CodeBytes": 0, - "Lines": 620, - "Code": 396, - "Comment": 0, - "Blank": 224, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3131, - "CodeBytes": 0, - "Lines": 91, - "Code": 48, - "Comment": 30, - "Blank": 13, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 13577, - "CodeBytes": 0, - "Lines": 384, - "Code": 225, - "Comment": 65, - "Blank": 94, - "Complexity": 46, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 18927.37167980798, - "estimatedScheduleMonths_low": 3.154431781751602, - "estimatedPeople_low": 0.5845459809036603, - "estimatedCost_high": 58985.95677347687, - "estimatedScheduleMonths_high": 3.154431781751602, - "estimatedPeople_high": 0.5845459809036603, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 3 620 224 0 396 0\n(ULOC) 255\n-------------------------------------------------------------------------------\nYAML 2 91 13 30 48 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPython 1 384 94 65 225 46\n(ULOC) 251\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 7 1216 343 95 778 46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 683\nDRYness % 0.56\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $20,755\nEstimated Schedule Effort (organic) 3.15 months\nEstimated People Required (organic) 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 42891 bytes, 0.043 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-10-21T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-11-03T16:43:27Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:53Z", + "repo": { + "name": "github.com/CMSgov/ab2d-sample-client-python", + "commit": "167cf5cdbb56c4378ba934f9a597818b837f332d" }, - "predominant_langs": { - "Python": 13577 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 2, + "reason": "2 out of 10 merged PRs checked by a CI test -- score normalized to 2", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 10/13 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 19135, + "CodeBytes": 0, + "Lines": 620, + "Code": 396, + "Comment": 0, + "Blank": 224, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3131, + "CodeBytes": 0, + "Lines": 91, + "Code": 48, + "Comment": 30, + "Blank": 13, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 13577, + "CodeBytes": 0, + "Lines": 384, + "Code": 225, + "Comment": 65, + "Blank": 94, + "Complexity": 46, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 18927.37167980798, + "estimatedScheduleMonths_low": 3.154431781751602, + "estimatedPeople_low": 0.5845459809036603, + "estimatedCost_high": 58985.95677347687, + "estimatedScheduleMonths_high": 3.154431781751602, + "estimatedPeople_high": 0.5845459809036603, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 3 620 224 0 396 0\n(ULOC) 255\n-------------------------------------------------------------------------------\nYAML 2 91 13 30 48 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPython 1 384 94 65 225 46\n(ULOC) 251\n───────────────────────────────────────────────────────────────────────────────\nTotal 7 1216 343 95 778 46\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 683\nDRYness % 0.56\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $20,755\nEstimated Schedule Effort (organic) 3.15 months\nEstimated People Required (organic) 0.58\n───────────────────────────────────────────────────────────────────────────────\nProcessed 42891 bytes, 0.043 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 13577 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ab2d/ab2d_data.json b/app/site/_data/CMSgov/ab2d/ab2d_data.json index 1cbcce2853..79c00df85e 100644 --- a/app/site/_data/CMSgov/ab2d/ab2d_data.json +++ b/app/site/_data/CMSgov/ab2d/ab2d_data.json @@ -1,470 +1,470 @@ { - "url": "https://github.com/CMSgov/ab2d", - "owner": "CMSgov", - "name": "ab2d", - "description": "Claims Data to Part D Sponsors API", - "commits_count": 940, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1428, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 944, - "closed_pull_requests_count": 469, - "forks_count": 2, - "stargazers_count": 8, - "watchers_count": 19, - "total_project_lines": 43109, - "average_project_lines": 91, - "total_project_comment_lines": 3552, - "average_project_comment_lines": 7, - "total_project_blank_lines": 7477, - "average_blank_lines": 16, - "commits_by_month": { - "2025/1": 2, - "2024/12": 3, - "2024/11": 3, - "2024/10": 9, - "2024/9": 3, - "2024/8": 10 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 2 - ], - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-10-25T00:00:00.000Z", - 1 - ], - [ - "2024-11-12T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ab2d", + "owner": "CMSgov", + "name": "ab2d", + "description": "Claims Data to Part D Sponsors API", + "commits_count": 940, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1428, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 944, + "closed_pull_requests_count": 469, + "forks_count": 2, + "stargazers_count": 8, + "watchers_count": 19, + "total_project_lines": 43109, + "average_project_lines": 91, + "total_project_comment_lines": 3552, + "average_project_comment_lines": 7, + "total_project_blank_lines": 7477, + "average_blank_lines": 16, + "commits_by_month": { + "2025/1": 2, + "2024/12": 3, + "2024/11": 3, + "2024/10": 9, + "2024/9": 3, + "2024/8": 10 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 2 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2019-09-25T17:41:43Z", - "ossf_scorecard": { - "date": "2025-01-11T00:37:36Z", - "repo": { - "name": "github.com/CMSgov/ab2d", - "commit": "0b0abe3ae34b652b9feda5b27672f1297c35f9de" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 18 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "14 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 1448395, - "CodeBytes": 0, - "Lines": 35432, - "Code": 26018, - "Comment": 2831, - "Blank": 6583, - "Complexity": 923, - "Count": 329, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 116494, - "CodeBytes": 0, - "Lines": 2347, - "Code": 1386, - "Comment": 448, - "Blank": 513, - "Complexity": 104, - "Count": 84, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 41095, - "CodeBytes": 0, - "Lines": 1247, - "Code": 1087, - "Comment": 63, - "Blank": 97, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 66787, - "CodeBytes": 0, - "Lines": 1741, - "Code": 1555, - "Comment": 97, - "Blank": 89, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 21236, - "CodeBytes": 0, - "Lines": 559, - "Code": 316, - "Comment": 106, - "Blank": 137, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 6672, - "CodeBytes": 0, - "Lines": 151, - "Code": 101, - "Comment": 0, - "Blank": 50, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1379, - "CodeBytes": 0, - "Lines": 44, - "Code": 31, - "Comment": 7, - "Blank": 6, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 42335, - "CodeBytes": 0, - "Lines": 1552, - "Code": 1552, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 59, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 10, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 942602.6234857403, - "estimatedScheduleMonths_low": 13.927453158986987, - "estimatedPeople_low": 6.593354787419699, - "estimatedCost_high": 2937561.460940246, - "estimatedScheduleMonths_high": 13.927453158986987, - "estimatedPeople_high": 6.593354787419699, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 329 35432 6583 2831 26018 923\n(ULOC) 13709\n-------------------------------------------------------------------------------\nSQL 84 2347 513 448 1386 104\n(ULOC) 1274\n-------------------------------------------------------------------------------\nYAML 22 1247 97 63 1087 0\n(ULOC) 600\n-------------------------------------------------------------------------------\nXML 21 1741 89 97 1555 0\n(ULOC) 665\n-------------------------------------------------------------------------------\nProperties File 9 559 137 106 316 0\n(ULOC) 235\n-------------------------------------------------------------------------------\nMarkdown 4 151 50 0 101 0\n(ULOC) 96\n-------------------------------------------------------------------------------\nDockerfile 2 44 6 7 31 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nJSON 2 1552 0 0 1552 0\n(ULOC) 625\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMakefile 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 477 43207 7489 3552 32166 1027\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 17330\nDRYness % 0.40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,033,623\nEstimated Schedule Effort (organic) 13.93 months\nEstimated People Required (organic) 6.59\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1751892 bytes, 1.752 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-07-31T00:00:00.000Z", + 1 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-10-25T00:00:00.000Z", + 1 + ], + [ + "2024-11-12T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2019-09-25T17:41:43Z", + "ossf_scorecard": { + "date": "2025-01-11T00:37:36Z", + "repo": { + "name": "github.com/CMSgov/ab2d", + "commit": "0b0abe3ae34b652b9feda5b27672f1297c35f9de" }, - "predominant_langs": { - "Java": 1448395, - "PLpgSQL": 8222, - "Dockerfile": 1379, - "Makefile": 59 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 6.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 18 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "14 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 1448395, + "CodeBytes": 0, + "Lines": 35432, + "Code": 26018, + "Comment": 2831, + "Blank": 6583, + "Complexity": 923, + "Count": 329, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 116494, + "CodeBytes": 0, + "Lines": 2347, + "Code": 1386, + "Comment": 448, + "Blank": 513, + "Complexity": 104, + "Count": 84, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 41095, + "CodeBytes": 0, + "Lines": 1247, + "Code": 1087, + "Comment": 63, + "Blank": 97, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 66787, + "CodeBytes": 0, + "Lines": 1741, + "Code": 1555, + "Comment": 97, + "Blank": 89, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 21236, + "CodeBytes": 0, + "Lines": 559, + "Code": 316, + "Comment": 106, + "Blank": 137, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 6672, + "CodeBytes": 0, + "Lines": 151, + "Code": 101, + "Comment": 0, + "Blank": 50, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1379, + "CodeBytes": 0, + "Lines": 44, + "Code": 31, + "Comment": 7, + "Blank": 6, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 42335, + "CodeBytes": 0, + "Lines": 1552, + "Code": 1552, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 59, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 10, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 942602.6234857403, + "estimatedScheduleMonths_low": 13.927453158986987, + "estimatedPeople_low": 6.593354787419699, + "estimatedCost_high": 2937561.460940246, + "estimatedScheduleMonths_high": 13.927453158986987, + "estimatedPeople_high": 6.593354787419699, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 329 35432 6583 2831 26018 923\n(ULOC) 13709\n-------------------------------------------------------------------------------\nSQL 84 2347 513 448 1386 104\n(ULOC) 1274\n-------------------------------------------------------------------------------\nYAML 22 1247 97 63 1087 0\n(ULOC) 600\n-------------------------------------------------------------------------------\nXML 21 1741 89 97 1555 0\n(ULOC) 665\n-------------------------------------------------------------------------------\nProperties File 9 559 137 106 316 0\n(ULOC) 235\n-------------------------------------------------------------------------------\nMarkdown 4 151 50 0 101 0\n(ULOC) 96\n-------------------------------------------------------------------------------\nDockerfile 2 44 6 7 31 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nJSON 2 1552 0 0 1552 0\n(ULOC) 625\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMakefile 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 477 43207 7489 3552 32166 1027\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 17330\nDRYness % 0.40\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,033,623\nEstimated Schedule Effort (organic) 13.93 months\nEstimated People Required (organic) 6.59\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1751892 bytes, 1.752 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 1448395, + "PLpgSQL": 8222, + "Dockerfile": 1379, + "Makefile": 59 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ai_website/ai_website_data.json b/app/site/_data/CMSgov/ai_website/ai_website_data.json index 3b672bba8c..14156c0011 100644 --- a/app/site/_data/CMSgov/ai_website/ai_website_data.json +++ b/app/site/_data/CMSgov/ai_website/ai_website_data.json @@ -1,335 +1,335 @@ { - "url": "https://github.com/CMSgov/ai_website", - "owner": "CMSgov", - "name": "ai_website", - "description": null, - "commits_count": 31, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 7, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 5, - "closed_pull_requests_count": 2, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 10, - "total_project_lines": 38445, - "average_project_lines": 9, - "total_project_comment_lines": 615, - "average_project_comment_lines": 0, - "total_project_blank_lines": 1223, - "average_blank_lines": 0, - "commits_by_month": { - "2024/9": 4, - "2024/5": 7, - "2023/10": 5, - "2023/1": 1, - "2022/12": 13 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/ai_website", + "owner": "CMSgov", + "name": "ai_website", + "description": null, + "commits_count": 31, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 7, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 5, + "closed_pull_requests_count": 2, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 10, + "total_project_lines": 38445, + "average_project_lines": 9, + "total_project_comment_lines": 615, + "average_project_comment_lines": 0, + "total_project_blank_lines": 1223, + "average_blank_lines": 0, + "commits_by_month": { + "2024/9": 4, + "2024/5": 7, + "2023/10": 5, + "2023/1": 1, + "2022/12": 13 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-24T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-09-10T16:20:37Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:52Z", - "repo": { - "name": "github.com/CMSgov/ai_website", - "commit": "677edcc745d3bcf47288ddfc3053fc15f9d6d048" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 2/26 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 7 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "SVG", - "Bytes": 1757436, - "CodeBytes": 0, - "Lines": 4336, - "Code": 4336, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4302, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 824532, - "CodeBytes": 0, - "Lines": 6719, - "Code": 5880, - "Comment": 607, - "Blank": 232, - "Complexity": 309, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1032492, - "CodeBytes": 0, - "Lines": 26309, - "Code": 25463, - "Comment": 6, - "Blank": 840, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 31328, - "CodeBytes": 0, - "Lines": 572, - "Code": 428, - "Comment": 0, - "Blank": 144, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 32626, - "CodeBytes": 0, - "Lines": 509, - "Code": 500, - "Comment": 2, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1079702.432672301, - "estimatedScheduleMonths_low": 14.665010291028604, - "estimatedPeople_low": 7.172510882188113, - "estimatedCost_high": 3364824.3453563484, - "estimatedScheduleMonths_high": 14.665010291028604, - "estimatedPeople_high": 7.172510882188113, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSVG 4302 4336 0 0 4336 0\n(ULOC) 3610\n-------------------------------------------------------------------------------\nJavaScript 4 6719 232 607 5880 309\n(ULOC) 3963\n-------------------------------------------------------------------------------\nCSS 3 26309 840 6 25463 0\n(ULOC) 9290\n-------------------------------------------------------------------------------\nMarkdown 2 572 144 0 428 0\n(ULOC) 376\n-------------------------------------------------------------------------------\nHTML 1 509 7 2 500 0\n(ULOC) 327\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 4312 38445 1223 615 36607 309\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 17550\nDRYness % 0.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,183,961\nEstimated Schedule Effort (organic) 14.67 months\nEstimated People Required (organic) 7.17\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3678414 bytes, 3.678 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-09-10T16:20:37Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:52Z", + "repo": { + "name": "github.com/CMSgov/ai_website", + "commit": "677edcc745d3bcf47288ddfc3053fc15f9d6d048" }, - "predominant_langs": { - "JavaScript": 743798, - "CSS": 578019, - "HTML": 32626 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 2/26 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 7 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "SVG", + "Bytes": 1757436, + "CodeBytes": 0, + "Lines": 4336, + "Code": 4336, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4302, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 824532, + "CodeBytes": 0, + "Lines": 6719, + "Code": 5880, + "Comment": 607, + "Blank": 232, + "Complexity": 309, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1032492, + "CodeBytes": 0, + "Lines": 26309, + "Code": 25463, + "Comment": 6, + "Blank": 840, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 31328, + "CodeBytes": 0, + "Lines": 572, + "Code": 428, + "Comment": 0, + "Blank": 144, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 32626, + "CodeBytes": 0, + "Lines": 509, + "Code": 500, + "Comment": 2, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1079702.432672301, + "estimatedScheduleMonths_low": 14.665010291028604, + "estimatedPeople_low": 7.172510882188113, + "estimatedCost_high": 3364824.3453563484, + "estimatedScheduleMonths_high": 14.665010291028604, + "estimatedPeople_high": 7.172510882188113, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSVG 4302 4336 0 0 4336 0\n(ULOC) 3610\n-------------------------------------------------------------------------------\nJavaScript 4 6719 232 607 5880 309\n(ULOC) 3963\n-------------------------------------------------------------------------------\nCSS 3 26309 840 6 25463 0\n(ULOC) 9290\n-------------------------------------------------------------------------------\nMarkdown 2 572 144 0 428 0\n(ULOC) 376\n-------------------------------------------------------------------------------\nHTML 1 509 7 2 500 0\n(ULOC) 327\n───────────────────────────────────────────────────────────────────────────────\nTotal 4312 38445 1223 615 36607 309\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 17550\nDRYness % 0.46\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,183,961\nEstimated Schedule Effort (organic) 14.67 months\nEstimated People Required (organic) 7.17\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3678414 bytes, 3.678 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 743798, + "CSS": 578019, + "HTML": 32626 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ansible-role-appian/ansible-role-appian_data.json b/app/site/_data/CMSgov/ansible-role-appian/ansible-role-appian_data.json index 3cbc04ee54..8247294daa 100644 --- a/app/site/_data/CMSgov/ansible-role-appian/ansible-role-appian_data.json +++ b/app/site/_data/CMSgov/ansible-role-appian/ansible-role-appian_data.json @@ -1,306 +1,306 @@ { - "url": "https://github.com/CMSgov/ansible-role-appian", - "owner": "CMSgov", - "name": "ansible-role-appian", - "description": "Ansible deployment code for Appian", - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "total_project_lines": 1950, - "average_project_lines": 42, - "total_project_comment_lines": 4, - "average_project_comment_lines": 0, - "total_project_blank_lines": 246, - "average_blank_lines": 5, - "commits_by_month": { - "2021/11": 1 + "url": "https://github.com/CMSgov/ansible-role-appian", + "owner": "CMSgov", + "name": "ansible-role-appian", + "description": "Ansible deployment code for Appian", + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "total_project_lines": 1950, + "average_project_lines": 42, + "total_project_comment_lines": 4, + "average_project_comment_lines": 0, + "total_project_blank_lines": 246, + "average_blank_lines": 5, + "commits_by_month": { + "2021/11": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-11-12T15:55:56Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:57Z", + "repo": { + "name": "github.com/CMSgov/ansible-role-appian", + "commit": "2f773d47d480f1555813c4fcfdfcbc305520bb24" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-11-12T15:55:56Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:57Z", - "repo": { - "name": "github.com/CMSgov/ansible-role-appian", - "commit": "2f773d47d480f1555813c4fcfdfcbc305520bb24" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 36959, - "CodeBytes": 0, - "Lines": 1316, - "Code": 1218, - "Comment": 3, - "Blank": 95, - "Complexity": 0, - "Count": 26, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Jinja", - "Bytes": 9358, - "CodeBytes": 0, - "Lines": 266, - "Code": 240, - "Comment": 0, - "Blank": 26, - "Complexity": 11, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 16374, - "CodeBytes": 0, - "Lines": 366, - "Code": 241, - "Comment": 0, - "Blank": 125, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 119, - "CodeBytes": 0, - "Lines": 2, - "Code": 1, - "Comment": 1, - "Blank": 0, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 43006.40110699095, - "estimatedScheduleMonths_low": 4.3089296156829135, - "estimatedPeople_low": 0.972328933057795, - "estimatedCost_high": 134026.72909868654, - "estimatedScheduleMonths_high": 4.3089296156829135, - "estimatedPeople_high": 0.972328933057795, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 26 1316 95 3 1218 0\n(ULOC) 624\n-------------------------------------------------------------------------------\nJinja 15 266 26 0 240 11\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 4 366 125 0 241 0\n(ULOC) 206\n-------------------------------------------------------------------------------\nShell 1 2 0 1 1 2\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 46 1950 246 4 1700 13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 997\nDRYness % 0.51\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $47,159\nEstimated Schedule Effort (organic) 4.31 months\nEstimated People Required (organic) 0.97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 62810 bytes, 0.063 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Jinja": 9358, - "Shell": 119 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 36959, + "CodeBytes": 0, + "Lines": 1316, + "Code": 1218, + "Comment": 3, + "Blank": 95, + "Complexity": 0, + "Count": 26, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Jinja", + "Bytes": 9358, + "CodeBytes": 0, + "Lines": 266, + "Code": 240, + "Comment": 0, + "Blank": 26, + "Complexity": 11, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 16374, + "CodeBytes": 0, + "Lines": 366, + "Code": 241, + "Comment": 0, + "Blank": 125, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 119, + "CodeBytes": 0, + "Lines": 2, + "Code": 1, + "Comment": 1, + "Blank": 0, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 43006.40110699095, + "estimatedScheduleMonths_low": 4.3089296156829135, + "estimatedPeople_low": 0.972328933057795, + "estimatedCost_high": 134026.72909868654, + "estimatedScheduleMonths_high": 4.3089296156829135, + "estimatedPeople_high": 0.972328933057795, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 26 1316 95 3 1218 0\n(ULOC) 624\n-------------------------------------------------------------------------------\nJinja 15 266 26 0 240 11\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 4 366 125 0 241 0\n(ULOC) 206\n-------------------------------------------------------------------------------\nShell 1 2 0 1 1 2\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 46 1950 246 4 1700 13\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 997\nDRYness % 0.51\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $47,159\nEstimated Schedule Effort (organic) 4.31 months\nEstimated People Required (organic) 0.97\n───────────────────────────────────────────────────────────────────────────────\nProcessed 62810 bytes, 0.063 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Jinja": 9358, + "Shell": 119 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/ars-machine-readable/ars-machine-readable_data.json b/app/site/_data/CMSgov/ars-machine-readable/ars-machine-readable_data.json index c6d9bfe4ec..b2ad562d9b 100644 --- a/app/site/_data/CMSgov/ars-machine-readable/ars-machine-readable_data.json +++ b/app/site/_data/CMSgov/ars-machine-readable/ars-machine-readable_data.json @@ -1,726 +1,726 @@ { - "url": "https://github.com/CMSgov/ars-machine-readable", - "owner": "CMSgov", - "name": "ars-machine-readable", - "description": "Publish a machine readable version of the ARS standards to facilitate compliance as code efforts.", - "commits_count": 93, - "issues_count": 8, - "open_issues_count": 7, - "closed_issues_count": 1, - "pull_requests_count": 40, - "open_pull_requests_count": 7, - "merged_pull_requests_count": 30, - "closed_pull_requests_count": 3, - "forks_count": 4, - "stargazers_count": 22, - "watchers_count": 17, - "total_project_lines": 690987, - "average_project_lines": 13820, - "total_project_comment_lines": 138, - "average_project_comment_lines": 3, - "total_project_blank_lines": 7621, - "average_blank_lines": 152, - "commits_by_month": { - "2022/12": 4, - "2022/10": 2, - "2022/9": 1, - "2022/8": 23 + "url": "https://github.com/CMSgov/ars-machine-readable", + "owner": "CMSgov", + "name": "ars-machine-readable", + "description": "Publish a machine readable version of the ARS standards to facilitate compliance as code efforts.", + "commits_count": 93, + "issues_count": 8, + "open_issues_count": 7, + "closed_issues_count": 1, + "pull_requests_count": 40, + "open_pull_requests_count": 7, + "merged_pull_requests_count": 30, + "closed_pull_requests_count": 3, + "forks_count": 4, + "stargazers_count": 22, + "watchers_count": 17, + "total_project_lines": 690987, + "average_project_lines": 13820, + "total_project_comment_lines": 138, + "average_project_comment_lines": 3, + "total_project_blank_lines": 7621, + "average_blank_lines": 152, + "commits_by_month": { + "2022/12": 4, + "2022/10": 2, + "2022/9": 1, + "2022/8": 23 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-03-12T16:53:09Z", + "ossf_scorecard": { + "date": "2025-01-11T00:35:53Z", + "repo": { + "name": "github.com/CMSgov/ars-machine-readable", + "commit": "e15e2183310b455f40c6c459cfd0b4d5ab50317d" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-03-12T16:53:09Z", - "ossf_scorecard": { - "date": "2025-01-11T00:35:53Z", - "repo": { - "name": "github.com/CMSgov/ars-machine-readable", - "commit": "e15e2183310b455f40c6c459cfd0b4d5ab50317d" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 10 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 7/10 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 10 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "31 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "XML", - "Bytes": 25214311, - "CodeBytes": 0, - "Lines": 308285, - "Code": 301952, - "Comment": 39, - "Blank": 6294, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 17417433, - "CodeBytes": 0, - "Lines": 350901, - "Code": 350901, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 127369, - "CodeBytes": 0, - "Lines": 2629, - "Code": 2165, - "Comment": 0, - "Blank": 464, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 13069, - "CodeBytes": 0, - "Lines": 898, - "Code": 728, - "Comment": 22, - "Blank": 148, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 7254, - "CodeBytes": 0, - "Lines": 121, - "Code": 76, - "Comment": 0, - "Blank": 45, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 29116, - "CodeBytes": 0, - "Lines": 884, - "Code": 749, - "Comment": 76, - "Blank": 59, - "Complexity": 92, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1614436, - "CodeBytes": 0, - "Lines": 27250, - "Code": 26641, - "Comment": 1, - "Blank": 608, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 540, - "CodeBytes": 0, - "Lines": 19, - "Code": 16, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 23326827.229381885, - "estimatedScheduleMonths_low": 47.142431356841016, - "estimatedPeople_low": 48.20512389669281, - "estimatedCost_high": 72696581.74899021, - "estimatedScheduleMonths_high": 47.142431356841016, - "estimatedPeople_high": 48.20512389669281, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nXML 19 308285 6294 39 301952 0\n(ULOC) 49548\n-------------------------------------------------------------------------------\nJSON 12 350901 0 0 350901 0\n(ULOC) 25722\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 8 2629 464 0 2165 0\n(ULOC) 1215\n-------------------------------------------------------------------------------\nCSS 3 898 148 22 728 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nMarkdown 3 121 45 0 76 0\n(ULOC) 75\n-------------------------------------------------------------------------------\nPython 2 884 59 76 749 92\n(ULOC) 406\n-------------------------------------------------------------------------------\nYAML 2 27250 608 1 26641 0\n(ULOC) 10919\n-------------------------------------------------------------------------------\nTOML 1 19 3 0 16 0\n(ULOC) 17\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 50 690987 7621 138 683228 92\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 88028\nDRYness % 0.13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $25,579,335\nEstimated Schedule Effort (organic) 47.14 months\nEstimated People Required (organic) 48.21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 44423528 bytes, 44.424 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "XSLT": 127369, - "Python": 29116, - "CSS": 13069 - }, - "average_issue_resolution_time": [ - [ - "ars-machine-readable", - "211 days 07:16:22" - ] - ], - "repo_dependency_libyear_list": [ - [ - "anyio", - 2.4246575342, - "2024-11-05T21:00:37.000" - ], - [ - "argcomplete", - 2.7589041096, - "2024-11-05T21:00:37.000" - ], - [ - "attrs", - 4.8136986301, - "2024-11-05T21:00:37.000" - ], - [ - "bcrypt", - 2.2273972603, - "2024-11-05T21:00:37.000" - ], - [ - "black", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "blinker", - 1.802739726, - "2024-11-05T21:00:37.000" - ], - [ - "certifi", - 2.2082191781, - "2024-11-05T21:00:37.000" - ], - [ - "cffi", - 2.1835616438, - "2024-11-05T21:00:37.000" - ], - [ - "chardet", - 2.6383561644, - "2024-11-05T21:00:37.000" - ], - [ - "charset-normalizer", - 2.3068493151, - "2024-11-05T21:00:37.000" - ], - [ - "click", - 3.304109589, - "2024-11-05T21:00:37.000" - ], - [ - "cmarkgfm", - 2.5397260274, - "2024-11-05T21:00:37.000" - ], - [ - "compliance-trestle", - 2.4191780822, - "2024-11-05T21:00:37.000" - ], - [ - "complianceio", - -1.0, - "2024-11-05T21:00:37.000" - ], - [ - "cryptography", - 2.5945205479, - "2024-11-05T21:00:37.000" - ], - [ - "datamodel-code-generator", - 2.3945205479, - "2024-11-05T21:00:37.000" - ], - [ - "defusedxml", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "dnspython", - 2.5835616438, - "2024-11-05T21:00:37.000" - ], - [ - "email-validator", - 2.1369863014, - "2024-11-05T21:00:37.000" - ], - [ - "et-xmlfile", - 3.501369863, - "2024-11-05T21:00:37.000" - ], - [ - "furl", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "genson", - 3.7397260274, - "2024-11-05T21:00:37.000" - ], - [ - "gitdb", - 1.9863013699, - "2024-11-05T21:00:37.000" - ], - [ - "gitpython", - 2.1095890411, - "2024-11-05T21:00:37.000" - ], - [ - "h11", - 1.7315068493, - "2024-11-05T21:00:37.000" - ], - [ - "httpcore", - 2.3780821918, - "2024-11-05T21:00:37.000" - ], - [ - "httpx", - 2.2630136986, - "2024-11-05T21:00:37.000" - ], - [ - "idna", - 2.9260273973, - "2024-11-05T21:00:37.000" - ], - [ - "ilcli", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "inflect", - 2.1479452055, - "2024-11-05T21:00:37.000" - ], - [ - "isodate", - 2.8219178082, - "2024-11-05T21:00:37.000" - ], - [ - "isort", - 2.0931506849, - "2024-11-05T21:00:37.000" - ], - [ - "jinja2", - 2.4876712329, - "2024-11-05T21:00:37.000" - ], - [ - "jsonschema", - 4.6410958904, - "2024-11-05T21:00:37.000" - ], - [ - "markupsafe", - 2.597260274, - "2024-11-05T21:00:37.000" - ], - [ - "mypy-extensions", - 3.301369863, - "2024-11-05T21:00:37.000" - ], - [ - "openapi-schema-validator", - 1.7671232877, - "2024-11-05T21:00:37.000" - ], - [ - "openapi-spec-validator", - 1.7095890411, - "2024-11-05T21:00:37.000" - ], - [ - "openpyxl", - 2.1095890411, - "2024-11-05T21:00:37.000" - ], - [ - "orderedmultidict", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "orjson", - 2.2904109589, - "2024-11-05T21:00:37.000" - ], - [ - "paramiko", - 2.3342465753, - "2024-11-05T21:00:37.000" - ], - [ - "pathspec", - 2.397260274, - "2024-11-05T21:00:37.000" - ], - [ - "platformdirs", - 2.4191780822, - "2024-11-05T21:00:37.000" - ], - [ - "prance", - 1.8739726027, - "2024-11-05T21:00:37.000" - ], - [ - "pycparser", - 2.397260274, - "2024-11-05T21:00:37.000" - ], - [ - "pydantic", - 2.3342465753, - "2024-11-05T21:00:37.000" - ], - [ - "pynacl", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "pyrsistent", - 3.1150684932, - "2024-11-05T21:00:37.000" - ], - [ - "pysnooper", - 2.4383561644, - "2024-11-05T21:00:37.000" - ], - [ - "python-dotenv", - 1.8328767123, - "2024-11-05T21:00:37.000" - ], - [ - "python-frontmatter", - 2.8410958904, - "2024-11-05T21:00:37.000" - ], - [ - "python-slugify", - 3.6109589041, - "2024-11-05T21:00:37.000" - ], - [ - "pywin32", - 2.4493150685, - "2024-11-05T21:00:37.000" - ], - [ - "pyyaml", - 3.5424657534, - "2024-11-05T21:00:37.000" - ], - [ - "requests", - 1.9178082192, - "2024-11-05T21:00:37.000" - ], - [ - "rfc3986", - 0.6767123288, - "2024-11-05T21:00:37.000" - ], - [ - "rtyaml", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "ruamel.yaml", - 1.9835616438, - "2024-11-05T21:00:37.000" - ], - [ - "ruamel.yaml.clib", - 3.295890411, - "2024-11-05T21:00:37.000" - ], - [ - "semver", - 2.9671232877, - "2024-11-05T21:00:37.000" - ], - [ - "six", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "smmap", - 1.9205479452, - "2024-11-05T21:00:37.000" - ], - [ - "sniffio", - 3.3753424658, - "2024-11-05T21:00:37.000" - ], - [ - "text-unidecode", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "toml", - 0.0, - "2024-11-05T21:00:37.000" - ], - [ - "tomli", - 2.802739726, - "2024-11-05T21:00:37.000" - ], - [ - "typed-ast", - 1.1178082192, - "2024-11-05T21:00:37.000" - ], - [ - "typing-extensions", - 1.9369863014, - "2024-11-05T21:00:37.000" - ], - [ - "urllib3", - 2.1835616438, - "2024-11-05T21:00:37.000" - ] + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 10 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 7/10 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 10 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "31 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "XML", + "Bytes": 25214311, + "CodeBytes": 0, + "Lines": 308285, + "Code": 301952, + "Comment": 39, + "Blank": 6294, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 17417433, + "CodeBytes": 0, + "Lines": 350901, + "Code": 350901, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 127369, + "CodeBytes": 0, + "Lines": 2629, + "Code": 2165, + "Comment": 0, + "Blank": 464, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 13069, + "CodeBytes": 0, + "Lines": 898, + "Code": 728, + "Comment": 22, + "Blank": 148, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 7254, + "CodeBytes": 0, + "Lines": 121, + "Code": 76, + "Comment": 0, + "Blank": 45, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 29116, + "CodeBytes": 0, + "Lines": 884, + "Code": 749, + "Comment": 76, + "Blank": 59, + "Complexity": 92, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1614436, + "CodeBytes": 0, + "Lines": 27250, + "Code": 26641, + "Comment": 1, + "Blank": 608, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 540, + "CodeBytes": 0, + "Lines": 19, + "Code": 16, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 23326827.229381885, + "estimatedScheduleMonths_low": 47.142431356841016, + "estimatedPeople_low": 48.20512389669281, + "estimatedCost_high": 72696581.74899021, + "estimatedScheduleMonths_high": 47.142431356841016, + "estimatedPeople_high": 48.20512389669281, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nXML 19 308285 6294 39 301952 0\n(ULOC) 49548\n-------------------------------------------------------------------------------\nJSON 12 350901 0 0 350901 0\n(ULOC) 25722\n-------------------------------------------------------------------------------\nExtensible Styleshe… 8 2629 464 0 2165 0\n(ULOC) 1215\n-------------------------------------------------------------------------------\nCSS 3 898 148 22 728 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nMarkdown 3 121 45 0 76 0\n(ULOC) 75\n-------------------------------------------------------------------------------\nPython 2 884 59 76 749 92\n(ULOC) 406\n-------------------------------------------------------------------------------\nYAML 2 27250 608 1 26641 0\n(ULOC) 10919\n-------------------------------------------------------------------------------\nTOML 1 19 3 0 16 0\n(ULOC) 17\n───────────────────────────────────────────────────────────────────────────────\nTotal 50 690987 7621 138 683228 92\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 88028\nDRYness % 0.13\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $25,579,335\nEstimated Schedule Effort (organic) 47.14 months\nEstimated People Required (organic) 48.21\n───────────────────────────────────────────────────────────────────────────────\nProcessed 44423528 bytes, 44.424 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "XSLT": 127369, + "Python": 29116, + "CSS": 13069 + }, + "average_issue_resolution_time": [ + [ + "ars-machine-readable", + "211 days 07:16:22" + ] + ], + "repo_dependency_libyear_list": [ + [ + "anyio", + 2.4246575342, + "2024-11-05T21:00:37.000" + ], + [ + "argcomplete", + 2.7589041096, + "2024-11-05T21:00:37.000" + ], + [ + "attrs", + 4.8136986301, + "2024-11-05T21:00:37.000" + ], + [ + "bcrypt", + 2.2273972603, + "2024-11-05T21:00:37.000" + ], + [ + "black", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "blinker", + 1.802739726, + "2024-11-05T21:00:37.000" + ], + [ + "certifi", + 2.2082191781, + "2024-11-05T21:00:37.000" + ], + [ + "cffi", + 2.1835616438, + "2024-11-05T21:00:37.000" + ], + [ + "chardet", + 2.6383561644, + "2024-11-05T21:00:37.000" + ], + [ + "charset-normalizer", + 2.3068493151, + "2024-11-05T21:00:37.000" + ], + [ + "click", + 3.304109589, + "2024-11-05T21:00:37.000" + ], + [ + "cmarkgfm", + 2.5397260274, + "2024-11-05T21:00:37.000" + ], + [ + "compliance-trestle", + 2.4191780822, + "2024-11-05T21:00:37.000" + ], + [ + "complianceio", + -1, + "2024-11-05T21:00:37.000" + ], + [ + "cryptography", + 2.5945205479, + "2024-11-05T21:00:37.000" + ], + [ + "datamodel-code-generator", + 2.3945205479, + "2024-11-05T21:00:37.000" + ], + [ + "defusedxml", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "dnspython", + 2.5835616438, + "2024-11-05T21:00:37.000" + ], + [ + "email-validator", + 2.1369863014, + "2024-11-05T21:00:37.000" + ], + [ + "et-xmlfile", + 3.501369863, + "2024-11-05T21:00:37.000" + ], + [ + "furl", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "genson", + 3.7397260274, + "2024-11-05T21:00:37.000" + ], + [ + "gitdb", + 1.9863013699, + "2024-11-05T21:00:37.000" + ], + [ + "gitpython", + 2.1095890411, + "2024-11-05T21:00:37.000" + ], + [ + "h11", + 1.7315068493, + "2024-11-05T21:00:37.000" + ], + [ + "httpcore", + 2.3780821918, + "2024-11-05T21:00:37.000" + ], + [ + "httpx", + 2.2630136986, + "2024-11-05T21:00:37.000" + ], + [ + "idna", + 2.9260273973, + "2024-11-05T21:00:37.000" + ], + [ + "ilcli", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "inflect", + 2.1479452055, + "2024-11-05T21:00:37.000" + ], + [ + "isodate", + 2.8219178082, + "2024-11-05T21:00:37.000" + ], + [ + "isort", + 2.0931506849, + "2024-11-05T21:00:37.000" + ], + [ + "jinja2", + 2.4876712329, + "2024-11-05T21:00:37.000" + ], + [ + "jsonschema", + 4.6410958904, + "2024-11-05T21:00:37.000" + ], + [ + "markupsafe", + 2.597260274, + "2024-11-05T21:00:37.000" + ], + [ + "mypy-extensions", + 3.301369863, + "2024-11-05T21:00:37.000" + ], + [ + "openapi-schema-validator", + 1.7671232877, + "2024-11-05T21:00:37.000" + ], + [ + "openapi-spec-validator", + 1.7095890411, + "2024-11-05T21:00:37.000" + ], + [ + "openpyxl", + 2.1095890411, + "2024-11-05T21:00:37.000" + ], + [ + "orderedmultidict", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "orjson", + 2.2904109589, + "2024-11-05T21:00:37.000" + ], + [ + "paramiko", + 2.3342465753, + "2024-11-05T21:00:37.000" + ], + [ + "pathspec", + 2.397260274, + "2024-11-05T21:00:37.000" + ], + [ + "platformdirs", + 2.4191780822, + "2024-11-05T21:00:37.000" + ], + [ + "prance", + 1.8739726027, + "2024-11-05T21:00:37.000" + ], + [ + "pycparser", + 2.397260274, + "2024-11-05T21:00:37.000" + ], + [ + "pydantic", + 2.3342465753, + "2024-11-05T21:00:37.000" + ], + [ + "pynacl", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "pyrsistent", + 3.1150684932, + "2024-11-05T21:00:37.000" + ], + [ + "pysnooper", + 2.4383561644, + "2024-11-05T21:00:37.000" + ], + [ + "python-dotenv", + 1.8328767123, + "2024-11-05T21:00:37.000" + ], + [ + "python-frontmatter", + 2.8410958904, + "2024-11-05T21:00:37.000" + ], + [ + "python-slugify", + 3.6109589041, + "2024-11-05T21:00:37.000" + ], + [ + "pywin32", + 2.4493150685, + "2024-11-05T21:00:37.000" + ], + [ + "pyyaml", + 3.5424657534, + "2024-11-05T21:00:37.000" + ], + [ + "requests", + 1.9178082192, + "2024-11-05T21:00:37.000" + ], + [ + "rfc3986", + 0.6767123288, + "2024-11-05T21:00:37.000" + ], + [ + "rtyaml", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "ruamel.yaml", + 1.9835616438, + "2024-11-05T21:00:37.000" + ], + [ + "ruamel.yaml.clib", + 3.295890411, + "2024-11-05T21:00:37.000" + ], + [ + "semver", + 2.9671232877, + "2024-11-05T21:00:37.000" + ], + [ + "six", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "smmap", + 1.9205479452, + "2024-11-05T21:00:37.000" + ], + [ + "sniffio", + 3.3753424658, + "2024-11-05T21:00:37.000" + ], + [ + "text-unidecode", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "toml", + 0, + "2024-11-05T21:00:37.000" + ], + [ + "tomli", + 2.802739726, + "2024-11-05T21:00:37.000" + ], + [ + "typed-ast", + 1.1178082192, + "2024-11-05T21:00:37.000" + ], + [ + "typing-extensions", + 1.9369863014, + "2024-11-05T21:00:37.000" + ], + [ + "urllib3", + 2.1835616438, + "2024-11-05T21:00:37.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/aws-s3-baseline/aws-s3-baseline_data.json b/app/site/_data/CMSgov/aws-s3-baseline/aws-s3-baseline_data.json index 70491c4078..762e39bfc2 100644 --- a/app/site/_data/CMSgov/aws-s3-baseline/aws-s3-baseline_data.json +++ b/app/site/_data/CMSgov/aws-s3-baseline/aws-s3-baseline_data.json @@ -1,324 +1,324 @@ { - "url": "https://github.com/CMSgov/aws-s3-baseline", - "owner": "CMSgov", - "name": "aws-s3-baseline", - "description": null, - "commits_count": 9, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 26, - "total_project_lines": 273, - "average_project_lines": 27, - "total_project_comment_lines": 1, - "average_project_comment_lines": 0, - "total_project_blank_lines": 69, - "average_blank_lines": 7, - "commits_by_month": { - "2020/3": 1, - "2019/7": 3, - "2019/6": 1, - "2018/11": 3, - "2018/10": 1 + "url": "https://github.com/CMSgov/aws-s3-baseline", + "owner": "CMSgov", + "name": "aws-s3-baseline", + "description": null, + "commits_count": 9, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 26, + "total_project_lines": 273, + "average_project_lines": 27, + "total_project_comment_lines": 1, + "average_project_comment_lines": 0, + "total_project_blank_lines": 69, + "average_blank_lines": 7, + "commits_by_month": { + "2020/3": 1, + "2019/7": 3, + "2019/6": 1, + "2018/11": 3, + "2018/10": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2020-02-25T17:30:42Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:19Z", + "repo": { + "name": "github.com/CMSgov/aws-s3-baseline", + "commit": "a262fca5aa381a594671a9191c0163a2a00f16bb" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2020-02-25T17:30:42Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:19Z", - "repo": { - "name": "github.com/CMSgov/aws-s3-baseline", - "commit": "a262fca5aa381a594671a9191c0163a2a00f16bb" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/9 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 16111, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 4533, - "CodeBytes": 0, - "Lines": 139, - "Code": 114, - "Comment": 1, - "Blank": 24, - "Complexity": 10, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 494, - "CodeBytes": 0, - "Lines": 18, - "Code": 17, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 65, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4436, - "CodeBytes": 0, - "Lines": 109, - "Code": 66, - "Comment": 0, - "Blank": 43, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4617.772929669622, - "estimatedScheduleMonths_low": 1.8454878896925284, - "estimatedPeople_low": 0.24376473760178136, - "estimatedCost_high": 14390.99728304101, - "estimatedScheduleMonths_high": 1.8454878896925284, - "estimatedPeople_high": 0.24376473760178136, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 3 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nRuby 3 139 24 1 114 10\n(ULOC) 86\n-------------------------------------------------------------------------------\nYAML 2 18 1 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nGemfile 1 4 1 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nMarkdown 1 109 43 0 66 0\n(ULOC) 63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 273 69 1 203 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 171\nDRYness % 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,063\nEstimated Schedule Effort (organic) 1.85 months\nEstimated People Required (organic) 0.24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 25639 bytes, 0.026 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 4598 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/9 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 16111, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 4533, + "CodeBytes": 0, + "Lines": 139, + "Code": 114, + "Comment": 1, + "Blank": 24, + "Complexity": 10, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 494, + "CodeBytes": 0, + "Lines": 18, + "Code": 17, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 65, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4436, + "CodeBytes": 0, + "Lines": 109, + "Code": 66, + "Comment": 0, + "Blank": 43, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4617.772929669622, + "estimatedScheduleMonths_low": 1.8454878896925284, + "estimatedPeople_low": 0.24376473760178136, + "estimatedCost_high": 14390.99728304101, + "estimatedScheduleMonths_high": 1.8454878896925284, + "estimatedPeople_high": 0.24376473760178136, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 3 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nRuby 3 139 24 1 114 10\n(ULOC) 86\n-------------------------------------------------------------------------------\nYAML 2 18 1 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nGemfile 1 4 1 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nMarkdown 1 109 43 0 66 0\n(ULOC) 63\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 273 69 1 203 10\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 171\nDRYness % 0.63\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,063\nEstimated Schedule Effort (organic) 1.85 months\nEstimated People Required (organic) 0.24\n───────────────────────────────────────────────────────────────────────────────\nProcessed 25639 bytes, 0.026 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 4598 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/batcave-website/batcave-website_data.json b/app/site/_data/CMSgov/batcave-website/batcave-website_data.json index 25c2944742..bbb467a81d 100644 --- a/app/site/_data/CMSgov/batcave-website/batcave-website_data.json +++ b/app/site/_data/CMSgov/batcave-website/batcave-website_data.json @@ -1,258 +1,258 @@ { - "url": "https://github.com/CMSgov/batcave-website", - "owner": "CMSgov", - "name": "batcave-website", - "description": "Public website landing page for the BATcave kubernetes project", - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 8, - "total_project_lines": 3, - "average_project_lines": 3, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 1, - "average_blank_lines": 1, - "commits_by_month": { - "2021/4": 1 + "url": "https://github.com/CMSgov/batcave-website", + "owner": "CMSgov", + "name": "batcave-website", + "description": "Public website landing page for the BATcave kubernetes project", + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 8, + "total_project_lines": 3, + "average_project_lines": 3, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 1, + "average_blank_lines": 1, + "commits_by_month": { + "2021/4": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-04-15T12:54:41Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:50Z", + "repo": { + "name": "github.com/CMSgov/batcave-website", + "commit": "1267f9ba8744b8766174867446e8d1574b0f56c8" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-04-15T12:54:41Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:50Z", - "repo": { - "name": "github.com/CMSgov/batcave-website", - "commit": "1267f9ba8744b8766174867446e8d1574b0f56c8" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 151, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 36.11130880546491, - "estimatedScheduleMonths_low": 0.2920997927220065, - "estimatedPeople_low": 0.01204374324362692, - "estimatedCost_high": 112.53861002292302, - "estimatedScheduleMonths_high": 0.2920997927220065, - "estimatedPeople_high": 0.01204374324362692, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 1 3 1 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1 3 1 0 2 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3\nDRYness % 1.00\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $39\nEstimated Schedule Effort (organic) 0.29 months\nEstimated People Required (organic) 0.01\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 151 bytes, 0.000 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 151, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 36.11130880546491, + "estimatedScheduleMonths_low": 0.2920997927220065, + "estimatedPeople_low": 0.01204374324362692, + "estimatedCost_high": 112.53861002292302, + "estimatedScheduleMonths_high": 0.2920997927220065, + "estimatedPeople_high": 0.01204374324362692, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 1 3 1 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 1 3 1 0 2 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3\nDRYness % 1.00\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $39\nEstimated Schedule Effort (organic) 0.29 months\nEstimated People Required (organic) 0.01\n───────────────────────────────────────────────────────────────────────────────\nProcessed 151 bytes, 0.000 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/bcda-app/bcda-app_data.json b/app/site/_data/CMSgov/bcda-app/bcda-app_data.json index bb12ffb9f5..9dc4282b23 100644 --- a/app/site/_data/CMSgov/bcda-app/bcda-app_data.json +++ b/app/site/_data/CMSgov/bcda-app/bcda-app_data.json @@ -1,511 +1,511 @@ { - "url": "https://github.com/CMSgov/bcda-app", - "owner": "CMSgov", - "name": "bcda-app", - "description": "Beneficiary Claims Data API", - "commits_count": 924, - "issues_count": 7, - "open_issues_count": 0, - "closed_issues_count": 7, - "pull_requests_count": 1013, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 927, - "closed_pull_requests_count": 85, - "forks_count": 15, - "stargazers_count": 46, - "watchers_count": 26, - "total_project_lines": 215742, - "average_project_lines": 569, - "total_project_comment_lines": 3475, - "average_project_comment_lines": 9, - "total_project_blank_lines": 6933, - "average_blank_lines": 18, - "commits_by_month": { - "2025/1": 2, - "2024/12": 10, - "2024/11": 3, - "2024/10": 13, - "2024/9": 2 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-17T00:00:00.000Z", - 3 - ], - [ - "2024-12-18T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/bcda-app", + "owner": "CMSgov", + "name": "bcda-app", + "description": "Beneficiary Claims Data API", + "commits_count": 924, + "issues_count": 7, + "open_issues_count": 0, + "closed_issues_count": 7, + "pull_requests_count": 1013, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 927, + "closed_pull_requests_count": 85, + "forks_count": 15, + "stargazers_count": 46, + "watchers_count": 26, + "total_project_lines": 215742, + "average_project_lines": 569, + "total_project_comment_lines": 3475, + "average_project_comment_lines": 9, + "total_project_blank_lines": 6933, + "average_blank_lines": 18, + "commits_by_month": { + "2025/1": 2, + "2024/12": 10, + "2024/11": 3, + "2024/10": 13, + "2024/9": 2 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-17T00:00:00.000Z", + 3 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-10-09T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 2 - ] + [ + "2024-12-18T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-30T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2018-07-20T15:04:55Z", - "ossf_scorecard": { - "date": "2025-01-11T00:34:20Z", - "repo": { - "name": "github.com/CMSgov/bcda-app", - "commit": "194ffd444fd82b7262079ccf4ff4572827de178b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 11 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "19 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 4, - "reason": "6 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Go", - "Bytes": 1321595, - "CodeBytes": 0, - "Lines": 41954, - "Code": 32891, - "Comment": 2862, - "Blank": 6201, - "Complexity": 4661, - "Count": 192, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 13227942, - "CodeBytes": 0, - "Lines": 155419, - "Code": 154298, - "Comment": 570, - "Blank": 551, - "Complexity": 9, - "Count": 86, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 44304, - "CodeBytes": 0, - "Lines": 1337, - "Code": 1247, - "Comment": 31, - "Blank": 59, - "Complexity": 0, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 38419, - "CodeBytes": 0, - "Lines": 1004, - "Code": 693, - "Comment": 0, - "Blank": 311, - "Complexity": 0, - "Count": 24, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 663601, - "CodeBytes": 0, - "Lines": 15791, - "Code": 15788, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 123078, - "CodeBytes": 0, - "Lines": 1262, - "Code": 1181, - "Comment": 81, - "Blank": 0, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 13622, - "CodeBytes": 0, - "Lines": 364, - "Code": 258, - "Comment": 50, - "Blank": 56, - "Complexity": 48, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 3923, - "CodeBytes": 0, - "Lines": 24, - "Code": 24, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2410, - "CodeBytes": 0, - "Lines": 102, - "Code": 66, - "Comment": 23, - "Blank": 13, - "Complexity": 7, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 262, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 914, - "CodeBytes": 0, - "Lines": 21, - "Code": 21, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 13854, - "CodeBytes": 0, - "Lines": 243, - "Code": 164, - "Comment": 33, - "Blank": 46, - "Complexity": 5, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 1517, - "CodeBytes": 0, - "Lines": 60, - "Code": 47, - "Comment": 0, - "Blank": 13, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6647599.122653074, - "estimatedScheduleMonths_low": 29.257650925903512, - "estimatedPeople_low": 22.134762977483437, - "estimatedCost_high": 20716822.2365777, - "estimatedScheduleMonths_high": 29.257650925903512, - "estimatedPeople_high": 22.134762977483437, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGo 192 41954 6201 2862 32891 4661\n(ULOC) 17654\n-------------------------------------------------------------------------------\nSQL 86 155419 551 570 154298 9\n(ULOC) 113451\n-------------------------------------------------------------------------------\nYAML 27 1337 59 31 1247 0\n(ULOC) 616\n-------------------------------------------------------------------------------\nMarkdown 24 1004 311 0 693 0\n(ULOC) 438\n-------------------------------------------------------------------------------\nJSON 22 15791 3 0 15788 0\n(ULOC) 2471\n-------------------------------------------------------------------------------\nSVG 14 1262 0 81 1181 0\n(ULOC) 1038\n-------------------------------------------------------------------------------\nShell 10 364 56 50 258 48\n(ULOC) 239\n-------------------------------------------------------------------------------\nCSV 7 24 0 0 24 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nBASH 1 102 13 23 66 7\n(ULOC) 77\n-------------------------------------------------------------------------------\nDocker ignore 1 13 0 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nJavaScript 1 21 0 0 21 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nMakefile 1 243 46 33 164 5\n(ULOC) 181\n-------------------------------------------------------------------------------\nPython 1 60 13 0 47 4\n(ULOC) 44\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 388 217603 7255 3650 206698 4734\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 136222\nDRYness % 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,289,511\nEstimated Schedule Effort (organic) 29.26 months\nEstimated People Required (organic) 22.13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 15455823 bytes, 15.456 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-06T00:00:00.000Z", + 1 + ], + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-17T00:00:00.000Z", + 1 + ], + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-10-09T00:00:00.000Z", + 1 + ], + [ + "2024-12-17T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2018-07-20T15:04:55Z", + "ossf_scorecard": { + "date": "2025-01-11T00:34:20Z", + "repo": { + "name": "github.com/CMSgov/bcda-app", + "commit": "194ffd444fd82b7262079ccf4ff4572827de178b" }, - "predominant_langs": { - "PLpgSQL": 1665233, - "Go": 1294728, - "Shell": 16032, - "Makefile": 13854, - "Python": 1517, - "JavaScript": 914 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "bcda-app", - "580 days 13:01:43" - ] + "score": 6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 11 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "19 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 4, + "reason": "6 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Go", + "Bytes": 1321595, + "CodeBytes": 0, + "Lines": 41954, + "Code": 32891, + "Comment": 2862, + "Blank": 6201, + "Complexity": 4661, + "Count": 192, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 13227942, + "CodeBytes": 0, + "Lines": 155419, + "Code": 154298, + "Comment": 570, + "Blank": 551, + "Complexity": 9, + "Count": 86, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 44304, + "CodeBytes": 0, + "Lines": 1337, + "Code": 1247, + "Comment": 31, + "Blank": 59, + "Complexity": 0, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 38419, + "CodeBytes": 0, + "Lines": 1004, + "Code": 693, + "Comment": 0, + "Blank": 311, + "Complexity": 0, + "Count": 24, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 663601, + "CodeBytes": 0, + "Lines": 15791, + "Code": 15788, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 123078, + "CodeBytes": 0, + "Lines": 1262, + "Code": 1181, + "Comment": 81, + "Blank": 0, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 13622, + "CodeBytes": 0, + "Lines": 364, + "Code": 258, + "Comment": 50, + "Blank": 56, + "Complexity": 48, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 3923, + "CodeBytes": 0, + "Lines": 24, + "Code": 24, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2410, + "CodeBytes": 0, + "Lines": 102, + "Code": 66, + "Comment": 23, + "Blank": 13, + "Complexity": 7, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 262, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 914, + "CodeBytes": 0, + "Lines": 21, + "Code": 21, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 13854, + "CodeBytes": 0, + "Lines": 243, + "Code": 164, + "Comment": 33, + "Blank": 46, + "Complexity": 5, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 1517, + "CodeBytes": 0, + "Lines": 60, + "Code": 47, + "Comment": 0, + "Blank": 13, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 6647599.122653074, + "estimatedScheduleMonths_low": 29.257650925903512, + "estimatedPeople_low": 22.134762977483437, + "estimatedCost_high": 20716822.2365777, + "estimatedScheduleMonths_high": 29.257650925903512, + "estimatedPeople_high": 22.134762977483437, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGo 192 41954 6201 2862 32891 4661\n(ULOC) 17654\n-------------------------------------------------------------------------------\nSQL 86 155419 551 570 154298 9\n(ULOC) 113451\n-------------------------------------------------------------------------------\nYAML 27 1337 59 31 1247 0\n(ULOC) 616\n-------------------------------------------------------------------------------\nMarkdown 24 1004 311 0 693 0\n(ULOC) 438\n-------------------------------------------------------------------------------\nJSON 22 15791 3 0 15788 0\n(ULOC) 2471\n-------------------------------------------------------------------------------\nSVG 14 1262 0 81 1181 0\n(ULOC) 1038\n-------------------------------------------------------------------------------\nShell 10 364 56 50 258 48\n(ULOC) 239\n-------------------------------------------------------------------------------\nCSV 7 24 0 0 24 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nBASH 1 102 13 23 66 7\n(ULOC) 77\n-------------------------------------------------------------------------------\nDocker ignore 1 13 0 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nJavaScript 1 21 0 0 21 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nMakefile 1 243 46 33 164 5\n(ULOC) 181\n-------------------------------------------------------------------------------\nPython 1 60 13 0 47 4\n(ULOC) 44\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 388 217603 7255 3650 206698 4734\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 136222\nDRYness % 0.63\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,289,511\nEstimated Schedule Effort (organic) 29.26 months\nEstimated People Required (organic) 22.13\n───────────────────────────────────────────────────────────────────────────────\nProcessed 15455823 bytes, 15.456 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "PLpgSQL": 1665233, + "Go": 1294728, + "Shell": 16032, + "Makefile": 13854, + "Python": 1517, + "JavaScript": 914 + }, + "average_issue_resolution_time": [ + [ + "bcda-app", + "580 days 13:01:43" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/bcda-ssas-app/bcda-ssas-app_data.json b/app/site/_data/CMSgov/bcda-ssas-app/bcda-ssas-app_data.json index 4ee3bdc792..6d93945d9f 100644 --- a/app/site/_data/CMSgov/bcda-ssas-app/bcda-ssas-app_data.json +++ b/app/site/_data/CMSgov/bcda-ssas-app/bcda-ssas-app_data.json @@ -1,488 +1,488 @@ { - "url": "https://github.com/CMSgov/bcda-ssas-app", - "owner": "CMSgov", - "name": "bcda-ssas-app", - "description": "SSAS component of BCDA application", - "commits_count": 171, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 197, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 170, - "closed_pull_requests_count": 25, - "forks_count": 1, - "stargazers_count": 7, - "watchers_count": 22, - "total_project_lines": 19902, - "average_project_lines": 164, - "total_project_comment_lines": 936, - "average_project_comment_lines": 8, - "total_project_blank_lines": 2183, - "average_blank_lines": 18, - "commits_by_month": { - "2024/12": 3, - "2024/11": 3, - "2024/10": 2, - "2024/9": 3, - "2024/8": 1, - "2024/7": 6, - "2024/6": 1, - "2024/5": 3, - "2024/3": 7, - "2024/2": 1 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-23T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/bcda-ssas-app", + "owner": "CMSgov", + "name": "bcda-ssas-app", + "description": "SSAS component of BCDA application", + "commits_count": 171, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 197, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 170, + "closed_pull_requests_count": 25, + "forks_count": 1, + "stargazers_count": 7, + "watchers_count": 22, + "total_project_lines": 19902, + "average_project_lines": 164, + "total_project_comment_lines": 936, + "average_project_comment_lines": 8, + "total_project_blank_lines": 2183, + "average_blank_lines": 18, + "commits_by_month": { + "2024/12": 3, + "2024/11": 3, + "2024/10": 2, + "2024/9": 3, + "2024/8": 1, + "2024/7": 6, + "2024/6": 1, + "2024/5": 3, + "2024/3": 7, + "2024/2": 1 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-23T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-10-01T00:00:00.000Z", - 1 - ], - [ - "2024-11-13T00:00:00.000Z", - 2 - ], - [ - "2024-12-23T00:00:00.000Z", - 1 - ] + [ + "2024-08-06T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2019-09-25T14:59:52Z", - "ossf_scorecard": { - "date": "2025-01-11T00:37:53Z", - "repo": { - "name": "github.com/CMSgov/bcda-ssas-app", - "commit": "bd114085eeddfc9b6147a51223495a38995ddca5" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 9, - "reason": "29 out of 30 merged PRs checked by a CI test -- score normalized to 9", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Go", - "Bytes": 389362, - "CodeBytes": 0, - "Lines": 12025, - "Code": 9408, - "Comment": 768, - "Blank": 1849, - "Complexity": 1189, - "Count": 49, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 10495, - "CodeBytes": 0, - "Lines": 327, - "Code": 287, - "Comment": 0, - "Blank": 40, - "Complexity": 2, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 37736, - "CodeBytes": 0, - "Lines": 650, - "Code": 456, - "Comment": 0, - "Blank": 194, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 105525, - "CodeBytes": 0, - "Lines": 1057, - "Code": 989, - "Comment": 68, - "Blank": 0, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6858, - "CodeBytes": 0, - "Lines": 227, - "Code": 209, - "Comment": 6, - "Blank": 12, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1438153, - "CodeBytes": 0, - "Lines": 4992, - "Code": 4991, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 7309, - "CodeBytes": 0, - "Lines": 231, - "Code": 165, - "Comment": 21, - "Blank": 45, - "Complexity": 31, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1997595, - "CodeBytes": 0, - "Lines": 116, - "Code": 51, - "Comment": 65, - "Blank": 0, - "Complexity": 201, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 3742, - "CodeBytes": 0, - "Lines": 127, - "Code": 114, - "Comment": 1, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 153754, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 4045, - "CodeBytes": 0, - "Lines": 75, - "Code": 55, - "Comment": 5, - "Blank": 15, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 1521, - "CodeBytes": 0, - "Lines": 60, - "Code": 47, - "Comment": 0, - "Blank": 13, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 476014.80784829997, - "estimatedScheduleMonths_low": 10.742926332255289, - "estimatedPeople_low": 4.316655332039558, - "estimatedCost_high": 1483470.0429763831, - "estimatedScheduleMonths_high": 10.742926332255289, - "estimatedPeople_high": 4.316655332039558, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGo 49 12025 1849 768 9408 1189\n(ULOC) 4899\n-------------------------------------------------------------------------------\nSQL 18 327 40 0 287 2\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 16 650 194 0 456 0\n(ULOC) 309\n-------------------------------------------------------------------------------\nSVG 10 1057 0 68 989 0\n(ULOC) 804\n-------------------------------------------------------------------------------\nYAML 8 227 12 6 209 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nJSON 7 4992 1 0 4991 0\n(ULOC) 750\n-------------------------------------------------------------------------------\nShell 4 231 45 21 165 31\n(ULOC) 142\n-------------------------------------------------------------------------------\nJavaScript 3 116 0 65 51 201\n(ULOC) 76\n-------------------------------------------------------------------------------\nHTML 2 127 12 1 114 0\n(ULOC) 101\n-------------------------------------------------------------------------------\nCSS 1 3 0 1 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nMakefile 1 75 15 5 55 0\n(ULOC) 59\n-------------------------------------------------------------------------------\nPython 1 60 13 0 47 4\n(ULOC) 43\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 121 19899 2183 935 16781 1427\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 7487\nDRYness % 0.38\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $521,980\nEstimated Schedule Effort (organic) 10.74 months\nEstimated People Required (organic) 4.32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 4156477 bytes, 4.156 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-10-01T00:00:00.000Z", + 1 + ], + [ + "2024-11-13T00:00:00.000Z", + 2 + ], + [ + "2024-12-23T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2019-09-25T14:59:52Z", + "ossf_scorecard": { + "date": "2025-01-11T00:37:53Z", + "repo": { + "name": "github.com/CMSgov/bcda-ssas-app", + "commit": "bd114085eeddfc9b6147a51223495a38995ddca5" }, - "predominant_langs": { - "Go": 387878, - "PLpgSQL": 10479, - "Shell": 7309, - "Makefile": 4045, - "HTML": 3742, - "Python": 1521 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 6.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 9, + "reason": "29 out of 30 merged PRs checked by a CI test -- score normalized to 9", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Go", + "Bytes": 389362, + "CodeBytes": 0, + "Lines": 12025, + "Code": 9408, + "Comment": 768, + "Blank": 1849, + "Complexity": 1189, + "Count": 49, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 10495, + "CodeBytes": 0, + "Lines": 327, + "Code": 287, + "Comment": 0, + "Blank": 40, + "Complexity": 2, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 37736, + "CodeBytes": 0, + "Lines": 650, + "Code": 456, + "Comment": 0, + "Blank": 194, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 105525, + "CodeBytes": 0, + "Lines": 1057, + "Code": 989, + "Comment": 68, + "Blank": 0, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6858, + "CodeBytes": 0, + "Lines": 227, + "Code": 209, + "Comment": 6, + "Blank": 12, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1438153, + "CodeBytes": 0, + "Lines": 4992, + "Code": 4991, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 7309, + "CodeBytes": 0, + "Lines": 231, + "Code": 165, + "Comment": 21, + "Blank": 45, + "Complexity": 31, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1997595, + "CodeBytes": 0, + "Lines": 116, + "Code": 51, + "Comment": 65, + "Blank": 0, + "Complexity": 201, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 3742, + "CodeBytes": 0, + "Lines": 127, + "Code": 114, + "Comment": 1, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 153754, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 4045, + "CodeBytes": 0, + "Lines": 75, + "Code": 55, + "Comment": 5, + "Blank": 15, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 1521, + "CodeBytes": 0, + "Lines": 60, + "Code": 47, + "Comment": 0, + "Blank": 13, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 476014.80784829997, + "estimatedScheduleMonths_low": 10.742926332255289, + "estimatedPeople_low": 4.316655332039558, + "estimatedCost_high": 1483470.0429763831, + "estimatedScheduleMonths_high": 10.742926332255289, + "estimatedPeople_high": 4.316655332039558, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGo 49 12025 1849 768 9408 1189\n(ULOC) 4899\n-------------------------------------------------------------------------------\nSQL 18 327 40 0 287 2\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 16 650 194 0 456 0\n(ULOC) 309\n-------------------------------------------------------------------------------\nSVG 10 1057 0 68 989 0\n(ULOC) 804\n-------------------------------------------------------------------------------\nYAML 8 227 12 6 209 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nJSON 7 4992 1 0 4991 0\n(ULOC) 750\n-------------------------------------------------------------------------------\nShell 4 231 45 21 165 31\n(ULOC) 142\n-------------------------------------------------------------------------------\nJavaScript 3 116 0 65 51 201\n(ULOC) 76\n-------------------------------------------------------------------------------\nHTML 2 127 12 1 114 0\n(ULOC) 101\n-------------------------------------------------------------------------------\nCSS 1 3 0 1 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nMakefile 1 75 15 5 55 0\n(ULOC) 59\n-------------------------------------------------------------------------------\nPython 1 60 13 0 47 4\n(ULOC) 43\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 121 19899 2183 935 16781 1427\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 7487\nDRYness % 0.38\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $521,980\nEstimated Schedule Effort (organic) 10.74 months\nEstimated People Required (organic) 4.32\n───────────────────────────────────────────────────────────────────────────────\nProcessed 4156477 bytes, 4.156 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 387878, + "PLpgSQL": 10479, + "Shell": 7309, + "Makefile": 4045, + "HTML": 3742, + "Python": 1521 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/bcda-static-site/bcda-static-site_data.json b/app/site/_data/CMSgov/bcda-static-site/bcda-static-site_data.json index 589ce1213d..f4d96c76e1 100644 --- a/app/site/_data/CMSgov/bcda-static-site/bcda-static-site_data.json +++ b/app/site/_data/CMSgov/bcda-static-site/bcda-static-site_data.json @@ -1,564 +1,564 @@ { - "url": "https://github.com/CMSgov/bcda-static-site", - "owner": "CMSgov", - "name": "bcda-static-site", - "description": "Informational site for BCDA", - "commits_count": 227, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 221, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 196, - "closed_pull_requests_count": 25, - "forks_count": 1, - "stargazers_count": 7, - "watchers_count": 19, - "total_project_lines": 155661, - "average_project_lines": 65, - "total_project_comment_lines": 9718, - "average_project_comment_lines": 4, - "total_project_blank_lines": 11756, - "average_blank_lines": 5, - "commits_by_month": { - "2025/1": 1, - "2024/12": 4, - "2024/11": 5, - "2024/10": 1, - "2024/9": 1, - "2024/8": 3, - "2024/7": 1, - "2024/6": 3, - "2024/5": 4, - "2024/4": 6, - "2024/3": 1 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-17T00:00:00.000Z", - 1 - ], - [ - "2024-12-18T00:00:00.000Z", - 1 - ], - [ - "2024-12-23T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/bcda-static-site", + "owner": "CMSgov", + "name": "bcda-static-site", + "description": "Informational site for BCDA", + "commits_count": 227, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 221, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 196, + "closed_pull_requests_count": 25, + "forks_count": 1, + "stargazers_count": 7, + "watchers_count": 19, + "total_project_lines": 155661, + "average_project_lines": 65, + "total_project_comment_lines": 9718, + "average_project_comment_lines": 4, + "total_project_blank_lines": 11756, + "average_blank_lines": 5, + "commits_by_month": { + "2025/1": 1, + "2024/12": 4, + "2024/11": 5, + "2024/10": 1, + "2024/9": 1, + "2024/8": 3, + "2024/7": 1, + "2024/6": 3, + "2024/5": 4, + "2024/4": 6, + "2024/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-17T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-06T00:00:00.000Z", - 2 - ], - [ - "2024-08-09T00:00:00.000Z", - 1 - ], - [ - "2024-09-19T00:00:00.000Z", - 1 - ], - [ - "2024-10-30T00:00:00.000Z", - 1 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-23T00:00:00.000Z", - 1 - ] + [ + "2024-12-18T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2019-07-18T16:03:39Z", - "ossf_scorecard": { - "date": "2025-01-11T00:38:08Z", - "repo": { - "name": "github.com/CMSgov/bcda-static-site", - "commit": "edbcaeae5d6ef2d3d72a712739921f0163d70475" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 8 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 9, - "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "126 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 3004052, - "CodeBytes": 0, - "Lines": 79396, - "Code": 67077, - "Comment": 5480, - "Blank": 6839, - "Complexity": 7516, - "Count": 1762, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 258912, - "CodeBytes": 0, - "Lines": 5719, - "Code": 5359, - "Comment": 40, - "Blank": 320, - "Complexity": 0, - "Count": 164, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 211702, - "CodeBytes": 0, - "Lines": 8196, - "Code": 4571, - "Comment": 2626, - "Blank": 999, - "Complexity": 0, - "Count": 145, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSX", - "Bytes": 280260, - "CodeBytes": 0, - "Lines": 9579, - "Code": 7109, - "Comment": 1260, - "Blank": 1210, - "Complexity": 349, - "Count": 82, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 9336141, - "CodeBytes": 0, - "Lines": 40246, - "Code": 40033, - "Comment": 28, - "Blank": 185, - "Complexity": 44, - "Count": 63, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 280810, - "CodeBytes": 0, - "Lines": 400, - "Code": 197, - "Comment": 129, - "Blank": 74, - "Complexity": 0, - "Count": 52, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 391980, - "CodeBytes": 0, - "Lines": 8445, - "Code": 6522, - "Comment": 0, - "Blank": 1923, - "Complexity": 0, - "Count": 49, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 56221, - "CodeBytes": 0, - "Lines": 1993, - "Code": 1993, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 32, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 20383, - "CodeBytes": 0, - "Lines": 407, - "Code": 324, - "Comment": 0, - "Blank": 83, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 10694, - "CodeBytes": 0, - "Lines": 328, - "Code": 289, - "Comment": 21, - "Blank": 18, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 15863, - "CodeBytes": 0, - "Lines": 482, - "Code": 387, - "Comment": 49, - "Blank": 46, - "Complexity": 24, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 4002, - "CodeBytes": 0, - "Lines": 151, - "Code": 115, - "Comment": 7, - "Blank": 29, - "Complexity": 12, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Flow9", - "Bytes": 8571, - "CodeBytes": 0, - "Lines": 248, - "Code": 231, - "Comment": 8, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 1036, - "CodeBytes": 0, - "Lines": 30, - "Code": 8, - "Comment": 15, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 1525, - "CodeBytes": 0, - "Lines": 60, - "Code": 47, - "Comment": 0, - "Blank": 13, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4226066.005024367, - "estimatedScheduleMonths_low": 24.631031891439484, - "estimatedPeople_low": 16.714876700728187, - "estimatedCost_high": 13170267.42599247, - "estimatedScheduleMonths_high": 24.631031891439484, - "estimatedPeople_high": 16.714876700728187, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 1762 79396 6839 5480 67077 7516\n(ULOC) 18225\n-------------------------------------------------------------------------------\nHTML 164 5719 320 40 5359 0\n(ULOC) 2766\n-------------------------------------------------------------------------------\nSass 145 8196 999 2626 4571 0\n(ULOC) 3882\n-------------------------------------------------------------------------------\nJSX 82 9579 1210 1260 7109 349\n(ULOC) 4567\n-------------------------------------------------------------------------------\nSVG 63 40246 185 28 40033 44\n(ULOC) 18258\n-------------------------------------------------------------------------------\nCSS 52 400 74 129 197 0\n(ULOC) 211\n-------------------------------------------------------------------------------\nMarkdown 49 8445 1923 0 6522 0\n(ULOC) 5216\n-------------------------------------------------------------------------------\nJSON 32 1993 0 0 1993 0\n(ULOC) 1094\n-------------------------------------------------------------------------------\nLicense 18 407 83 0 324 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nYAML 13 328 18 21 289 0\n(ULOC) 252\n-------------------------------------------------------------------------------\nTypeScript Typings 4 482 46 49 387 24\n(ULOC) 333\n-------------------------------------------------------------------------------\nShell 2 151 29 7 115 12\n(ULOC) 99\n-------------------------------------------------------------------------------\nFlow9 1 248 9 8 231 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nGemfile 1 30 7 15 8 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPython 1 60 13 0 47 4\n(ULOC) 44\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2390 155689 11757 9663 134269 7949\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 54305\nDRYness % 0.35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,634,147\nEstimated Schedule Effort (organic) 24.63 months\nEstimated People Required (organic) 16.71\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 13882534 bytes, 13.883 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-12-23T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-06T00:00:00.000Z", + 2 + ], + [ + "2024-08-09T00:00:00.000Z", + 1 + ], + [ + "2024-09-19T00:00:00.000Z", + 1 + ], + [ + "2024-10-30T00:00:00.000Z", + 1 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-23T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2019-07-18T16:03:39Z", + "ossf_scorecard": { + "date": "2025-01-11T00:38:08Z", + "repo": { + "name": "github.com/CMSgov/bcda-static-site", + "commit": "edbcaeae5d6ef2d3d72a712739921f0163d70475" }, - "predominant_langs": { - "HTML": 194428, - "SCSS": 38114, - "JavaScript": 4981, - "Shell": 4002, - "Python": 1525, - "Ruby": 1036 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "bcda-static-site", - "14 days 12:03:00" - ] + "score": 5.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 8 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 9, + "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "126 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 3004052, + "CodeBytes": 0, + "Lines": 79396, + "Code": 67077, + "Comment": 5480, + "Blank": 6839, + "Complexity": 7516, + "Count": 1762, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 258912, + "CodeBytes": 0, + "Lines": 5719, + "Code": 5359, + "Comment": 40, + "Blank": 320, + "Complexity": 0, + "Count": 164, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 211702, + "CodeBytes": 0, + "Lines": 8196, + "Code": 4571, + "Comment": 2626, + "Blank": 999, + "Complexity": 0, + "Count": 145, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSX", + "Bytes": 280260, + "CodeBytes": 0, + "Lines": 9579, + "Code": 7109, + "Comment": 1260, + "Blank": 1210, + "Complexity": 349, + "Count": 82, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 9336141, + "CodeBytes": 0, + "Lines": 40246, + "Code": 40033, + "Comment": 28, + "Blank": 185, + "Complexity": 44, + "Count": 63, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 280810, + "CodeBytes": 0, + "Lines": 400, + "Code": 197, + "Comment": 129, + "Blank": 74, + "Complexity": 0, + "Count": 52, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 391980, + "CodeBytes": 0, + "Lines": 8445, + "Code": 6522, + "Comment": 0, + "Blank": 1923, + "Complexity": 0, + "Count": 49, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 56221, + "CodeBytes": 0, + "Lines": 1993, + "Code": 1993, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 32, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 20383, + "CodeBytes": 0, + "Lines": 407, + "Code": 324, + "Comment": 0, + "Blank": 83, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 10694, + "CodeBytes": 0, + "Lines": 328, + "Code": 289, + "Comment": 21, + "Blank": 18, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 15863, + "CodeBytes": 0, + "Lines": 482, + "Code": 387, + "Comment": 49, + "Blank": 46, + "Complexity": 24, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 4002, + "CodeBytes": 0, + "Lines": 151, + "Code": 115, + "Comment": 7, + "Blank": 29, + "Complexity": 12, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Flow9", + "Bytes": 8571, + "CodeBytes": 0, + "Lines": 248, + "Code": 231, + "Comment": 8, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 1036, + "CodeBytes": 0, + "Lines": 30, + "Code": 8, + "Comment": 15, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 1525, + "CodeBytes": 0, + "Lines": 60, + "Code": 47, + "Comment": 0, + "Blank": 13, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4226066.005024367, + "estimatedScheduleMonths_low": 24.631031891439484, + "estimatedPeople_low": 16.714876700728187, + "estimatedCost_high": 13170267.42599247, + "estimatedScheduleMonths_high": 24.631031891439484, + "estimatedPeople_high": 16.714876700728187, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 1762 79396 6839 5480 67077 7516\n(ULOC) 18225\n-------------------------------------------------------------------------------\nHTML 164 5719 320 40 5359 0\n(ULOC) 2766\n-------------------------------------------------------------------------------\nSass 145 8196 999 2626 4571 0\n(ULOC) 3882\n-------------------------------------------------------------------------------\nJSX 82 9579 1210 1260 7109 349\n(ULOC) 4567\n-------------------------------------------------------------------------------\nSVG 63 40246 185 28 40033 44\n(ULOC) 18258\n-------------------------------------------------------------------------------\nCSS 52 400 74 129 197 0\n(ULOC) 211\n-------------------------------------------------------------------------------\nMarkdown 49 8445 1923 0 6522 0\n(ULOC) 5216\n-------------------------------------------------------------------------------\nJSON 32 1993 0 0 1993 0\n(ULOC) 1094\n-------------------------------------------------------------------------------\nLicense 18 407 83 0 324 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nYAML 13 328 18 21 289 0\n(ULOC) 252\n-------------------------------------------------------------------------------\nTypeScript Typings 4 482 46 49 387 24\n(ULOC) 333\n-------------------------------------------------------------------------------\nShell 2 151 29 7 115 12\n(ULOC) 99\n-------------------------------------------------------------------------------\nFlow9 1 248 9 8 231 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nGemfile 1 30 7 15 8 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPython 1 60 13 0 47 4\n(ULOC) 44\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 2390 155689 11757 9663 134269 7949\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 54305\nDRYness % 0.35\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,634,147\nEstimated Schedule Effort (organic) 24.63 months\nEstimated People Required (organic) 16.71\n───────────────────────────────────────────────────────────────────────────────\nProcessed 13882534 bytes, 13.883 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HTML": 194428, + "SCSS": 38114, + "JavaScript": 4981, + "Shell": 4002, + "Python": 1525, + "Ruby": 1036 + }, + "average_issue_resolution_time": [ + [ + "bcda-static-site", + "14 days 12:03:00" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@cmsgov/design-system-core", + 0, + "2025-01-01T18:35:23.000" + ], + [ + "@cmsgov/design-system-layout", + 0, + "2025-01-01T18:35:23.000" + ], + [ + "normalize.css", + 0, + "2025-01-01T18:35:23.000" ], - "repo_dependency_libyear_list": [ - [ - "@cmsgov/design-system-core", - 0.0, - "2025-01-01T18:35:23.000" - ], - [ - "@cmsgov/design-system-layout", - 0.0, - "2025-01-01T18:35:23.000" - ], - [ - "normalize.css", - 0.0, - "2025-01-01T18:35:23.000" - ], - [ - "svg4everybody", - 0.0, - "2025-01-01T18:35:23.000" - ] + [ + "svg4everybody", + 0, + "2025-01-01T18:35:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/beneficiary-fhir-data/beneficiary-fhir-data_data.json b/app/site/_data/CMSgov/beneficiary-fhir-data/beneficiary-fhir-data_data.json index d223ade667..edddab8ebb 100644 --- a/app/site/_data/CMSgov/beneficiary-fhir-data/beneficiary-fhir-data_data.json +++ b/app/site/_data/CMSgov/beneficiary-fhir-data/beneficiary-fhir-data_data.json @@ -1,1094 +1,1094 @@ { - "url": "https://github.com/CMSgov/beneficiary-fhir-data", - "owner": "CMSgov", - "name": "beneficiary-fhir-data", - "description": null, - "commits_count": 5330, - "issues_count": 4, - "open_issues_count": 0, - "closed_issues_count": 4, - "pull_requests_count": 2483, - "open_pull_requests_count": 12, - "merged_pull_requests_count": 1985, - "closed_pull_requests_count": 486, - "forks_count": 33, - "stargazers_count": 60, - "watchers_count": 29, - "total_project_lines": 844787, - "average_project_lines": 266, - "total_project_comment_lines": 59549, - "average_project_comment_lines": 19, - "total_project_blank_lines": 32478, - "average_blank_lines": 10, - "commits_by_month": { - "2025/1": 1, - "2024/12": 20, - "2024/11": 9 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 1 - ], - [ - "2024-12-18T00:00:00.000Z", - 2 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-08-01T00:00:00.000Z", - 2 - ], - [ - "2024-08-02T00:00:00.000Z", - 1 - ], - [ - "2024-08-08T00:00:00.000Z", - 1 - ], - [ - "2024-08-16T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 2 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ], - [ - "2024-10-08T00:00:00.000Z", - 1 - ], - [ - "2024-10-11T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2019-08-22T18:41:16Z", - "ossf_scorecard": { - "date": "2025-01-11T00:32:38Z", - "repo": { - "name": "github.com/CMSgov/beneficiary-fhir-data", - "commit": "ed5ec34406f30a5866668d91de0632248a61744b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 5, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "18 out of 18 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 18/30 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 12 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": 0, - "reason": "Project has not signed or included provenance with any releases.", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "51 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 3892340, - "CodeBytes": 0, - "Lines": 104754, - "Code": 104750, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1337, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 6938987, - "CodeBytes": 0, - "Lines": 172789, - "Code": 108047, - "Comment": 46808, - "Blank": 17934, - "Complexity": 4734, - "Count": 739, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 924471, - "CodeBytes": 0, - "Lines": 28435, - "Code": 20665, - "Comment": 5107, - "Blank": 2663, - "Complexity": 1267, - "Count": 245, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1317708, - "CodeBytes": 0, - "Lines": 27077, - "Code": 25692, - "Comment": 825, - "Blank": 560, - "Complexity": 0, - "Count": 156, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1044736, - "CodeBytes": 0, - "Lines": 18010, - "Code": 13829, - "Comment": 0, - "Blank": 4181, - "Complexity": 0, - "Count": 133, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 696451, - "CodeBytes": 0, - "Lines": 17993, - "Code": 14149, - "Comment": 1923, - "Blank": 1921, - "Complexity": 1401, - "Count": 98, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 212707, - "CodeBytes": 0, - "Lines": 5799, - "Code": 3769, - "Comment": 1188, - "Blank": 842, - "Complexity": 503, - "Count": 73, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 342633, - "CodeBytes": 0, - "Lines": 7545, - "Code": 6227, - "Comment": 899, - "Blank": 419, - "Complexity": 0, - "Count": 73, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Protocol Buffers", - "Bytes": 101941, - "CodeBytes": 0, - "Lines": 2480, - "Code": 1478, - "Comment": 353, - "Blank": 649, - "Complexity": 0, - "Count": 63, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 503314, - "CodeBytes": 0, - "Lines": 14353, - "Code": 10622, - "Comment": 1818, - "Blank": 1913, - "Complexity": 45, - "Count": 60, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 81328292, - "CodeBytes": 0, - "Lines": 320801, - "Code": 320736, - "Comment": 0, - "Blank": 65, - "Complexity": 0, - "Count": 56, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 5424890, - "CodeBytes": 0, - "Lines": 115265, - "Code": 115265, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 44, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Jinja", - "Bytes": 27491, - "CodeBytes": 0, - "Lines": 681, - "Code": 630, - "Comment": 0, - "Blank": 51, - "Complexity": 5, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 1047367, - "CodeBytes": 0, - "Lines": 1312, - "Code": 810, - "Comment": 502, - "Blank": 0, - "Complexity": 16, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 67995, - "CodeBytes": 0, - "Lines": 2229, - "Code": 1657, - "Comment": 272, - "Blank": 300, - "Complexity": 228, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Groovy", - "Bytes": 43073, - "CodeBytes": 0, - "Lines": 1077, - "Code": 690, - "Comment": 258, - "Blank": 129, - "Complexity": 53, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 10185, - "CodeBytes": 0, - "Lines": 271, - "Code": 192, - "Comment": 35, - "Blank": 44, - "Complexity": 54, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 7814, - "CodeBytes": 0, - "Lines": 196, - "Code": 122, - "Comment": 49, - "Blank": 25, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Autoconf", - "Bytes": 1477, - "CodeBytes": 0, - "Lines": 59, - "Code": 48, - "Comment": 9, - "Blank": 2, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 168637, - "CodeBytes": 0, - "Lines": 4982, - "Code": 4070, - "Comment": 0, - "Blank": 912, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 768, - "CodeBytes": 0, - "Lines": 39, - "Code": 39, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rust", - "Bytes": 26663, - "CodeBytes": 0, - "Lines": 757, - "Code": 485, - "Comment": 197, - "Blank": 75, - "Complexity": 15, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 4992, - "CodeBytes": 0, - "Lines": 146, - "Code": 126, - "Comment": 0, - "Blank": 20, - "Complexity": 10, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1684096, - "CodeBytes": 0, - "Lines": 51, - "Code": 43, - "Comment": 2, - "Blank": 6, - "Complexity": 46, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1115, - "CodeBytes": 0, - "Lines": 42, - "Code": 39, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "INI", - "Bytes": 84, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 227, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 1021, - "CodeBytes": 0, - "Lines": 66, - "Code": 53, - "Comment": 2, - "Blank": 11, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 152071, - "CodeBytes": 0, - "Lines": 3, - "Code": 1, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 1489, - "CodeBytes": 0, - "Lines": 59, - "Code": 21, - "Comment": 22, - "Blank": 16, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 1362, - "CodeBytes": 0, - "Lines": 37, - "Code": 14, - "Comment": 18, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 3708, - "CodeBytes": 0, - "Lines": 176, - "Code": 141, - "Comment": 0, - "Blank": 35, - "Complexity": 25, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Kotlin", - "Bytes": 18325, - "CodeBytes": 0, - "Lines": 503, - "Code": 408, - "Comment": 38, - "Blank": 57, - "Complexity": 56, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 1244, - "CodeBytes": 0, - "Lines": 37, - "Code": 30, - "Comment": 2, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 25901150.21799795, - "estimatedScheduleMonths_low": 49.05554002411519, - "estimatedPeople_low": 51.437576411921, - "estimatedCost_high": 80719296.52927162, - "estimatedScheduleMonths_high": 49.05554002411519, - "estimatedPeople_high": 51.437576411921, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 1337 104754 4 0 104750 0\n(ULOC) 9893\n-------------------------------------------------------------------------------\nJava 739 172789 17934 46808 108047 4734\n(ULOC) 69022\n-------------------------------------------------------------------------------\nTerraform 245 28435 2663 5107 20665 1267\n(ULOC) 9513\n-------------------------------------------------------------------------------\nYAML 156 27077 560 825 25692 0\n(ULOC) 10333\n-------------------------------------------------------------------------------\nMarkdown 133 18010 4181 0 13829 0\n(ULOC) 9703\n-------------------------------------------------------------------------------\nPython 98 17993 1921 1923 14149 1401\n(ULOC) 9284\n-------------------------------------------------------------------------------\nShell 73 5799 842 1188 3769 503\n(ULOC) 3162\n-------------------------------------------------------------------------------\nXML 73 7545 419 899 6227 0\n(ULOC) 2848\n-------------------------------------------------------------------------------\nProtocol Buffers 63 2480 649 353 1478 0\n(ULOC) 1401\n-------------------------------------------------------------------------------\nSQL 60 14353 1913 1818 10622 45\n(ULOC) 5978\n-------------------------------------------------------------------------------\nPlain Text 56 320801 65 0 320736 0\n(ULOC) 320041\n-------------------------------------------------------------------------------\nCSV 44 115265 0 0 115265 0\n(ULOC) 115246\n-------------------------------------------------------------------------------\nJinja 15 681 51 0 630 5\n(ULOC) 387\n-------------------------------------------------------------------------------\nSVG 15 1312 0 502 810 16\n(ULOC) 889\n-------------------------------------------------------------------------------\nBASH 12 2229 300 272 1657 228\n(ULOC) 1153\n-------------------------------------------------------------------------------\nGroovy 10 1077 129 258 690 53\n(ULOC) 725\n-------------------------------------------------------------------------------\nDockerfile 9 271 44 35 192 54\n(ULOC) 199\n-------------------------------------------------------------------------------\nTOML 9 196 25 49 122 0\n(ULOC) 87\n-------------------------------------------------------------------------------\nAutoconf 8 59 2 9 48 0\n(ULOC) 40\n-------------------------------------------------------------------------------\nXML Schema 6 4982 912 0 4070 0\n(ULOC) 1840\n-------------------------------------------------------------------------------\nDocker ignore 5 39 0 0 39 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nRust 4 757 75 197 485 15\n(ULOC) 482\n-------------------------------------------------------------------------------\nSmarty Template 4 146 20 0 126 10\n(ULOC) 84\n-------------------------------------------------------------------------------\nJavaScript 3 51 6 2 43 46\n(ULOC) 40\n-------------------------------------------------------------------------------\nHTML 2 42 3 0 39 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nINI 2 6 0 0 6 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nProperties File 2 4 0 2 2 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSass 2 66 11 2 53 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nCSS 1 3 1 1 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 1 59 16 22 21 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nGemfile 1 37 5 18 14 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nGo 1 176 35 0 141 25\n(ULOC) 111\n-------------------------------------------------------------------------------\nKotlin 1 503 57 38 408 56\n(ULOC) 360\n-------------------------------------------------------------------------------\nRuby 1 37 5 2 30 0\n(ULOC) 29\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 3191 848034 32848 60330 754856 8458\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 571860\nDRYness % 0.67\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $28,402,243\nEstimated Schedule Effort (organic) 49.06 months\nEstimated People Required (organic) 51.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 105999674 bytes, 106.000 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/beneficiary-fhir-data", + "owner": "CMSgov", + "name": "beneficiary-fhir-data", + "description": null, + "commits_count": 5330, + "issues_count": 4, + "open_issues_count": 0, + "closed_issues_count": 4, + "pull_requests_count": 2483, + "open_pull_requests_count": 12, + "merged_pull_requests_count": 1985, + "closed_pull_requests_count": 486, + "forks_count": 33, + "stargazers_count": 60, + "watchers_count": 29, + "total_project_lines": 844787, + "average_project_lines": 266, + "total_project_comment_lines": 59549, + "average_project_comment_lines": 19, + "total_project_blank_lines": 32478, + "average_blank_lines": 10, + "commits_by_month": { + "2025/1": 1, + "2024/12": 20, + "2024/11": 9 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 1 + ], + [ + "2024-12-18T00:00:00.000Z", + 2 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 + ], + [ + "2024-08-01T00:00:00.000Z", + 2 + ], + [ + "2024-08-02T00:00:00.000Z", + 1 + ], + [ + "2024-08-08T00:00:00.000Z", + 1 + ], + [ + "2024-08-16T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 2 + ], + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ], + [ + "2024-10-08T00:00:00.000Z", + 1 + ], + [ + "2024-10-11T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2019-08-22T18:41:16Z", + "ossf_scorecard": { + "date": "2025-01-11T00:32:38Z", + "repo": { + "name": "github.com/CMSgov/beneficiary-fhir-data", + "commit": "ed5ec34406f30a5866668d91de0632248a61744b" }, - "predominant_langs": { - "Java": 6938987, - "HCL": 905835, - "Python": 673550, - "Shell": 294230, - "PLpgSQL": 172554, - "Groovy": 43073, - "Rust": 26663, - "Kotlin": 18325, - "Jinja": 12148, - "Liquid": 11845, - "Dockerfile": 10185, - "Go": 3708, - "Ruby": 2606, - "Smarty": 1730, - "HTML": 1115, - "JavaScript": 1050, - "SCSS": 1021 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "beneficiary-fhir-data", - "311 days 32:16:42.75" - ] - ], - "repo_dependency_libyear_list": [ - [ - "The", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "This", - -1.0, - "2024-08-04T19:09:58.000" - ], - [ - "blinker", - 0.5808219178, - "2024-08-04T19:09:58.000" - ], - [ - "boto3", - 0.7424657534, - "2024-06-18T20:40:53.000" - ], - [ - "boto3", - 0.8684931507, - "2024-08-04T19:09:58.000" - ], - [ - "botocore", - 0.6410958904, - "2024-06-18T20:40:53.000" - ], - [ - "botocore", - 0.7671232877, - "2024-08-04T19:09:58.000" - ], - [ - "brotli", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "by", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "certifi", - 0.8630136986, - "2024-06-18T20:40:53.000" - ], - [ - "certifi", - 0.9506849315, - "2024-08-04T19:09:58.000" - ], - [ - "charset-normalizer", - 0.0246575342, - "2024-08-04T19:09:58.000" - ], - [ - "click", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "configargparse", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "diagrams", - 0.0, - "2025-01-01T18:35:23.000" - ], - [ - "flask", - 0.6273972603, - "2024-08-04T19:09:58.000" - ], - [ - "flask-basicauth", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "flask-cors", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "gevent", - 0.4219178082, - "2024-08-04T19:09:58.000" - ], - [ - "geventhttpclient", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "greenlet", - 0.1561643836, - "2024-08-04T19:09:58.000" - ], - [ - "hash", - -1.0, - "2024-08-04T19:09:58.000" - ], - [ - "idna", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "importlib-metadata", - 0.0, - "2024-06-18T20:40:53.000" - ], - [ - "itsdangerous", - 2.0657534247, - "2024-08-04T19:09:58.000" - ], - [ - "jinja2", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "jinja2", - 0.3178082192, - "2024-06-18T20:40:53.000" - ], - [ - "jmespath", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "locust", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "markupsafe", - 0.6684931507, - "2024-08-04T19:09:58.000" - ], - [ - "msgpack", - 0.4246575342, - "2024-08-04T19:09:58.000" - ], - [ - "pip-compile", - -1.0, - "2024-08-04T19:09:58.000" - ], - [ - "psutil", - 0.2630136986, - "2024-06-18T20:40:53.000" - ], - [ - "psutil", - 0.6767123288, - "2024-08-04T19:09:58.000" - ], - [ - "psycogreen", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "psycopg2-binary", - 0.1616438356, - "2024-08-04T19:09:58.000" - ], - [ - "python-dateutil", - 2.6328767123, - "2024-08-04T19:09:58.000" - ], - [ - "pyzmq", - 0.7260273973, - "2024-06-18T20:40:53.000" - ], - [ - "pyzmq", - 0.9835616438, - "2024-08-04T19:09:58.000" - ], - [ - "requests", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "requirements.in", - -1.0, - "2024-08-04T19:09:58.000" - ], - [ - "roundrobin", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "s3transfer", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "setuptools", - 0.0520547945, - "2024-08-04T19:09:58.000" - ], - [ - "setuptools", - 0.6876712329, - "2024-06-18T20:40:53.000" - ], - [ - "six", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "typing-extensions", - 0.7205479452, - "2024-08-04T19:09:58.000" - ], - [ - "urllib3", - 0.6657534247, - "2024-08-04T19:09:58.000" - ], - [ - "via", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "werkzeug", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "zipp", - 0.2219178082, - "2024-06-18T20:40:53.000" - ], - [ - "zope-event", - 0.0, - "2024-08-04T19:09:58.000" - ], - [ - "zope-interface", - 0.6328767123, - "2024-08-04T19:09:58.000" - ] + "score": 5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 5, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "18 out of 18 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 18/30 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 12 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": 0, + "reason": "Project has not signed or included provenance with any releases.", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "51 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 3892340, + "CodeBytes": 0, + "Lines": 104754, + "Code": 104750, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1337, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 6938987, + "CodeBytes": 0, + "Lines": 172789, + "Code": 108047, + "Comment": 46808, + "Blank": 17934, + "Complexity": 4734, + "Count": 739, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 924471, + "CodeBytes": 0, + "Lines": 28435, + "Code": 20665, + "Comment": 5107, + "Blank": 2663, + "Complexity": 1267, + "Count": 245, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1317708, + "CodeBytes": 0, + "Lines": 27077, + "Code": 25692, + "Comment": 825, + "Blank": 560, + "Complexity": 0, + "Count": 156, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1044736, + "CodeBytes": 0, + "Lines": 18010, + "Code": 13829, + "Comment": 0, + "Blank": 4181, + "Complexity": 0, + "Count": 133, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 696451, + "CodeBytes": 0, + "Lines": 17993, + "Code": 14149, + "Comment": 1923, + "Blank": 1921, + "Complexity": 1401, + "Count": 98, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 212707, + "CodeBytes": 0, + "Lines": 5799, + "Code": 3769, + "Comment": 1188, + "Blank": 842, + "Complexity": 503, + "Count": 73, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 342633, + "CodeBytes": 0, + "Lines": 7545, + "Code": 6227, + "Comment": 899, + "Blank": 419, + "Complexity": 0, + "Count": 73, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Protocol Buffers", + "Bytes": 101941, + "CodeBytes": 0, + "Lines": 2480, + "Code": 1478, + "Comment": 353, + "Blank": 649, + "Complexity": 0, + "Count": 63, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 503314, + "CodeBytes": 0, + "Lines": 14353, + "Code": 10622, + "Comment": 1818, + "Blank": 1913, + "Complexity": 45, + "Count": 60, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 81328292, + "CodeBytes": 0, + "Lines": 320801, + "Code": 320736, + "Comment": 0, + "Blank": 65, + "Complexity": 0, + "Count": 56, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 5424890, + "CodeBytes": 0, + "Lines": 115265, + "Code": 115265, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 44, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Jinja", + "Bytes": 27491, + "CodeBytes": 0, + "Lines": 681, + "Code": 630, + "Comment": 0, + "Blank": 51, + "Complexity": 5, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 1047367, + "CodeBytes": 0, + "Lines": 1312, + "Code": 810, + "Comment": 502, + "Blank": 0, + "Complexity": 16, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 67995, + "CodeBytes": 0, + "Lines": 2229, + "Code": 1657, + "Comment": 272, + "Blank": 300, + "Complexity": 228, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Groovy", + "Bytes": 43073, + "CodeBytes": 0, + "Lines": 1077, + "Code": 690, + "Comment": 258, + "Blank": 129, + "Complexity": 53, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 10185, + "CodeBytes": 0, + "Lines": 271, + "Code": 192, + "Comment": 35, + "Blank": 44, + "Complexity": 54, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 7814, + "CodeBytes": 0, + "Lines": 196, + "Code": 122, + "Comment": 49, + "Blank": 25, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Autoconf", + "Bytes": 1477, + "CodeBytes": 0, + "Lines": 59, + "Code": 48, + "Comment": 9, + "Blank": 2, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 168637, + "CodeBytes": 0, + "Lines": 4982, + "Code": 4070, + "Comment": 0, + "Blank": 912, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 768, + "CodeBytes": 0, + "Lines": 39, + "Code": 39, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rust", + "Bytes": 26663, + "CodeBytes": 0, + "Lines": 757, + "Code": 485, + "Comment": 197, + "Blank": 75, + "Complexity": 15, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 4992, + "CodeBytes": 0, + "Lines": 146, + "Code": 126, + "Comment": 0, + "Blank": 20, + "Complexity": 10, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1684096, + "CodeBytes": 0, + "Lines": 51, + "Code": 43, + "Comment": 2, + "Blank": 6, + "Complexity": 46, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1115, + "CodeBytes": 0, + "Lines": 42, + "Code": 39, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "INI", + "Bytes": 84, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 227, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 1021, + "CodeBytes": 0, + "Lines": 66, + "Code": 53, + "Comment": 2, + "Blank": 11, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 152071, + "CodeBytes": 0, + "Lines": 3, + "Code": 1, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 1489, + "CodeBytes": 0, + "Lines": 59, + "Code": 21, + "Comment": 22, + "Blank": 16, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 1362, + "CodeBytes": 0, + "Lines": 37, + "Code": 14, + "Comment": 18, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 3708, + "CodeBytes": 0, + "Lines": 176, + "Code": 141, + "Comment": 0, + "Blank": 35, + "Complexity": 25, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Kotlin", + "Bytes": 18325, + "CodeBytes": 0, + "Lines": 503, + "Code": 408, + "Comment": 38, + "Blank": 57, + "Complexity": 56, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 1244, + "CodeBytes": 0, + "Lines": 37, + "Code": 30, + "Comment": 2, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 25901150.21799795, + "estimatedScheduleMonths_low": 49.05554002411519, + "estimatedPeople_low": 51.437576411921, + "estimatedCost_high": 80719296.52927162, + "estimatedScheduleMonths_high": 49.05554002411519, + "estimatedPeople_high": 51.437576411921, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 1337 104754 4 0 104750 0\n(ULOC) 9893\n-------------------------------------------------------------------------------\nJava 739 172789 17934 46808 108047 4734\n(ULOC) 69022\n-------------------------------------------------------------------------------\nTerraform 245 28435 2663 5107 20665 1267\n(ULOC) 9513\n-------------------------------------------------------------------------------\nYAML 156 27077 560 825 25692 0\n(ULOC) 10333\n-------------------------------------------------------------------------------\nMarkdown 133 18010 4181 0 13829 0\n(ULOC) 9703\n-------------------------------------------------------------------------------\nPython 98 17993 1921 1923 14149 1401\n(ULOC) 9284\n-------------------------------------------------------------------------------\nShell 73 5799 842 1188 3769 503\n(ULOC) 3162\n-------------------------------------------------------------------------------\nXML 73 7545 419 899 6227 0\n(ULOC) 2848\n-------------------------------------------------------------------------------\nProtocol Buffers 63 2480 649 353 1478 0\n(ULOC) 1401\n-------------------------------------------------------------------------------\nSQL 60 14353 1913 1818 10622 45\n(ULOC) 5978\n-------------------------------------------------------------------------------\nPlain Text 56 320801 65 0 320736 0\n(ULOC) 320041\n-------------------------------------------------------------------------------\nCSV 44 115265 0 0 115265 0\n(ULOC) 115246\n-------------------------------------------------------------------------------\nJinja 15 681 51 0 630 5\n(ULOC) 387\n-------------------------------------------------------------------------------\nSVG 15 1312 0 502 810 16\n(ULOC) 889\n-------------------------------------------------------------------------------\nBASH 12 2229 300 272 1657 228\n(ULOC) 1153\n-------------------------------------------------------------------------------\nGroovy 10 1077 129 258 690 53\n(ULOC) 725\n-------------------------------------------------------------------------------\nDockerfile 9 271 44 35 192 54\n(ULOC) 199\n-------------------------------------------------------------------------------\nTOML 9 196 25 49 122 0\n(ULOC) 87\n-------------------------------------------------------------------------------\nAutoconf 8 59 2 9 48 0\n(ULOC) 40\n-------------------------------------------------------------------------------\nXML Schema 6 4982 912 0 4070 0\n(ULOC) 1840\n-------------------------------------------------------------------------------\nDocker ignore 5 39 0 0 39 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nRust 4 757 75 197 485 15\n(ULOC) 482\n-------------------------------------------------------------------------------\nSmarty Template 4 146 20 0 126 10\n(ULOC) 84\n-------------------------------------------------------------------------------\nJavaScript 3 51 6 2 43 46\n(ULOC) 40\n-------------------------------------------------------------------------------\nHTML 2 42 3 0 39 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nINI 2 6 0 0 6 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nProperties File 2 4 0 2 2 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSass 2 66 11 2 53 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nCSS 1 3 1 1 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 1 59 16 22 21 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nGemfile 1 37 5 18 14 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nGo 1 176 35 0 141 25\n(ULOC) 111\n-------------------------------------------------------------------------------\nKotlin 1 503 57 38 408 56\n(ULOC) 360\n-------------------------------------------------------------------------------\nRuby 1 37 5 2 30 0\n(ULOC) 29\n───────────────────────────────────────────────────────────────────────────────\nTotal 3191 848034 32848 60330 754856 8458\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 571860\nDRYness % 0.67\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $28,402,243\nEstimated Schedule Effort (organic) 49.06 months\nEstimated People Required (organic) 51.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 105999674 bytes, 106.000 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 6938987, + "HCL": 905835, + "Python": 673550, + "Shell": 294230, + "PLpgSQL": 172554, + "Groovy": 43073, + "Rust": 26663, + "Kotlin": 18325, + "Jinja": 12148, + "Liquid": 11845, + "Dockerfile": 10185, + "Go": 3708, + "Ruby": 2606, + "Smarty": 1730, + "HTML": 1115, + "JavaScript": 1050, + "SCSS": 1021 + }, + "average_issue_resolution_time": [ + [ + "beneficiary-fhir-data", + "311 days 32:16:42.75" + ] + ], + "repo_dependency_libyear_list": [ + [ + "The", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "This", + -1, + "2024-08-04T19:09:58.000" + ], + [ + "blinker", + 0.5808219178, + "2024-08-04T19:09:58.000" + ], + [ + "boto3", + 0.7424657534, + "2024-06-18T20:40:53.000" + ], + [ + "boto3", + 0.8684931507, + "2024-08-04T19:09:58.000" + ], + [ + "botocore", + 0.6410958904, + "2024-06-18T20:40:53.000" + ], + [ + "botocore", + 0.7671232877, + "2024-08-04T19:09:58.000" + ], + [ + "brotli", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "by", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "certifi", + 0.8630136986, + "2024-06-18T20:40:53.000" + ], + [ + "certifi", + 0.9506849315, + "2024-08-04T19:09:58.000" + ], + [ + "charset-normalizer", + 0.0246575342, + "2024-08-04T19:09:58.000" + ], + [ + "click", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "configargparse", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "diagrams", + 0, + "2025-01-01T18:35:23.000" + ], + [ + "flask", + 0.6273972603, + "2024-08-04T19:09:58.000" + ], + [ + "flask-basicauth", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "flask-cors", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "gevent", + 0.4219178082, + "2024-08-04T19:09:58.000" + ], + [ + "geventhttpclient", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "greenlet", + 0.1561643836, + "2024-08-04T19:09:58.000" + ], + [ + "hash", + -1, + "2024-08-04T19:09:58.000" + ], + [ + "idna", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "importlib-metadata", + 0, + "2024-06-18T20:40:53.000" + ], + [ + "itsdangerous", + 2.0657534247, + "2024-08-04T19:09:58.000" + ], + [ + "jinja2", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "jinja2", + 0.3178082192, + "2024-06-18T20:40:53.000" + ], + [ + "jmespath", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "locust", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "markupsafe", + 0.6684931507, + "2024-08-04T19:09:58.000" + ], + [ + "msgpack", + 0.4246575342, + "2024-08-04T19:09:58.000" + ], + [ + "pip-compile", + -1, + "2024-08-04T19:09:58.000" + ], + [ + "psutil", + 0.2630136986, + "2024-06-18T20:40:53.000" + ], + [ + "psutil", + 0.6767123288, + "2024-08-04T19:09:58.000" + ], + [ + "psycogreen", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "psycopg2-binary", + 0.1616438356, + "2024-08-04T19:09:58.000" + ], + [ + "python-dateutil", + 2.6328767123, + "2024-08-04T19:09:58.000" + ], + [ + "pyzmq", + 0.7260273973, + "2024-06-18T20:40:53.000" + ], + [ + "pyzmq", + 0.9835616438, + "2024-08-04T19:09:58.000" + ], + [ + "requests", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "requirements.in", + -1, + "2024-08-04T19:09:58.000" + ], + [ + "roundrobin", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "s3transfer", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "setuptools", + 0.0520547945, + "2024-08-04T19:09:58.000" + ], + [ + "setuptools", + 0.6876712329, + "2024-06-18T20:40:53.000" + ], + [ + "six", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "typing-extensions", + 0.7205479452, + "2024-08-04T19:09:58.000" + ], + [ + "urllib3", + 0.6657534247, + "2024-08-04T19:09:58.000" + ], + [ + "via", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "werkzeug", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "zipp", + 0.2219178082, + "2024-06-18T20:40:53.000" + ], + [ + "zope-event", + 0, + "2024-08-04T19:09:58.000" + ], + [ + "zope-interface", + 0.6328767123, + "2024-08-04T19:09:58.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/beneficiary-reporting-validation/beneficiary-reporting-validation_data.json b/app/site/_data/CMSgov/beneficiary-reporting-validation/beneficiary-reporting-validation_data.json index 0c96607d2c..499175c514 100644 --- a/app/site/_data/CMSgov/beneficiary-reporting-validation/beneficiary-reporting-validation_data.json +++ b/app/site/_data/CMSgov/beneficiary-reporting-validation/beneficiary-reporting-validation_data.json @@ -1,385 +1,385 @@ { - "url": "https://github.com/CMSgov/beneficiary-reporting-validation", - "owner": "CMSgov", - "name": "beneficiary-reporting-validation", - "description": null, - "commits_count": 389, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 180, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 142, - "closed_pull_requests_count": 38, - "forks_count": 3, - "stargazers_count": 2, - "watchers_count": 21, - "total_project_lines": 2607, - "average_project_lines": 47, - "total_project_comment_lines": 10, - "average_project_comment_lines": 0, - "total_project_blank_lines": 402, - "average_blank_lines": 7, - "commits_by_month": { - "2024/9": 3, - "2024/4": 1, - "2024/2": 2, - "2023/10": 2, - "2023/5": 4, - "2022/8": 4, - "2022/6": 4, - "2022/2": 2, - "2021/12": 4, - "2021/10": 4 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-04T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2018-04-20T14:52:58Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:54Z", - "repo": { - "name": "github.com/CMSgov/beneficiary-reporting-validation", - "commit": "af10f00d59ec4a066fea6709a0633b2f2e5fd57b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "7 out of 17 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 16/23 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 4, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "22 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 54799, - "CodeBytes": 0, - "Lines": 1974, - "Code": 1691, - "Comment": 8, - "Blank": 275, - "Complexity": 135, - "Count": 42, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 11028, - "CodeBytes": 0, - "Lines": 293, - "Code": 210, - "Comment": 0, - "Blank": 83, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2447, - "CodeBytes": 0, - "Lines": 109, - "Code": 109, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2654, - "CodeBytes": 0, - "Lines": 115, - "Code": 89, - "Comment": 2, - "Blank": 24, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 56242.93610291686, - "estimatedScheduleMonths_low": 4.771475034421619, - "estimatedPeople_low": 1.1483250444370732, - "estimatedCost_high": 175277.5532653212, - "estimatedScheduleMonths_high": 4.771475034421619, - "estimatedPeople_high": 1.1483250444370732, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 42 1974 275 8 1691 135\n(ULOC) 730\n-------------------------------------------------------------------------------\nMarkdown 7 293 83 0 210 0\n(ULOC) 178\n-------------------------------------------------------------------------------\nJSON 3 109 0 0 109 0\n(ULOC) 96\n-------------------------------------------------------------------------------\nYAML 3 115 24 2 89 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 56 2607 402 10 2195 135\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1144\nDRYness % 0.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $61,673\nEstimated Schedule Effort (organic) 4.77 months\nEstimated People Required (organic) 1.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 77483 bytes, 0.077 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/beneficiary-reporting-validation", + "owner": "CMSgov", + "name": "beneficiary-reporting-validation", + "description": null, + "commits_count": 389, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 180, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 142, + "closed_pull_requests_count": 38, + "forks_count": 3, + "stargazers_count": 2, + "watchers_count": 21, + "total_project_lines": 2607, + "average_project_lines": 47, + "total_project_comment_lines": 10, + "average_project_comment_lines": 0, + "total_project_blank_lines": 402, + "average_blank_lines": 7, + "commits_by_month": { + "2024/9": 3, + "2024/4": 1, + "2024/2": 2, + "2023/10": 2, + "2023/5": 4, + "2022/8": 4, + "2022/6": 4, + "2022/2": 2, + "2021/12": 4, + "2021/10": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-04T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2018-04-20T14:52:58Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:54Z", + "repo": { + "name": "github.com/CMSgov/beneficiary-reporting-validation", + "commit": "af10f00d59ec4a066fea6709a0633b2f2e5fd57b" }, - "predominant_langs": { - "TypeScript": 54799 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@types/jest", - 3.298630137, - "2025-01-01T18:36:53.000" - ], - [ - "@types/node", - 1.2739726027, - "2025-01-01T18:36:53.000" - ], - [ - "class-transformer", - 0.0, - "2025-01-01T18:36:53.000" - ], - [ - "class-validator", - 0.0, - "2025-01-01T18:36:53.000" - ], - [ - "date-fns", - 1.3863013699, - "2025-01-01T18:36:53.000" - ], - [ - "jest", - 2.8547945205, - "2025-01-01T18:36:53.000" - ], - [ - "reflect-metadata", - 0.0, - "2025-01-01T18:36:53.000" - ], - [ - "ts-jest", - 3.304109589, - "2025-01-01T18:36:53.000" - ], - [ - "ts-node", - 3.0, - "2025-01-01T18:36:53.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:36:53.000" - ] + "score": 4.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "7 out of 17 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 16/23 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 4, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "22 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 54799, + "CodeBytes": 0, + "Lines": 1974, + "Code": 1691, + "Comment": 8, + "Blank": 275, + "Complexity": 135, + "Count": 42, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 11028, + "CodeBytes": 0, + "Lines": 293, + "Code": 210, + "Comment": 0, + "Blank": 83, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2447, + "CodeBytes": 0, + "Lines": 109, + "Code": 109, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2654, + "CodeBytes": 0, + "Lines": 115, + "Code": 89, + "Comment": 2, + "Blank": 24, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 56242.93610291686, + "estimatedScheduleMonths_low": 4.771475034421619, + "estimatedPeople_low": 1.1483250444370732, + "estimatedCost_high": 175277.5532653212, + "estimatedScheduleMonths_high": 4.771475034421619, + "estimatedPeople_high": 1.1483250444370732, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 42 1974 275 8 1691 135\n(ULOC) 730\n-------------------------------------------------------------------------------\nMarkdown 7 293 83 0 210 0\n(ULOC) 178\n-------------------------------------------------------------------------------\nJSON 3 109 0 0 109 0\n(ULOC) 96\n-------------------------------------------------------------------------------\nYAML 3 115 24 2 89 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n───────────────────────────────────────────────────────────────────────────────\nTotal 56 2607 402 10 2195 135\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1144\nDRYness % 0.44\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $61,673\nEstimated Schedule Effort (organic) 4.77 months\nEstimated People Required (organic) 1.15\n───────────────────────────────────────────────────────────────────────────────\nProcessed 77483 bytes, 0.077 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 54799 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@types/jest", + 3.298630137, + "2025-01-01T18:36:53.000" + ], + [ + "@types/node", + 1.2739726027, + "2025-01-01T18:36:53.000" + ], + [ + "class-transformer", + 0, + "2025-01-01T18:36:53.000" + ], + [ + "class-validator", + 0, + "2025-01-01T18:36:53.000" + ], + [ + "date-fns", + 1.3863013699, + "2025-01-01T18:36:53.000" + ], + [ + "jest", + 2.8547945205, + "2025-01-01T18:36:53.000" + ], + [ + "reflect-metadata", + 0, + "2025-01-01T18:36:53.000" + ], + [ + "ts-jest", + 3.304109589, + "2025-01-01T18:36:53.000" + ], + [ + "ts-node", + 3, + "2025-01-01T18:36:53.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:36:53.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/bluebutton-css/bluebutton-css_data.json b/app/site/_data/CMSgov/bluebutton-css/bluebutton-css_data.json index 05a21c5f68..2b3efebdcd 100644 --- a/app/site/_data/CMSgov/bluebutton-css/bluebutton-css_data.json +++ b/app/site/_data/CMSgov/bluebutton-css/bluebutton-css_data.json @@ -1,440 +1,440 @@ { - "url": "https://github.com/CMSgov/bluebutton-css", - "owner": "CMSgov", - "name": "bluebutton-css", - "description": "Blue Button 2.0 CSS", - "commits_count": 95, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 73, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 48, - "closed_pull_requests_count": 23, - "forks_count": 3, - "stargazers_count": 2, - "watchers_count": 21, - "total_project_lines": 3353, - "average_project_lines": 64, - "total_project_comment_lines": 554, - "average_project_comment_lines": 11, - "total_project_blank_lines": 377, - "average_blank_lines": 7, - "commits_by_month": { - "2024/9": 1, - "2024/8": 1, - "2024/7": 2, - "2023/2": 1, - "2022/12": 3, - "2022/10": 2, - "2022/9": 1, - "2021/1": 1, - "2020/2": 1, - "2019/12": 1, - "2019/10": 4, - "2019/9": 2, - "2019/7": 4, - "2019/6": 2, - "2019/5": 2, - "2019/4": 1, - "2019/2": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2018-09-06T23:45:46Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:18Z", - "repo": { - "name": "github.com/CMSgov/bluebutton-css", - "commit": "1fb9a844a3f82187c279a3178bdb13f8c2810bec" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 28 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 18/29 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Sass", - "Bytes": 53532, - "CodeBytes": 0, - "Lines": 2746, - "Code": 1936, - "Comment": 490, - "Blank": 320, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 26064, - "CodeBytes": 0, - "Lines": 214, - "Code": 202, - "Comment": 12, - "Blank": 0, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 339018, - "CodeBytes": 0, - "Lines": 5, - "Code": 3, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2850, - "CodeBytes": 0, - "Lines": 95, - "Code": 66, - "Comment": 0, - "Blank": 29, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 984, - "CodeBytes": 0, - "Lines": 40, - "Code": 40, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1032, - "CodeBytes": 0, - "Lines": 39, - "Code": 22, - "Comment": 14, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 7230, - "CodeBytes": 0, - "Lines": 214, - "Code": 153, - "Comment": 36, - "Blank": 25, - "Complexity": 22, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 62365.52453939949, - "estimatedScheduleMonths_low": 4.962559900031952, - "estimatedPeople_low": 1.2243013420389075, - "estimatedCost_high": 194358.2129028889, - "estimatedScheduleMonths_high": 4.962559900031952, - "estimatedPeople_high": 1.2243013420389075, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSass 22 2746 320 490 1936 0\n(ULOC) 1401\n-------------------------------------------------------------------------------\nSVG 21 214 0 12 202 0\n(ULOC) 119\n-------------------------------------------------------------------------------\nCSS 3 5 0 2 3 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nMarkdown 3 95 29 0 66 0\n(ULOC) 51\n-------------------------------------------------------------------------------\nJSON 1 40 0 0 40 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nJavaScript 1 39 3 14 22 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nShell 1 214 25 36 153 22\n(ULOC) 150\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 52 3353 377 554 2422 22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1791\nDRYness % 0.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $68,387\nEstimated Schedule Effort (organic) 4.96 months\nEstimated People Required (organic) 1.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 430710 bytes, 0.431 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/bluebutton-css", + "owner": "CMSgov", + "name": "bluebutton-css", + "description": "Blue Button 2.0 CSS", + "commits_count": 95, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 73, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 48, + "closed_pull_requests_count": 23, + "forks_count": 3, + "stargazers_count": 2, + "watchers_count": 21, + "total_project_lines": 3353, + "average_project_lines": 64, + "total_project_comment_lines": 554, + "average_project_comment_lines": 11, + "total_project_blank_lines": 377, + "average_blank_lines": 7, + "commits_by_month": { + "2024/9": 1, + "2024/8": 1, + "2024/7": 2, + "2023/2": 1, + "2022/12": 3, + "2022/10": 2, + "2022/9": 1, + "2021/1": 1, + "2020/2": 1, + "2019/12": 1, + "2019/10": 4, + "2019/9": 2, + "2019/7": 4, + "2019/6": 2, + "2019/5": 2, + "2019/4": 1, + "2019/2": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2018-09-06T23:45:46Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:18Z", + "repo": { + "name": "github.com/CMSgov/bluebutton-css", + "commit": "1fb9a844a3f82187c279a3178bdb13f8c2810bec" }, - "predominant_langs": { - "SCSS": 53532, - "Shell": 7230, - "Groovy": 4535, - "JavaScript": 1032 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@cmsgov/design-system", - 2.1616438356, - "2025-01-01T18:36:24.000" - ], - [ - "ansi-regex", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "gulp", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-clean-css", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-cli", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-minify", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-rename", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-sass", - 2.9095890411, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-sourcemaps", - 1.7287671233, - "2025-01-01T18:36:24.000" - ], - [ - "gulp-wait", - 0.0, - "2025-01-01T18:36:24.000" - ], - [ - "node-gyp", - 0.0054794521, - "2025-01-01T18:36:24.000" - ], - [ - "node-sass", - 0.5232876712, - "2025-01-01T18:36:24.000" - ], - [ - "pump", - 0.0, - "2025-01-01T18:36:24.000" - ] + "score": 4.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 28 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 18/29 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Sass", + "Bytes": 53532, + "CodeBytes": 0, + "Lines": 2746, + "Code": 1936, + "Comment": 490, + "Blank": 320, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 26064, + "CodeBytes": 0, + "Lines": 214, + "Code": 202, + "Comment": 12, + "Blank": 0, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 339018, + "CodeBytes": 0, + "Lines": 5, + "Code": 3, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2850, + "CodeBytes": 0, + "Lines": 95, + "Code": 66, + "Comment": 0, + "Blank": 29, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 984, + "CodeBytes": 0, + "Lines": 40, + "Code": 40, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1032, + "CodeBytes": 0, + "Lines": 39, + "Code": 22, + "Comment": 14, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 7230, + "CodeBytes": 0, + "Lines": 214, + "Code": 153, + "Comment": 36, + "Blank": 25, + "Complexity": 22, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 62365.52453939949, + "estimatedScheduleMonths_low": 4.962559900031952, + "estimatedPeople_low": 1.2243013420389075, + "estimatedCost_high": 194358.2129028889, + "estimatedScheduleMonths_high": 4.962559900031952, + "estimatedPeople_high": 1.2243013420389075, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSass 22 2746 320 490 1936 0\n(ULOC) 1401\n-------------------------------------------------------------------------------\nSVG 21 214 0 12 202 0\n(ULOC) 119\n-------------------------------------------------------------------------------\nCSS 3 5 0 2 3 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nMarkdown 3 95 29 0 66 0\n(ULOC) 51\n-------------------------------------------------------------------------------\nJSON 1 40 0 0 40 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nJavaScript 1 39 3 14 22 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nShell 1 214 25 36 153 22\n(ULOC) 150\n───────────────────────────────────────────────────────────────────────────────\nTotal 52 3353 377 554 2422 22\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1791\nDRYness % 0.53\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $68,387\nEstimated Schedule Effort (organic) 4.96 months\nEstimated People Required (organic) 1.22\n───────────────────────────────────────────────────────────────────────────────\nProcessed 430710 bytes, 0.431 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "SCSS": 53532, + "Shell": 7230, + "Groovy": 4535, + "JavaScript": 1032 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@cmsgov/design-system", + 2.1616438356, + "2025-01-01T18:36:24.000" + ], + [ + "ansi-regex", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "gulp", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-clean-css", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-cli", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-minify", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-rename", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-sass", + 2.9095890411, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-sourcemaps", + 1.7287671233, + "2025-01-01T18:36:24.000" + ], + [ + "gulp-wait", + 0, + "2025-01-01T18:36:24.000" + ], + [ + "node-gyp", + 0.0054794521, + "2025-01-01T18:36:24.000" + ], + [ + "node-sass", + 0.5232876712, + "2025-01-01T18:36:24.000" + ], + [ + "pump", + 0, + "2025-01-01T18:36:24.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/bluebutton-sample-client-nodejs-react/bluebutton-sample-client-nodejs-react_data.json b/app/site/_data/CMSgov/bluebutton-sample-client-nodejs-react/bluebutton-sample-client-nodejs-react_data.json index 1ea2b99668..9ec3c26311 100644 --- a/app/site/_data/CMSgov/bluebutton-sample-client-nodejs-react/bluebutton-sample-client-nodejs-react_data.json +++ b/app/site/_data/CMSgov/bluebutton-sample-client-nodejs-react/bluebutton-sample-client-nodejs-react_data.json @@ -1,717 +1,717 @@ { - "url": "https://github.com/CMSgov/bluebutton-sample-client-nodejs-react", - "owner": "CMSgov", - "name": "bluebutton-sample-client-nodejs-react", - "description": null, - "commits_count": 133, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 65, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 38, - "closed_pull_requests_count": 23, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 17, - "total_project_lines": 1487, - "average_project_lines": 36, - "total_project_comment_lines": 88, - "average_project_comment_lines": 2, - "total_project_blank_lines": 192, - "average_blank_lines": 5, - "commits_by_month": { - "2025/1": 1, - "2024/12": 4, - "2024/10": 1, - "2024/9": 3, - "2024/8": 3, - "2024/7": 4, - "2024/6": 1, - "2024/4": 1, - "2024/1": 2, - "2023/11": 4, - "2023/2": 2, - "2022/12": 4 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-09-22T19:55:37Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:24Z", - "repo": { - "name": "github.com/CMSgov/bluebutton-sample-client-nodejs-react", - "commit": "3f529c6f2677bde658702b802aa8bc6ed5994559" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 8, - "reason": "13 out of 16 merged PRs checked by a CI test -- score normalized to 8", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 4, - "reason": "5 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 4", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 2915368, - "CodeBytes": 0, - "Lines": 54617, - "Code": 54616, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 18003, - "CodeBytes": 0, - "Lines": 468, - "Code": 379, - "Comment": 52, - "Blank": 37, - "Complexity": 32, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 14401, - "CodeBytes": 0, - "Lines": 248, - "Code": 154, - "Comment": 0, - "Blank": 94, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 965, - "CodeBytes": 0, - "Lines": 50, - "Code": 32, - "Comment": 3, - "Blank": 15, - "Complexity": 1, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1608, - "CodeBytes": 0, - "Lines": 74, - "Code": 69, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 665, - "CodeBytes": 0, - "Lines": 23, - "Code": 21, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 618, - "CodeBytes": 0, - "Lines": 20, - "Code": 20, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6556, - "CodeBytes": 0, - "Lines": 117, - "Code": 96, - "Comment": 0, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 5754, - "CodeBytes": 0, - "Lines": 142, - "Code": 114, - "Comment": 9, - "Blank": 19, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 1032, - "CodeBytes": 0, - "Lines": 41, - "Code": 32, - "Comment": 3, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 37, - "CodeBytes": 0, - "Lines": 1, - "Code": 0, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1672495.8923878435, - "estimatedScheduleMonths_low": 17.318311401769925, - "estimatedPeople_low": 9.408253774962743, - "estimatedCost_high": 5212227.671180165, - "estimatedScheduleMonths_high": 17.318311401769925, - "estimatedPeople_high": 9.408253774962743, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 12 54617 1 0 54616 0\n(ULOC) 977\n-------------------------------------------------------------------------------\nTypeScript 12 468 37 52 379 32\n(ULOC) 359\n-------------------------------------------------------------------------------\nMarkdown 5 248 94 0 154 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nDockerfile 3 50 15 3 32 1\n(ULOC) 31\n-------------------------------------------------------------------------------\nYAML 3 74 5 0 69 0\n(ULOC) 49\n-------------------------------------------------------------------------------\nJavaScript 2 23 2 0 21 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 1 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 142 19 9 114 2\n(ULOC) 85\n-------------------------------------------------------------------------------\nSass 1 41 6 3 32 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 43 55804 200 68 55536 35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1796\nDRYness % 0.03\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,833,997\nEstimated Schedule Effort (organic) 17.32 months\nEstimated People Required (organic) 9.41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2965074 bytes, 2.965 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/bluebutton-sample-client-nodejs-react", + "owner": "CMSgov", + "name": "bluebutton-sample-client-nodejs-react", + "description": null, + "commits_count": 133, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 65, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 38, + "closed_pull_requests_count": 23, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 17, + "total_project_lines": 1487, + "average_project_lines": 36, + "total_project_comment_lines": 88, + "average_project_comment_lines": 2, + "total_project_blank_lines": 192, + "average_blank_lines": 5, + "commits_by_month": { + "2025/1": 1, + "2024/12": 4, + "2024/10": 1, + "2024/9": 3, + "2024/8": 3, + "2024/7": 4, + "2024/6": 1, + "2024/4": 1, + "2024/1": 2, + "2023/11": 4, + "2023/2": 2, + "2022/12": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-30T00:00:00.000Z", + 1 + ], + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-09-04T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-09-22T19:55:37Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:24Z", + "repo": { + "name": "github.com/CMSgov/bluebutton-sample-client-nodejs-react", + "commit": "3f529c6f2677bde658702b802aa8bc6ed5994559" }, - "predominant_langs": { - "TypeScript": 18802, - "Python": 5754, - "SCSS": 1032, - "Dockerfile": 965, - "JavaScript": 665, - "HTML": 618 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "bluebutton-sample-client-nodejs-react", - "20 days 00:17:15" - ] - ], - "repo_dependency_libyear_list": [ - [ - "@cmsgov/design-system", - 2.3808219178, - "2024-04-04T07:41:01.000" - ], - [ - "@cmsgov/design-system", - 2.7205479452, - "2024-08-03T07:34:57.000" - ], - [ - "@testing-library/jest-dom", - 0.5534246575, - "2024-04-04T07:41:01.000" - ], - [ - "@testing-library/jest-dom", - 1.0136986301, - "2024-08-03T07:34:57.000" - ], - [ - "@testing-library/react", - 1.1315068493, - "2024-04-04T07:41:01.000" - ], - [ - "@testing-library/react", - 1.3397260274, - "2024-08-03T07:34:57.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-08-03T07:34:57.000" - ], - [ - "@types/express", - 0.8849315068, - "2025-01-01T18:37:05.000" - ], - [ - "@types/jest", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "@types/node", - 1.8246575342, - "2024-04-04T07:41:01.000" - ], - [ - "@types/node", - 2.1534246575, - "2024-08-03T07:34:57.000" - ], - [ - "@types/react", - 0.0191780822, - "2024-04-04T07:41:01.000" - ], - [ - "@types/react", - 0.1589041096, - "2024-08-03T07:34:57.000" - ], - [ - "@types/react-dom", - 0.3643835616, - "2024-04-04T07:41:01.000" - ], - [ - "@types/react-dom", - 0.4246575342, - "2024-08-03T07:34:57.000" - ], - [ - "@types/react-router-dom", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.7287671233, - "2024-04-04T07:41:01.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.0602739726, - "2024-08-03T07:34:57.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 3.2328767123, - "2025-01-01T18:37:05.000" - ], - [ - "@typescript-eslint/parser", - 0.7287671233, - "2024-04-04T07:41:01.000" - ], - [ - "@typescript-eslint/parser", - 1.0602739726, - "2024-08-03T07:34:57.000" - ], - [ - "@typescript-eslint/parser", - 3.2328767123, - "2025-01-01T18:37:05.000" - ], - [ - "axios", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "cms-bluebutton-sdk", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "eslint", - 3.3726027397, - "2025-01-01T18:37:05.000" - ], - [ - "eslint-config-airbnb", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "eslint-config-airbnb-typescript", - 1.9178082192, - "2025-01-01T18:37:05.000" - ], - [ - "eslint-config-react-app", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "express", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "http-proxy-middleware", - 2.9287671233, - "2024-08-03T07:34:57.000" - ], - [ - "jest", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "node-sass", - 0.0, - "2024-04-04T07:41:01.000" - ], - [ - "react", - -1.7835616438, - "2024-04-04T07:41:01.000" - ], - [ - "react", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "react-dom", - -1.7835616438, - "2024-04-04T07:41:01.000" - ], - [ - "react-dom", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "react-router-dom", - 0.9945205479, - "2024-04-04T07:41:01.000" - ], - [ - "react-router-dom", - 1.3945205479, - "2024-08-03T07:34:57.000" - ], - [ - "react-scripts", - 0.0, - "2024-08-03T07:34:57.000" - ], - [ - "sass", - 0.3260273973, - "2024-08-03T07:34:57.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "tsconfig-paths", - 0.0, - "2025-01-01T18:37:05.000" - ], - [ - "typescript", - 1.1342465753, - "2024-04-04T07:41:01.000" - ], - [ - "typescript", - 1.4767123288, - "2024-08-03T07:34:57.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:37:05.000" - ], - [ - "web-vitals", - -0.002739726, - "2024-04-04T07:41:01.000" - ], - [ - "web-vitals", - 0.4739726027, - "2024-08-03T07:34:57.000" - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 8, + "reason": "13 out of 16 merged PRs checked by a CI test -- score normalized to 8", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 4, + "reason": "5 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 4", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 2915368, + "CodeBytes": 0, + "Lines": 54617, + "Code": 54616, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 18003, + "CodeBytes": 0, + "Lines": 468, + "Code": 379, + "Comment": 52, + "Blank": 37, + "Complexity": 32, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 14401, + "CodeBytes": 0, + "Lines": 248, + "Code": 154, + "Comment": 0, + "Blank": 94, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 965, + "CodeBytes": 0, + "Lines": 50, + "Code": 32, + "Comment": 3, + "Blank": 15, + "Complexity": 1, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1608, + "CodeBytes": 0, + "Lines": 74, + "Code": 69, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 665, + "CodeBytes": 0, + "Lines": 23, + "Code": 21, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 618, + "CodeBytes": 0, + "Lines": 20, + "Code": 20, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6556, + "CodeBytes": 0, + "Lines": 117, + "Code": 96, + "Comment": 0, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 5754, + "CodeBytes": 0, + "Lines": 142, + "Code": 114, + "Comment": 9, + "Blank": 19, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 1032, + "CodeBytes": 0, + "Lines": 41, + "Code": 32, + "Comment": 3, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 37, + "CodeBytes": 0, + "Lines": 1, + "Code": 0, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1672495.8923878435, + "estimatedScheduleMonths_low": 17.318311401769925, + "estimatedPeople_low": 9.408253774962743, + "estimatedCost_high": 5212227.671180165, + "estimatedScheduleMonths_high": 17.318311401769925, + "estimatedPeople_high": 9.408253774962743, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 12 54617 1 0 54616 0\n(ULOC) 977\n-------------------------------------------------------------------------------\nTypeScript 12 468 37 52 379 32\n(ULOC) 359\n-------------------------------------------------------------------------------\nMarkdown 5 248 94 0 154 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nDockerfile 3 50 15 3 32 1\n(ULOC) 31\n-------------------------------------------------------------------------------\nYAML 3 74 5 0 69 0\n(ULOC) 49\n-------------------------------------------------------------------------------\nJavaScript 2 23 2 0 21 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 1 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 142 19 9 114 2\n(ULOC) 85\n-------------------------------------------------------------------------------\nSass 1 41 6 3 32 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 1\n───────────────────────────────────────────────────────────────────────────────\nTotal 43 55804 200 68 55536 35\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1796\nDRYness % 0.03\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,833,997\nEstimated Schedule Effort (organic) 17.32 months\nEstimated People Required (organic) 9.41\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2965074 bytes, 2.965 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 18802, + "Python": 5754, + "SCSS": 1032, + "Dockerfile": 965, + "JavaScript": 665, + "HTML": 618 + }, + "average_issue_resolution_time": [ + [ + "bluebutton-sample-client-nodejs-react", + "20 days 00:17:15" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@cmsgov/design-system", + 2.3808219178, + "2024-04-04T07:41:01.000" + ], + [ + "@cmsgov/design-system", + 2.7205479452, + "2024-08-03T07:34:57.000" + ], + [ + "@testing-library/jest-dom", + 0.5534246575, + "2024-04-04T07:41:01.000" + ], + [ + "@testing-library/jest-dom", + 1.0136986301, + "2024-08-03T07:34:57.000" + ], + [ + "@testing-library/react", + 1.1315068493, + "2024-04-04T07:41:01.000" + ], + [ + "@testing-library/react", + 1.3397260274, + "2024-08-03T07:34:57.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-08-03T07:34:57.000" + ], + [ + "@types/express", + 0.8849315068, + "2025-01-01T18:37:05.000" + ], + [ + "@types/jest", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "@types/node", + 1.8246575342, + "2024-04-04T07:41:01.000" + ], + [ + "@types/node", + 2.1534246575, + "2024-08-03T07:34:57.000" + ], + [ + "@types/react", + 0.0191780822, + "2024-04-04T07:41:01.000" + ], + [ + "@types/react", + 0.1589041096, + "2024-08-03T07:34:57.000" + ], + [ + "@types/react-dom", + 0.3643835616, + "2024-04-04T07:41:01.000" + ], + [ + "@types/react-dom", + 0.4246575342, + "2024-08-03T07:34:57.000" + ], + [ + "@types/react-router-dom", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.7287671233, + "2024-04-04T07:41:01.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.0602739726, + "2024-08-03T07:34:57.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 3.2328767123, + "2025-01-01T18:37:05.000" + ], + [ + "@typescript-eslint/parser", + 0.7287671233, + "2024-04-04T07:41:01.000" + ], + [ + "@typescript-eslint/parser", + 1.0602739726, + "2024-08-03T07:34:57.000" + ], + [ + "@typescript-eslint/parser", + 3.2328767123, + "2025-01-01T18:37:05.000" + ], + [ + "axios", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "cms-bluebutton-sdk", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "eslint", + 3.3726027397, + "2025-01-01T18:37:05.000" + ], + [ + "eslint-config-airbnb", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "eslint-config-airbnb-typescript", + 1.9178082192, + "2025-01-01T18:37:05.000" + ], + [ + "eslint-config-react-app", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "eslint-plugin-import", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "eslint-plugin-react", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "express", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "http-proxy-middleware", + 2.9287671233, + "2024-08-03T07:34:57.000" + ], + [ + "jest", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "node-sass", + 0, + "2024-04-04T07:41:01.000" + ], + [ + "react", + -1.7835616438, + "2024-04-04T07:41:01.000" + ], + [ + "react", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "react-dom", + -1.7835616438, + "2024-04-04T07:41:01.000" + ], + [ + "react-dom", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "react-router-dom", + 0.9945205479, + "2024-04-04T07:41:01.000" + ], + [ + "react-router-dom", + 1.3945205479, + "2024-08-03T07:34:57.000" + ], + [ + "react-scripts", + 0, + "2024-08-03T07:34:57.000" + ], + [ + "sass", + 0.3260273973, + "2024-08-03T07:34:57.000" + ], + [ + "ts-node", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "tsconfig-paths", + 0, + "2025-01-01T18:37:05.000" + ], + [ + "typescript", + 1.1342465753, + "2024-04-04T07:41:01.000" + ], + [ + "typescript", + 1.4767123288, + "2024-08-03T07:34:57.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:37:05.000" + ], + [ + "web-vitals", + -0.002739726, + "2024-04-04T07:41:01.000" + ], + [ + "web-vitals", + 0.4739726027, + "2024-08-03T07:34:57.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/bluebutton-web-deployment/bluebutton-web-deployment_data.json b/app/site/_data/CMSgov/bluebutton-web-deployment/bluebutton-web-deployment_data.json index 3de01f8a17..03aafe5cb0 100644 --- a/app/site/_data/CMSgov/bluebutton-web-deployment/bluebutton-web-deployment_data.json +++ b/app/site/_data/CMSgov/bluebutton-web-deployment/bluebutton-web-deployment_data.json @@ -1,472 +1,472 @@ { - "url": "https://github.com/CMSgov/bluebutton-web-deployment", - "owner": "CMSgov", - "name": "bluebutton-web-deployment", - "description": "Ansible Configuration and Playbooks", - "commits_count": 3481, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1541, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1487, - "closed_pull_requests_count": 54, - "forks_count": 5, - "stargazers_count": 10, - "watchers_count": 22, - "total_project_lines": 6482, - "average_project_lines": 75, - "total_project_comment_lines": 483, - "average_project_comment_lines": 6, - "total_project_blank_lines": 959, - "average_blank_lines": 11, - "commits_by_month": { - "2024/11": 1, - "2024/10": 1, - "2024/9": 3, - "2024/8": 1, - "2024/6": 1, - "2024/5": 4, - "2024/4": 6, - "2024/3": 2, - "2024/2": 1, - "2024/1": 2, - "2023/11": 4, - "2023/10": 1, - "2023/9": 2, - "2023/8": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-10-15T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/bluebutton-web-deployment", + "owner": "CMSgov", + "name": "bluebutton-web-deployment", + "description": "Ansible Configuration and Playbooks", + "commits_count": 3481, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1541, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1487, + "closed_pull_requests_count": 54, + "forks_count": 5, + "stargazers_count": 10, + "watchers_count": 22, + "total_project_lines": 6482, + "average_project_lines": 75, + "total_project_comment_lines": 483, + "average_project_comment_lines": 6, + "total_project_blank_lines": 959, + "average_blank_lines": 11, + "commits_by_month": { + "2024/11": 1, + "2024/10": 1, + "2024/9": 3, + "2024/8": 1, + "2024/6": 1, + "2024/5": 4, + "2024/4": 6, + "2024/3": 2, + "2024/2": 1, + "2024/1": 2, + "2023/11": 4, + "2023/10": 1, + "2023/9": 2, + "2023/8": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2017-03-15T15:25:57Z", - "ossf_scorecard": { - "date": "2025-01-11T00:39:09Z", - "repo": { - "name": "github.com/CMSgov/bluebutton-web-deployment", - "commit": "932cd079b28070865d45a8c54f80400da3772165" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 30 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 8 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 1, - "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Terraform", - "Bytes": 32708, - "CodeBytes": 0, - "Lines": 1425, - "Code": 1052, - "Comment": 63, - "Blank": 310, - "Complexity": 15, - "Count": 29, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 57316, - "CodeBytes": 0, - "Lines": 1742, - "Code": 1350, - "Comment": 201, - "Blank": 191, - "Complexity": 0, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Jinja", - "Bytes": 13965, - "CodeBytes": 0, - "Lines": 353, - "Code": 316, - "Comment": 0, - "Blank": 37, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 7680, - "CodeBytes": 0, - "Lines": 246, - "Code": 181, - "Comment": 0, - "Blank": 65, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "INI", - "Bytes": 5776, - "CodeBytes": 0, - "Lines": 239, - "Code": 179, - "Comment": 16, - "Blank": 44, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 9623, - "CodeBytes": 0, - "Lines": 132, - "Code": 95, - "Comment": 0, - "Blank": 37, - "Complexity": 8, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2263, - "CodeBytes": 0, - "Lines": 75, - "Code": 75, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 7922, - "CodeBytes": 0, - "Lines": 234, - "Code": 164, - "Comment": 39, - "Blank": 31, - "Complexity": 22, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Groovy", - "Bytes": 717, - "CodeBytes": 0, - "Lines": 29, - "Code": 25, - "Comment": 1, - "Blank": 3, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2379, - "CodeBytes": 0, - "Lines": 73, - "Code": 58, - "Comment": 5, - "Blank": 10, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 18125, - "CodeBytes": 0, - "Lines": 341, - "Code": 282, - "Comment": 0, - "Blank": 59, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 67387, - "CodeBytes": 0, - "Lines": 1587, - "Code": 1257, - "Comment": 158, - "Blank": 172, - "Complexity": 269, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Systemd", - "Bytes": 325, - "CodeBytes": 0, - "Lines": 16, - "Code": 14, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 134845.6829633615, - "estimatedScheduleMonths_low": 6.652193900033446, - "estimatedPeople_low": 1.9747933477260387, - "estimatedCost_high": 420238.04260431265, - "estimatedScheduleMonths_high": 6.652193900033446, - "estimatedPeople_high": 1.9747933477260387, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTerraform 29 1425 310 63 1052 15\n(ULOC) 495\n-------------------------------------------------------------------------------\nYAML 27 1742 191 201 1350 0\n(ULOC) 783\n-------------------------------------------------------------------------------\nJinja 6 353 37 0 316 0\n(ULOC) 266\n-------------------------------------------------------------------------------\nMarkdown 6 246 65 0 181 0\n(ULOC) 159\n-------------------------------------------------------------------------------\nINI 5 239 44 16 179 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nSmarty Template 5 132 37 0 95 8\n(ULOC) 28\n-------------------------------------------------------------------------------\nJSON 2 75 0 0 75 0\n(ULOC) 55\n-------------------------------------------------------------------------------\nShell 2 234 31 39 164 22\n(ULOC) 163\n-------------------------------------------------------------------------------\nGroovy 1 29 3 1 25 3\n(ULOC) 24\n-------------------------------------------------------------------------------\nJavaScript 1 73 10 5 58 3\n(ULOC) 54\n-------------------------------------------------------------------------------\nLicense 1 341 59 0 282 0\n(ULOC) 282\n-------------------------------------------------------------------------------\nPython 1 1587 172 158 1257 269\n(ULOC) 1048\n-------------------------------------------------------------------------------\nSystemd 1 16 2 0 14 0\n(ULOC) 15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 87 6492 961 483 5048 320\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3387\nDRYness % 0.52\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $147,866\nEstimated Schedule Effort (organic) 6.65 months\nEstimated People Required (organic) 1.97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 226186 bytes, 0.226 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-17T00:00:00.000Z", + 1 + ], + [ + "2024-10-15T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2017-03-15T15:25:57Z", + "ossf_scorecard": { + "date": "2025-01-11T00:39:09Z", + "repo": { + "name": "github.com/CMSgov/bluebutton-web-deployment", + "commit": "932cd079b28070865d45a8c54f80400da3772165" }, - "predominant_langs": { - "Python": 67387, - "HCL": 34561, - "Shell": 15172, - "Jinja": 13965, - "JavaScript": 2379, - "Smarty": 2373, - "Groovy": 717 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 30 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 8 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 1, + "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Terraform", + "Bytes": 32708, + "CodeBytes": 0, + "Lines": 1425, + "Code": 1052, + "Comment": 63, + "Blank": 310, + "Complexity": 15, + "Count": 29, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 57316, + "CodeBytes": 0, + "Lines": 1742, + "Code": 1350, + "Comment": 201, + "Blank": 191, + "Complexity": 0, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Jinja", + "Bytes": 13965, + "CodeBytes": 0, + "Lines": 353, + "Code": 316, + "Comment": 0, + "Blank": 37, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 7680, + "CodeBytes": 0, + "Lines": 246, + "Code": 181, + "Comment": 0, + "Blank": 65, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "INI", + "Bytes": 5776, + "CodeBytes": 0, + "Lines": 239, + "Code": 179, + "Comment": 16, + "Blank": 44, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 9623, + "CodeBytes": 0, + "Lines": 132, + "Code": 95, + "Comment": 0, + "Blank": 37, + "Complexity": 8, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2263, + "CodeBytes": 0, + "Lines": 75, + "Code": 75, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 7922, + "CodeBytes": 0, + "Lines": 234, + "Code": 164, + "Comment": 39, + "Blank": 31, + "Complexity": 22, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Groovy", + "Bytes": 717, + "CodeBytes": 0, + "Lines": 29, + "Code": 25, + "Comment": 1, + "Blank": 3, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2379, + "CodeBytes": 0, + "Lines": 73, + "Code": 58, + "Comment": 5, + "Blank": 10, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 18125, + "CodeBytes": 0, + "Lines": 341, + "Code": 282, + "Comment": 0, + "Blank": 59, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 67387, + "CodeBytes": 0, + "Lines": 1587, + "Code": 1257, + "Comment": 158, + "Blank": 172, + "Complexity": 269, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Systemd", + "Bytes": 325, + "CodeBytes": 0, + "Lines": 16, + "Code": 14, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 134845.6829633615, + "estimatedScheduleMonths_low": 6.652193900033446, + "estimatedPeople_low": 1.9747933477260387, + "estimatedCost_high": 420238.04260431265, + "estimatedScheduleMonths_high": 6.652193900033446, + "estimatedPeople_high": 1.9747933477260387, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTerraform 29 1425 310 63 1052 15\n(ULOC) 495\n-------------------------------------------------------------------------------\nYAML 27 1742 191 201 1350 0\n(ULOC) 783\n-------------------------------------------------------------------------------\nJinja 6 353 37 0 316 0\n(ULOC) 266\n-------------------------------------------------------------------------------\nMarkdown 6 246 65 0 181 0\n(ULOC) 159\n-------------------------------------------------------------------------------\nINI 5 239 44 16 179 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nSmarty Template 5 132 37 0 95 8\n(ULOC) 28\n-------------------------------------------------------------------------------\nJSON 2 75 0 0 75 0\n(ULOC) 55\n-------------------------------------------------------------------------------\nShell 2 234 31 39 164 22\n(ULOC) 163\n-------------------------------------------------------------------------------\nGroovy 1 29 3 1 25 3\n(ULOC) 24\n-------------------------------------------------------------------------------\nJavaScript 1 73 10 5 58 3\n(ULOC) 54\n-------------------------------------------------------------------------------\nLicense 1 341 59 0 282 0\n(ULOC) 282\n-------------------------------------------------------------------------------\nPython 1 1587 172 158 1257 269\n(ULOC) 1048\n-------------------------------------------------------------------------------\nSystemd 1 16 2 0 14 0\n(ULOC) 15\n───────────────────────────────────────────────────────────────────────────────\nTotal 87 6492 961 483 5048 320\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3387\nDRYness % 0.52\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $147,866\nEstimated Schedule Effort (organic) 6.65 months\nEstimated People Required (organic) 1.97\n───────────────────────────────────────────────────────────────────────────────\nProcessed 226186 bytes, 0.226 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 67387, + "HCL": 34561, + "Shell": 15172, + "Jinja": 13965, + "JavaScript": 2379, + "Smarty": 2373, + "Groovy": 717 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/bluebutton-web-server/bluebutton-web-server_data.json b/app/site/_data/CMSgov/bluebutton-web-server/bluebutton-web-server_data.json index ae4487ca06..207994acea 100644 --- a/app/site/_data/CMSgov/bluebutton-web-server/bluebutton-web-server_data.json +++ b/app/site/_data/CMSgov/bluebutton-web-server/bluebutton-web-server_data.json @@ -1,1302 +1,1302 @@ { - "url": "https://github.com/CMSgov/bluebutton-web-server", - "owner": "CMSgov", - "name": "bluebutton-web-server", - "description": "Blue Button API", - "commits_count": 3532, - "issues_count": 26, - "open_issues_count": 0, - "closed_issues_count": 26, - "pull_requests_count": 1253, - "open_pull_requests_count": 8, - "merged_pull_requests_count": 1028, - "closed_pull_requests_count": 217, - "forks_count": 24, - "stargazers_count": 40, - "watchers_count": 25, - "total_project_lines": 209528, - "average_project_lines": 212, - "total_project_comment_lines": 17422, - "average_project_comment_lines": 18, - "total_project_blank_lines": 10649, - "average_blank_lines": 11, - "commits_by_month": { - "2025/1": 4, - "2024/12": 4, - "2024/11": 10, - "2024/10": 6, - "2024/9": 6 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-08-02T00:00:00.000Z", - 1 - ], - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-10-10T00:00:00.000Z", - 1 - ], - [ - "2024-10-25T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2016-01-20T21:52:00Z", - "ossf_scorecard": { - "date": "2025-01-11T00:34:51Z", - "repo": { - "name": "github.com/CMSgov/bluebutton-web-server", - "commit": "6ae222f1bd17b2e3b9862a6185fea4e69c2544b4" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.8, - "checks": [ - { - "details": null, - "score": 0, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 21 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "23 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 9, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 2635504, - "CodeBytes": 0, - "Lines": 65557, - "Code": 56730, - "Comment": 3746, - "Blank": 5081, - "Complexity": 1835, - "Count": 430, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 296548, - "CodeBytes": 0, - "Lines": 9180, - "Code": 5189, - "Comment": 3264, - "Blank": 727, - "Complexity": 0, - "Count": 95, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 4118952, - "CodeBytes": 0, - "Lines": 5621, - "Code": 4122, - "Comment": 488, - "Blank": 1011, - "Complexity": 909, - "Count": 83, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 289465, - "CodeBytes": 0, - "Lines": 6178, - "Code": 5019, - "Comment": 384, - "Blank": 775, - "Complexity": 0, - "Count": 77, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSX", - "Bytes": 176193, - "CodeBytes": 0, - "Lines": 6278, - "Code": 4737, - "Comment": 735, - "Blank": 806, - "Complexity": 172, - "Count": 66, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 616067, - "CodeBytes": 0, - "Lines": 3453, - "Code": 3443, - "Comment": 10, - "Blank": 0, - "Complexity": 0, - "Count": 38, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2086738, - "CodeBytes": 0, - "Lines": 42951, - "Code": 42951, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 35, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 45563, - "CodeBytes": 0, - "Lines": 846, - "Code": 723, - "Comment": 25, - "Blank": 98, - "Complexity": 44, - "Count": 33, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 6537, - "CodeBytes": 0, - "Lines": 165, - "Code": 140, - "Comment": 25, - "Blank": 0, - "Complexity": 2, - "Count": 29, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 54650, - "CodeBytes": 0, - "Lines": 1449, - "Code": 1017, - "Comment": 0, - "Blank": 432, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "LESS", - "Bytes": 78976, - "CodeBytes": 0, - "Lines": 1836, - "Code": 1758, - "Comment": 44, - "Blank": 34, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 111507, - "CodeBytes": 0, - "Lines": 1682, - "Code": 1643, - "Comment": 0, - "Blank": 39, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1773072, - "CodeBytes": 0, - "Lines": 35075, - "Code": 34730, - "Comment": 42, - "Blank": 303, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1171490, - "CodeBytes": 0, - "Lines": 23076, - "Code": 13594, - "Comment": 8399, - "Blank": 1083, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 51840, - "CodeBytes": 0, - "Lines": 1325, - "Code": 945, - "Comment": 221, - "Blank": 159, - "Complexity": 122, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 210704, - "CodeBytes": 0, - "Lines": 4363, - "Code": 4316, - "Comment": 20, - "Blank": 27, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Autoconf", - "Bytes": 944, - "CodeBytes": 0, - "Lines": 67, - "Code": 54, - "Comment": 9, - "Blank": 4, - "Complexity": 4, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 688, - "CodeBytes": 0, - "Lines": 23, - "Code": 23, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 2565, - "CodeBytes": 0, - "Lines": 49, - "Code": 25, - "Comment": 12, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 3875, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 103, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11576, - "CodeBytes": 0, - "Lines": 207, - "Code": 173, - "Comment": 0, - "Blank": 34, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 846, - "CodeBytes": 0, - "Lines": 17, - "Code": 11, - "Comment": 2, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 5794389.51202882, - "estimatedScheduleMonths_low": 27.769607566439287, - "estimatedPeople_low": 20.32766297655983, - "estimatedCost_high": 18057848.446535453, - "estimatedScheduleMonths_high": 27.769607566439287, - "estimatedPeople_high": 20.32766297655983, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 430 65557 5081 3746 56730 1835\n(ULOC) 20499\n-------------------------------------------------------------------------------\nSass 95 9180 727 3264 5189 0\n(ULOC) 5672\n-------------------------------------------------------------------------------\nJavaScript 83 5621 1011 488 4122 909\n(ULOC) 2843\n-------------------------------------------------------------------------------\nHTML 77 6178 775 384 5019 0\n(ULOC) 2945\n-------------------------------------------------------------------------------\nJSX 66 6278 806 735 4737 172\n(ULOC) 3125\n-------------------------------------------------------------------------------\nSVG 38 3453 0 10 3443 0\n(ULOC) 3132\n-------------------------------------------------------------------------------\nJSON 35 42951 0 0 42951 0\n(ULOC) 2812\n-------------------------------------------------------------------------------\nTypeScript 33 846 98 25 723 44\n(ULOC) 501\n-------------------------------------------------------------------------------\nTypeScript Typings 29 165 0 25 140 2\n(ULOC) 120\n-------------------------------------------------------------------------------\nMarkdown 22 1449 432 0 1017 0\n(ULOC) 781\n-------------------------------------------------------------------------------\nLESS 14 1836 34 44 1758 0\n(ULOC) 1747\n-------------------------------------------------------------------------------\nPlain Text 14 1682 39 0 1643 0\n(ULOC) 870\n-------------------------------------------------------------------------------\nYAML 13 35075 303 42 34730 0\n(ULOC) 2655\n-------------------------------------------------------------------------------\nCSS 12 23076 1083 8399 13594 0\n(ULOC) 9126\n-------------------------------------------------------------------------------\nShell 11 1325 159 221 945 122\n(ULOC) 774\n-------------------------------------------------------------------------------\nXML 7 4363 27 20 4316 0\n(ULOC) 974\n-------------------------------------------------------------------------------\nAutoconf 2 67 4 9 54 4\n(ULOC) 64\n-------------------------------------------------------------------------------\nDockerfile 2 23 0 0 23 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nSQL 2 49 12 12 25 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nCSV 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nDocker ignore 1 7 0 1 6 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nLicense 1 207 34 0 173 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nMakefile 1 17 4 2 11 0\n(ULOC) 14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 989 209407 10629 17427 181351 3088\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 56551\nDRYness % 0.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,353,913\nEstimated Schedule Effort (organic) 27.77 months\nEstimated People Required (organic) 20.33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 13744403 bytes, 13.744 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/bluebutton-web-server", + "owner": "CMSgov", + "name": "bluebutton-web-server", + "description": "Blue Button API", + "commits_count": 3532, + "issues_count": 26, + "open_issues_count": 0, + "closed_issues_count": 26, + "pull_requests_count": 1253, + "open_pull_requests_count": 8, + "merged_pull_requests_count": 1028, + "closed_pull_requests_count": 217, + "forks_count": 24, + "stargazers_count": 40, + "watchers_count": 25, + "total_project_lines": 209528, + "average_project_lines": 212, + "total_project_comment_lines": 17422, + "average_project_comment_lines": 18, + "total_project_blank_lines": 10649, + "average_blank_lines": 11, + "commits_by_month": { + "2025/1": 4, + "2024/12": 4, + "2024/11": 10, + "2024/10": 6, + "2024/9": 6 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 + ], + [ + "2024-07-30T00:00:00.000Z", + 1 + ], + [ + "2024-07-31T00:00:00.000Z", + 1 + ], + [ + "2024-08-02T00:00:00.000Z", + 1 + ], + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-09-17T00:00:00.000Z", + 1 + ], + [ + "2024-10-10T00:00:00.000Z", + 1 + ], + [ + "2024-10-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2016-01-20T21:52:00Z", + "ossf_scorecard": { + "date": "2025-01-11T00:34:51Z", + "repo": { + "name": "github.com/CMSgov/bluebutton-web-server", + "commit": "6ae222f1bd17b2e3b9862a6185fea4e69c2544b4" }, - "predominant_langs": { - "Python": 2635504, - "CSS": 491955, - "JavaScript": 290846, - "HTML": 280068, - "SCSS": 211534, - "Shell": 51840, - "TypeScript": 45563, - "PLpgSQL": 2565, - "Makefile": 846, - "Dockerfile": 688 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "bluebutton-web-server", - "319 days 25:36:18.884615" - ] - ], - "repo_dependency_libyear_list": [ - [ - "This", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "WARNING", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "asgiref", - 1.2547945205, - "2025-01-01T18:34:03.000" - ], - [ - "attrs", - 0.7068493151, - "2024-04-13T01:23:56.000" - ], - [ - "attrs", - 1.3095890411, - "2024-11-12T18:15:14.000" - ], - [ - "attrs", - 1.6684931507, - "2025-01-01T18:34:03.000" - ], - [ - "backports-zoneinfo", - 0.0, - "2024-10-16T23:09:43.000" - ], - [ - "beautifulsoup4", - 0.7808219178, - "2025-01-01T18:34:03.000" - ], - [ - "boto3", - 0.9205479452, - "2024-04-13T01:23:56.000" - ], - [ - "boto3", - 1.301369863, - "2024-08-29T08:59:33.000" - ], - [ - "boto3", - 1.4328767123, - "2024-10-16T23:09:43.000" - ], - [ - "boto3", - 1.5068493151, - "2024-11-12T18:15:14.000" - ], - [ - "boto3", - 1.6328767123, - "2025-01-01T18:34:03.000" - ], - [ - "botocore", - 0.7835616438, - "2024-04-13T01:23:56.000" - ], - [ - "botocore", - 1.1643835616, - "2024-08-29T08:59:33.000" - ], - [ - "botocore", - 1.295890411, - "2024-10-16T23:09:43.000" - ], - [ - "botocore", - 1.3698630137, - "2024-11-12T18:15:14.000" - ], - [ - "botocore", - 1.495890411, - "2025-01-01T18:34:03.000" - ], - [ - "by", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "certifi", - 0.0, - "2024-08-29T08:59:33.000" - ], - [ - "certifi", - 0.1561643836, - "2024-11-12T18:15:14.000" - ], - [ - "certifi", - 0.4465753425, - "2025-01-01T18:34:03.000" - ], - [ - "certifi", - 0.5315068493, - "2024-04-13T01:23:56.000" - ], - [ - "cffi", - 1.2438356164, - "2024-04-13T01:23:56.000" - ], - [ - "cffi", - 2.101369863, - "2024-08-29T08:59:33.000" - ], - [ - "cffi", - 2.1835616438, - "2025-01-01T18:34:03.000" - ], - [ - "charset-normalizer", - 0.6547945205, - "2024-08-29T08:59:33.000" - ], - [ - "charset-normalizer", - 1.5945205479, - "2024-11-12T18:15:14.000" - ], - [ - "charset-normalizer", - 1.8054794521, - "2025-01-01T18:34:03.000" - ], - [ - "configparser", - 1.5150684932, - "2024-04-13T01:23:56.000" - ], - [ - "configparser", - 2.0, - "2025-01-01T18:34:03.000" - ], - [ - "cryptography", - 0.202739726, - "2024-08-29T08:59:33.000" - ], - [ - "cryptography", - 0.2410958904, - "2024-04-13T01:23:56.000" - ], - [ - "cryptography", - 0.3287671233, - "2024-10-16T23:09:43.000" - ], - [ - "cryptography", - 0.3698630137, - "2024-11-12T18:15:14.000" - ], - [ - "cryptography", - 0.4794520548, - "2025-01-01T18:34:03.000" - ], - [ - "deprecated", - 1.7232876712, - "2024-04-13T01:23:56.000" - ], - [ - "dj-database-url", - 0.298630137, - "2024-04-13T01:23:56.000" - ], - [ - "dj-database-url", - 1.0849315068, - "2024-10-16T23:09:43.000" - ], - [ - "dj-database-url", - 1.4904109589, - "2025-01-01T18:34:03.000" - ], - [ - "django", - 0.0, - "2024-10-16T23:09:43.000" - ], - [ - "django", - 0.2465753425, - "2024-11-12T18:15:14.000" - ], - [ - "django", - 0.3287671233, - "2025-01-01T18:34:03.000" - ], - [ - "django", - 0.4219178082, - "2024-04-13T01:23:56.000" - ], - [ - "django-axes", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-bootstrap-form", - 0.0, - "2024-08-29T08:59:33.000" - ], - [ - "django-bootstrap-v5", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-cors-headers", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-filter", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-getenv", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-ipware", - 1.104109589, - "2024-04-13T01:23:56.000" - ], - [ - "django-ipware", - 1.1260273973, - "2025-01-01T18:34:03.000" - ], - [ - "django-localflavor", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-oauth-toolkit", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-ses", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-settings-export", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-storages", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "django-waffle", - 1.2794520548, - "2024-11-12T18:15:14.000" - ], - [ - "django-waffle", - 2.2136986301, - "2025-01-01T18:34:03.000" - ], - [ - "djangorestframework", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "djangorestframework-csv", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "djangorestframework-yaml", - 0.0, - "2024-08-29T08:59:33.000" - ], - [ - "hash", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "idna", - 0.3671232877, - "2024-08-29T08:59:33.000" - ], - [ - "idna", - 0.4301369863, - "2025-01-01T18:34:03.000" - ], - [ - "idna", - 1.5753424658, - "2024-04-13T01:23:56.000" - ], - [ - "importlib-metadata", - 0.9123287671, - "2024-04-13T01:23:56.000" - ], - [ - "importlib-metadata", - 1.3315068493, - "2024-08-29T08:59:33.000" - ], - [ - "importlib-metadata", - 1.3917808219, - "2025-01-01T18:34:03.000" - ], - [ - "importlib-resources", - 1.0876712329, - "2024-04-13T01:23:56.000" - ], - [ - "importlib-resources", - 1.5068493151, - "2024-08-29T08:59:33.000" - ], - [ - "importlib-resources", - 1.5589041096, - "2025-01-01T18:34:03.000" - ], - [ - "jmespath", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "jsonschema", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "jwcrypto", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "newrelic", - 0.9945205479, - "2024-04-13T01:23:56.000" - ], - [ - "newrelic", - 1.3616438356, - "2024-08-29T08:59:33.000" - ], - [ - "newrelic", - 1.5479452055, - "2024-11-12T18:15:14.000" - ], - [ - "newrelic", - 1.7068493151, - "2025-01-01T18:34:03.000" - ], - [ - "oauthlib", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "pillow", - 0.2465753425, - "2024-08-29T08:59:33.000" - ], - [ - "pillow", - 0.5397260274, - "2025-01-01T18:34:03.000" - ], - [ - "pinned", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "pip-compile", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "pip-tools", - 0.0, - "2024-11-12T18:15:14.000" - ], - [ - "pkgutil-resolve-name", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "psycopg2-binary", - 0.501369863, - "2024-08-29T08:59:33.000" - ], - [ - "psycopg2-binary", - 1.5369863014, - "2025-01-01T18:34:03.000" - ], - [ - "py", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "pycparser", - 2.397260274, - "2025-01-01T18:34:03.000" - ], - [ - "pyjwt", - 0.1890410959, - "2024-04-13T01:23:56.000" - ], - [ - "pyjwt", - 1.2301369863, - "2024-11-12T18:15:14.000" - ], - [ - "pyjwt", - 1.5561643836, - "2025-01-01T18:34:03.000" - ], - [ - "pyrsistent", - 0.8219178082, - "2025-01-01T18:34:03.000" - ], - [ - "python-dateutil", - 2.6328767123, - "2025-01-01T18:34:03.000" - ], - [ - "python-dotenv", - 0.9095890411, - "2025-01-01T18:34:03.000" - ], - [ - "python-openid", - 0.0, - "2024-08-29T08:59:33.000" - ], - [ - "python-stdnum", - 1.3424657534, - "2025-01-01T18:34:03.000" - ], - [ - "pytz", - 0.8465753425, - "2024-08-29T08:59:33.000" - ], - [ - "pytz", - 1.4547945205, - "2025-01-01T18:34:03.000" - ], - [ - "pyyaml", - 1.0547945205, - "2025-01-01T18:34:03.000" - ], - [ - "pyyaml", - 1.7589041096, - "2024-04-13T01:23:56.000" - ], - [ - "requests", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "requests-oauthlib", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "requirements", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "requirements.in", - -1.0, - "2024-08-29T08:59:33.000" - ], - [ - "s3transfer", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "satisfied", - -1.0, - "2025-01-01T18:34:03.000" - ], - [ - "setuptools", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "six", - 0.0, - "2024-11-12T18:15:14.000" - ], - [ - "six", - 3.5863013699, - "2025-01-01T18:34:03.000" - ], - [ - "soupsieve", - 1.3260273973, - "2025-01-01T18:34:03.000" - ], - [ - "sqlparse", - 0.0, - "2024-04-13T01:23:56.000" - ], - [ - "sqlparse", - 0.2547945205, - "2024-11-12T18:15:14.000" - ], - [ - "sqlparse", - 0.6575342466, - "2025-01-01T18:34:03.000" - ], - [ - "trusted-host", - -1.0, - "2024-04-13T01:23:56.000" - ], - [ - "typing-extensions", - 1.1369863014, - "2024-04-13T01:23:56.000" - ], - [ - "typing-extensions", - 1.3095890411, - "2025-01-01T18:34:03.000" - ], - [ - "unicodecsv", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "urllib3", - -0.002739726, - "2024-08-29T08:59:33.000" - ], - [ - "urllib3", - 0.2356164384, - "2024-11-12T18:15:14.000" - ], - [ - "urllib3", - 0.3369863014, - "2024-04-13T01:23:56.000" - ], - [ - "urllib3", - 0.5123287671, - "2025-01-01T18:34:03.000" - ], - [ - "via", - 0.0, - "2025-01-01T18:34:03.000" - ], - [ - "voluptuous", - 1.8246575342, - "2024-04-13T01:23:56.000" - ], - [ - "voluptuous", - 2.2383561644, - "2025-01-01T18:34:03.000" - ], - [ - "wrapt", - 0.698630137, - "2024-04-13T01:23:56.000" - ], - [ - "zipp", - 0.2273972603, - "2024-08-29T08:59:33.000" - ], - [ - "zipp", - 0.2739726027, - "2024-10-16T23:09:43.000" - ], - [ - "zipp", - 0.4328767123, - "2025-01-01T18:34:03.000" - ], - [ - "zipp", - 1.0493150685, - "2024-04-13T01:23:56.000" - ] + "score": 6.8, + "checks": [ + { + "details": null, + "score": 0, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 21 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "23 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 9, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 2635504, + "CodeBytes": 0, + "Lines": 65557, + "Code": 56730, + "Comment": 3746, + "Blank": 5081, + "Complexity": 1835, + "Count": 430, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 296548, + "CodeBytes": 0, + "Lines": 9180, + "Code": 5189, + "Comment": 3264, + "Blank": 727, + "Complexity": 0, + "Count": 95, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 4118952, + "CodeBytes": 0, + "Lines": 5621, + "Code": 4122, + "Comment": 488, + "Blank": 1011, + "Complexity": 909, + "Count": 83, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 289465, + "CodeBytes": 0, + "Lines": 6178, + "Code": 5019, + "Comment": 384, + "Blank": 775, + "Complexity": 0, + "Count": 77, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSX", + "Bytes": 176193, + "CodeBytes": 0, + "Lines": 6278, + "Code": 4737, + "Comment": 735, + "Blank": 806, + "Complexity": 172, + "Count": 66, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 616067, + "CodeBytes": 0, + "Lines": 3453, + "Code": 3443, + "Comment": 10, + "Blank": 0, + "Complexity": 0, + "Count": 38, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2086738, + "CodeBytes": 0, + "Lines": 42951, + "Code": 42951, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 35, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 45563, + "CodeBytes": 0, + "Lines": 846, + "Code": 723, + "Comment": 25, + "Blank": 98, + "Complexity": 44, + "Count": 33, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 6537, + "CodeBytes": 0, + "Lines": 165, + "Code": 140, + "Comment": 25, + "Blank": 0, + "Complexity": 2, + "Count": 29, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 54650, + "CodeBytes": 0, + "Lines": 1449, + "Code": 1017, + "Comment": 0, + "Blank": 432, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "LESS", + "Bytes": 78976, + "CodeBytes": 0, + "Lines": 1836, + "Code": 1758, + "Comment": 44, + "Blank": 34, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 111507, + "CodeBytes": 0, + "Lines": 1682, + "Code": 1643, + "Comment": 0, + "Blank": 39, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1773072, + "CodeBytes": 0, + "Lines": 35075, + "Code": 34730, + "Comment": 42, + "Blank": 303, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1171490, + "CodeBytes": 0, + "Lines": 23076, + "Code": 13594, + "Comment": 8399, + "Blank": 1083, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 51840, + "CodeBytes": 0, + "Lines": 1325, + "Code": 945, + "Comment": 221, + "Blank": 159, + "Complexity": 122, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 210704, + "CodeBytes": 0, + "Lines": 4363, + "Code": 4316, + "Comment": 20, + "Blank": 27, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Autoconf", + "Bytes": 944, + "CodeBytes": 0, + "Lines": 67, + "Code": 54, + "Comment": 9, + "Blank": 4, + "Complexity": 4, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 688, + "CodeBytes": 0, + "Lines": 23, + "Code": 23, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 2565, + "CodeBytes": 0, + "Lines": 49, + "Code": 25, + "Comment": 12, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 3875, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 103, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11576, + "CodeBytes": 0, + "Lines": 207, + "Code": 173, + "Comment": 0, + "Blank": 34, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 846, + "CodeBytes": 0, + "Lines": 17, + "Code": 11, + "Comment": 2, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 5794389.51202882, + "estimatedScheduleMonths_low": 27.769607566439287, + "estimatedPeople_low": 20.32766297655983, + "estimatedCost_high": 18057848.446535453, + "estimatedScheduleMonths_high": 27.769607566439287, + "estimatedPeople_high": 20.32766297655983, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 430 65557 5081 3746 56730 1835\n(ULOC) 20499\n-------------------------------------------------------------------------------\nSass 95 9180 727 3264 5189 0\n(ULOC) 5672\n-------------------------------------------------------------------------------\nJavaScript 83 5621 1011 488 4122 909\n(ULOC) 2843\n-------------------------------------------------------------------------------\nHTML 77 6178 775 384 5019 0\n(ULOC) 2945\n-------------------------------------------------------------------------------\nJSX 66 6278 806 735 4737 172\n(ULOC) 3125\n-------------------------------------------------------------------------------\nSVG 38 3453 0 10 3443 0\n(ULOC) 3132\n-------------------------------------------------------------------------------\nJSON 35 42951 0 0 42951 0\n(ULOC) 2812\n-------------------------------------------------------------------------------\nTypeScript 33 846 98 25 723 44\n(ULOC) 501\n-------------------------------------------------------------------------------\nTypeScript Typings 29 165 0 25 140 2\n(ULOC) 120\n-------------------------------------------------------------------------------\nMarkdown 22 1449 432 0 1017 0\n(ULOC) 781\n-------------------------------------------------------------------------------\nLESS 14 1836 34 44 1758 0\n(ULOC) 1747\n-------------------------------------------------------------------------------\nPlain Text 14 1682 39 0 1643 0\n(ULOC) 870\n-------------------------------------------------------------------------------\nYAML 13 35075 303 42 34730 0\n(ULOC) 2655\n-------------------------------------------------------------------------------\nCSS 12 23076 1083 8399 13594 0\n(ULOC) 9126\n-------------------------------------------------------------------------------\nShell 11 1325 159 221 945 122\n(ULOC) 774\n-------------------------------------------------------------------------------\nXML 7 4363 27 20 4316 0\n(ULOC) 974\n-------------------------------------------------------------------------------\nAutoconf 2 67 4 9 54 4\n(ULOC) 64\n-------------------------------------------------------------------------------\nDockerfile 2 23 0 0 23 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nSQL 2 49 12 12 25 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nCSV 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nDocker ignore 1 7 0 1 6 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nLicense 1 207 34 0 173 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nMakefile 1 17 4 2 11 0\n(ULOC) 14\n───────────────────────────────────────────────────────────────────────────────\nTotal 989 209407 10629 17427 181351 3088\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 56551\nDRYness % 0.27\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $6,353,913\nEstimated Schedule Effort (organic) 27.77 months\nEstimated People Required (organic) 20.33\n───────────────────────────────────────────────────────────────────────────────\nProcessed 13744403 bytes, 13.744 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 2635504, + "CSS": 491955, + "JavaScript": 290846, + "HTML": 280068, + "SCSS": 211534, + "Shell": 51840, + "TypeScript": 45563, + "PLpgSQL": 2565, + "Makefile": 846, + "Dockerfile": 688 + }, + "average_issue_resolution_time": [ + [ + "bluebutton-web-server", + "319 days 25:36:18.884615" + ] + ], + "repo_dependency_libyear_list": [ + [ + "This", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "WARNING", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "asgiref", + 1.2547945205, + "2025-01-01T18:34:03.000" + ], + [ + "attrs", + 0.7068493151, + "2024-04-13T01:23:56.000" + ], + [ + "attrs", + 1.3095890411, + "2024-11-12T18:15:14.000" + ], + [ + "attrs", + 1.6684931507, + "2025-01-01T18:34:03.000" + ], + [ + "backports-zoneinfo", + 0, + "2024-10-16T23:09:43.000" + ], + [ + "beautifulsoup4", + 0.7808219178, + "2025-01-01T18:34:03.000" + ], + [ + "boto3", + 0.9205479452, + "2024-04-13T01:23:56.000" + ], + [ + "boto3", + 1.301369863, + "2024-08-29T08:59:33.000" + ], + [ + "boto3", + 1.4328767123, + "2024-10-16T23:09:43.000" + ], + [ + "boto3", + 1.5068493151, + "2024-11-12T18:15:14.000" + ], + [ + "boto3", + 1.6328767123, + "2025-01-01T18:34:03.000" + ], + [ + "botocore", + 0.7835616438, + "2024-04-13T01:23:56.000" + ], + [ + "botocore", + 1.1643835616, + "2024-08-29T08:59:33.000" + ], + [ + "botocore", + 1.295890411, + "2024-10-16T23:09:43.000" + ], + [ + "botocore", + 1.3698630137, + "2024-11-12T18:15:14.000" + ], + [ + "botocore", + 1.495890411, + "2025-01-01T18:34:03.000" + ], + [ + "by", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "certifi", + 0, + "2024-08-29T08:59:33.000" + ], + [ + "certifi", + 0.1561643836, + "2024-11-12T18:15:14.000" + ], + [ + "certifi", + 0.4465753425, + "2025-01-01T18:34:03.000" + ], + [ + "certifi", + 0.5315068493, + "2024-04-13T01:23:56.000" + ], + [ + "cffi", + 1.2438356164, + "2024-04-13T01:23:56.000" + ], + [ + "cffi", + 2.101369863, + "2024-08-29T08:59:33.000" + ], + [ + "cffi", + 2.1835616438, + "2025-01-01T18:34:03.000" + ], + [ + "charset-normalizer", + 0.6547945205, + "2024-08-29T08:59:33.000" + ], + [ + "charset-normalizer", + 1.5945205479, + "2024-11-12T18:15:14.000" + ], + [ + "charset-normalizer", + 1.8054794521, + "2025-01-01T18:34:03.000" + ], + [ + "configparser", + 1.5150684932, + "2024-04-13T01:23:56.000" + ], + [ + "configparser", + 2, + "2025-01-01T18:34:03.000" + ], + [ + "cryptography", + 0.202739726, + "2024-08-29T08:59:33.000" + ], + [ + "cryptography", + 0.2410958904, + "2024-04-13T01:23:56.000" + ], + [ + "cryptography", + 0.3287671233, + "2024-10-16T23:09:43.000" + ], + [ + "cryptography", + 0.3698630137, + "2024-11-12T18:15:14.000" + ], + [ + "cryptography", + 0.4794520548, + "2025-01-01T18:34:03.000" + ], + [ + "deprecated", + 1.7232876712, + "2024-04-13T01:23:56.000" + ], + [ + "dj-database-url", + 0.298630137, + "2024-04-13T01:23:56.000" + ], + [ + "dj-database-url", + 1.0849315068, + "2024-10-16T23:09:43.000" + ], + [ + "dj-database-url", + 1.4904109589, + "2025-01-01T18:34:03.000" + ], + [ + "django", + 0, + "2024-10-16T23:09:43.000" + ], + [ + "django", + 0.2465753425, + "2024-11-12T18:15:14.000" + ], + [ + "django", + 0.3287671233, + "2025-01-01T18:34:03.000" + ], + [ + "django", + 0.4219178082, + "2024-04-13T01:23:56.000" + ], + [ + "django-axes", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-bootstrap-form", + 0, + "2024-08-29T08:59:33.000" + ], + [ + "django-bootstrap-v5", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-cors-headers", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-filter", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-getenv", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-ipware", + 1.104109589, + "2024-04-13T01:23:56.000" + ], + [ + "django-ipware", + 1.1260273973, + "2025-01-01T18:34:03.000" + ], + [ + "django-localflavor", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-oauth-toolkit", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-ses", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-settings-export", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-storages", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "django-waffle", + 1.2794520548, + "2024-11-12T18:15:14.000" + ], + [ + "django-waffle", + 2.2136986301, + "2025-01-01T18:34:03.000" + ], + [ + "djangorestframework", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "djangorestframework-csv", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "djangorestframework-yaml", + 0, + "2024-08-29T08:59:33.000" + ], + [ + "hash", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "idna", + 0.3671232877, + "2024-08-29T08:59:33.000" + ], + [ + "idna", + 0.4301369863, + "2025-01-01T18:34:03.000" + ], + [ + "idna", + 1.5753424658, + "2024-04-13T01:23:56.000" + ], + [ + "importlib-metadata", + 0.9123287671, + "2024-04-13T01:23:56.000" + ], + [ + "importlib-metadata", + 1.3315068493, + "2024-08-29T08:59:33.000" + ], + [ + "importlib-metadata", + 1.3917808219, + "2025-01-01T18:34:03.000" + ], + [ + "importlib-resources", + 1.0876712329, + "2024-04-13T01:23:56.000" + ], + [ + "importlib-resources", + 1.5068493151, + "2024-08-29T08:59:33.000" + ], + [ + "importlib-resources", + 1.5589041096, + "2025-01-01T18:34:03.000" + ], + [ + "jmespath", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "jsonschema", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "jwcrypto", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "newrelic", + 0.9945205479, + "2024-04-13T01:23:56.000" + ], + [ + "newrelic", + 1.3616438356, + "2024-08-29T08:59:33.000" + ], + [ + "newrelic", + 1.5479452055, + "2024-11-12T18:15:14.000" + ], + [ + "newrelic", + 1.7068493151, + "2025-01-01T18:34:03.000" + ], + [ + "oauthlib", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "pillow", + 0.2465753425, + "2024-08-29T08:59:33.000" + ], + [ + "pillow", + 0.5397260274, + "2025-01-01T18:34:03.000" + ], + [ + "pinned", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "pip-compile", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "pip-tools", + 0, + "2024-11-12T18:15:14.000" + ], + [ + "pkgutil-resolve-name", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "psycopg2-binary", + 0.501369863, + "2024-08-29T08:59:33.000" + ], + [ + "psycopg2-binary", + 1.5369863014, + "2025-01-01T18:34:03.000" + ], + [ + "py", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "pycparser", + 2.397260274, + "2025-01-01T18:34:03.000" + ], + [ + "pyjwt", + 0.1890410959, + "2024-04-13T01:23:56.000" + ], + [ + "pyjwt", + 1.2301369863, + "2024-11-12T18:15:14.000" + ], + [ + "pyjwt", + 1.5561643836, + "2025-01-01T18:34:03.000" + ], + [ + "pyrsistent", + 0.8219178082, + "2025-01-01T18:34:03.000" + ], + [ + "python-dateutil", + 2.6328767123, + "2025-01-01T18:34:03.000" + ], + [ + "python-dotenv", + 0.9095890411, + "2025-01-01T18:34:03.000" + ], + [ + "python-openid", + 0, + "2024-08-29T08:59:33.000" + ], + [ + "python-stdnum", + 1.3424657534, + "2025-01-01T18:34:03.000" + ], + [ + "pytz", + 0.8465753425, + "2024-08-29T08:59:33.000" + ], + [ + "pytz", + 1.4547945205, + "2025-01-01T18:34:03.000" + ], + [ + "pyyaml", + 1.0547945205, + "2025-01-01T18:34:03.000" + ], + [ + "pyyaml", + 1.7589041096, + "2024-04-13T01:23:56.000" + ], + [ + "requests", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "requests-oauthlib", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "requirements", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "requirements.in", + -1, + "2024-08-29T08:59:33.000" + ], + [ + "s3transfer", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "satisfied", + -1, + "2025-01-01T18:34:03.000" + ], + [ + "setuptools", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "six", + 0, + "2024-11-12T18:15:14.000" + ], + [ + "six", + 3.5863013699, + "2025-01-01T18:34:03.000" + ], + [ + "soupsieve", + 1.3260273973, + "2025-01-01T18:34:03.000" + ], + [ + "sqlparse", + 0, + "2024-04-13T01:23:56.000" + ], + [ + "sqlparse", + 0.2547945205, + "2024-11-12T18:15:14.000" + ], + [ + "sqlparse", + 0.6575342466, + "2025-01-01T18:34:03.000" + ], + [ + "trusted-host", + -1, + "2024-04-13T01:23:56.000" + ], + [ + "typing-extensions", + 1.1369863014, + "2024-04-13T01:23:56.000" + ], + [ + "typing-extensions", + 1.3095890411, + "2025-01-01T18:34:03.000" + ], + [ + "unicodecsv", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "urllib3", + -0.002739726, + "2024-08-29T08:59:33.000" + ], + [ + "urllib3", + 0.2356164384, + "2024-11-12T18:15:14.000" + ], + [ + "urllib3", + 0.3369863014, + "2024-04-13T01:23:56.000" + ], + [ + "urllib3", + 0.5123287671, + "2025-01-01T18:34:03.000" + ], + [ + "via", + 0, + "2025-01-01T18:34:03.000" + ], + [ + "voluptuous", + 1.8246575342, + "2024-04-13T01:23:56.000" + ], + [ + "voluptuous", + 2.2383561644, + "2025-01-01T18:34:03.000" + ], + [ + "wrapt", + 0.698630137, + "2024-04-13T01:23:56.000" + ], + [ + "zipp", + 0.2273972603, + "2024-08-29T08:59:33.000" + ], + [ + "zipp", + 0.2739726027, + "2024-10-16T23:09:43.000" + ], + [ + "zipp", + 0.4328767123, + "2025-01-01T18:34:03.000" + ], + [ + "zipp", + 1.0493150685, + "2024-04-13T01:23:56.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/certwatcher/certwatcher_data.json b/app/site/_data/CMSgov/certwatcher/certwatcher_data.json index 43064f7670..91437a4080 100644 --- a/app/site/_data/CMSgov/certwatcher/certwatcher_data.json +++ b/app/site/_data/CMSgov/certwatcher/certwatcher_data.json @@ -1,311 +1,311 @@ { - "url": "https://github.com/CMSgov/certwatcher", - "owner": "CMSgov", - "name": "certwatcher", - "description": "utility to monitor the certificates in use by a host and alert if they're expiring soon", - "commits_count": 36, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 1, - "forks_count": 3, - "stargazers_count": 1, - "watchers_count": 32, - "total_project_lines": 549, - "average_project_lines": 110, - "total_project_comment_lines": 4, - "average_project_comment_lines": 1, - "total_project_blank_lines": 82, - "average_blank_lines": 16, - "commits_by_month": { - "2019/5": 2, - "2019/1": 1, - "2018/7": 1, - "2017/10": 13, - "2017/6": 5, - "2017/5": 8 + "url": "https://github.com/CMSgov/certwatcher", + "owner": "CMSgov", + "name": "certwatcher", + "description": "utility to monitor the certificates in use by a host and alert if they're expiring soon", + "commits_count": 36, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 1, + "forks_count": 3, + "stargazers_count": 1, + "watchers_count": 32, + "total_project_lines": 549, + "average_project_lines": 110, + "total_project_comment_lines": 4, + "average_project_comment_lines": 1, + "total_project_blank_lines": 82, + "average_blank_lines": 16, + "commits_by_month": { + "2019/5": 2, + "2019/1": 1, + "2018/7": 1, + "2017/10": 13, + "2017/6": 5, + "2017/5": 8 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2017-05-24T15:29:28Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:06Z", + "repo": { + "name": "github.com/CMSgov/certwatcher", + "commit": "61a98426104d7eae927e5b3da2d136048d91a8da" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2017-05-24T15:29:28Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:06Z", - "repo": { - "name": "github.com/CMSgov/certwatcher", - "commit": "61a98426104d7eae927e5b3da2d136048d91a8da" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/29 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 13 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Go", - "Bytes": 7224, - "CodeBytes": 0, - "Lines": 295, - "Code": 249, - "Comment": 4, - "Blank": 42, - "Complexity": 54, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 649, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1220, - "CodeBytes": 0, - "Lines": 32, - "Code": 28, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 10975.435813288519, - "estimatedScheduleMonths_low": 2.564407839906451, - "estimatedPeople_low": 0.4169501998555125, - "estimatedCost_high": 34204.25156776307, - "estimatedScheduleMonths_high": 2.564407839906451, - "estimatedPeople_high": 0.4169501998555125, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGo 2 295 42 4 249 54\n(ULOC) 189\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMakefile 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMarkdown 1 32 4 0 28 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 5 549 82 4 463 54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 398\nDRYness % 0.72\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $12,035\nEstimated Schedule Effort (organic) 2.56 months\nEstimated People Required (organic) 0.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 20450 bytes, 0.020 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Go": 7224, - "Makefile": 649 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/29 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 13 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Go", + "Bytes": 7224, + "CodeBytes": 0, + "Lines": 295, + "Code": 249, + "Comment": 4, + "Blank": 42, + "Complexity": 54, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 649, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1220, + "CodeBytes": 0, + "Lines": 32, + "Code": 28, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 10975.435813288519, + "estimatedScheduleMonths_low": 2.564407839906451, + "estimatedPeople_low": 0.4169501998555125, + "estimatedCost_high": 34204.25156776307, + "estimatedScheduleMonths_high": 2.564407839906451, + "estimatedPeople_high": 0.4169501998555125, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGo 2 295 42 4 249 54\n(ULOC) 189\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMakefile 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMarkdown 1 32 4 0 28 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 5 549 82 4 463 54\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 398\nDRYness % 0.72\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $12,035\nEstimated Schedule Effort (organic) 2.56 months\nEstimated People Required (organic) 0.42\n───────────────────────────────────────────────────────────────────────────────\nProcessed 20450 bytes, 0.020 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 7224, + "Makefile": 649 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/claims-api-ecosystem-website/claims-api-ecosystem-website_data.json b/app/site/_data/CMSgov/claims-api-ecosystem-website/claims-api-ecosystem-website_data.json index d73160c764..8e48d11c75 100644 --- a/app/site/_data/CMSgov/claims-api-ecosystem-website/claims-api-ecosystem-website_data.json +++ b/app/site/_data/CMSgov/claims-api-ecosystem-website/claims-api-ecosystem-website_data.json @@ -1,353 +1,353 @@ { - "url": "https://github.com/CMSgov/claims-api-ecosystem-website", - "owner": "CMSgov", - "name": "claims-api-ecosystem-website", - "description": null, - "commits_count": 36, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 11, - "open_pull_requests_count": 3, - "merged_pull_requests_count": 7, - "closed_pull_requests_count": 1, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 8, - "total_project_lines": 465, - "average_project_lines": 9, - "total_project_comment_lines": 74, - "average_project_comment_lines": 2, - "total_project_blank_lines": 66, - "average_blank_lines": 1, - "commits_by_month": { - "2021/8": 15, - "2021/7": 15 + "url": "https://github.com/CMSgov/claims-api-ecosystem-website", + "owner": "CMSgov", + "name": "claims-api-ecosystem-website", + "description": null, + "commits_count": 36, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 11, + "open_pull_requests_count": 3, + "merged_pull_requests_count": 7, + "closed_pull_requests_count": 1, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 8, + "total_project_lines": 465, + "average_project_lines": 9, + "total_project_comment_lines": 74, + "average_project_comment_lines": 2, + "total_project_blank_lines": 66, + "average_blank_lines": 1, + "commits_by_month": { + "2021/8": 15, + "2021/7": 15 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-05-13T15:30:33Z", + "ossf_scorecard": { + "date": "2025-01-11T01:02:02Z", + "repo": { + "name": "github.com/CMSgov/claims-api-ecosystem-website", + "commit": "b0d16db575fb8f3eb0675b1c9551c8dbe10bc74d" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-05-13T15:30:33Z", - "ossf_scorecard": { - "date": "2025-01-11T01:02:02Z", - "repo": { - "name": "github.com/CMSgov/claims-api-ecosystem-website", - "commit": "b0d16db575fb8f3eb0675b1c9551c8dbe10bc74d" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 1.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 6 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 3, - "reason": "Found 2/6 approved changesets -- score normalized to 3", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "129 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "SVG", - "Bytes": 15548, - "CodeBytes": 0, - "Lines": 31, - "Code": 31, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 6198, - "CodeBytes": 0, - "Lines": 187, - "Code": 150, - "Comment": 24, - "Blank": 13, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 6784, - "CodeBytes": 0, - "Lines": 133, - "Code": 93, - "Comment": 0, - "Blank": 40, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 478, - "CodeBytes": 0, - "Lines": 23, - "Code": 16, - "Comment": 3, - "Blank": 4, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 937, - "CodeBytes": 0, - "Lines": 27, - "Code": 7, - "Comment": 14, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 270, - "CodeBytes": 0, - "Lines": 14, - "Code": 14, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1732, - "CodeBytes": 0, - "Lines": 50, - "Code": 14, - "Comment": 33, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7569.013201411119, - "estimatedScheduleMonths_low": 2.226700166281178, - "estimatedPeople_low": 0.33115173073208154, - "estimatedCost_high": 23588.350937949217, - "estimatedScheduleMonths_high": 2.226700166281178, - "estimatedPeople_high": 0.33115173073208154, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSVG 31 31 0 0 31 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nHTML 8 187 13 24 150 0\n(ULOC) 121\n-------------------------------------------------------------------------------\nMarkdown 5 133 40 0 93 0\n(ULOC) 75\n-------------------------------------------------------------------------------\nSass 2 23 4 3 16 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nGemfile 1 27 6 14 7 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nJSON 1 14 0 0 14 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nYAML 1 50 3 33 14 0\n(ULOC) 45\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 49 465 66 74 325 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 310\nDRYness % 0.67\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,299\nEstimated Schedule Effort (organic) 2.23 months\nEstimated People Required (organic) 0.33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 31947 bytes, 0.032 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "HTML": 6198, - "Ruby": 937, - "SCSS": 478 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 1.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 6 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 3, + "reason": "Found 2/6 approved changesets -- score normalized to 3", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "129 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "SVG", + "Bytes": 15548, + "CodeBytes": 0, + "Lines": 31, + "Code": 31, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 6198, + "CodeBytes": 0, + "Lines": 187, + "Code": 150, + "Comment": 24, + "Blank": 13, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 6784, + "CodeBytes": 0, + "Lines": 133, + "Code": 93, + "Comment": 0, + "Blank": 40, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 478, + "CodeBytes": 0, + "Lines": 23, + "Code": 16, + "Comment": 3, + "Blank": 4, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 937, + "CodeBytes": 0, + "Lines": 27, + "Code": 7, + "Comment": 14, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 270, + "CodeBytes": 0, + "Lines": 14, + "Code": 14, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1732, + "CodeBytes": 0, + "Lines": 50, + "Code": 14, + "Comment": 33, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7569.013201411119, + "estimatedScheduleMonths_low": 2.226700166281178, + "estimatedPeople_low": 0.33115173073208154, + "estimatedCost_high": 23588.350937949217, + "estimatedScheduleMonths_high": 2.226700166281178, + "estimatedPeople_high": 0.33115173073208154, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSVG 31 31 0 0 31 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nHTML 8 187 13 24 150 0\n(ULOC) 121\n-------------------------------------------------------------------------------\nMarkdown 5 133 40 0 93 0\n(ULOC) 75\n-------------------------------------------------------------------------------\nSass 2 23 4 3 16 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nGemfile 1 27 6 14 7 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nJSON 1 14 0 0 14 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nYAML 1 50 3 33 14 0\n(ULOC) 45\n───────────────────────────────────────────────────────────────────────────────\nTotal 49 465 66 74 325 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 310\nDRYness % 0.67\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,299\nEstimated Schedule Effort (organic) 2.23 months\nEstimated People Required (organic) 0.33\n───────────────────────────────────────────────────────────────────────────────\nProcessed 31947 bytes, 0.032 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HTML": 6198, + "Ruby": 937, + "SCSS": 478 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/cms-bb2-java-sdk/cms-bb2-java-sdk_data.json b/app/site/_data/CMSgov/cms-bb2-java-sdk/cms-bb2-java-sdk_data.json index 8f23b7131b..11891b8c20 100644 --- a/app/site/_data/CMSgov/cms-bb2-java-sdk/cms-bb2-java-sdk_data.json +++ b/app/site/_data/CMSgov/cms-bb2-java-sdk/cms-bb2-java-sdk_data.json @@ -1,321 +1,321 @@ { - "url": "https://github.com/CMSgov/cms-bb2-java-sdk", - "owner": "CMSgov", - "name": "cms-bb2-java-sdk", - "description": null, - "commits_count": 8, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 4, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 12, - "total_project_lines": 292, - "average_project_lines": 49, - "total_project_comment_lines": 53, - "average_project_comment_lines": 9, - "total_project_blank_lines": 40, - "average_blank_lines": 7, - "commits_by_month": { - "2022/4": 1, - "2022/2": 7 + "url": "https://github.com/CMSgov/cms-bb2-java-sdk", + "owner": "CMSgov", + "name": "cms-bb2-java-sdk", + "description": null, + "commits_count": 8, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 4, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 12, + "total_project_lines": 292, + "average_project_lines": 49, + "total_project_comment_lines": 53, + "average_project_comment_lines": 9, + "total_project_blank_lines": 40, + "average_blank_lines": 7, + "commits_by_month": { + "2022/4": 1, + "2022/2": 7 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-01-20T22:08:30Z", + "ossf_scorecard": { + "date": "2025-01-11T01:02:56Z", + "repo": { + "name": "github.com/CMSgov/cms-bb2-java-sdk", + "commit": "1d0fd40d1bf06392073172f270d4dd99063407b9" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-01-20T22:08:30Z", - "ossf_scorecard": { - "date": "2025-01-11T01:02:56Z", - "repo": { - "name": "github.com/CMSgov/cms-bb2-java-sdk", - "commit": "1d0fd40d1bf06392073172f270d4dd99063407b9" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 1/4 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 735, - "CodeBytes": 0, - "Lines": 42, - "Code": 19, - "Comment": 18, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6556, - "CodeBytes": 0, - "Lines": 117, - "Code": 96, - "Comment": 0, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 138, - "CodeBytes": 0, - "Lines": 14, - "Code": 8, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 3018, - "CodeBytes": 0, - "Lines": 99, - "Code": 61, - "Comment": 35, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 367, - "CodeBytes": 0, - "Lines": 20, - "Code": 15, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4522.280160715302, - "estimatedScheduleMonths_low": 1.830891708940847, - "estimatedPeople_low": 0.24062697638242617, - "estimatedCost_high": 14093.400108060387, - "estimatedScheduleMonths_high": 1.830891708940847, - "estimatedPeople_high": 0.24062697638242617, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 2 42 5 18 19 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nMarkdown 1 14 6 0 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nXML 1 99 3 35 61 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nYAML 1 20 5 0 15 0\n(ULOC) 16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 6 292 40 53 199 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 219\nDRYness % 0.75\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,958\nEstimated Schedule Effort (organic) 1.83 months\nEstimated People Required (organic) 0.24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 10814 bytes, 0.011 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Java": 735 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 1/4 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 735, + "CodeBytes": 0, + "Lines": 42, + "Code": 19, + "Comment": 18, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6556, + "CodeBytes": 0, + "Lines": 117, + "Code": 96, + "Comment": 0, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 138, + "CodeBytes": 0, + "Lines": 14, + "Code": 8, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 3018, + "CodeBytes": 0, + "Lines": 99, + "Code": 61, + "Comment": 35, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 367, + "CodeBytes": 0, + "Lines": 20, + "Code": 15, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4522.280160715302, + "estimatedScheduleMonths_low": 1.830891708940847, + "estimatedPeople_low": 0.24062697638242617, + "estimatedCost_high": 14093.400108060387, + "estimatedScheduleMonths_high": 1.830891708940847, + "estimatedPeople_high": 0.24062697638242617, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 2 42 5 18 19 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nMarkdown 1 14 6 0 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nXML 1 99 3 35 61 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nYAML 1 20 5 0 15 0\n(ULOC) 16\n───────────────────────────────────────────────────────────────────────────────\nTotal 6 292 40 53 199 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 219\nDRYness % 0.75\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,958\nEstimated Schedule Effort (organic) 1.83 months\nEstimated People Required (organic) 0.24\n───────────────────────────────────────────────────────────────────────────────\nProcessed 10814 bytes, 0.011 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 735 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/cms-bb2-node-sdk/cms-bb2-node-sdk_data.json b/app/site/_data/CMSgov/cms-bb2-node-sdk/cms-bb2-node-sdk_data.json index 391ef84cbe..8b489ec095 100644 --- a/app/site/_data/CMSgov/cms-bb2-node-sdk/cms-bb2-node-sdk_data.json +++ b/app/site/_data/CMSgov/cms-bb2-node-sdk/cms-bb2-node-sdk_data.json @@ -1,595 +1,595 @@ { - "url": "https://github.com/CMSgov/cms-bb2-node-sdk", - "owner": "CMSgov", - "name": "cms-bb2-node-sdk", - "description": null, - "commits_count": 169, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 62, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 46, - "closed_pull_requests_count": 15, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 13, - "total_project_lines": 89193, - "average_project_lines": 1538, - "total_project_comment_lines": 157, - "average_project_comment_lines": 3, - "total_project_blank_lines": 526, - "average_blank_lines": 9, - "commits_by_month": { - "2024/10": 1, - "2024/8": 3, - "2024/7": 2, - "2024/6": 3, - "2023/11": 3, - "2023/5": 5, - "2023/4": 2, - "2022/12": 5, - "2022/11": 4, - "2022/10": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-01-20T22:05:55Z", - "ossf_scorecard": { - "date": "2025-01-11T01:05:00Z", - "repo": { - "name": "github.com/CMSgov/cms-bb2-node-sdk", - "commit": "54c6b2faef54b508cdf4fea799e8d332b9836ae1" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 14 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 13/14 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 2806957, - "CodeBytes": 0, - "Lines": 72956, - "Code": 72956, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 24, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 407438, - "CodeBytes": 0, - "Lines": 8986, - "Code": 8970, - "Comment": 0, - "Blank": 16, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 47529, - "CodeBytes": 0, - "Lines": 1623, - "Code": 1256, - "Comment": 147, - "Blank": 220, - "Complexity": 71, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 110171, - "CodeBytes": 0, - "Lines": 2360, - "Code": 2346, - "Comment": 7, - "Blank": 7, - "Complexity": 368, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 67987, - "CodeBytes": 0, - "Lines": 2585, - "Code": 2471, - "Comment": 2, - "Blank": 112, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 18606, - "CodeBytes": 0, - "Lines": 562, - "Code": 413, - "Comment": 0, - "Blank": 149, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6556, - "CodeBytes": 0, - "Lines": 117, - "Code": 96, - "Comment": 0, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 58, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2728372.6756250844, - "estimatedScheduleMonths_low": 20.857882878945055, - "estimatedPeople_low": 12.74333132973159, - "estimatedCost_high": 8502800.886931669, - "estimatedScheduleMonths_high": 20.857882878945055, - "estimatedPeople_high": 12.74333132973159, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 24 72956 0 0 72956 0\n(ULOC) 1140\n-------------------------------------------------------------------------------\nHTML 13 8986 16 0 8970 0\n(ULOC) 1594\n-------------------------------------------------------------------------------\nTypeScript 9 1623 220 147 1256 71\n(ULOC) 848\n-------------------------------------------------------------------------------\nJavaScript 4 2360 7 7 2346 368\n(ULOC) 1791\n-------------------------------------------------------------------------------\nCSS 3 2585 112 2 2471 0\n(ULOC) 1331\n-------------------------------------------------------------------------------\nMarkdown 3 562 149 0 413 0\n(ULOC) 343\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 58 89193 526 157 88510 439\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 7092\nDRYness % 0.08\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,991,832\nEstimated Schedule Effort (organic) 20.86 months\nEstimated People Required (organic) 12.74\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3465302 bytes, 3.465 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/cms-bb2-node-sdk", + "owner": "CMSgov", + "name": "cms-bb2-node-sdk", + "description": null, + "commits_count": 169, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 62, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 46, + "closed_pull_requests_count": 15, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 13, + "total_project_lines": 89193, + "average_project_lines": 1538, + "total_project_comment_lines": 157, + "average_project_comment_lines": 3, + "total_project_blank_lines": 526, + "average_blank_lines": 9, + "commits_by_month": { + "2024/10": 1, + "2024/8": 3, + "2024/7": 2, + "2024/6": 3, + "2023/11": 3, + "2023/5": 5, + "2023/4": 2, + "2022/12": 5, + "2022/11": 4, + "2022/10": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-01-20T22:05:55Z", + "ossf_scorecard": { + "date": "2025-01-11T01:05:00Z", + "repo": { + "name": "github.com/CMSgov/cms-bb2-node-sdk", + "commit": "54c6b2faef54b508cdf4fea799e8d332b9836ae1" }, - "predominant_langs": { - "TypeScript": 47529, - "JavaScript": 1693, - "Shell": 58 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "cms-bb2-node-sdk", - "815 days 20:14:48" - ] - ], - "repo_dependency_libyear_list": [ - [ - "@microsoft/api-extractor", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "@rollup/plugin-commonjs", - 2.1424657534, - "2024-06-30T20:42:08.000" - ], - [ - "@rollup/plugin-commonjs", - 2.6712328767, - "2025-01-01T18:37:23.000" - ], - [ - "@rollup/plugin-json", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "@rollup/plugin-node-resolve", - 1.4356164384, - "2024-06-30T20:42:08.000" - ], - [ - "@rollup/plugin-node-resolve", - 2.6246575342, - "2025-01-01T18:37:23.000" - ], - [ - "@rollup/plugin-typescript", - 1.3424657534, - "2024-06-30T20:42:08.000" - ], - [ - "@rollup/plugin-typescript", - 2.2767123288, - "2025-01-01T18:37:23.000" - ], - [ - "@types/jest", - 1.6684931507, - "2024-06-30T20:42:08.000" - ], - [ - "@types/jest", - 2.3945205479, - "2025-01-01T18:37:23.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.9589041096, - "2024-06-30T20:42:08.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4739726027, - "2025-01-01T18:37:23.000" - ], - [ - "@typescript-eslint/parser", - 0.9589041096, - "2024-06-30T20:42:08.000" - ], - [ - "@typescript-eslint/parser", - 1.4739726027, - "2025-01-01T18:37:23.000" - ], - [ - "axios", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "axios", - 0.1452054795, - "2024-06-30T20:42:08.000" - ], - [ - "babel-jest", - 1.5890410959, - "2025-01-01T18:37:23.000" - ], - [ - "cms-bluebutton-sdk", - 0.0, - "2024-06-30T20:42:08.000" - ], - [ - "eslint", - 2.3753424658, - "2024-06-30T20:42:08.000" - ], - [ - "eslint", - 2.8356164384, - "2025-01-01T18:37:23.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2025-01-01T18:37:23.000" - ], - [ - "http-status-codes", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "husky", - 2.3150684932, - "2024-06-30T20:42:08.000" - ], - [ - "husky", - 3.0794520548, - "2025-01-01T18:37:23.000" - ], - [ - "jest", - 1.5890410959, - "2025-01-01T18:37:23.000" - ], - [ - "lint-staged", - 2.0356164384, - "2024-06-30T20:42:08.000" - ], - [ - "lint-staged", - 2.5780821918, - "2025-01-01T18:37:23.000" - ], - [ - "moment", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "prettier", - 2.5178082192, - "2024-06-30T20:42:08.000" - ], - [ - "prettier", - 3.0, - "2025-01-01T18:37:23.000" - ], - [ - "rollup", - 0.2328767123, - "2025-01-01T18:37:23.000" - ], - [ - "rollup", - 1.4547945205, - "2024-06-30T20:42:08.000" - ], - [ - "ts-jest", - 2.0821917808, - "2024-06-30T20:42:08.000" - ], - [ - "ts-jest", - 2.2657534247, - "2025-01-01T18:37:23.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "tslib", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "tslint", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "typedoc", - 0.0, - "2025-01-01T18:37:23.000" - ], - [ - "typescript", - 1.3863013699, - "2024-06-30T20:42:08.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:37:23.000" - ] + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 14 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 13/14 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 2806957, + "CodeBytes": 0, + "Lines": 72956, + "Code": 72956, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 24, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 407438, + "CodeBytes": 0, + "Lines": 8986, + "Code": 8970, + "Comment": 0, + "Blank": 16, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 47529, + "CodeBytes": 0, + "Lines": 1623, + "Code": 1256, + "Comment": 147, + "Blank": 220, + "Complexity": 71, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 110171, + "CodeBytes": 0, + "Lines": 2360, + "Code": 2346, + "Comment": 7, + "Blank": 7, + "Complexity": 368, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 67987, + "CodeBytes": 0, + "Lines": 2585, + "Code": 2471, + "Comment": 2, + "Blank": 112, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 18606, + "CodeBytes": 0, + "Lines": 562, + "Code": 413, + "Comment": 0, + "Blank": 149, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6556, + "CodeBytes": 0, + "Lines": 117, + "Code": 96, + "Comment": 0, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 58, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2728372.6756250844, + "estimatedScheduleMonths_low": 20.857882878945055, + "estimatedPeople_low": 12.74333132973159, + "estimatedCost_high": 8502800.886931669, + "estimatedScheduleMonths_high": 20.857882878945055, + "estimatedPeople_high": 12.74333132973159, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 24 72956 0 0 72956 0\n(ULOC) 1140\n-------------------------------------------------------------------------------\nHTML 13 8986 16 0 8970 0\n(ULOC) 1594\n-------------------------------------------------------------------------------\nTypeScript 9 1623 220 147 1256 71\n(ULOC) 848\n-------------------------------------------------------------------------------\nJavaScript 4 2360 7 7 2346 368\n(ULOC) 1791\n-------------------------------------------------------------------------------\nCSS 3 2585 112 2 2471 0\n(ULOC) 1331\n-------------------------------------------------------------------------------\nMarkdown 3 562 149 0 413 0\n(ULOC) 343\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 58 89193 526 157 88510 439\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 7092\nDRYness % 0.08\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,991,832\nEstimated Schedule Effort (organic) 20.86 months\nEstimated People Required (organic) 12.74\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3465302 bytes, 3.465 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 47529, + "JavaScript": 1693, + "Shell": 58 + }, + "average_issue_resolution_time": [ + [ + "cms-bb2-node-sdk", + "815 days 20:14:48" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@microsoft/api-extractor", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "@rollup/plugin-commonjs", + 2.1424657534, + "2024-06-30T20:42:08.000" + ], + [ + "@rollup/plugin-commonjs", + 2.6712328767, + "2025-01-01T18:37:23.000" + ], + [ + "@rollup/plugin-json", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "@rollup/plugin-node-resolve", + 1.4356164384, + "2024-06-30T20:42:08.000" + ], + [ + "@rollup/plugin-node-resolve", + 2.6246575342, + "2025-01-01T18:37:23.000" + ], + [ + "@rollup/plugin-typescript", + 1.3424657534, + "2024-06-30T20:42:08.000" + ], + [ + "@rollup/plugin-typescript", + 2.2767123288, + "2025-01-01T18:37:23.000" + ], + [ + "@types/jest", + 1.6684931507, + "2024-06-30T20:42:08.000" + ], + [ + "@types/jest", + 2.3945205479, + "2025-01-01T18:37:23.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.9589041096, + "2024-06-30T20:42:08.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4739726027, + "2025-01-01T18:37:23.000" + ], + [ + "@typescript-eslint/parser", + 0.9589041096, + "2024-06-30T20:42:08.000" + ], + [ + "@typescript-eslint/parser", + 1.4739726027, + "2025-01-01T18:37:23.000" + ], + [ + "axios", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "axios", + 0.1452054795, + "2024-06-30T20:42:08.000" + ], + [ + "babel-jest", + 1.5890410959, + "2025-01-01T18:37:23.000" + ], + [ + "cms-bluebutton-sdk", + 0, + "2024-06-30T20:42:08.000" + ], + [ + "eslint", + 2.3753424658, + "2024-06-30T20:42:08.000" + ], + [ + "eslint", + 2.8356164384, + "2025-01-01T18:37:23.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2025-01-01T18:37:23.000" + ], + [ + "http-status-codes", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "husky", + 2.3150684932, + "2024-06-30T20:42:08.000" + ], + [ + "husky", + 3.0794520548, + "2025-01-01T18:37:23.000" + ], + [ + "jest", + 1.5890410959, + "2025-01-01T18:37:23.000" + ], + [ + "lint-staged", + 2.0356164384, + "2024-06-30T20:42:08.000" + ], + [ + "lint-staged", + 2.5780821918, + "2025-01-01T18:37:23.000" + ], + [ + "moment", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "prettier", + 2.5178082192, + "2024-06-30T20:42:08.000" + ], + [ + "prettier", + 3, + "2025-01-01T18:37:23.000" + ], + [ + "rollup", + 0.2328767123, + "2025-01-01T18:37:23.000" + ], + [ + "rollup", + 1.4547945205, + "2024-06-30T20:42:08.000" + ], + [ + "ts-jest", + 2.0821917808, + "2024-06-30T20:42:08.000" + ], + [ + "ts-jest", + 2.2657534247, + "2025-01-01T18:37:23.000" + ], + [ + "ts-node", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "tslib", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "tslint", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "typedoc", + 0, + "2025-01-01T18:37:23.000" + ], + [ + "typescript", + 1.3863013699, + "2024-06-30T20:42:08.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:37:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/cms-bb2-python-sdk/cms-bb2-python-sdk_data.json b/app/site/_data/CMSgov/cms-bb2-python-sdk/cms-bb2-python-sdk_data.json index 1c087a4dad..db518f87b5 100644 --- a/app/site/_data/CMSgov/cms-bb2-python-sdk/cms-bb2-python-sdk_data.json +++ b/app/site/_data/CMSgov/cms-bb2-python-sdk/cms-bb2-python-sdk_data.json @@ -1,387 +1,387 @@ { - "url": "https://github.com/CMSgov/cms-bb2-python-sdk", - "owner": "CMSgov", - "name": "cms-bb2-python-sdk", - "description": null, - "commits_count": 78, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 42, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 32, - "closed_pull_requests_count": 4, - "forks_count": 0, - "stargazers_count": 6, - "watchers_count": 13, - "total_project_lines": 74834, - "average_project_lines": 1919, - "total_project_comment_lines": 37, - "average_project_comment_lines": 1, - "total_project_blank_lines": 436, - "average_blank_lines": 11, - "commits_by_month": { - "2024/10": 1, - "2024/9": 2, - "2024/8": 1, - "2024/7": 2, - "2024/6": 4, - "2023/10": 2, - "2023/5": 4, - "2023/4": 3, - "2022/12": 4, - "2022/11": 3, - "2022/10": 2, - "2022/9": 1, - "2022/8": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/cms-bb2-python-sdk", + "owner": "CMSgov", + "name": "cms-bb2-python-sdk", + "description": null, + "commits_count": 78, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 42, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 32, + "closed_pull_requests_count": 4, + "forks_count": 0, + "stargazers_count": 6, + "watchers_count": 13, + "total_project_lines": 74834, + "average_project_lines": 1919, + "total_project_comment_lines": 37, + "average_project_comment_lines": 1, + "total_project_blank_lines": 436, + "average_blank_lines": 11, + "commits_by_month": { + "2024/10": 1, + "2024/9": 2, + "2024/8": 1, + "2024/7": 2, + "2024/6": 4, + "2023/10": 2, + "2023/5": 4, + "2023/4": 3, + "2022/12": 4, + "2022/11": 3, + "2022/10": 2, + "2022/9": 1, + "2022/8": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-01-20T22:07:51Z", - "ossf_scorecard": { - "date": "2025-01-11T00:57:38Z", - "repo": { - "name": "github.com/CMSgov/cms-bb2-python-sdk", - "commit": "600f2438c902275abf5c0a1fbefabf57a0334e5e" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 15 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 2804685, - "CodeBytes": 0, - "Lines": 72813, - "Code": 72813, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 20, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 38831, - "CodeBytes": 0, - "Lines": 1046, - "Code": 814, - "Comment": 33, - "Blank": 199, - "Complexity": 57, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 20796, - "CodeBytes": 0, - "Lines": 670, - "Code": 457, - "Comment": 0, - "Blank": 213, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Autoconf", - "Bytes": 156, - "CodeBytes": 0, - "Lines": 9, - "Code": 9, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6556, - "CodeBytes": 0, - "Lines": 117, - "Code": 96, - "Comment": 0, - "Blank": 21, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 10562, - "CodeBytes": 0, - "Lines": 167, - "Code": 167, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 354, - "CodeBytes": 0, - "Lines": 12, - "Code": 5, - "Comment": 4, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2272344.7237820756, - "estimatedScheduleMonths_low": 19.457499317968985, - "estimatedPeople_low": 11.37723425931415, - "estimatedCost_high": 7081618.616621763, - "estimatedScheduleMonths_high": 19.457499317968985, - "estimatedPeople_high": 11.37723425931415, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 20 72813 0 0 72813 0\n(ULOC) 1040\n-------------------------------------------------------------------------------\nPython 12 1046 199 33 814 57\n(ULOC) 634\n-------------------------------------------------------------------------------\nMarkdown 3 670 213 0 457 0\n(ULOC) 350\n-------------------------------------------------------------------------------\nAutoconf 1 9 0 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 167 0 0 167 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nYAML 1 12 3 4 5 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 39 74834 436 37 74361 57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 2265\nDRYness % 0.03\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,491,769\nEstimated Schedule Effort (organic) 19.46 months\nEstimated People Required (organic) 11.38\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2881940 bytes, 2.882 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-01-20T22:07:51Z", + "ossf_scorecard": { + "date": "2025-01-11T00:57:38Z", + "repo": { + "name": "github.com/CMSgov/cms-bb2-python-sdk", + "commit": "600f2438c902275abf5c0a1fbefabf57a0334e5e" }, - "predominant_langs": { - "Python": 38140 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "pyyaml", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "requests", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "requests-toolbelt", - 0.0, - "2025-01-01T18:37:34.000" - ] + "score": 4.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 15 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 2804685, + "CodeBytes": 0, + "Lines": 72813, + "Code": 72813, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 20, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 38831, + "CodeBytes": 0, + "Lines": 1046, + "Code": 814, + "Comment": 33, + "Blank": 199, + "Complexity": 57, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 20796, + "CodeBytes": 0, + "Lines": 670, + "Code": 457, + "Comment": 0, + "Blank": 213, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Autoconf", + "Bytes": 156, + "CodeBytes": 0, + "Lines": 9, + "Code": 9, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6556, + "CodeBytes": 0, + "Lines": 117, + "Code": 96, + "Comment": 0, + "Blank": 21, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 10562, + "CodeBytes": 0, + "Lines": 167, + "Code": 167, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 354, + "CodeBytes": 0, + "Lines": 12, + "Code": 5, + "Comment": 4, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2272344.7237820756, + "estimatedScheduleMonths_low": 19.457499317968985, + "estimatedPeople_low": 11.37723425931415, + "estimatedCost_high": 7081618.616621763, + "estimatedScheduleMonths_high": 19.457499317968985, + "estimatedPeople_high": 11.37723425931415, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 20 72813 0 0 72813 0\n(ULOC) 1040\n-------------------------------------------------------------------------------\nPython 12 1046 199 33 814 57\n(ULOC) 634\n-------------------------------------------------------------------------------\nMarkdown 3 670 213 0 457 0\n(ULOC) 350\n-------------------------------------------------------------------------------\nAutoconf 1 9 0 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 117 21 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 167 0 0 167 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nYAML 1 12 3 4 5 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 39 74834 436 37 74361 57\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 2265\nDRYness % 0.03\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,491,769\nEstimated Schedule Effort (organic) 19.46 months\nEstimated People Required (organic) 11.38\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2881940 bytes, 2.882 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 38140 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "pyyaml", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "requests", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "requests-toolbelt", + 0, + "2025-01-01T18:37:34.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/cms-oeda-dasg/cms-oeda-dasg_data.json b/app/site/_data/CMSgov/cms-oeda-dasg/cms-oeda-dasg_data.json index 38176e2340..f9031716a1 100644 --- a/app/site/_data/CMSgov/cms-oeda-dasg/cms-oeda-dasg_data.json +++ b/app/site/_data/CMSgov/cms-oeda-dasg/cms-oeda-dasg_data.json @@ -1,279 +1,279 @@ { - "url": "https://github.com/CMSgov/cms-oeda-dasg", - "owner": "CMSgov", - "name": "cms-oeda-dasg", - "description": "The policies, procedures, RFCs, and more for the Data and Analytics Strategy Group (DASG) at the Centers for Medicare and Medicaid Services' Office of Enterprise Data and Analytics (OEDA).", - "commits_count": 37, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 5, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 15, - "total_project_lines": 832, - "average_project_lines": 55, - "total_project_comment_lines": 28, - "average_project_comment_lines": 2, - "total_project_blank_lines": 207, - "average_blank_lines": 14, - "commits_by_month": { - "2022/2": 1, - "2020/7": 6, - "2020/6": 10, - "2020/5": 6, - "2020/4": 7 + "url": "https://github.com/CMSgov/cms-oeda-dasg", + "owner": "CMSgov", + "name": "cms-oeda-dasg", + "description": "The policies, procedures, RFCs, and more for the Data and Analytics Strategy Group (DASG) at the Centers for Medicare and Medicaid Services' Office of Enterprise Data and Analytics (OEDA).", + "commits_count": 37, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 5, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 15, + "total_project_lines": 832, + "average_project_lines": 55, + "total_project_comment_lines": 28, + "average_project_comment_lines": 2, + "total_project_blank_lines": 207, + "average_blank_lines": 14, + "commits_by_month": { + "2022/2": 1, + "2020/7": 6, + "2020/6": 10, + "2020/5": 6, + "2020/4": 7 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-04-20T21:11:24Z", + "ossf_scorecard": { + "date": "2025-01-11T00:59:42Z", + "repo": { + "name": "github.com/CMSgov/cms-oeda-dasg", + "commit": "ff06d5380cdfaf3878e2a7837d7fd3af9facb500" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-04-20T21:11:24Z", - "ossf_scorecard": { - "date": "2025-01-11T00:59:42Z", - "repo": { - "name": "github.com/CMSgov/cms-oeda-dasg", - "commit": "ff06d5380cdfaf3878e2a7837d7fd3af9facb500" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 3/4 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 31518, - "CodeBytes": 0, - "Lines": 685, - "Code": 494, - "Comment": 0, - "Blank": 191, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 4227, - "CodeBytes": 0, - "Lines": 147, - "Code": 103, - "Comment": 28, - "Blank": 16, - "Complexity": 10, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14332.923449693602, - "estimatedScheduleMonths_low": 2.8381414643751093, - "estimatedPeople_low": 0.4919831748600367, - "estimatedCost_high": 44667.64944142297, - "estimatedScheduleMonths_high": 2.8381414643751093, - "estimatedPeople_high": 0.4919831748600367, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 11 685 191 0 494 0\n(ULOC) 448\n-------------------------------------------------------------------------------\nTerraform 4 147 16 28 103 10\n(ULOC) 86\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 832 207 28 597 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 533\nDRYness % 0.64\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $15,716\nEstimated Schedule Effort (organic) 2.84 months\nEstimated People Required (organic) 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 35745 bytes, 0.036 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "HCL": 4227 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 3/4 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 31518, + "CodeBytes": 0, + "Lines": 685, + "Code": 494, + "Comment": 0, + "Blank": 191, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 4227, + "CodeBytes": 0, + "Lines": 147, + "Code": 103, + "Comment": 28, + "Blank": 16, + "Complexity": 10, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14332.923449693602, + "estimatedScheduleMonths_low": 2.8381414643751093, + "estimatedPeople_low": 0.4919831748600367, + "estimatedCost_high": 44667.64944142297, + "estimatedScheduleMonths_high": 2.8381414643751093, + "estimatedPeople_high": 0.4919831748600367, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 11 685 191 0 494 0\n(ULOC) 448\n-------------------------------------------------------------------------------\nTerraform 4 147 16 28 103 10\n(ULOC) 86\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 832 207 28 597 10\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 533\nDRYness % 0.64\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $15,716\nEstimated Schedule Effort (organic) 2.84 months\nEstimated People Required (organic) 0.49\n───────────────────────────────────────────────────────────────────────────────\nProcessed 35745 bytes, 0.036 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HCL": 4227 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/cmscloud-infra-azops/cmscloud-infra-azops_data.json b/app/site/_data/CMSgov/cmscloud-infra-azops/cmscloud-infra-azops_data.json index d9d5649b67..3427c00862 100644 --- a/app/site/_data/CMSgov/cmscloud-infra-azops/cmscloud-infra-azops_data.json +++ b/app/site/_data/CMSgov/cmscloud-infra-azops/cmscloud-infra-azops_data.json @@ -1,339 +1,339 @@ { - "url": "https://github.com/CMSgov/cmscloud-infra-azops", - "owner": "CMSgov", - "name": "cmscloud-infra-azops", - "description": "This container image can be used to deploy ARM templates at Tenant, Management Group, Subscription and Resource Group scope and export current Azure configuration hierarchy in Git repository.", - "commits_count": 109, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 3, - "total_project_lines": 32412, - "average_project_lines": 426, - "total_project_comment_lines": 1284, - "average_project_comment_lines": 17, - "total_project_blank_lines": 655, - "average_blank_lines": 9, - "commits_by_month": { - "2020/11": 9, - "2020/10": 2, - "2020/9": 3, - "2020/8": 16 + "url": "https://github.com/CMSgov/cmscloud-infra-azops", + "owner": "CMSgov", + "name": "cmscloud-infra-azops", + "description": "This container image can be used to deploy ARM templates at Tenant, Management Group, Subscription and Resource Group scope and export current Azure configuration hierarchy in Git repository.", + "commits_count": 109, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 3, + "total_project_lines": 32412, + "average_project_lines": 426, + "total_project_comment_lines": 1284, + "average_project_comment_lines": 17, + "total_project_blank_lines": 655, + "average_blank_lines": 9, + "commits_by_month": { + "2020/11": 9, + "2020/10": 2, + "2020/9": 3, + "2020/8": 16 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-12-24T21:49:20Z", + "ossf_scorecard": { + "date": "2025-01-11T01:02:50Z", + "repo": { + "name": "github.com/CMSgov/cmscloud-infra-azops", + "commit": "f5cc2aaae7a67432602fb3b37d9e2ff7d205085e" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-12-24T21:49:20Z", - "ossf_scorecard": { - "date": "2025-01-11T01:02:50Z", - "repo": { - "name": "github.com/CMSgov/cmscloud-infra-azops", - "commit": "f5cc2aaae7a67432602fb3b37d9e2ff7d205085e" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "internal error: Client.Actions.ListWorkflowRunsByFileName: internal error: ListWorkflowRunsByFileName: GET https://api.github.com/repos/CMSgov/cmscloud-infra-azops/actions/workflows/release.yml/runs?status=success: 404 Not Found []", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Powershell", - "Bytes": 263232, - "CodeBytes": 0, - "Lines": 4986, - "Code": 3265, - "Comment": 1262, - "Blank": 459, - "Complexity": 567, - "Count": 35, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1340359, - "CodeBytes": 0, - "Lines": 26733, - "Code": 26694, - "Comment": 0, - "Blank": 39, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 16211, - "CodeBytes": 0, - "Lines": 280, - "Code": 180, - "Comment": 0, - "Blank": 100, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 11147, - "CodeBytes": 0, - "Lines": 369, - "Code": 300, - "Comment": 22, - "Blank": 47, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1267, - "CodeBytes": 0, - "Lines": 23, - "Code": 17, - "Comment": 0, - "Blank": 6, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1162, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 890579.5244486884, - "estimatedScheduleMonths_low": 13.630206953693161, - "estimatedPeople_low": 6.3653130001684834, - "estimatedCost_high": 2775434.763005978, - "estimatedScheduleMonths_high": 13.630206953693161, - "estimatedPeople_high": 6.3653130001684834, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPowershell 35 4986 459 1262 3265 567\n(ULOC) 2689\n-------------------------------------------------------------------------------\nJSON 22 26733 39 0 26694 0\n(ULOC) 3410\n-------------------------------------------------------------------------------\nMarkdown 10 280 100 0 180 0\n(ULOC) 158\n-------------------------------------------------------------------------------\nYAML 7 369 47 22 300 0\n(ULOC) 181\n-------------------------------------------------------------------------------\nDockerfile 1 23 6 0 17 1\n(ULOC) 18\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 76 32412 655 1284 30473 568\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 6447\nDRYness % 0.20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $976,576\nEstimated Schedule Effort (organic) 13.63 months\nEstimated People Required (organic) 6.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1633378 bytes, 1.633 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "PowerShell": 281892, - "Dockerfile": 1267 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "internal error: Client.Actions.ListWorkflowRunsByFileName: internal error: ListWorkflowRunsByFileName: GET https://api.github.com/repos/CMSgov/cmscloud-infra-azops/actions/workflows/release.yml/runs?status=success: 404 Not Found []", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Powershell", + "Bytes": 263232, + "CodeBytes": 0, + "Lines": 4986, + "Code": 3265, + "Comment": 1262, + "Blank": 459, + "Complexity": 567, + "Count": 35, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1340359, + "CodeBytes": 0, + "Lines": 26733, + "Code": 26694, + "Comment": 0, + "Blank": 39, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 16211, + "CodeBytes": 0, + "Lines": 280, + "Code": 180, + "Comment": 0, + "Blank": 100, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 11147, + "CodeBytes": 0, + "Lines": 369, + "Code": 300, + "Comment": 22, + "Blank": 47, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1267, + "CodeBytes": 0, + "Lines": 23, + "Code": 17, + "Comment": 0, + "Blank": 6, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1162, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 890579.5244486884, + "estimatedScheduleMonths_low": 13.630206953693161, + "estimatedPeople_low": 6.3653130001684834, + "estimatedCost_high": 2775434.763005978, + "estimatedScheduleMonths_high": 13.630206953693161, + "estimatedPeople_high": 6.3653130001684834, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPowershell 35 4986 459 1262 3265 567\n(ULOC) 2689\n-------------------------------------------------------------------------------\nJSON 22 26733 39 0 26694 0\n(ULOC) 3410\n-------------------------------------------------------------------------------\nMarkdown 10 280 100 0 180 0\n(ULOC) 158\n-------------------------------------------------------------------------------\nYAML 7 369 47 22 300 0\n(ULOC) 181\n-------------------------------------------------------------------------------\nDockerfile 1 23 6 0 17 1\n(ULOC) 18\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n───────────────────────────────────────────────────────────────────────────────\nTotal 76 32412 655 1284 30473 568\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 6447\nDRYness % 0.20\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $976,576\nEstimated Schedule Effort (organic) 13.63 months\nEstimated People Required (organic) 6.37\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1633378 bytes, 1.633 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "PowerShell": 281892, + "Dockerfile": 1267 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/cmscloud-infra-mag-jmeter-aci/cmscloud-infra-mag-jmeter-aci_data.json b/app/site/_data/CMSgov/cmscloud-infra-mag-jmeter-aci/cmscloud-infra-mag-jmeter-aci_data.json index bc98401c6d..1b7345ccc3 100644 --- a/app/site/_data/CMSgov/cmscloud-infra-mag-jmeter-aci/cmscloud-infra-mag-jmeter-aci_data.json +++ b/app/site/_data/CMSgov/cmscloud-infra-mag-jmeter-aci/cmscloud-infra-mag-jmeter-aci_data.json @@ -1,349 +1,349 @@ { - "url": "https://github.com/CMSgov/cmscloud-infra-mag-jmeter-aci", - "owner": "CMSgov", - "name": "cmscloud-infra-mag-jmeter-aci", - "description": "Scalable cloud load/stress testing pipeline solution with Apache JMeter and Terraform to dynamically provision and destroy the required infrastructure on Azure.", - "commits_count": 39, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 2, - "total_project_lines": 1345, - "average_project_lines": 64, - "total_project_comment_lines": 92, - "average_project_comment_lines": 4, - "total_project_blank_lines": 317, - "average_blank_lines": 15, - "commits_by_month": { - "2022/3": 3, - "2022/1": 1, - "2021/9": 2, - "2021/8": 2, - "2021/4": 1, - "2021/1": 2, - "2020/12": 2, - "2020/11": 1, - "2020/9": 6, - "2020/8": 2, - "2020/4": 1, - "2020/3": 5, - "2020/2": 2 + "url": "https://github.com/CMSgov/cmscloud-infra-mag-jmeter-aci", + "owner": "CMSgov", + "name": "cmscloud-infra-mag-jmeter-aci", + "description": "Scalable cloud load/stress testing pipeline solution with Apache JMeter and Terraform to dynamically provision and destroy the required infrastructure on Azure.", + "commits_count": 39, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 2, + "total_project_lines": 1345, + "average_project_lines": 64, + "total_project_comment_lines": 92, + "average_project_comment_lines": 4, + "total_project_blank_lines": 317, + "average_blank_lines": 15, + "commits_by_month": { + "2022/3": 3, + "2022/1": 1, + "2021/9": 2, + "2021/8": 2, + "2021/4": 1, + "2021/1": 2, + "2020/12": 2, + "2020/11": 1, + "2020/9": 6, + "2020/8": 2, + "2020/4": 1, + "2020/3": 5, + "2020/2": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-02-16T23:03:03Z", + "ossf_scorecard": { + "date": "2025-01-11T01:02:24Z", + "repo": { + "name": "github.com/CMSgov/cmscloud-infra-mag-jmeter-aci", + "commit": "218f82158f2e0377797503694b4aff7a39cf81f1" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-02-16T23:03:03Z", - "ossf_scorecard": { - "date": "2025-01-11T01:02:24Z", - "repo": { - "name": "github.com/CMSgov/cmscloud-infra-mag-jmeter-aci", - "commit": "218f82158f2e0377797503694b4aff7a39cf81f1" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 32851, - "CodeBytes": 0, - "Lines": 591, - "Code": 400, - "Comment": 0, - "Blank": 191, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 7951, - "CodeBytes": 0, - "Lines": 314, - "Code": 213, - "Comment": 49, - "Blank": 52, - "Complexity": 1, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6716, - "CodeBytes": 0, - "Lines": 206, - "Code": 174, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1040, - "CodeBytes": 0, - "Lines": 31, - "Code": 20, - "Comment": 4, - "Blank": 7, - "Complexity": 2, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1162, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 5854, - "CodeBytes": 0, - "Lines": 182, - "Code": 112, - "Comment": 39, - "Blank": 31, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 22982.71729061388, - "estimatedScheduleMonths_low": 3.395934805644865, - "estimatedPeople_low": 0.6593128477181508, - "estimatedCost_high": 71624.18488814413, - "estimatedScheduleMonths_high": 3.395934805644865, - "estimatedPeople_high": 0.6593128477181508, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 9 591 191 0 400 0\n(ULOC) 359\n-------------------------------------------------------------------------------\nTerraform 4 314 52 49 213 1\n(ULOC) 150\n-------------------------------------------------------------------------------\nYAML 4 206 32 0 174 0\n(ULOC) 120\n-------------------------------------------------------------------------------\nDockerfile 2 31 7 4 20 2\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nPython 1 182 31 39 112 9\n(ULOC) 123\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 21 1345 317 92 936 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 782\nDRYness % 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $25,201\nEstimated Schedule Effort (organic) 3.40 months\nEstimated People Required (organic) 0.66\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 55574 bytes, 0.056 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "HCL": 7951, - "Python": 5854, - "Dockerfile": 1040 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 32851, + "CodeBytes": 0, + "Lines": 591, + "Code": 400, + "Comment": 0, + "Blank": 191, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 7951, + "CodeBytes": 0, + "Lines": 314, + "Code": 213, + "Comment": 49, + "Blank": 52, + "Complexity": 1, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6716, + "CodeBytes": 0, + "Lines": 206, + "Code": 174, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1040, + "CodeBytes": 0, + "Lines": 31, + "Code": 20, + "Comment": 4, + "Blank": 7, + "Complexity": 2, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1162, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 5854, + "CodeBytes": 0, + "Lines": 182, + "Code": 112, + "Comment": 39, + "Blank": 31, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 22982.71729061388, + "estimatedScheduleMonths_low": 3.395934805644865, + "estimatedPeople_low": 0.6593128477181508, + "estimatedCost_high": 71624.18488814413, + "estimatedScheduleMonths_high": 3.395934805644865, + "estimatedPeople_high": 0.6593128477181508, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 9 591 191 0 400 0\n(ULOC) 359\n-------------------------------------------------------------------------------\nTerraform 4 314 52 49 213 1\n(ULOC) 150\n-------------------------------------------------------------------------------\nYAML 4 206 32 0 174 0\n(ULOC) 120\n-------------------------------------------------------------------------------\nDockerfile 2 31 7 4 20 2\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nPython 1 182 31 39 112 9\n(ULOC) 123\n───────────────────────────────────────────────────────────────────────────────\nTotal 21 1345 317 92 936 12\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 782\nDRYness % 0.58\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $25,201\nEstimated Schedule Effort (organic) 3.40 months\nEstimated People Required (organic) 0.66\n───────────────────────────────────────────────────────────────────────────────\nProcessed 55574 bytes, 0.056 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HCL": 7951, + "Python": 5854, + "Dockerfile": 1040 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/coverage-inspector/coverage-inspector_data.json b/app/site/_data/CMSgov/coverage-inspector/coverage-inspector_data.json index 4744c4a99e..374d25f187 100644 --- a/app/site/_data/CMSgov/coverage-inspector/coverage-inspector_data.json +++ b/app/site/_data/CMSgov/coverage-inspector/coverage-inspector_data.json @@ -1,258 +1,258 @@ { - "url": "https://github.com/CMSgov/coverage-inspector", - "owner": "CMSgov", - "name": "coverage-inspector", - "description": "A tool for inspecting plan coverage of providers, facilities, and drugs", - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 8, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 8, - "closed_pull_requests_count": 0, - "forks_count": 7, - "stargazers_count": 0, - "watchers_count": 30, - "total_project_lines": 2, - "average_project_lines": 2, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 0, - "average_blank_lines": 0, - "commits_by_month": { - "2016/12": 1 + "url": "https://github.com/CMSgov/coverage-inspector", + "owner": "CMSgov", + "name": "coverage-inspector", + "description": "A tool for inspecting plan coverage of providers, facilities, and drugs", + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 8, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 8, + "closed_pull_requests_count": 0, + "forks_count": 7, + "stargazers_count": 0, + "watchers_count": 30, + "total_project_lines": 2, + "average_project_lines": 2, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 0, + "average_blank_lines": 0, + "commits_by_month": { + "2016/12": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2016-12-12T16:25:14Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:13Z", + "repo": { + "name": "github.com/CMSgov/coverage-inspector", + "commit": "70a1c9a2a7a27363bf090c82d33cb6c892efb72d" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2016-12-12T16:25:14Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:13Z", - "repo": { - "name": "github.com/CMSgov/coverage-inspector", - "commit": "70a1c9a2a7a27363bf090c82d33cb6c892efb72d" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 93, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 36.11130880546491, - "estimatedScheduleMonths_low": 0.2920997927220065, - "estimatedPeople_low": 0.01204374324362692, - "estimatedCost_high": 112.53861002292302, - "estimatedScheduleMonths_high": 0.2920997927220065, - "estimatedPeople_high": 0.01204374324362692, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1 2 0 0 2 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3\nDRYness % 1.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $39\nEstimated Schedule Effort (organic) 0.29 months\nEstimated People Required (organic) 0.01\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 93 bytes, 0.000 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 93, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 36.11130880546491, + "estimatedScheduleMonths_low": 0.2920997927220065, + "estimatedPeople_low": 0.01204374324362692, + "estimatedCost_high": 112.53861002292302, + "estimatedScheduleMonths_high": 0.2920997927220065, + "estimatedPeople_high": 0.01204374324362692, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 1 2 0 0 2 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3\nDRYness % 1.50\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $39\nEstimated Schedule Effort (organic) 0.29 months\nEstimated People Required (organic) 0.01\n───────────────────────────────────────────────────────────────────────────────\nProcessed 93 bytes, 0.000 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/design-system/design-system_data.json b/app/site/_data/CMSgov/design-system/design-system_data.json index 415a6013dd..153032db25 100644 --- a/app/site/_data/CMSgov/design-system/design-system_data.json +++ b/app/site/_data/CMSgov/design-system/design-system_data.json @@ -1,504 +1,504 @@ { - "url": "https://github.com/CMSgov/design-system", - "owner": "CMSgov", - "name": "design-system", - "description": "Open source design and front-end development resources for creating Section 508 compliant, responsive, and consistent websites.", - "commits_count": 2388, - "issues_count": 245, - "open_issues_count": 8, - "closed_issues_count": 237, - "pull_requests_count": 3025, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 2277, - "closed_pull_requests_count": 733, - "forks_count": 87, - "stargazers_count": 321, - "watchers_count": 57, - "total_project_lines": 107438, - "average_project_lines": 96, - "total_project_comment_lines": 7554, - "average_project_comment_lines": 7, - "total_project_blank_lines": 10208, - "average_blank_lines": 9, - "commits_by_month": { - "2025/1": 7, - "2024/12": 18, - "2024/11": 5 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 2 - ] + "url": "https://github.com/CMSgov/design-system", + "owner": "CMSgov", + "name": "design-system", + "description": "Open source design and front-end development resources for creating Section 508 compliant, responsive, and consistent websites.", + "commits_count": 2388, + "issues_count": 245, + "open_issues_count": 8, + "closed_issues_count": 237, + "pull_requests_count": 3025, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 2277, + "closed_pull_requests_count": 733, + "forks_count": 87, + "stargazers_count": 321, + "watchers_count": 57, + "total_project_lines": 107438, + "average_project_lines": 96, + "total_project_comment_lines": 7554, + "average_project_comment_lines": 7, + "total_project_blank_lines": 10208, + "average_blank_lines": 9, + "commits_by_month": { + "2025/1": 7, + "2024/12": 18, + "2024/11": 5 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-08-07T00:00:00.000Z", - 1 - ], - [ - "2024-08-09T00:00:00.000Z", - 1 - ], - [ - "2024-09-26T00:00:00.000Z", - 1 - ], - [ - "2024-10-15T00:00:00.000Z", - 1 - ], - [ - "2024-11-13T00:00:00.000Z", - 1 - ] + [ + "2024-12-17T00:00:00.000Z", + 2 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-30T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2017-02-07T03:13:01Z", - "ossf_scorecard": { - "date": "2025-01-11T00:31:14Z", - "repo": { - "name": "github.com/CMSgov/design-system", - "commit": "5a9bf34d0067640958b83b12b59968daf0410986" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 16 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": 0, - "reason": "Project has not signed or included provenance with any releases.", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "37 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 1606152, - "CodeBytes": 0, - "Lines": 47512, - "Code": 37474, - "Comment": 4972, - "Blank": 5066, - "Complexity": 3007, - "Count": 644, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "MDX", - "Bytes": 480789, - "CodeBytes": 0, - "Lines": 11465, - "Code": 8422, - "Comment": 0, - "Blank": 3043, - "Complexity": 0, - "Count": 122, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 181375, - "CodeBytes": 0, - "Lines": 8128, - "Code": 6132, - "Comment": 613, - "Blank": 1383, - "Complexity": 0, - "Count": 113, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 112037, - "CodeBytes": 0, - "Lines": 4243, - "Code": 4243, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 90, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 609960, - "CodeBytes": 0, - "Lines": 23513, - "Code": 23513, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 41, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 365349, - "CodeBytes": 0, - "Lines": 9441, - "Code": 7112, - "Comment": 2042, - "Blank": 287, - "Complexity": 1221, - "Count": 36, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 73503, - "CodeBytes": 0, - "Lines": 1435, - "Code": 950, - "Comment": 0, - "Blank": 485, - "Complexity": 0, - "Count": 32, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 147103, - "CodeBytes": 0, - "Lines": 251, - "Code": 246, - "Comment": 5, - "Blank": 0, - "Complexity": 0, - "Count": 23, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 50636, - "CodeBytes": 0, - "Lines": 1264, - "Code": 1147, - "Comment": 8, - "Blank": 109, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSX", - "Bytes": 12230, - "CodeBytes": 0, - "Lines": 391, - "Code": 315, - "Comment": 6, - "Blank": 70, - "Complexity": 5, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 95916, - "CodeBytes": 0, - "Lines": 1944, - "Code": 1944, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 846, - "CodeBytes": 0, - "Lines": 32, - "Code": 29, - "Comment": 2, - "Blank": 1, - "Complexity": 1, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 1069, - "CodeBytes": 0, - "Lines": 37, - "Code": 25, - "Comment": 3, - "Blank": 9, - "Complexity": 9, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 852, - "CodeBytes": 0, - "Lines": 35, - "Code": 35, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2828051.1424600235, - "estimatedScheduleMonths_low": 21.14423515453204, - "estimatedPeople_low": 13.030011135779084, - "estimatedCost_high": 8813442.524631672, - "estimatedScheduleMonths_high": 21.14423515453204, - "estimatedPeople_high": 13.030011135779084, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 644 47512 5066 4972 37474 3007\n(ULOC) 22089\n-------------------------------------------------------------------------------\nMDX 122 11465 3043 0 8422 0\n(ULOC) 4463\n-------------------------------------------------------------------------------\nSass 113 8128 1383 613 6132 0\n(ULOC) 3695\n-------------------------------------------------------------------------------\nPlain Text 90 4243 0 0 4243 0\n(ULOC) 999\n-------------------------------------------------------------------------------\nJSON 41 23513 0 0 23513 0\n(ULOC) 1834\n-------------------------------------------------------------------------------\nJavaScript 36 9441 287 2042 7112 1221\n(ULOC) 5476\n-------------------------------------------------------------------------------\nMarkdown 32 1435 485 0 950 0\n(ULOC) 804\n-------------------------------------------------------------------------------\nSVG 23 251 0 5 246 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nHTML 10 1264 109 8 1147 0\n(ULOC) 755\n-------------------------------------------------------------------------------\nJSX 9 391 70 6 315 5\n(ULOC) 221\n-------------------------------------------------------------------------------\nCSS 5 1944 0 0 1944 0\n(ULOC) 816\n-------------------------------------------------------------------------------\nTypeScript Typings 4 32 1 2 29 1\n(ULOC) 31\n-------------------------------------------------------------------------------\nShell 3 37 9 3 25 9\n(ULOC) 28\n-------------------------------------------------------------------------------\nYAML 2 35 0 0 35 0\n(ULOC) 23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1134 109691 10453 7651 91587 4243\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 40877\nDRYness % 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,101,136\nEstimated Schedule Effort (organic) 21.14 months\nEstimated People Required (organic) 13.03\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3737817 bytes, 3.738 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-06T00:00:00.000Z", + 1 + ], + [ + "2024-08-07T00:00:00.000Z", + 1 + ], + [ + "2024-08-09T00:00:00.000Z", + 1 + ], + [ + "2024-09-26T00:00:00.000Z", + 1 + ], + [ + "2024-10-15T00:00:00.000Z", + 1 + ], + [ + "2024-11-13T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2017-02-07T03:13:01Z", + "ossf_scorecard": { + "date": "2025-01-11T00:31:14Z", + "repo": { + "name": "github.com/CMSgov/design-system", + "commit": "5a9bf34d0067640958b83b12b59968daf0410986" }, - "predominant_langs": { - "TypeScript": 1587594, - "MDX": 480789, - "SCSS": 181375, - "JavaScript": 67268, - "Shell": 1069 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "design-system", - "199 days 33:07:41.042373" - ] + "score": 5.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 16 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": 0, + "reason": "Project has not signed or included provenance with any releases.", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "37 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 1606152, + "CodeBytes": 0, + "Lines": 47512, + "Code": 37474, + "Comment": 4972, + "Blank": 5066, + "Complexity": 3007, + "Count": 644, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "MDX", + "Bytes": 480789, + "CodeBytes": 0, + "Lines": 11465, + "Code": 8422, + "Comment": 0, + "Blank": 3043, + "Complexity": 0, + "Count": 122, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 181375, + "CodeBytes": 0, + "Lines": 8128, + "Code": 6132, + "Comment": 613, + "Blank": 1383, + "Complexity": 0, + "Count": 113, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 112037, + "CodeBytes": 0, + "Lines": 4243, + "Code": 4243, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 90, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 609960, + "CodeBytes": 0, + "Lines": 23513, + "Code": 23513, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 41, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 365349, + "CodeBytes": 0, + "Lines": 9441, + "Code": 7112, + "Comment": 2042, + "Blank": 287, + "Complexity": 1221, + "Count": 36, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 73503, + "CodeBytes": 0, + "Lines": 1435, + "Code": 950, + "Comment": 0, + "Blank": 485, + "Complexity": 0, + "Count": 32, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 147103, + "CodeBytes": 0, + "Lines": 251, + "Code": 246, + "Comment": 5, + "Blank": 0, + "Complexity": 0, + "Count": 23, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 50636, + "CodeBytes": 0, + "Lines": 1264, + "Code": 1147, + "Comment": 8, + "Blank": 109, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSX", + "Bytes": 12230, + "CodeBytes": 0, + "Lines": 391, + "Code": 315, + "Comment": 6, + "Blank": 70, + "Complexity": 5, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 95916, + "CodeBytes": 0, + "Lines": 1944, + "Code": 1944, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 846, + "CodeBytes": 0, + "Lines": 32, + "Code": 29, + "Comment": 2, + "Blank": 1, + "Complexity": 1, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 1069, + "CodeBytes": 0, + "Lines": 37, + "Code": 25, + "Comment": 3, + "Blank": 9, + "Complexity": 9, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 852, + "CodeBytes": 0, + "Lines": 35, + "Code": 35, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 2828051.1424600235, + "estimatedScheduleMonths_low": 21.14423515453204, + "estimatedPeople_low": 13.030011135779084, + "estimatedCost_high": 8813442.524631672, + "estimatedScheduleMonths_high": 21.14423515453204, + "estimatedPeople_high": 13.030011135779084, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 644 47512 5066 4972 37474 3007\n(ULOC) 22089\n-------------------------------------------------------------------------------\nMDX 122 11465 3043 0 8422 0\n(ULOC) 4463\n-------------------------------------------------------------------------------\nSass 113 8128 1383 613 6132 0\n(ULOC) 3695\n-------------------------------------------------------------------------------\nPlain Text 90 4243 0 0 4243 0\n(ULOC) 999\n-------------------------------------------------------------------------------\nJSON 41 23513 0 0 23513 0\n(ULOC) 1834\n-------------------------------------------------------------------------------\nJavaScript 36 9441 287 2042 7112 1221\n(ULOC) 5476\n-------------------------------------------------------------------------------\nMarkdown 32 1435 485 0 950 0\n(ULOC) 804\n-------------------------------------------------------------------------------\nSVG 23 251 0 5 246 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nHTML 10 1264 109 8 1147 0\n(ULOC) 755\n-------------------------------------------------------------------------------\nJSX 9 391 70 6 315 5\n(ULOC) 221\n-------------------------------------------------------------------------------\nCSS 5 1944 0 0 1944 0\n(ULOC) 816\n-------------------------------------------------------------------------------\nTypeScript Typings 4 32 1 2 29 1\n(ULOC) 31\n-------------------------------------------------------------------------------\nShell 3 37 9 3 25 9\n(ULOC) 28\n-------------------------------------------------------------------------------\nYAML 2 35 0 0 35 0\n(ULOC) 23\n───────────────────────────────────────────────────────────────────────────────\nTotal 1134 109691 10453 7651 91587 4243\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 40877\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,101,136\nEstimated Schedule Effort (organic) 21.14 months\nEstimated People Required (organic) 13.03\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3737817 bytes, 3.738 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1587594, + "MDX": 480789, + "SCSS": 181375, + "JavaScript": 67268, + "Shell": 1069 + }, + "average_issue_resolution_time": [ + [ + "design-system", + "199 days 33:07:41.042373" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/distributed-load-testing-on-aws/distributed-load-testing-on-aws_data.json b/app/site/_data/CMSgov/distributed-load-testing-on-aws/distributed-load-testing-on-aws_data.json index ecbb3b0e33..d23893830d 100644 --- a/app/site/_data/CMSgov/distributed-load-testing-on-aws/distributed-load-testing-on-aws_data.json +++ b/app/site/_data/CMSgov/distributed-load-testing-on-aws/distributed-load-testing-on-aws_data.json @@ -1,282 +1,282 @@ { - "url": "https://github.com/CMSgov/distributed-load-testing-on-aws", - "owner": "CMSgov", - "name": "distributed-load-testing-on-aws", - "description": null, - "commits_count": 42, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 1, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 3, - "total_project_lines": 21007, - "average_project_lines": 2334, - "total_project_comment_lines": 1145, - "average_project_comment_lines": 127, - "total_project_blank_lines": 150, - "average_blank_lines": 17, - "commits_by_month": { - "2024/3": 2, - "2023/10": 1, - "2023/5": 2, - "2023/4": 1, - "2022/11": 3, - "2022/4": 11, - "2021/9": 5, - "2021/8": 1, - "2021/7": 1, - "2021/6": 3 + "url": "https://github.com/CMSgov/distributed-load-testing-on-aws", + "owner": "CMSgov", + "name": "distributed-load-testing-on-aws", + "description": null, + "commits_count": 42, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 1, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 3, + "total_project_lines": 21007, + "average_project_lines": 2334, + "total_project_comment_lines": 1145, + "average_project_comment_lines": 127, + "total_project_blank_lines": 150, + "average_blank_lines": 17, + "commits_by_month": { + "2024/3": 2, + "2023/10": 1, + "2023/5": 2, + "2023/4": 1, + "2022/11": 3, + "2022/4": 11, + "2021/9": 5, + "2021/8": 1, + "2021/7": 1, + "2021/6": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-06-11T22:00:51Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:23Z", + "repo": { + "name": "github.com/CMSgov/distributed-load-testing-on-aws", + "commit": "7e91c30eea13d0004c22979423adb2a5f510a565" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-06-11T22:00:51Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:23Z", - "repo": { - "name": "github.com/CMSgov/distributed-load-testing-on-aws", - "commit": "7e91c30eea13d0004c22979423adb2a5f510a565" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "CloudFormation (YAML)", - "Bytes": 701104, - "CodeBytes": 0, - "Lines": 20993, - "Code": 19704, - "Comment": 1145, - "Blank": 144, - "Complexity": 1677, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1186, - "CodeBytes": 0, - "Lines": 14, - "Code": 8, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 563675.2403503162, - "estimatedScheduleMonths_low": 11.455599610671612, - "estimatedPeople_low": 4.793587295779041, - "estimatedCost_high": 1756658.2367616002, - "estimatedScheduleMonths_high": 11.455599610671612, - "estimatedPeople_high": 4.793587295779041, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nCloudFormation (YAM\u2026 8 20993 144 1145 19704 1677\n(ULOC) 2415\n-------------------------------------------------------------------------------\nMarkdown 1 14 6 0 8 0\n(ULOC) 9\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 9 21007 150 1145 19712 1677\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 2423\nDRYness % 0.12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $618,105\nEstimated Schedule Effort (organic) 11.46 months\nEstimated People Required (organic) 4.79\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 702290 bytes, 0.702 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "CloudFormation (YAML)", + "Bytes": 701104, + "CodeBytes": 0, + "Lines": 20993, + "Code": 19704, + "Comment": 1145, + "Blank": 144, + "Complexity": 1677, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1186, + "CodeBytes": 0, + "Lines": 14, + "Code": 8, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 563675.2403503162, + "estimatedScheduleMonths_low": 11.455599610671612, + "estimatedPeople_low": 4.793587295779041, + "estimatedCost_high": 1756658.2367616002, + "estimatedScheduleMonths_high": 11.455599610671612, + "estimatedPeople_high": 4.793587295779041, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nCloudFormation (YAM… 8 20993 144 1145 19704 1677\n(ULOC) 2415\n-------------------------------------------------------------------------------\nMarkdown 1 14 6 0 8 0\n(ULOC) 9\n───────────────────────────────────────────────────────────────────────────────\nTotal 9 21007 150 1145 19712 1677\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 2423\nDRYness % 0.12\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $618,105\nEstimated Schedule Effort (organic) 11.46 months\nEstimated People Required (organic) 4.79\n───────────────────────────────────────────────────────────────────────────────\nProcessed 702290 bytes, 0.702 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/downshift/downshift_data.json b/app/site/_data/CMSgov/downshift/downshift_data.json index 36a000c0ce..cfb70a8edd 100644 --- a/app/site/_data/CMSgov/downshift/downshift_data.json +++ b/app/site/_data/CMSgov/downshift/downshift_data.json @@ -1,484 +1,484 @@ { - "url": "https://github.com/CMSgov/downshift", - "owner": "CMSgov", - "name": "downshift", - "description": "\ud83c\udfce Primitives to build simple, flexible, WAI-ARIA compliant enhanced input React components", - "commits_count": 313, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 3, - "stargazers_count": 0, - "watchers_count": 22, - "total_project_lines": 8131, - "average_project_lines": 106, - "total_project_comment_lines": 398, - "average_project_comment_lines": 5, - "total_project_blank_lines": 858, - "average_blank_lines": 11, - "commits_by_month": { - "2018/3": 14, - "2018/2": 11, - "2018/1": 5 + "url": "https://github.com/CMSgov/downshift", + "owner": "CMSgov", + "name": "downshift", + "description": "🏎 Primitives to build simple, flexible, WAI-ARIA compliant enhanced input React components", + "commits_count": 313, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 3, + "stargazers_count": 0, + "watchers_count": 22, + "total_project_lines": 8131, + "average_project_lines": 106, + "total_project_comment_lines": 398, + "average_project_comment_lines": 5, + "total_project_blank_lines": 858, + "average_blank_lines": 11, + "commits_by_month": { + "2018/3": 14, + "2018/2": 11, + "2018/1": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2018-03-20T14:22:52Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:59Z", + "repo": { + "name": "github.com/CMSgov/downshift", + "commit": "c2b215cdbb7115e7b4babb1c30bcfb09a58f0f8e" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2018-03-20T14:22:52Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:59Z", - "repo": { - "name": "github.com/CMSgov/downshift", - "commit": "c2b215cdbb7115e7b4babb1c30bcfb09a58f0f8e" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 178638, - "CodeBytes": 0, - "Lines": 6231, - "Code": 5354, - "Comment": 398, - "Blank": 479, - "Complexity": 187, - "Count": 56, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 76201, - "CodeBytes": 0, - "Lines": 1386, - "Code": 1043, - "Comment": 0, - "Blank": 343, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4666, - "CodeBytes": 0, - "Lines": 156, - "Code": 156, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 5060, - "CodeBytes": 0, - "Lines": 142, - "Code": 127, - "Comment": 0, - "Blank": 15, - "Complexity": 14, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1072, - "CodeBytes": 0, - "Lines": 20, - "Code": 17, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 2454, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 5339, - "CodeBytes": 0, - "Lines": 177, - "Code": 159, - "Comment": 0, - "Blank": 18, - "Complexity": 7, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 308, - "CodeBytes": 0, - "Lines": 18, - "Code": 18, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 186508.26037963474, - "estimatedScheduleMonths_low": 7.524750228409603, - "estimatedPeople_low": 2.414657234719331, - "estimatedCost_high": 581241.1977087096, - "estimatedScheduleMonths_high": 7.524750228409603, - "estimatedPeople_high": 2.414657234719331, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 56 6231 479 398 5354 187\n(ULOC) 3139\n-------------------------------------------------------------------------------\nMarkdown 10 1386 343 0 1043 0\n(ULOC) 915\n-------------------------------------------------------------------------------\nJSON 5 156 0 0 156 0\n(ULOC) 136\n-------------------------------------------------------------------------------\nTypeScript 2 142 15 0 127 14\n(ULOC) 99\n-------------------------------------------------------------------------------\nLicense 1 20 3 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nSVG 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nTypeScript Typings 1 177 18 0 159 7\n(ULOC) 126\n-------------------------------------------------------------------------------\nYAML 1 18 0 0 18 0\n(ULOC) 19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 77 8131 858 398 6875 208\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 4394\nDRYness % 0.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $204,518\nEstimated Schedule Effort (organic) 7.52 months\nEstimated People Required (organic) 2.41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 273738 bytes, 0.274 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 167252, - "TypeScript": 5060 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@storybook/react", - 5.7068493151, - "2025-01-01T18:34:53.000" - ], - [ - "babel-jest", - 5.3205479452, - "2025-01-01T18:34:53.000" - ], - [ - "babel-preset-env", - 0.0, - "2025-01-01T18:34:53.000" - ], - [ - "babel-preset-react-native", - 0.0, - "2025-01-01T18:34:53.000" - ], - [ - "cross-env", - 1.2547945205, - "2025-01-01T18:34:53.000" - ], - [ - "cypress", - 6.802739726, - "2025-01-01T18:34:53.000" - ], - [ - "enzyme", - 0.8356164384, - "2025-01-01T18:34:53.000" - ], - [ - "enzyme-adapter-react-16", - 0.0, - "2025-01-01T18:34:53.000" - ], - [ - "enzyme-to-json", - 0.0, - "2025-01-01T18:34:53.000" - ], - [ - "eslint-plugin-cypress", - 0.5397260274, - "2025-01-01T18:34:53.000" - ], - [ - "jest-serializer-html", - 3.5260273973, - "2025-01-01T18:34:53.000" - ], - [ - "kcd-scripts", - 5.5808219178, - "2025-01-01T18:34:53.000" - ], - [ - "npm-run-all", - 0.0, - "2025-01-01T18:34:53.000" - ], - [ - "preact", - 5.1589041096, - "2025-01-01T18:34:53.000" - ], - [ - "preact-render-to-string", - 6.3260273973, - "2025-01-01T18:34:53.000" - ], - [ - "preval.macro", - 2.3917808219, - "2025-01-01T18:34:53.000" - ], - [ - "prop-types", - 0.0, - "2025-01-01T18:34:53.000" - ], - [ - "react", - 5.3287671233, - "2025-01-01T18:34:53.000" - ], - [ - "react-dom", - 5.3287671233, - "2025-01-01T18:34:53.000" - ], - [ - "react-native", - -0.0630136986, - "2025-01-01T18:34:53.000" - ], - [ - "react-test-renderer", - 5.3287671233, - "2025-01-01T18:34:53.000" - ], - [ - "serve", - 6.4054794521, - "2025-01-01T18:34:53.000" - ], - [ - "typescript", - 6.4465753425, - "2025-01-01T18:34:53.000" - ] + "score": 3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 178638, + "CodeBytes": 0, + "Lines": 6231, + "Code": 5354, + "Comment": 398, + "Blank": 479, + "Complexity": 187, + "Count": 56, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 76201, + "CodeBytes": 0, + "Lines": 1386, + "Code": 1043, + "Comment": 0, + "Blank": 343, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4666, + "CodeBytes": 0, + "Lines": 156, + "Code": 156, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 5060, + "CodeBytes": 0, + "Lines": 142, + "Code": 127, + "Comment": 0, + "Blank": 15, + "Complexity": 14, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1072, + "CodeBytes": 0, + "Lines": 20, + "Code": 17, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 2454, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 5339, + "CodeBytes": 0, + "Lines": 177, + "Code": 159, + "Comment": 0, + "Blank": 18, + "Complexity": 7, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 308, + "CodeBytes": 0, + "Lines": 18, + "Code": 18, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 186508.26037963474, + "estimatedScheduleMonths_low": 7.524750228409603, + "estimatedPeople_low": 2.414657234719331, + "estimatedCost_high": 581241.1977087096, + "estimatedScheduleMonths_high": 7.524750228409603, + "estimatedPeople_high": 2.414657234719331, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 56 6231 479 398 5354 187\n(ULOC) 3139\n-------------------------------------------------------------------------------\nMarkdown 10 1386 343 0 1043 0\n(ULOC) 915\n-------------------------------------------------------------------------------\nJSON 5 156 0 0 156 0\n(ULOC) 136\n-------------------------------------------------------------------------------\nTypeScript 2 142 15 0 127 14\n(ULOC) 99\n-------------------------------------------------------------------------------\nLicense 1 20 3 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nSVG 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nTypeScript Typings 1 177 18 0 159 7\n(ULOC) 126\n-------------------------------------------------------------------------------\nYAML 1 18 0 0 18 0\n(ULOC) 19\n───────────────────────────────────────────────────────────────────────────────\nTotal 77 8131 858 398 6875 208\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 4394\nDRYness % 0.54\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $204,518\nEstimated Schedule Effort (organic) 7.52 months\nEstimated People Required (organic) 2.41\n───────────────────────────────────────────────────────────────────────────────\nProcessed 273738 bytes, 0.274 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 167252, + "TypeScript": 5060 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@storybook/react", + 5.7068493151, + "2025-01-01T18:34:53.000" + ], + [ + "babel-jest", + 5.3205479452, + "2025-01-01T18:34:53.000" + ], + [ + "babel-preset-env", + 0, + "2025-01-01T18:34:53.000" + ], + [ + "babel-preset-react-native", + 0, + "2025-01-01T18:34:53.000" + ], + [ + "cross-env", + 1.2547945205, + "2025-01-01T18:34:53.000" + ], + [ + "cypress", + 6.802739726, + "2025-01-01T18:34:53.000" + ], + [ + "enzyme", + 0.8356164384, + "2025-01-01T18:34:53.000" + ], + [ + "enzyme-adapter-react-16", + 0, + "2025-01-01T18:34:53.000" + ], + [ + "enzyme-to-json", + 0, + "2025-01-01T18:34:53.000" + ], + [ + "eslint-plugin-cypress", + 0.5397260274, + "2025-01-01T18:34:53.000" + ], + [ + "jest-serializer-html", + 3.5260273973, + "2025-01-01T18:34:53.000" + ], + [ + "kcd-scripts", + 5.5808219178, + "2025-01-01T18:34:53.000" + ], + [ + "npm-run-all", + 0, + "2025-01-01T18:34:53.000" + ], + [ + "preact", + 5.1589041096, + "2025-01-01T18:34:53.000" + ], + [ + "preact-render-to-string", + 6.3260273973, + "2025-01-01T18:34:53.000" + ], + [ + "preval.macro", + 2.3917808219, + "2025-01-01T18:34:53.000" + ], + [ + "prop-types", + 0, + "2025-01-01T18:34:53.000" + ], + [ + "react", + 5.3287671233, + "2025-01-01T18:34:53.000" + ], + [ + "react-dom", + 5.3287671233, + "2025-01-01T18:34:53.000" + ], + [ + "react-native", + -0.0630136986, + "2025-01-01T18:34:53.000" + ], + [ + "react-test-renderer", + 5.3287671233, + "2025-01-01T18:34:53.000" + ], + [ + "serve", + 6.4054794521, + "2025-01-01T18:34:53.000" + ], + [ + "typescript", + 6.4465753425, + "2025-01-01T18:34:53.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/dpc-app/dpc-app_data.json b/app/site/_data/CMSgov/dpc-app/dpc-app_data.json index b0a870d321..6bf4b8a6db 100644 --- a/app/site/_data/CMSgov/dpc-app/dpc-app_data.json +++ b/app/site/_data/CMSgov/dpc-app/dpc-app_data.json @@ -1,724 +1,724 @@ { - "url": "https://github.com/CMSgov/dpc-app", - "owner": "CMSgov", - "name": "dpc-app", - "description": "Data @ the point of care application", - "commits_count": 2002, - "issues_count": 6, - "open_issues_count": 2, - "closed_issues_count": 4, - "pull_requests_count": 2365, - "open_pull_requests_count": 8, - "merged_pull_requests_count": 1781, - "closed_pull_requests_count": 576, - "forks_count": 17, - "stargazers_count": 46, - "watchers_count": 20, - "total_project_lines": 649170, - "average_project_lines": 362, - "total_project_comment_lines": 9456, - "average_project_comment_lines": 5, - "total_project_blank_lines": 18122, - "average_blank_lines": 10, - "commits_by_month": { - "2025/1": 7, - "2024/12": 23 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 1 - ], - [ - "2024-12-19T00:00:00.000Z", - 1 - ], - [ - "2024-12-31T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/dpc-app", + "owner": "CMSgov", + "name": "dpc-app", + "description": "Data @ the point of care application", + "commits_count": 2002, + "issues_count": 6, + "open_issues_count": 2, + "closed_issues_count": 4, + "pull_requests_count": 2365, + "open_pull_requests_count": 8, + "merged_pull_requests_count": 1781, + "closed_pull_requests_count": 576, + "forks_count": 17, + "stargazers_count": 46, + "watchers_count": 20, + "total_project_lines": 649170, + "average_project_lines": 362, + "total_project_comment_lines": 9456, + "average_project_comment_lines": 5, + "total_project_blank_lines": 18122, + "average_blank_lines": 10, + "commits_by_month": { + "2025/1": 7, + "2024/12": 23 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-08-09T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-09-10T00:00:00.000Z", - 1 - ], - [ - "2024-09-13T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-09-19T00:00:00.000Z", - 1 - ], - [ - "2024-10-15T00:00:00.000Z", - 1 - ], - [ - "2024-12-19T00:00:00.000Z", - 1 - ] + [ + "2024-12-17T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2019-02-04T15:45:48Z", - "ossf_scorecard": { - "date": "2025-01-11T00:33:29Z", - "repo": { - "name": "github.com/CMSgov/dpc-app", - "commit": "b27dccf09430dd06cd85972dabd397c9190fe023" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 7, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 15 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "54 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 2229247, - "CodeBytes": 0, - "Lines": 55134, - "Code": 41442, - "Comment": 4138, - "Blank": 9554, - "Complexity": 1074, - "Count": 586, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 1092599, - "CodeBytes": 0, - "Lines": 30800, - "Code": 22900, - "Comment": 3439, - "Blank": 4461, - "Complexity": 539, - "Count": 552, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby HTML", - "Bytes": 355121, - "CodeBytes": 0, - "Lines": 6628, - "Code": 5866, - "Comment": 159, - "Blank": 603, - "Complexity": 358, - "Count": 146, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 17854517, - "CodeBytes": 0, - "Lines": 340259, - "Code": 340005, - "Comment": 89, - "Blank": 165, - "Complexity": 0, - "Count": 85, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 148535, - "CodeBytes": 0, - "Lines": 4408, - "Code": 3296, - "Comment": 700, - "Blank": 412, - "Complexity": 0, - "Count": 81, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 75774, - "CodeBytes": 0, - "Lines": 3748, - "Code": 3077, - "Comment": 97, - "Blank": 574, - "Complexity": 1, - "Count": 56, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 146772, - "CodeBytes": 0, - "Lines": 5287, - "Code": 4437, - "Comment": 166, - "Blank": 684, - "Complexity": 730, - "Count": 52, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5082583, - "CodeBytes": 0, - "Lines": 139277, - "Code": 139275, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 49, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 2762547, - "CodeBytes": 0, - "Lines": 24418, - "Code": 24391, - "Comment": 24, - "Blank": 3, - "Complexity": 0, - "Count": 47, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 75484, - "CodeBytes": 0, - "Lines": 2486, - "Code": 1749, - "Comment": 326, - "Blank": 411, - "Complexity": 382, - "Count": 33, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 98521, - "CodeBytes": 0, - "Lines": 1750, - "Code": 1267, - "Comment": 0, - "Blank": 483, - "Complexity": 0, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 32495, - "CodeBytes": 0, - "Lines": 883, - "Code": 618, - "Comment": 95, - "Blank": 170, - "Complexity": 80, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 75829, - "CodeBytes": 0, - "Lines": 1190, - "Code": 1063, - "Comment": 56, - "Blank": 71, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 8107, - "CodeBytes": 0, - "Lines": 51, - "Code": 43, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 5175544, - "CodeBytes": 0, - "Lines": 30564, - "Code": 30564, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 2098, - "CodeBytes": 0, - "Lines": 74, - "Code": 37, - "Comment": 19, - "Blank": 18, - "Complexity": 2, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 45225, - "CodeBytes": 0, - "Lines": 2779, - "Code": 2252, - "Comment": 76, - "Blank": 451, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 1388, - "CodeBytes": 0, - "Lines": 104, - "Code": 68, - "Comment": 12, - "Blank": 24, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 6799, - "CodeBytes": 0, - "Lines": 210, - "Code": 123, - "Comment": 40, - "Blank": 47, - "Complexity": 51, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 8590, - "CodeBytes": 0, - "Lines": 315, - "Code": 256, - "Comment": 23, - "Blank": 36, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 9363, - "CodeBytes": 0, - "Lines": 270, - "Code": 194, - "Comment": 17, - "Blank": 59, - "Complexity": 3, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 232, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Autoconf", - "Bytes": 205, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2634, - "CodeBytes": 0, - "Lines": 107, - "Code": 70, - "Comment": 24, - "Blank": 13, - "Complexity": 8, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 21173206.139594186, - "estimatedScheduleMonths_low": 45.43868344704899, - "estimatedPeople_low": 45.395248129510094, - "estimatedCost_high": 65984957.82900418, - "estimatedScheduleMonths_high": 45.43868344704899, - "estimatedPeople_high": 45.395248129510094, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 586 55134 9554 4138 41442 1074\n(ULOC) 21469\n-------------------------------------------------------------------------------\nRuby 552 30800 4461 3439 22900 539\n(ULOC) 11964\n-------------------------------------------------------------------------------\nRuby HTML 146 6628 603 159 5866 358\n(ULOC) 2708\n-------------------------------------------------------------------------------\nXML 85 340259 165 89 340005 0\n(ULOC) 7331\n-------------------------------------------------------------------------------\nYAML 81 4408 412 700 3296 0\n(ULOC) 1638\n-------------------------------------------------------------------------------\nSass 56 3748 574 97 3077 1\n(ULOC) 1392\n-------------------------------------------------------------------------------\nGo 52 5287 684 166 4437 730\n(ULOC) 2417\n-------------------------------------------------------------------------------\nJSON 49 139277 2 0 139275 0\n(ULOC) 4952\n-------------------------------------------------------------------------------\nSVG 47 24418 3 24 24391 0\n(ULOC) 19827\n-------------------------------------------------------------------------------\nJavaScript 33 2486 411 326 1749 382\n(ULOC) 906\n-------------------------------------------------------------------------------\nMarkdown 27 1750 483 0 1267 0\n(ULOC) 1078\n-------------------------------------------------------------------------------\nShell 27 883 170 95 618 80\n(ULOC) 313\n-------------------------------------------------------------------------------\nHTML 13 1190 71 56 1063 0\n(ULOC) 368\n-------------------------------------------------------------------------------\nPlain Text 11 51 8 0 43 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nCSV 10 30564 0 0 30564 0\n(ULOC) 30560\n-------------------------------------------------------------------------------\nRakefile 9 74 18 19 37 2\n(ULOC) 27\n-------------------------------------------------------------------------------\nCSS 4 2779 451 76 2252 0\n(ULOC) 1079\n-------------------------------------------------------------------------------\nDocker ignore 4 104 24 12 68 0\n(ULOC) 43\n-------------------------------------------------------------------------------\nDockerfile 4 210 47 40 123 51\n(ULOC) 80\n-------------------------------------------------------------------------------\nGemfile 4 315 36 23 256 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nMakefile 4 270 59 17 194 3\n(ULOC) 190\n-------------------------------------------------------------------------------\nProperties File 3 6 0 0 6 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nAutoconf 2 11 0 0 11 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nBASH 1 107 13 24 70 8\n(ULOC) 81\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1811 650768 18251 9500 623017 3228\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 108230\nDRYness % 0.17\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $23,217,754\nEstimated Schedule Effort (organic) 45.44 months\nEstimated People Required (organic) 45.40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 35290591 bytes, 35.291 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-12-19T00:00:00.000Z", + 1 + ], + [ + "2024-12-31T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-30T00:00:00.000Z", + 1 + ], + [ + "2024-08-06T00:00:00.000Z", + 1 + ], + [ + "2024-08-09T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-09-10T00:00:00.000Z", + 1 + ], + [ + "2024-09-13T00:00:00.000Z", + 1 + ], + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-09-19T00:00:00.000Z", + 1 + ], + [ + "2024-10-15T00:00:00.000Z", + 1 + ], + [ + "2024-12-19T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2019-02-04T15:45:48Z", + "ossf_scorecard": { + "date": "2025-01-11T00:33:29Z", + "repo": { + "name": "github.com/CMSgov/dpc-app", + "commit": "b27dccf09430dd06cd85972dabd397c9190fe023" }, - "predominant_langs": { - "Java": 2227121, - "Ruby": 1108076, - "HTML": 430950, - "Go": 146772, - "SCSS": 75774, - "JavaScript": 45359, - "CSS": 45225, - "Shell": 35129, - "Makefile": 9363, - "Dockerfile": 6799 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "dpc-app", - "24 days 23:02:31.5" - ] + "score": 4.3, + "checks": [ + { + "details": null, + "score": 7, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 15 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "54 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 2229247, + "CodeBytes": 0, + "Lines": 55134, + "Code": 41442, + "Comment": 4138, + "Blank": 9554, + "Complexity": 1074, + "Count": 586, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 1092599, + "CodeBytes": 0, + "Lines": 30800, + "Code": 22900, + "Comment": 3439, + "Blank": 4461, + "Complexity": 539, + "Count": 552, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby HTML", + "Bytes": 355121, + "CodeBytes": 0, + "Lines": 6628, + "Code": 5866, + "Comment": 159, + "Blank": 603, + "Complexity": 358, + "Count": 146, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 17854517, + "CodeBytes": 0, + "Lines": 340259, + "Code": 340005, + "Comment": 89, + "Blank": 165, + "Complexity": 0, + "Count": 85, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 148535, + "CodeBytes": 0, + "Lines": 4408, + "Code": 3296, + "Comment": 700, + "Blank": 412, + "Complexity": 0, + "Count": 81, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 75774, + "CodeBytes": 0, + "Lines": 3748, + "Code": 3077, + "Comment": 97, + "Blank": 574, + "Complexity": 1, + "Count": 56, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 146772, + "CodeBytes": 0, + "Lines": 5287, + "Code": 4437, + "Comment": 166, + "Blank": 684, + "Complexity": 730, + "Count": 52, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5082583, + "CodeBytes": 0, + "Lines": 139277, + "Code": 139275, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 49, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 2762547, + "CodeBytes": 0, + "Lines": 24418, + "Code": 24391, + "Comment": 24, + "Blank": 3, + "Complexity": 0, + "Count": 47, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 75484, + "CodeBytes": 0, + "Lines": 2486, + "Code": 1749, + "Comment": 326, + "Blank": 411, + "Complexity": 382, + "Count": 33, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 98521, + "CodeBytes": 0, + "Lines": 1750, + "Code": 1267, + "Comment": 0, + "Blank": 483, + "Complexity": 0, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 32495, + "CodeBytes": 0, + "Lines": 883, + "Code": 618, + "Comment": 95, + "Blank": 170, + "Complexity": 80, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 75829, + "CodeBytes": 0, + "Lines": 1190, + "Code": 1063, + "Comment": 56, + "Blank": 71, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 8107, + "CodeBytes": 0, + "Lines": 51, + "Code": 43, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 5175544, + "CodeBytes": 0, + "Lines": 30564, + "Code": 30564, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 2098, + "CodeBytes": 0, + "Lines": 74, + "Code": 37, + "Comment": 19, + "Blank": 18, + "Complexity": 2, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 45225, + "CodeBytes": 0, + "Lines": 2779, + "Code": 2252, + "Comment": 76, + "Blank": 451, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 1388, + "CodeBytes": 0, + "Lines": 104, + "Code": 68, + "Comment": 12, + "Blank": 24, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 6799, + "CodeBytes": 0, + "Lines": 210, + "Code": 123, + "Comment": 40, + "Blank": 47, + "Complexity": 51, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 8590, + "CodeBytes": 0, + "Lines": 315, + "Code": 256, + "Comment": 23, + "Blank": 36, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 9363, + "CodeBytes": 0, + "Lines": 270, + "Code": 194, + "Comment": 17, + "Blank": 59, + "Complexity": 3, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 232, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Autoconf", + "Bytes": 205, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2634, + "CodeBytes": 0, + "Lines": 107, + "Code": 70, + "Comment": 24, + "Blank": 13, + "Complexity": 8, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 21173206.139594186, + "estimatedScheduleMonths_low": 45.43868344704899, + "estimatedPeople_low": 45.395248129510094, + "estimatedCost_high": 65984957.82900418, + "estimatedScheduleMonths_high": 45.43868344704899, + "estimatedPeople_high": 45.395248129510094, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 586 55134 9554 4138 41442 1074\n(ULOC) 21469\n-------------------------------------------------------------------------------\nRuby 552 30800 4461 3439 22900 539\n(ULOC) 11964\n-------------------------------------------------------------------------------\nRuby HTML 146 6628 603 159 5866 358\n(ULOC) 2708\n-------------------------------------------------------------------------------\nXML 85 340259 165 89 340005 0\n(ULOC) 7331\n-------------------------------------------------------------------------------\nYAML 81 4408 412 700 3296 0\n(ULOC) 1638\n-------------------------------------------------------------------------------\nSass 56 3748 574 97 3077 1\n(ULOC) 1392\n-------------------------------------------------------------------------------\nGo 52 5287 684 166 4437 730\n(ULOC) 2417\n-------------------------------------------------------------------------------\nJSON 49 139277 2 0 139275 0\n(ULOC) 4952\n-------------------------------------------------------------------------------\nSVG 47 24418 3 24 24391 0\n(ULOC) 19827\n-------------------------------------------------------------------------------\nJavaScript 33 2486 411 326 1749 382\n(ULOC) 906\n-------------------------------------------------------------------------------\nMarkdown 27 1750 483 0 1267 0\n(ULOC) 1078\n-------------------------------------------------------------------------------\nShell 27 883 170 95 618 80\n(ULOC) 313\n-------------------------------------------------------------------------------\nHTML 13 1190 71 56 1063 0\n(ULOC) 368\n-------------------------------------------------------------------------------\nPlain Text 11 51 8 0 43 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nCSV 10 30564 0 0 30564 0\n(ULOC) 30560\n-------------------------------------------------------------------------------\nRakefile 9 74 18 19 37 2\n(ULOC) 27\n-------------------------------------------------------------------------------\nCSS 4 2779 451 76 2252 0\n(ULOC) 1079\n-------------------------------------------------------------------------------\nDocker ignore 4 104 24 12 68 0\n(ULOC) 43\n-------------------------------------------------------------------------------\nDockerfile 4 210 47 40 123 51\n(ULOC) 80\n-------------------------------------------------------------------------------\nGemfile 4 315 36 23 256 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nMakefile 4 270 59 17 194 3\n(ULOC) 190\n-------------------------------------------------------------------------------\nProperties File 3 6 0 0 6 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nAutoconf 2 11 0 0 11 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nBASH 1 107 13 24 70 8\n(ULOC) 81\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 1811 650768 18251 9500 623017 3228\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 108230\nDRYness % 0.17\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $23,217,754\nEstimated Schedule Effort (organic) 45.44 months\nEstimated People Required (organic) 45.40\n───────────────────────────────────────────────────────────────────────────────\nProcessed 35290591 bytes, 35.291 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 2227121, + "Ruby": 1108076, + "HTML": 430950, + "Go": 146772, + "SCSS": 75774, + "JavaScript": 45359, + "CSS": 45225, + "Shell": 35129, + "Makefile": 9363, + "Dockerfile": 6799 + }, + "average_issue_resolution_time": [ + [ + "dpc-app", + "24 days 23:02:31.5" + ] + ], + "repo_dependency_libyear_list": [ + [ + "ansi-regex", + 0, + "2024-11-12T14:25:26.000" + ], + [ + "bzt", + 0, + "2025-01-01T18:36:23.000" + ], + [ + "newman", + 0, + "2024-11-12T14:25:26.000" + ], + [ + "numpy", + 0, + "2025-01-01T18:36:23.000" + ], + [ + "setuptools", + 0, + "2025-01-01T18:36:23.000" ], - "repo_dependency_libyear_list": [ - [ - "ansi-regex", - 0.0, - "2024-11-12T14:25:26.000" - ], - [ - "bzt", - 0.0, - "2025-01-01T18:36:23.000" - ], - [ - "newman", - 0.0, - "2024-11-12T14:25:26.000" - ], - [ - "numpy", - 0.0, - "2025-01-01T18:36:23.000" - ], - [ - "setuptools", - 0.0, - "2025-01-01T18:36:23.000" - ], - [ - "wheel", - 0.0, - "2025-01-01T18:36:23.000" - ] + [ + "wheel", + 0, + "2025-01-01T18:36:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/dpc-static-site/dpc-static-site_data.json b/app/site/_data/CMSgov/dpc-static-site/dpc-static-site_data.json index 9e5b2e48a0..307e505826 100644 --- a/app/site/_data/CMSgov/dpc-static-site/dpc-static-site_data.json +++ b/app/site/_data/CMSgov/dpc-static-site/dpc-static-site_data.json @@ -1,569 +1,569 @@ { - "url": "https://github.com/CMSgov/dpc-static-site", - "owner": "CMSgov", - "name": "dpc-static-site", - "description": null, - "commits_count": 111, - "issues_count": 6, - "open_issues_count": 1, - "closed_issues_count": 5, - "pull_requests_count": 128, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 110, - "closed_pull_requests_count": 16, - "forks_count": 3, - "stargazers_count": 6, - "watchers_count": 21, - "total_project_lines": 314328, - "average_project_lines": 75, - "total_project_comment_lines": 18940, - "average_project_comment_lines": 5, - "total_project_blank_lines": 17967, - "average_blank_lines": 4, - "commits_by_month": { - "2025/1": 1, - "2024/12": 2, - "2024/10": 2, - "2024/9": 3, - "2024/8": 1, - "2024/7": 3, - "2024/6": 2, - "2024/5": 2, - "2024/4": 1, - "2024/3": 3, - "2024/1": 1, - "2023/10": 3, - "2023/9": 2, - "2023/8": 4 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-30T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/dpc-static-site", + "owner": "CMSgov", + "name": "dpc-static-site", + "description": null, + "commits_count": 111, + "issues_count": 6, + "open_issues_count": 1, + "closed_issues_count": 5, + "pull_requests_count": 128, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 110, + "closed_pull_requests_count": 16, + "forks_count": 3, + "stargazers_count": 6, + "watchers_count": 21, + "total_project_lines": 314328, + "average_project_lines": 75, + "total_project_comment_lines": 18940, + "average_project_comment_lines": 5, + "total_project_blank_lines": 17967, + "average_blank_lines": 4, + "commits_by_month": { + "2025/1": 1, + "2024/12": 2, + "2024/10": 2, + "2024/9": 3, + "2024/8": 1, + "2024/7": 3, + "2024/6": 2, + "2024/5": 2, + "2024/4": 1, + "2024/3": 3, + "2024/1": 1, + "2023/10": 3, + "2023/9": 2, + "2023/8": 4 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-30T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-19T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-19T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-30T00:00:00.000Z", - 1 - ] + [ + "2024-09-18T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-03-31T20:05:10Z", - "ossf_scorecard": { - "date": "2025-01-11T00:38:34Z", - "repo": { - "name": "github.com/CMSgov/dpc-static-site", - "commit": "86cd9b75eb78a4fe5a7c3552c1db1d25c81afdb8" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 8, - "reason": "24 out of 30 merged PRs checked by a CI test -- score normalized to 8", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 3, - "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 4, - "reason": "6 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "HTML", - "Bytes": 15843944, - "CodeBytes": 0, - "Lines": 137053, - "Code": 115368, - "Comment": 11837, - "Blank": 9848, - "Complexity": 0, - "Count": 3764, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 148796, - "CodeBytes": 0, - "Lines": 3551, - "Code": 2795, - "Comment": 0, - "Blank": 756, - "Complexity": 0, - "Count": 113, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4841352, - "CodeBytes": 0, - "Lines": 52473, - "Code": 52473, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 109, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1910665, - "CodeBytes": 0, - "Lines": 37622, - "Code": 25954, - "Comment": 5745, - "Blank": 5923, - "Complexity": 7045, - "Count": 42, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 937404, - "CodeBytes": 0, - "Lines": 36507, - "Code": 34248, - "Comment": 1266, - "Blank": 993, - "Complexity": 0, - "Count": 39, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1084292, - "CodeBytes": 0, - "Lines": 19261, - "Code": 19225, - "Comment": 0, - "Blank": 36, - "Complexity": 0, - "Count": 38, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 2436166, - "CodeBytes": 0, - "Lines": 23872, - "Code": 23852, - "Comment": 17, - "Blank": 3, - "Complexity": 4, - "Count": 33, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 37303, - "CodeBytes": 0, - "Lines": 1860, - "Code": 1563, - "Comment": 17, - "Blank": 280, - "Complexity": 0, - "Count": 26, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 369380, - "CodeBytes": 0, - "Lines": 1430, - "Code": 1386, - "Comment": 0, - "Blank": 44, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 2200, - "CodeBytes": 0, - "Lines": 98, - "Code": 56, - "Comment": 0, - "Blank": 42, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 16396, - "CodeBytes": 0, - "Lines": 515, - "Code": 450, - "Comment": 41, - "Blank": 24, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 2093, - "CodeBytes": 0, - "Lines": 66, - "Code": 53, - "Comment": 3, - "Blank": 10, - "Complexity": 5, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 1272, - "CodeBytes": 0, - "Lines": 35, - "Code": 13, - "Comment": 18, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "INI", - "Bytes": 62, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 605, - "CodeBytes": 0, - "Lines": 17, - "Code": 13, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 28177, - "CodeBytes": 0, - "Lines": 163, - "Code": 161, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 382, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 9061151.223278774, - "estimatedScheduleMonths_low": 32.91216908668173, - "estimatedPeople_low": 26.82108737627102, - "estimatedCost_high": 28238504.7124346, - "estimatedScheduleMonths_high": 32.91216908668173, - "estimatedPeople_high": 26.82108737627102, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nHTML 3764 137053 9848 11837 115368 0\n(ULOC) 19862\n-------------------------------------------------------------------------------\nMarkdown 113 3551 756 0 2795 0\n(ULOC) 1439\n-------------------------------------------------------------------------------\nJSON 109 52473 0 0 52473 0\n(ULOC) 5963\n-------------------------------------------------------------------------------\nJavaScript 42 37622 5923 5745 25954 7045\n(ULOC) 8067\n-------------------------------------------------------------------------------\nCSS 39 36507 993 1266 34248 0\n(ULOC) 3892\n-------------------------------------------------------------------------------\nXML 38 19261 36 0 19225 0\n(ULOC) 2257\n-------------------------------------------------------------------------------\nSVG 33 23872 3 17 23852 4\n(ULOC) 22251\n-------------------------------------------------------------------------------\nSass 26 1860 280 17 1563 0\n(ULOC) 1017\n-------------------------------------------------------------------------------\nCSV 14 1430 44 0 1386 0\n(ULOC) 513\n-------------------------------------------------------------------------------\nJava 14 98 42 0 56 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nYAML 10 515 24 41 450 0\n(ULOC) 360\n-------------------------------------------------------------------------------\nShell 2 66 10 3 53 5\n(ULOC) 45\n-------------------------------------------------------------------------------\nGemfile 1 35 4 18 13 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nINI 1 3 1 0 2 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nMakefile 1 17 4 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nPlain Text 1 163 2 0 161 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 4209 314535 17972 18944 277619 7054\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 65646\nDRYness % 0.21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,936,123\nEstimated Schedule Effort (organic) 32.91 months\nEstimated People Required (organic) 26.82\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 27660489 bytes, 27.660 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-30T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-03-31T20:05:10Z", + "ossf_scorecard": { + "date": "2025-01-11T00:38:34Z", + "repo": { + "name": "github.com/CMSgov/dpc-static-site", + "commit": "86cd9b75eb78a4fe5a7c3552c1db1d25c81afdb8" }, - "predominant_langs": { - "HTML": 23529110, - "CSS": 103797, - "JavaScript": 43690, - "SCSS": 37303, - "Java": 2200, - "Shell": 2093, - "Ruby": 1272, - "Makefile": 605, - "Visual Basic 6.0": 7 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "dpc-static-site", - "01:21:53.4" - ] + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 8, + "reason": "24 out of 30 merged PRs checked by a CI test -- score normalized to 8", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 3, + "reason": "4 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 3", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 4, + "reason": "6 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "HTML", + "Bytes": 15843944, + "CodeBytes": 0, + "Lines": 137053, + "Code": 115368, + "Comment": 11837, + "Blank": 9848, + "Complexity": 0, + "Count": 3764, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 148796, + "CodeBytes": 0, + "Lines": 3551, + "Code": 2795, + "Comment": 0, + "Blank": 756, + "Complexity": 0, + "Count": 113, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4841352, + "CodeBytes": 0, + "Lines": 52473, + "Code": 52473, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 109, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1910665, + "CodeBytes": 0, + "Lines": 37622, + "Code": 25954, + "Comment": 5745, + "Blank": 5923, + "Complexity": 7045, + "Count": 42, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 937404, + "CodeBytes": 0, + "Lines": 36507, + "Code": 34248, + "Comment": 1266, + "Blank": 993, + "Complexity": 0, + "Count": 39, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1084292, + "CodeBytes": 0, + "Lines": 19261, + "Code": 19225, + "Comment": 0, + "Blank": 36, + "Complexity": 0, + "Count": 38, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 2436166, + "CodeBytes": 0, + "Lines": 23872, + "Code": 23852, + "Comment": 17, + "Blank": 3, + "Complexity": 4, + "Count": 33, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 37303, + "CodeBytes": 0, + "Lines": 1860, + "Code": 1563, + "Comment": 17, + "Blank": 280, + "Complexity": 0, + "Count": 26, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 369380, + "CodeBytes": 0, + "Lines": 1430, + "Code": 1386, + "Comment": 0, + "Blank": 44, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 2200, + "CodeBytes": 0, + "Lines": 98, + "Code": 56, + "Comment": 0, + "Blank": 42, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 16396, + "CodeBytes": 0, + "Lines": 515, + "Code": 450, + "Comment": 41, + "Blank": 24, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 2093, + "CodeBytes": 0, + "Lines": 66, + "Code": 53, + "Comment": 3, + "Blank": 10, + "Complexity": 5, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 1272, + "CodeBytes": 0, + "Lines": 35, + "Code": 13, + "Comment": 18, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "INI", + "Bytes": 62, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 605, + "CodeBytes": 0, + "Lines": 17, + "Code": 13, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 28177, + "CodeBytes": 0, + "Lines": 163, + "Code": 161, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 382, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 9061151.223278774, + "estimatedScheduleMonths_low": 32.91216908668173, + "estimatedPeople_low": 26.82108737627102, + "estimatedCost_high": 28238504.7124346, + "estimatedScheduleMonths_high": 32.91216908668173, + "estimatedPeople_high": 26.82108737627102, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nHTML 3764 137053 9848 11837 115368 0\n(ULOC) 19862\n-------------------------------------------------------------------------------\nMarkdown 113 3551 756 0 2795 0\n(ULOC) 1439\n-------------------------------------------------------------------------------\nJSON 109 52473 0 0 52473 0\n(ULOC) 5963\n-------------------------------------------------------------------------------\nJavaScript 42 37622 5923 5745 25954 7045\n(ULOC) 8067\n-------------------------------------------------------------------------------\nCSS 39 36507 993 1266 34248 0\n(ULOC) 3892\n-------------------------------------------------------------------------------\nXML 38 19261 36 0 19225 0\n(ULOC) 2257\n-------------------------------------------------------------------------------\nSVG 33 23872 3 17 23852 4\n(ULOC) 22251\n-------------------------------------------------------------------------------\nSass 26 1860 280 17 1563 0\n(ULOC) 1017\n-------------------------------------------------------------------------------\nCSV 14 1430 44 0 1386 0\n(ULOC) 513\n-------------------------------------------------------------------------------\nJava 14 98 42 0 56 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nYAML 10 515 24 41 450 0\n(ULOC) 360\n-------------------------------------------------------------------------------\nShell 2 66 10 3 53 5\n(ULOC) 45\n-------------------------------------------------------------------------------\nGemfile 1 35 4 18 13 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nINI 1 3 1 0 2 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nMakefile 1 17 4 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nPlain Text 1 163 2 0 161 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nTOML 1 9 2 0 7 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 4209 314535 17972 18944 277619 7054\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 65646\nDRYness % 0.21\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,936,123\nEstimated Schedule Effort (organic) 32.91 months\nEstimated People Required (organic) 26.82\n───────────────────────────────────────────────────────────────────────────────\nProcessed 27660489 bytes, 27.660 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HTML": 23529110, + "CSS": 103797, + "JavaScript": 43690, + "SCSS": 37303, + "Java": 2200, + "Shell": 2093, + "Ruby": 1272, + "Makefile": 605, + "Visual Basic 6.0": 7 + }, + "average_issue_resolution_time": [ + [ + "dpc-static-site", + "01:21:53.4" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@cmsgov/design-system-core", + 0, + "2025-01-01T18:34:54.000" + ], + [ + "@cmsgov/design-system-layout", + 0, + "2025-01-01T18:34:54.000" + ], + [ + "normalize.css", + 0, + "2025-01-01T18:34:54.000" ], - "repo_dependency_libyear_list": [ - [ - "@cmsgov/design-system-core", - 0.0, - "2025-01-01T18:34:54.000" - ], - [ - "@cmsgov/design-system-layout", - 0.0, - "2025-01-01T18:34:54.000" - ], - [ - "normalize.css", - 0.0, - "2025-01-01T18:34:54.000" - ], - [ - "svg4everybody", - 0.0, - "2025-01-01T18:34:54.000" - ] + [ + "svg4everybody", + 0, + "2025-01-01T18:34:54.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/dpc_aop/dpc_aop_data.json b/app/site/_data/CMSgov/dpc_aop/dpc_aop_data.json index c8aabdbfb6..b9e20f09fb 100644 --- a/app/site/_data/CMSgov/dpc_aop/dpc_aop_data.json +++ b/app/site/_data/CMSgov/dpc_aop/dpc_aop_data.json @@ -1,795 +1,795 @@ { - "url": "https://github.com/CMSgov/dpc_aop", - "owner": "CMSgov", - "name": "dpc_aop", - "description": null, - "commits_count": 11, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 8, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 3, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 6, - "total_project_lines": 5274, - "average_project_lines": 55, - "total_project_comment_lines": 946, - "average_project_comment_lines": 10, - "total_project_blank_lines": 922, - "average_blank_lines": 10, - "commits_by_month": { - "2023/7": 2, - "2023/6": 9 + "url": "https://github.com/CMSgov/dpc_aop", + "owner": "CMSgov", + "name": "dpc_aop", + "description": null, + "commits_count": 11, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 8, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 3, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 6, + "total_project_lines": 5274, + "average_project_lines": 55, + "total_project_comment_lines": 946, + "average_project_comment_lines": 10, + "total_project_blank_lines": 922, + "average_blank_lines": 10, + "commits_by_month": { + "2023/7": 2, + "2023/6": 9 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-06-05T13:25:31Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:02Z", + "repo": { + "name": "github.com/CMSgov/dpc_aop", + "commit": "d56796b0b61605c16752c36d31ce4589282631e5" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-06-05T13:25:31Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:02Z", - "repo": { - "name": "github.com/CMSgov/dpc_aop", - "commit": "d56796b0b61605c16752c36d31ce4589282631e5" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 1/8 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "30 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 137308, - "CodeBytes": 0, - "Lines": 4266, - "Code": 2704, - "Comment": 791, - "Blank": 771, - "Complexity": 177, - "Count": 83, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 11782, - "CodeBytes": 0, - "Lines": 453, - "Code": 421, - "Comment": 10, - "Blank": 22, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 489, - "CodeBytes": 0, - "Lines": 19, - "Code": 9, - "Comment": 0, - "Blank": 10, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 134, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 3536, - "CodeBytes": 0, - "Lines": 103, - "Code": 40, - "Comment": 41, - "Blank": 22, - "Complexity": 10, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "INI", - "Bytes": 1682, - "CodeBytes": 0, - "Lines": 54, - "Code": 10, - "Comment": 31, - "Blank": 13, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 7398, - "CodeBytes": 0, - "Lines": 237, - "Code": 113, - "Comment": 64, - "Blank": 60, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Mako", - "Bytes": 494, - "CodeBytes": 0, - "Lines": 24, - "Code": 17, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 3097, - "CodeBytes": 0, - "Lines": 114, - "Code": 88, - "Comment": 9, - "Blank": 17, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 89211.04147746562, - "estimatedScheduleMonths_low": 5.68572556133563, - "estimatedPeople_low": 1.5285590623429772, - "estimatedCost_high": 278020.56858852913, - "estimatedScheduleMonths_high": 5.68572556133563, - "estimatedPeople_high": 1.5285590623429772, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 83 4266 771 791 2704 177\n(ULOC) 2612\n-------------------------------------------------------------------------------\nYAML 4 453 22 10 421 0\n(ULOC) 219\n-------------------------------------------------------------------------------\nMarkdown 3 19 10 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nCSV 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nDockerfile 1 103 22 41 40 10\n(ULOC) 69\n-------------------------------------------------------------------------------\nINI 1 54 13 31 10 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nMakefile 1 237 60 64 113 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nMako 1 24 7 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nTOML 1 114 17 9 88 1\n(ULOC) 98\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 96 5274 922 946 3406 188\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3213\nDRYness % 0.61\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $97,825\nEstimated Schedule Effort (organic) 5.69 months\nEstimated People Required (organic) 1.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 165920 bytes, 0.166 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Python": 137308, - "Makefile": 7398, - "Dockerfile": 3536, - "Mako": 494 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "alembic", - 2.3150684932, - "2024-11-20T11:01:31.000" - ], - [ - "apiflask", - 1.6493150685, - "2024-11-20T11:01:31.000" - ], - [ - "apispec", - 2.4821917808, - "2024-11-20T11:01:31.000" - ], - [ - "atomicwrites", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "attrs", - 2.0273972603, - "2024-11-20T11:01:31.000" - ], - [ - "bandit", - 2.5589041096, - "2024-11-20T11:01:31.000" - ], - [ - "black", - 2.101369863, - "2024-11-20T11:01:31.000" - ], - [ - "boto3", - 2.2, - "2024-11-20T11:01:31.000" - ], - [ - "botocore", - 2.2, - "2024-11-20T11:01:31.000" - ], - [ - "certifi", - 1.3150684932, - "2024-11-20T11:01:31.000" - ], - [ - "cffi", - 2.1835616438, - "2024-11-20T11:01:31.000" - ], - [ - "charset-normalizer", - 2.1397260274, - "2024-11-20T11:01:31.000" - ], - [ - "click", - 1.301369863, - "2024-11-20T11:01:31.000" - ], - [ - "colorama", - 0.3561643836, - "2024-11-20T11:01:31.000" - ], - [ - "coverage", - 2.2520547945, - "2024-11-20T11:01:31.000" - ], - [ - "cryptography", - 1.3835616438, - "2024-11-20T11:01:31.000" - ], - [ - "docopt", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "factory-boy", - 2.8136986301, - "2024-11-20T11:01:31.000" - ], - [ - "faker", - 2.2054794521, - "2024-11-20T11:01:31.000" - ], - [ - "flake8", - 2.002739726, - "2024-11-20T11:01:31.000" - ], - [ - "flake8-alfred", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "flake8-bugbear", - 2.1917808219, - "2024-11-20T11:01:31.000" - ], - [ - "flask", - 1.5369863014, - "2024-11-20T11:01:31.000" - ], - [ - "flask-httpauth", - 0.9095890411, - "2024-11-20T11:01:31.000" - ], - [ - "flask-marshmallow", - 3.4712328767, - "2024-11-20T11:01:31.000" - ], - [ - "gitdb", - 1.9863013699, - "2024-11-20T11:01:31.000" - ], - [ - "gitpython", - 1.2547945205, - "2024-11-20T11:01:31.000" - ], - [ - "greenlet", - 2.0739726027, - "2024-11-20T11:01:31.000" - ], - [ - "idna", - 2.9260273973, - "2024-11-20T11:01:31.000" - ], - [ - "iniconfig", - 2.2328767123, - "2024-11-20T11:01:31.000" - ], - [ - "isort", - 2.0931506849, - "2024-11-20T11:01:31.000" - ], - [ - "itsdangerous", - 2.0657534247, - "2024-11-20T11:01:31.000" - ], - [ - "jinja2", - 2.0219178082, - "2024-11-20T11:01:31.000" - ], - [ - "jmespath", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "mako", - 2.1479452055, - "2024-11-20T11:01:31.000" - ], - [ - "markupsafe", - 2.597260274, - "2024-11-20T11:01:31.000" - ], - [ - "marshmallow", - 2.1287671233, - "2024-11-20T11:01:31.000" - ], - [ - "marshmallow-dataclass", - 2.3780821918, - "2024-11-20T11:01:31.000" - ], - [ - "marshmallow-enum", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "mccabe", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "moto", - 1.8547945205, - "2024-11-20T11:01:31.000" - ], - [ - "mypy", - 2.2630136986, - "2024-11-20T11:01:31.000" - ], - [ - "mypy-extensions", - 3.301369863, - "2024-11-20T11:01:31.000" - ], - [ - "packaging", - 2.9753424658, - "2024-11-20T11:01:31.000" - ], - [ - "pathspec", - 1.2712328767, - "2024-11-20T11:01:31.000" - ], - [ - "pbr", - 2.0438356164, - "2024-11-20T11:01:31.000" - ], - [ - "platformdirs", - 2.4191780822, - "2024-11-20T11:01:31.000" - ], - [ - "pluggy", - 2.6547945205, - "2024-11-20T11:01:31.000" - ], - [ - "psycopg2-binary", - 2.797260274, - "2024-11-20T11:01:31.000" - ], - [ - "py", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "pycodestyle", - 2.002739726, - "2024-11-20T11:01:31.000" - ], - [ - "pycparser", - 2.397260274, - "2024-11-20T11:01:31.000" - ], - [ - "pydantic", - 2.0328767123, - "2024-11-20T11:01:31.000" - ], - [ - "pyflakes", - 1.4328767123, - "2024-11-20T11:01:31.000" - ], - [ - "pyparsing", - 2.4273972603, - "2024-11-20T11:01:31.000" - ], - [ - "pytest", - 3.0301369863, - "2024-11-20T11:01:31.000" - ], - [ - "pytest-lazy-fixture", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "pytest-watch", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "python-dateutil", - 2.6328767123, - "2024-11-20T11:01:31.000" - ], - [ - "python-dotenv", - 1.8328767123, - "2024-11-20T11:01:31.000" - ], - [ - "pytz", - 2.0821917808, - "2024-11-20T11:01:31.000" - ], - [ - "pyyaml", - 2.8164383562, - "2024-11-20T11:01:31.000" - ], - [ - "requests", - 1.0219178082, - "2024-11-20T11:01:31.000" - ], - [ - "responses", - 2.0575342466, - "2024-11-20T11:01:31.000" - ], - [ - "s3transfer", - 2.3561643836, - "2024-11-20T11:01:31.000" - ], - [ - "six", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "smart-open", - 2.1232876712, - "2024-11-20T11:01:31.000" - ], - [ - "smmap", - 1.9205479452, - "2024-11-20T11:01:31.000" - ], - [ - "sqlalchemy", - 2.1068493151, - "2024-11-20T11:01:31.000" - ], - [ - "sqlalchemy2-stubs", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "stevedore", - 2.3616438356, - "2024-11-20T11:01:31.000" - ], - [ - "toml", - 0.0, - "2024-11-20T11:01:31.000" - ], - [ - "tomli", - 2.7589041096, - "2024-11-20T11:01:31.000" - ], - [ - "typeguard", - 2.898630137, - "2024-11-20T11:01:31.000" - ], - [ - "types-pytz", - 2.1260273973, - "2024-11-20T11:01:31.000" - ], - [ - "typing-extensions", - 1.9369863014, - "2024-11-20T11:01:31.000" - ], - [ - "typing-inspect", - 0.7671232877, - "2024-11-20T11:01:31.000" - ], - [ - "urllib3", - 2.0575342466, - "2024-11-20T11:01:31.000" - ], - [ - "watchdog", - 1.8356164384, - "2024-11-20T11:01:31.000" - ], - [ - "webargs", - 2.1671232877, - "2024-11-20T11:01:31.000" - ], - [ - "werkzeug", - 1.7315068493, - "2024-11-20T11:01:31.000" - ], - [ - "xmltodict", - 2.4410958904, - "2024-11-20T11:01:31.000" - ] + "score": 2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 1/8 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "30 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 137308, + "CodeBytes": 0, + "Lines": 4266, + "Code": 2704, + "Comment": 791, + "Blank": 771, + "Complexity": 177, + "Count": 83, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 11782, + "CodeBytes": 0, + "Lines": 453, + "Code": 421, + "Comment": 10, + "Blank": 22, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 489, + "CodeBytes": 0, + "Lines": 19, + "Code": 9, + "Comment": 0, + "Blank": 10, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 134, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 3536, + "CodeBytes": 0, + "Lines": 103, + "Code": 40, + "Comment": 41, + "Blank": 22, + "Complexity": 10, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "INI", + "Bytes": 1682, + "CodeBytes": 0, + "Lines": 54, + "Code": 10, + "Comment": 31, + "Blank": 13, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 7398, + "CodeBytes": 0, + "Lines": 237, + "Code": 113, + "Comment": 64, + "Blank": 60, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Mako", + "Bytes": 494, + "CodeBytes": 0, + "Lines": 24, + "Code": 17, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 3097, + "CodeBytes": 0, + "Lines": 114, + "Code": 88, + "Comment": 9, + "Blank": 17, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 89211.04147746562, + "estimatedScheduleMonths_low": 5.68572556133563, + "estimatedPeople_low": 1.5285590623429772, + "estimatedCost_high": 278020.56858852913, + "estimatedScheduleMonths_high": 5.68572556133563, + "estimatedPeople_high": 1.5285590623429772, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 83 4266 771 791 2704 177\n(ULOC) 2612\n-------------------------------------------------------------------------------\nYAML 4 453 22 10 421 0\n(ULOC) 219\n-------------------------------------------------------------------------------\nMarkdown 3 19 10 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nCSV 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nDockerfile 1 103 22 41 40 10\n(ULOC) 69\n-------------------------------------------------------------------------------\nINI 1 54 13 31 10 0\n(ULOC) 42\n-------------------------------------------------------------------------------\nMakefile 1 237 60 64 113 0\n(ULOC) 155\n-------------------------------------------------------------------------------\nMako 1 24 7 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nTOML 1 114 17 9 88 1\n(ULOC) 98\n───────────────────────────────────────────────────────────────────────────────\nTotal 96 5274 922 946 3406 188\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3213\nDRYness % 0.61\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $97,825\nEstimated Schedule Effort (organic) 5.69 months\nEstimated People Required (organic) 1.53\n───────────────────────────────────────────────────────────────────────────────\nProcessed 165920 bytes, 0.166 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 137308, + "Makefile": 7398, + "Dockerfile": 3536, + "Mako": 494 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "alembic", + 2.3150684932, + "2024-11-20T11:01:31.000" + ], + [ + "apiflask", + 1.6493150685, + "2024-11-20T11:01:31.000" + ], + [ + "apispec", + 2.4821917808, + "2024-11-20T11:01:31.000" + ], + [ + "atomicwrites", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "attrs", + 2.0273972603, + "2024-11-20T11:01:31.000" + ], + [ + "bandit", + 2.5589041096, + "2024-11-20T11:01:31.000" + ], + [ + "black", + 2.101369863, + "2024-11-20T11:01:31.000" + ], + [ + "boto3", + 2.2, + "2024-11-20T11:01:31.000" + ], + [ + "botocore", + 2.2, + "2024-11-20T11:01:31.000" + ], + [ + "certifi", + 1.3150684932, + "2024-11-20T11:01:31.000" + ], + [ + "cffi", + 2.1835616438, + "2024-11-20T11:01:31.000" + ], + [ + "charset-normalizer", + 2.1397260274, + "2024-11-20T11:01:31.000" + ], + [ + "click", + 1.301369863, + "2024-11-20T11:01:31.000" + ], + [ + "colorama", + 0.3561643836, + "2024-11-20T11:01:31.000" + ], + [ + "coverage", + 2.2520547945, + "2024-11-20T11:01:31.000" + ], + [ + "cryptography", + 1.3835616438, + "2024-11-20T11:01:31.000" + ], + [ + "docopt", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "factory-boy", + 2.8136986301, + "2024-11-20T11:01:31.000" + ], + [ + "faker", + 2.2054794521, + "2024-11-20T11:01:31.000" + ], + [ + "flake8", + 2.002739726, + "2024-11-20T11:01:31.000" + ], + [ + "flake8-alfred", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "flake8-bugbear", + 2.1917808219, + "2024-11-20T11:01:31.000" + ], + [ + "flask", + 1.5369863014, + "2024-11-20T11:01:31.000" + ], + [ + "flask-httpauth", + 0.9095890411, + "2024-11-20T11:01:31.000" + ], + [ + "flask-marshmallow", + 3.4712328767, + "2024-11-20T11:01:31.000" + ], + [ + "gitdb", + 1.9863013699, + "2024-11-20T11:01:31.000" + ], + [ + "gitpython", + 1.2547945205, + "2024-11-20T11:01:31.000" + ], + [ + "greenlet", + 2.0739726027, + "2024-11-20T11:01:31.000" + ], + [ + "idna", + 2.9260273973, + "2024-11-20T11:01:31.000" + ], + [ + "iniconfig", + 2.2328767123, + "2024-11-20T11:01:31.000" + ], + [ + "isort", + 2.0931506849, + "2024-11-20T11:01:31.000" + ], + [ + "itsdangerous", + 2.0657534247, + "2024-11-20T11:01:31.000" + ], + [ + "jinja2", + 2.0219178082, + "2024-11-20T11:01:31.000" + ], + [ + "jmespath", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "mako", + 2.1479452055, + "2024-11-20T11:01:31.000" + ], + [ + "markupsafe", + 2.597260274, + "2024-11-20T11:01:31.000" + ], + [ + "marshmallow", + 2.1287671233, + "2024-11-20T11:01:31.000" + ], + [ + "marshmallow-dataclass", + 2.3780821918, + "2024-11-20T11:01:31.000" + ], + [ + "marshmallow-enum", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "mccabe", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "moto", + 1.8547945205, + "2024-11-20T11:01:31.000" + ], + [ + "mypy", + 2.2630136986, + "2024-11-20T11:01:31.000" + ], + [ + "mypy-extensions", + 3.301369863, + "2024-11-20T11:01:31.000" + ], + [ + "packaging", + 2.9753424658, + "2024-11-20T11:01:31.000" + ], + [ + "pathspec", + 1.2712328767, + "2024-11-20T11:01:31.000" + ], + [ + "pbr", + 2.0438356164, + "2024-11-20T11:01:31.000" + ], + [ + "platformdirs", + 2.4191780822, + "2024-11-20T11:01:31.000" + ], + [ + "pluggy", + 2.6547945205, + "2024-11-20T11:01:31.000" + ], + [ + "psycopg2-binary", + 2.797260274, + "2024-11-20T11:01:31.000" + ], + [ + "py", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "pycodestyle", + 2.002739726, + "2024-11-20T11:01:31.000" + ], + [ + "pycparser", + 2.397260274, + "2024-11-20T11:01:31.000" + ], + [ + "pydantic", + 2.0328767123, + "2024-11-20T11:01:31.000" + ], + [ + "pyflakes", + 1.4328767123, + "2024-11-20T11:01:31.000" + ], + [ + "pyparsing", + 2.4273972603, + "2024-11-20T11:01:31.000" + ], + [ + "pytest", + 3.0301369863, + "2024-11-20T11:01:31.000" + ], + [ + "pytest-lazy-fixture", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "pytest-watch", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "python-dateutil", + 2.6328767123, + "2024-11-20T11:01:31.000" + ], + [ + "python-dotenv", + 1.8328767123, + "2024-11-20T11:01:31.000" + ], + [ + "pytz", + 2.0821917808, + "2024-11-20T11:01:31.000" + ], + [ + "pyyaml", + 2.8164383562, + "2024-11-20T11:01:31.000" + ], + [ + "requests", + 1.0219178082, + "2024-11-20T11:01:31.000" + ], + [ + "responses", + 2.0575342466, + "2024-11-20T11:01:31.000" + ], + [ + "s3transfer", + 2.3561643836, + "2024-11-20T11:01:31.000" + ], + [ + "six", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "smart-open", + 2.1232876712, + "2024-11-20T11:01:31.000" + ], + [ + "smmap", + 1.9205479452, + "2024-11-20T11:01:31.000" + ], + [ + "sqlalchemy", + 2.1068493151, + "2024-11-20T11:01:31.000" + ], + [ + "sqlalchemy2-stubs", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "stevedore", + 2.3616438356, + "2024-11-20T11:01:31.000" + ], + [ + "toml", + 0, + "2024-11-20T11:01:31.000" + ], + [ + "tomli", + 2.7589041096, + "2024-11-20T11:01:31.000" + ], + [ + "typeguard", + 2.898630137, + "2024-11-20T11:01:31.000" + ], + [ + "types-pytz", + 2.1260273973, + "2024-11-20T11:01:31.000" + ], + [ + "typing-extensions", + 1.9369863014, + "2024-11-20T11:01:31.000" + ], + [ + "typing-inspect", + 0.7671232877, + "2024-11-20T11:01:31.000" + ], + [ + "urllib3", + 2.0575342466, + "2024-11-20T11:01:31.000" + ], + [ + "watchdog", + 1.8356164384, + "2024-11-20T11:01:31.000" + ], + [ + "webargs", + 2.1671232877, + "2024-11-20T11:01:31.000" + ], + [ + "werkzeug", + 1.7315068493, + "2024-11-20T11:01:31.000" + ], + [ + "xmltodict", + 2.4410958904, + "2024-11-20T11:01:31.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/drive2gource/drive2gource_data.json b/app/site/_data/CMSgov/drive2gource/drive2gource_data.json index 362bc386ab..56c7855817 100644 --- a/app/site/_data/CMSgov/drive2gource/drive2gource_data.json +++ b/app/site/_data/CMSgov/drive2gource/drive2gource_data.json @@ -1,291 +1,291 @@ { - "url": "https://github.com/CMSgov/drive2gource", - "owner": "CMSgov", - "name": "drive2gource", - "description": "Generate a Gource (https://gource.io) visualization from the history of a Google Drive folder. ", - "commits_count": 8, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 6, - "watchers_count": 5, - "total_project_lines": 1072, - "average_project_lines": 119, - "total_project_comment_lines": 31, - "average_project_comment_lines": 3, - "total_project_blank_lines": 148, - "average_blank_lines": 16, - "commits_by_month": { - "2024/3": 3, - "2023/7": 5 + "url": "https://github.com/CMSgov/drive2gource", + "owner": "CMSgov", + "name": "drive2gource", + "description": "Generate a Gource (https://gource.io) visualization from the history of a Google Drive folder. ", + "commits_count": 8, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 6, + "watchers_count": 5, + "total_project_lines": 1072, + "average_project_lines": 119, + "total_project_comment_lines": 31, + "average_project_comment_lines": 3, + "total_project_blank_lines": 148, + "average_blank_lines": 16, + "commits_by_month": { + "2024/3": 3, + "2023/7": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2023-08-03T19:00:49Z", + "ossf_scorecard": { + "date": "2025-01-11T00:38:50Z", + "repo": { + "name": "github.com/CMSgov/drive2gource", + "commit": "b0337c76b1020468037079bd83fff1673de5bc53" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2023-08-03T19:00:49Z", - "ossf_scorecard": { - "date": "2025-01-11T00:38:50Z", - "repo": { - "name": "github.com/CMSgov/drive2gource", - "commit": "b0337c76b1020468037079bd83fff1673de5bc53" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 1/6 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 11090, - "CodeBytes": 0, - "Lines": 223, - "Code": 151, - "Comment": 0, - "Blank": 72, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 14475, - "CodeBytes": 0, - "Lines": 482, - "Code": 375, - "Comment": 31, - "Blank": 76, - "Complexity": 78, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 7883, - "CodeBytes": 0, - "Lines": 367, - "Code": 367, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 21875.3880374598, - "estimatedScheduleMonths_low": 3.3328058324048273, - "estimatedPeople_low": 0.639433316916808, - "estimatedCost_high": 68173.2633040219, - "estimatedScheduleMonths_high": 3.3328058324048273, - "estimatedPeople_high": 0.639433316916808, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 6 223 72 0 151 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nJavaScript 2 482 76 31 375 78\n(ULOC) 310\n-------------------------------------------------------------------------------\nJSON 1 367 0 0 367 0\n(ULOC) 133\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 9 1072 148 31 893 78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 580\nDRYness % 0.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $23,987\nEstimated Schedule Effort (organic) 3.33 months\nEstimated People Required (organic) 0.64\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 33448 bytes, 0.033 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 14475 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 1/6 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 11090, + "CodeBytes": 0, + "Lines": 223, + "Code": 151, + "Comment": 0, + "Blank": 72, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 14475, + "CodeBytes": 0, + "Lines": 482, + "Code": 375, + "Comment": 31, + "Blank": 76, + "Complexity": 78, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 7883, + "CodeBytes": 0, + "Lines": 367, + "Code": 367, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 21875.3880374598, + "estimatedScheduleMonths_low": 3.3328058324048273, + "estimatedPeople_low": 0.639433316916808, + "estimatedCost_high": 68173.2633040219, + "estimatedScheduleMonths_high": 3.3328058324048273, + "estimatedPeople_high": 0.639433316916808, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 6 223 72 0 151 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nJavaScript 2 482 76 31 375 78\n(ULOC) 310\n-------------------------------------------------------------------------------\nJSON 1 367 0 0 367 0\n(ULOC) 133\n───────────────────────────────────────────────────────────────────────────────\nTotal 9 1072 148 31 893 78\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 580\nDRYness % 0.54\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $23,987\nEstimated Schedule Effort (organic) 3.33 months\nEstimated People Required (organic) 0.64\n───────────────────────────────────────────────────────────────────────────────\nProcessed 33448 bytes, 0.033 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 14475 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/easi-app/easi-app_data.json b/app/site/_data/CMSgov/easi-app/easi-app_data.json index 596a12d245..4705a8033d 100644 --- a/app/site/_data/CMSgov/easi-app/easi-app_data.json +++ b/app/site/_data/CMSgov/easi-app/easi-app_data.json @@ -1,2028 +1,2028 @@ { - "url": "https://github.com/CMSgov/easi-app", - "owner": "CMSgov", - "name": "easi-app", - "description": "EASi App", - "commits_count": 8971, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 2945, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 2601, - "closed_pull_requests_count": 340, - "forks_count": 0, - "stargazers_count": 3, - "watchers_count": 3, - "total_project_lines": 336012, - "average_project_lines": 151, - "total_project_comment_lines": 21418, - "average_project_comment_lines": 10, - "total_project_blank_lines": 36943, - "average_blank_lines": 17, - "commits_by_month": { - "2025/1": 4, - "2024/12": 16, - "2024/11": 10 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 1 - ], - [ - "2024-12-18T00:00:00.000Z", - 1 - ], - [ - "2024-12-19T00:00:00.000Z", - 1 - ], - [ - "2024-12-26T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-07-31T00:00:00.000Z", - 3 - ], - [ - "2024-08-02T00:00:00.000Z", - 2 - ], - [ - "2024-08-05T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-09-30T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2019-10-17T17:29:28Z", - "ossf_scorecard": { - "date": "2025-01-11T00:36:04Z", - "repo": { - "name": "github.com/CMSgov/easi-app", - "commit": "08bd1da3ccbaa7075bc5beb123dc414a55ff07d9" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 7 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "24 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 3631373, - "CodeBytes": 0, - "Lines": 110440, - "Code": 94774, - "Comment": 5794, - "Blank": 9872, - "Complexity": 7288, - "Count": 942, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 6458731, - "CodeBytes": 0, - "Lines": 198744, - "Code": 160095, - "Comment": 13872, - "Blank": 24777, - "Complexity": 26403, - "Count": 733, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 110098, - "CodeBytes": 0, - "Lines": 3170, - "Code": 2659, - "Comment": 238, - "Blank": 273, - "Complexity": 9, - "Count": 278, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 75343, - "CodeBytes": 0, - "Lines": 3705, - "Code": 3081, - "Comment": 106, - "Blank": 518, - "Complexity": 0, - "Count": 105, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 201007, - "CodeBytes": 0, - "Lines": 4344, - "Code": 3186, - "Comment": 0, - "Blank": 1158, - "Complexity": 0, - "Count": 64, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 81116, - "CodeBytes": 0, - "Lines": 2778, - "Code": 2526, - "Comment": 118, - "Blank": 134, - "Complexity": 0, - "Count": 64, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go Template", - "Bytes": 49802, - "CodeBytes": 0, - "Lines": 1310, - "Code": 1076, - "Comment": 0, - "Blank": 234, - "Complexity": 78, - "Count": 47, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 23987, - "CodeBytes": 0, - "Lines": 704, - "Code": 444, - "Comment": 132, - "Blank": 128, - "Complexity": 54, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 83222, - "CodeBytes": 0, - "Lines": 2596, - "Code": 1776, - "Comment": 314, - "Blank": 506, - "Complexity": 46, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 411412, - "CodeBytes": 0, - "Lines": 12258, - "Code": 12258, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 20022, - "CodeBytes": 0, - "Lines": 581, - "Code": 370, - "Comment": 106, - "Blank": 105, - "Complexity": 44, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 4976, - "CodeBytes": 0, - "Lines": 173, - "Code": 144, - "Comment": 11, - "Blank": 18, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 95, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 171, - "CodeBytes": 0, - "Lines": 16, - "Code": 8, - "Comment": 4, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1038, - "CodeBytes": 0, - "Lines": 43, - "Code": 29, - "Comment": 0, - "Blank": 14, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "GraphQL", - "Bytes": 75880, - "CodeBytes": 0, - "Lines": 3083, - "Code": 1983, - "Comment": 828, - "Blank": 272, - "Complexity": 233, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1586, - "CodeBytes": 0, - "Lines": 42, - "Code": 25, - "Comment": 15, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 13726, - "CodeBytes": 0, - "Lines": 495, - "Code": 454, - "Comment": 16, - "Blank": 25, - "Complexity": 17, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 9316329.248131683, - "estimatedScheduleMonths_low": 33.26134879984582, - "estimatedPeople_low": 27.28691763560091, - "estimatedCost_high": 29033750.888086792, - "estimatedScheduleMonths_high": 33.26134879984582, - "estimatedPeople_high": 27.28691763560091, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 942 110440 9872 5794 94774 7288\n(ULOC) 47714\n-------------------------------------------------------------------------------\nGo 733 198744 24777 13872 160095 26403\n(ULOC) 55211\n-------------------------------------------------------------------------------\nSQL 278 3170 273 238 2659 9\n(ULOC) 1770\n-------------------------------------------------------------------------------\nSass 105 3705 518 106 3081 0\n(ULOC) 1792\n-------------------------------------------------------------------------------\nMarkdown 64 4344 1158 0 3186 0\n(ULOC) 2878\n-------------------------------------------------------------------------------\nYAML 64 2778 134 118 2526 0\n(ULOC) 1308\n-------------------------------------------------------------------------------\nGo Template 47 1310 234 0 1076 78\n(ULOC) 409\n-------------------------------------------------------------------------------\nBASH 22 704 128 132 444 54\n(ULOC) 463\n-------------------------------------------------------------------------------\nJavaScript 21 2596 506 314 1776 46\n(ULOC) 1286\n-------------------------------------------------------------------------------\nJSON 18 12258 0 0 12258 0\n(ULOC) 2771\n-------------------------------------------------------------------------------\nShell 11 581 105 106 370 44\n(ULOC) 347\n-------------------------------------------------------------------------------\nTypeScript Typings 4 173 18 11 144 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nPlain Text 2 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nDocker ignore 1 16 4 4 8 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nDockerfile 1 43 14 0 29 2\n(ULOC) 29\n-------------------------------------------------------------------------------\nGraphQL 1 3083 272 828 1983 233\n(ULOC) 1492\n-------------------------------------------------------------------------------\nHTML 1 42 2 15 25 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nRuby 1 495 25 16 454 17\n(ULOC) 332\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2317 344686 38072 21554 285060 34174\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 116393\nDRYness % 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $10,215,942\nEstimated Schedule Effort (organic) 33.26 months\nEstimated People Required (organic) 27.29\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 11254942 bytes, 11.255 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/easi-app", + "owner": "CMSgov", + "name": "easi-app", + "description": "EASi App", + "commits_count": 8971, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 2945, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 2601, + "closed_pull_requests_count": 340, + "forks_count": 0, + "stargazers_count": 3, + "watchers_count": 3, + "total_project_lines": 336012, + "average_project_lines": 151, + "total_project_comment_lines": 21418, + "average_project_comment_lines": 10, + "total_project_blank_lines": 36943, + "average_blank_lines": 17, + "commits_by_month": { + "2025/1": 4, + "2024/12": 16, + "2024/11": 10 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 1 + ], + [ + "2024-12-18T00:00:00.000Z", + 1 + ], + [ + "2024-12-19T00:00:00.000Z", + 1 + ], + [ + "2024-12-26T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 + ], + [ + "2024-07-31T00:00:00.000Z", + 3 + ], + [ + "2024-08-02T00:00:00.000Z", + 2 + ], + [ + "2024-08-05T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-09-30T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2019-10-17T17:29:28Z", + "ossf_scorecard": { + "date": "2025-01-11T00:36:04Z", + "repo": { + "name": "github.com/CMSgov/easi-app", + "commit": "08bd1da3ccbaa7075bc5beb123dc414a55ff07d9" }, - "predominant_langs": { - "TypeScript": 3631373, - "Go": 2157311, - "JavaScript": 83222, - "SCSS": 75343, - "Shell": 44009, - "Ruby": 13726, - "PLpgSQL": 2631, - "HTML": 1586, - "Dockerfile": 1038 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "easi-app", - "00:00:04" - ] - ], - "repo_dependency_libyear_list": [ - [ - "@apollo/client", - -0.0739726027, - "2024-10-16T10:04:15.000" - ], - [ - "@apollo/client", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@apollo/client", - 0.2136986301, - "2024-07-01T00:36:18.000" - ], - [ - "@apollo/react-testing", - 0.0, - "2024-07-01T00:36:18.000" - ], - [ - "@babel/core", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@babel/plugin-syntax-class-properties", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@babel/preset-env", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@craco/craco", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "@cypress/code-coverage", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@cypress/webpack-preprocessor", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@cypress/webpack-preprocessor", - 2.1780821918, - "2023-09-14T09:02:31.000" - ], - [ - "@graphql-codegen/cli", - -0.1260273973, - "2025-01-01T18:35:34.000" - ], - [ - "@graphql-codegen/cli", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "@graphql-codegen/client-preset", - -0.095890411, - "2025-01-01T18:35:34.000" - ], - [ - "@graphql-codegen/client-preset", - -0.0246575342, - "2024-10-16T10:04:15.000" - ], - [ - "@graphql-codegen/typed-document-node", - 0.2657534247, - "2024-10-16T10:04:15.000" - ], - [ - "@graphql-codegen/typed-document-node", - 0.3917808219, - "2025-01-01T18:35:34.000" - ], - [ - "@graphql-codegen/typescript-react-apollo", - -0.3123287671, - "2025-01-01T18:35:34.000" - ], - [ - "@graphql-codegen/typescript-react-apollo", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "@hookform/error-message", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@hookform/resolvers", - 0.8712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@hookform/resolvers", - 1.2219178082, - "2024-04-10T03:36:47.000" - ], - [ - "@hookform/resolvers", - 1.6438356164, - "2024-07-01T00:36:18.000" - ], - [ - "@hookform/resolvers", - 1.7260273973, - "2024-10-16T10:04:15.000" - ], - [ - "@hookform/resolvers", - 2.0410958904, - "2025-01-01T18:35:34.000" - ], - [ - "@okta/okta-auth-js", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@okta/okta-auth-js", - 0.9342465753, - "2023-09-14T09:02:31.000" - ], - [ - "@okta/okta-auth-js", - 1.3452054795, - "2024-04-10T03:36:47.000" - ], - [ - "@okta/okta-auth-js", - 1.6657534247, - "2024-07-01T00:36:18.000" - ], - [ - "@okta/okta-react", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@okta/okta-signin-widget", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@okta/okta-signin-widget", - 0.6273972603, - "2024-04-10T03:36:47.000" - ], - [ - "@okta/okta-signin-widget", - 0.8630136986, - "2023-09-14T09:02:31.000" - ], - [ - "@storybook/addon-actions", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@storybook/addon-actions", - 0.4712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@storybook/addon-controls", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@storybook/addon-controls", - 0.4712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@storybook/addon-essentials", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@storybook/addon-essentials", - 0.4712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@storybook/addon-links", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@storybook/addon-links", - 0.4712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@storybook/node-logger", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@storybook/node-logger", - 0.4712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@storybook/react", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@storybook/react", - 0.4712328767, - "2023-09-14T09:02:31.000" - ], - [ - "@testing-library/jest-dom", - 0.1342465753, - "2023-09-14T09:02:31.000" - ], - [ - "@testing-library/jest-dom", - 0.5534246575, - "2024-04-10T03:36:47.000" - ], - [ - "@testing-library/jest-dom", - 0.898630137, - "2024-07-01T00:36:18.000" - ], - [ - "@testing-library/jest-dom", - 1.101369863, - "2024-10-16T10:04:15.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2025-01-01T18:35:34.000" - ], - [ - "@testing-library/react", - 1.6931506849, - "2023-09-14T09:02:31.000" - ], - [ - "@testing-library/react", - 2.8356164384, - "2024-04-10T03:36:47.000" - ], - [ - "@testing-library/react", - 2.9890410959, - "2024-07-01T00:36:18.000" - ], - [ - "@testing-library/react", - 3.2246575342, - "2024-10-16T10:04:15.000" - ], - [ - "@testing-library/react", - 3.495890411, - "2025-01-01T18:35:34.000" - ], - [ - "@testing-library/user-event", - 0.8054794521, - "2023-09-14T09:02:31.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2025-01-01T18:35:34.000" - ], - [ - "@toast-ui/react-editor", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@trussworks/react-uswds", - 1.402739726, - "2023-09-14T09:02:31.000" - ], - [ - "@trussworks/react-uswds", - 1.9178082192, - "2025-01-01T18:35:34.000" - ], - [ - "@trussworks/react-uswds", - 1.9369863014, - "2024-07-01T00:36:18.000" - ], - [ - "@trussworks/react-uswds", - 2.3726027397, - "2024-10-16T10:04:15.000" - ], - [ - "@types/apollo-upload-client", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "@types/apollo-upload-client", - 0.1452054795, - "2025-01-01T18:35:34.000" - ], - [ - "@types/dompurify", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/enzyme", - 1.7753424658, - "2023-09-14T09:02:31.000" - ], - [ - "@types/enzyme", - 2.4136986301, - "2024-10-16T10:04:15.000" - ], - [ - "@types/jest", - 2.3232876712, - "2023-09-14T09:02:31.000" - ], - [ - "@types/jest", - 2.7698630137, - "2024-07-01T00:36:18.000" - ], - [ - "@types/jest", - 3.3835616438, - "2024-10-16T10:04:15.000" - ], - [ - "@types/jest", - 3.4931506849, - "2025-01-01T18:35:34.000" - ], - [ - "@types/lodash", - 0.0, - "2024-07-01T00:36:18.000" - ], - [ - "@types/lodash", - 0.0246575342, - "2024-10-16T10:04:15.000" - ], - [ - "@types/lodash", - 0.098630137, - "2025-01-01T18:35:34.000" - ], - [ - "@types/luxon", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/no-scroll", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/node", - 2.2, - "2023-09-14T09:02:31.000" - ], - [ - "@types/node", - 2.7863013699, - "2024-04-10T03:36:47.000" - ], - [ - "@types/node", - 2.997260274, - "2024-07-01T00:36:18.000" - ], - [ - "@types/node", - 3.2821917808, - "2024-10-16T10:04:15.000" - ], - [ - "@types/node", - 3.5150684932, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react", - 2.202739726, - "2023-09-14T09:02:31.000" - ], - [ - "@types/react", - 2.8328767123, - "2024-04-10T03:36:47.000" - ], - [ - "@types/react", - 2.9561643836, - "2024-07-01T00:36:18.000" - ], - [ - "@types/react", - 3.3178082192, - "2024-10-16T10:04:15.000" - ], - [ - "@types/react", - 3.5287671233, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-autosuggest", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "@types/react-autosuggest", - 0.1397260274, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-csv", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-csv", - 0.0547945205, - "2024-04-10T03:36:47.000" - ], - [ - "@types/react-dom", - 2.0657534247, - "2023-09-14T09:02:31.000" - ], - [ - "@types/react-dom", - 2.7945205479, - "2024-04-10T03:36:47.000" - ], - [ - "@types/react-dom", - 2.8547945205, - "2024-07-01T00:36:18.000" - ], - [ - "@types/react-dom", - 3.3178082192, - "2024-10-16T10:04:15.000" - ], - [ - "@types/react-dom", - 3.4794520548, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-modal", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-redux", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-router-dom", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-router-hash-link", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-table", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/react-test-renderer", - -0.002739726, - "2024-04-10T03:36:47.000" - ], - [ - "@types/react-test-renderer", - 0.4246575342, - "2024-10-16T10:04:15.000" - ], - [ - "@types/react-test-renderer", - 1.0383561644, - "2025-01-01T18:35:34.000" - ], - [ - "@types/redux-mock-store", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/redux-saga-routines", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/text-encoding", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@types/uuid", - 1.6465753425, - "2023-09-14T09:02:31.000" - ], - [ - "@types/uuid", - 2.0520547945, - "2024-04-10T03:36:47.000" - ], - [ - "@types/uuid", - 2.4547945205, - "2025-01-01T18:35:34.000" - ], - [ - "@types/yup", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@uswds/uswds", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "@uswds/uswds", - 0.2054794521, - "2025-01-01T18:35:34.000" - ], - [ - "@vitejs/plugin-react", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "@vitest/coverage-v8", - 0.0383561644, - "2025-01-01T18:35:34.000" - ], - [ - "@vitest/coverage-v8", - 0.4602739726, - "2024-04-10T03:36:47.000" - ], - [ - "@vitest/coverage-v8", - 0.5945205479, - "2024-07-01T00:36:18.000" - ], - [ - "@vitest/coverage-v8", - 1.0438356164, - "2024-10-16T10:04:15.000" - ], - [ - "@wojtekmaj/enzyme-adapter-react-17", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "apollo", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "apollo-upload-client", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "apollo-upload-client", - 1.8767123288, - "2025-01-01T18:35:34.000" - ], - [ - "autoprefixer", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "axios", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "axios", - 1.3315068493, - "2023-09-14T09:02:31.000" - ], - [ - "babel-loader", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "babel-loader", - 3.295890411, - "2023-09-14T09:02:31.000" - ], - [ - "classnames", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "cross-fetch", - -0.002739726, - "2025-01-01T18:35:34.000" - ], - [ - "cross-fetch", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "cypress", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "cypress", - 0.1123287671, - "2024-07-01T00:36:18.000" - ], - [ - "cypress", - 0.4575342466, - "2023-09-14T09:02:31.000" - ], - [ - "cypress-file-upload", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "cypress-otp", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "detect-browser", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "dompurify", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "enzyme", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "eslint", - 0.2410958904, - "2025-01-01T18:35:34.000" - ], - [ - "eslint", - 2.1068493151, - "2023-09-14T09:02:31.000" - ], - [ - "eslint", - 2.6821917808, - "2024-04-10T03:36:47.000" - ], - [ - "eslint", - 2.9123287671, - "2024-07-01T00:36:18.000" - ], - [ - "eslint", - 3.1808219178, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-config-airbnb", - 1.1315068493, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-config-prettier", - 0.0054794521, - "2023-09-14T09:02:31.000" - ], - [ - "eslint-config-prettier", - 0.3315068493, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-config-react-app", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-plugin-cypress", - 0.0, - "2024-04-10T03:36:47.000" - ], - [ - "eslint-plugin-cypress", - 0.0520547945, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-plugin-cypress", - 0.1178082192, - "2024-07-01T00:36:18.000" - ], - [ - "eslint-plugin-cypress", - 0.4876712329, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2024-07-01T00:36:18.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.2054794521, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-plugin-prettier", - 1.8876712329, - "2023-09-14T09:02:31.000" - ], - [ - "eslint-plugin-prettier", - 2.3890410959, - "2024-07-01T00:36:18.000" - ], - [ - "eslint-plugin-prettier", - 2.9068493151, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-plugin-react-hooks", - -0.2082191781, - "2024-04-10T03:36:47.000" - ], - [ - "eslint-plugin-react-hooks", - 0.0, - "2024-07-01T00:36:18.000" - ], - [ - "eslint-plugin-react-hooks", - 0.4575342466, - "2024-10-16T10:04:15.000" - ], - [ - "eslint-plugin-react-hooks", - 0.6109589041, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-plugin-simple-import-sort", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "eslint-plugin-simple-import-sort", - 2.1369863014, - "2023-09-14T09:02:31.000" - ], - [ - "eslint-plugin-simple-import-sort", - 3.1726027397, - "2024-04-10T03:36:47.000" - ], - [ - "eslint-plugin-simple-import-sort", - 3.3452054795, - "2024-07-01T00:36:18.000" - ], - [ - "eslint-plugin-simple-import-sort", - 3.5643835616, - "2024-10-16T10:04:15.000" - ], - [ - "font-awesome", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "formik", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "graphql-schema-linter", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "i18next", - 2.498630137, - "2023-09-14T09:02:31.000" - ], - [ - "i18next", - 3.0876712329, - "2024-04-10T03:36:47.000" - ], - [ - "i18next", - 3.2, - "2024-07-01T00:36:18.000" - ], - [ - "i18next", - 3.6, - "2024-10-16T10:04:15.000" - ], - [ - "i18next", - 3.7835616438, - "2025-01-01T18:35:34.000" - ], - [ - "i18next-browser-languagedetector", - 2.8904109589, - "2023-09-14T09:02:31.000" - ], - [ - "i18next-browser-languagedetector", - 3.6493150685, - "2024-04-10T03:36:47.000" - ], - [ - "i18next-browser-languagedetector", - 3.7671232877, - "2024-10-16T10:04:15.000" - ], - [ - "i18next-browser-languagedetector", - 4.3452054795, - "2025-01-01T18:35:34.000" - ], - [ - "istanbul-lib-coverage", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "jest-canvas-mock", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "jest-launchdarkly-mock", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "js-base64", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "jsdom", - 0.6547945205, - "2024-04-10T03:36:47.000" - ], - [ - "jsdom", - 0.997260274, - "2024-07-01T00:36:18.000" - ], - [ - "jsdom", - 1.3232876712, - "2025-01-01T18:35:34.000" - ], - [ - "launchdarkly-react-client-sdk", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "lodash", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "luxon", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "markdown-spellcheck", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "md5", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "no-scroll", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "nyc", - 0.0, - "2024-04-10T03:36:47.000" - ], - [ - "nyc", - 4.0246575342, - "2024-07-01T00:36:18.000" - ], - [ - "nyc", - 4.304109589, - "2025-01-01T18:35:34.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "prettier", - 0.3506849315, - "2023-09-14T09:02:31.000" - ], - [ - "prettier", - 0.7835616438, - "2024-04-10T03:36:47.000" - ], - [ - "prettier", - 1.1342465753, - "2024-07-01T00:36:18.000" - ], - [ - "prettier", - 1.2246575342, - "2024-10-16T10:04:15.000" - ], - [ - "react", - 1.2273972603, - "2024-04-10T03:36:47.000" - ], - [ - "react", - 3.095890411, - "2024-10-16T10:04:15.000" - ], - [ - "react", - 3.7068493151, - "2025-01-01T18:35:34.000" - ], - [ - "react-autosuggest", - 2.0109589041, - "2025-01-01T18:35:34.000" - ], - [ - "react-csv", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-dom", - 1.2273972603, - "2024-04-10T03:36:47.000" - ], - [ - "react-dom", - 3.095890411, - "2024-10-16T10:04:15.000" - ], - [ - "react-dom", - 3.7068493151, - "2025-01-01T18:35:34.000" - ], - [ - "react-ga4", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-hook-form", - -0.0191780822, - "2025-01-01T18:35:34.000" - ], - [ - "react-hook-form", - 0.0, - "2024-10-16T10:04:15.000" - ], - [ - "react-i18next", - 2.2739726027, - "2023-09-14T09:02:31.000" - ], - [ - "react-i18next", - 2.7863013699, - "2024-04-10T03:36:47.000" - ], - [ - "react-i18next", - 2.9945205479, - "2024-07-01T00:36:18.000" - ], - [ - "react-i18next", - 3.3863013699, - "2024-10-16T10:04:15.000" - ], - [ - "react-i18next", - 3.602739726, - "2025-01-01T18:35:34.000" - ], - [ - "react-idle-timer", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-media", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-modal", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-redux", - 0.8465753425, - "2023-09-14T09:02:31.000" - ], - [ - "react-redux", - 1.304109589, - "2024-04-10T03:36:47.000" - ], - [ - "react-redux", - 1.6054794521, - "2024-10-16T10:04:15.000" - ], - [ - "react-redux", - 2.2164383562, - "2025-01-01T18:35:34.000" - ], - [ - "react-router-dom", - 0.9452054795, - "2023-09-14T09:02:31.000" - ], - [ - "react-router-dom", - 1.4273972603, - "2024-04-10T03:36:47.000" - ], - [ - "react-router-dom", - 1.7287671233, - "2024-07-01T00:36:18.000" - ], - [ - "react-router-dom", - 2.0273972603, - "2024-10-16T10:04:15.000" - ], - [ - "react-router-dom", - 2.2273972603, - "2025-01-01T18:35:34.000" - ], - [ - "react-router-hash-link", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-scripts", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "react-select", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-select-event", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-table", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "react-test-renderer", - 1.6657534247, - "2024-04-10T03:36:47.000" - ], - [ - "react-test-renderer", - 3.5315068493, - "2024-10-16T10:04:15.000" - ], - [ - "react-test-renderer", - 4.1424657534, - "2025-01-01T18:35:34.000" - ], - [ - "react-to-print", - 0.0, - "2024-07-01T00:36:18.000" - ], - [ - "react-to-print", - 0.6273972603, - "2024-10-16T10:04:15.000" - ], - [ - "react-to-print", - 0.8630136986, - "2025-01-01T18:35:34.000" - ], - [ - "redux", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "redux", - 0.898630137, - "2025-01-01T18:35:34.000" - ], - [ - "redux-actions", - 3.9452054795, - "2024-07-01T00:36:18.000" - ], - [ - "redux-actions", - 5.3835616438, - "2025-01-01T18:35:34.000" - ], - [ - "redux-devtools-extension", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "redux-mock-store", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "redux-saga", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "redux-saga-routines", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "regenerator-runtime", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "sass", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "sass-loader", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "sass-loader", - 0.1506849315, - "2024-04-10T03:36:47.000" - ], - [ - "sass-loader", - 0.3068493151, - "2024-07-01T00:36:18.000" - ], - [ - "sass-loader", - 0.7369863014, - "2024-10-16T10:04:15.000" - ], - [ - "sass-loader", - 0.9424657534, - "2025-01-01T18:35:34.000" - ], - [ - "sass-resources-loader", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "start-server-and-test", - 0.0, - "2023-09-14T09:02:31.000" - ], - [ - "start-server-and-test", - 0.7178082192, - "2024-04-10T03:36:47.000" - ], - [ - "text-encoding", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "ts-loader", - 3.0931506849, - "2023-09-14T09:02:31.000" - ], - [ - "ts-loader", - 3.4767123288, - "2025-01-01T18:35:34.000" - ], - [ - "typescript", - 0.5616438356, - "2023-09-14T09:02:31.000" - ], - [ - "typescript", - 1.1753424658, - "2024-04-10T03:36:47.000" - ], - [ - "typescript", - 1.3863013699, - "2024-07-01T00:36:18.000" - ], - [ - "typescript", - 1.6904109589, - "2024-10-16T10:04:15.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:35:34.000" - ], - [ - "uuid", - 2.7589041096, - "2024-04-10T03:36:47.000" - ], - [ - "uuid", - 3.501369863, - "2024-10-16T10:04:15.000" - ], - [ - "uuid", - 3.9260273973, - "2025-01-01T18:35:34.000" - ], - [ - "vite", - 0.0273972603, - "2024-04-10T03:36:47.000" - ], - [ - "vite", - 0.0739726027, - "2024-10-16T10:04:15.000" - ], - [ - "vite", - 0.197260274, - "2025-01-01T18:35:34.000" - ], - [ - "vite", - 0.2602739726, - "2024-07-01T00:36:18.000" - ], - [ - "vite-plugin-svgr", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "vite-plugin-svgr", - 0.1589041096, - "2024-10-16T10:04:15.000" - ], - [ - "vite-tsconfig-paths", - 0.0, - "2024-07-01T00:36:18.000" - ], - [ - "vite-tsconfig-paths", - 0.402739726, - "2024-10-16T10:04:15.000" - ], - [ - "vite-tsconfig-paths", - 0.7315068493, - "2025-01-01T18:35:34.000" - ], - [ - "vitest", - 0.0383561644, - "2025-01-01T18:35:34.000" - ], - [ - "vitest", - 0.4602739726, - "2024-04-10T03:36:47.000" - ], - [ - "vitest", - 0.5945205479, - "2024-07-01T00:36:18.000" - ], - [ - "vitest", - 1.0438356164, - "2024-10-16T10:04:15.000" - ], - [ - "wait-on", - 1.7479452055, - "2023-09-14T09:02:31.000" - ], - [ - "wait-on", - 2.6602739726, - "2024-04-10T03:36:47.000" - ], - [ - "webpack", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "wildcard-mock-link", - 0.0, - "2025-01-01T18:35:34.000" - ], - [ - "yup", - 1.6136986301, - "2023-09-14T09:02:31.000" - ], - [ - "yup", - 2.397260274, - "2024-10-16T10:04:15.000" - ], - [ - "yup", - 3.1835616438, - "2025-01-01T18:35:34.000" - ] + "score": 6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 7 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "24 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 3631373, + "CodeBytes": 0, + "Lines": 110440, + "Code": 94774, + "Comment": 5794, + "Blank": 9872, + "Complexity": 7288, + "Count": 942, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 6458731, + "CodeBytes": 0, + "Lines": 198744, + "Code": 160095, + "Comment": 13872, + "Blank": 24777, + "Complexity": 26403, + "Count": 733, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 110098, + "CodeBytes": 0, + "Lines": 3170, + "Code": 2659, + "Comment": 238, + "Blank": 273, + "Complexity": 9, + "Count": 278, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 75343, + "CodeBytes": 0, + "Lines": 3705, + "Code": 3081, + "Comment": 106, + "Blank": 518, + "Complexity": 0, + "Count": 105, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 201007, + "CodeBytes": 0, + "Lines": 4344, + "Code": 3186, + "Comment": 0, + "Blank": 1158, + "Complexity": 0, + "Count": 64, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 81116, + "CodeBytes": 0, + "Lines": 2778, + "Code": 2526, + "Comment": 118, + "Blank": 134, + "Complexity": 0, + "Count": 64, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go Template", + "Bytes": 49802, + "CodeBytes": 0, + "Lines": 1310, + "Code": 1076, + "Comment": 0, + "Blank": 234, + "Complexity": 78, + "Count": 47, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 23987, + "CodeBytes": 0, + "Lines": 704, + "Code": 444, + "Comment": 132, + "Blank": 128, + "Complexity": 54, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 83222, + "CodeBytes": 0, + "Lines": 2596, + "Code": 1776, + "Comment": 314, + "Blank": 506, + "Complexity": 46, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 411412, + "CodeBytes": 0, + "Lines": 12258, + "Code": 12258, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 20022, + "CodeBytes": 0, + "Lines": 581, + "Code": 370, + "Comment": 106, + "Blank": 105, + "Complexity": 44, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 4976, + "CodeBytes": 0, + "Lines": 173, + "Code": 144, + "Comment": 11, + "Blank": 18, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 95, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 171, + "CodeBytes": 0, + "Lines": 16, + "Code": 8, + "Comment": 4, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1038, + "CodeBytes": 0, + "Lines": 43, + "Code": 29, + "Comment": 0, + "Blank": 14, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "GraphQL", + "Bytes": 75880, + "CodeBytes": 0, + "Lines": 3083, + "Code": 1983, + "Comment": 828, + "Blank": 272, + "Complexity": 233, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1586, + "CodeBytes": 0, + "Lines": 42, + "Code": 25, + "Comment": 15, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 13726, + "CodeBytes": 0, + "Lines": 495, + "Code": 454, + "Comment": 16, + "Blank": 25, + "Complexity": 17, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 9316329.248131683, + "estimatedScheduleMonths_low": 33.26134879984582, + "estimatedPeople_low": 27.28691763560091, + "estimatedCost_high": 29033750.888086792, + "estimatedScheduleMonths_high": 33.26134879984582, + "estimatedPeople_high": 27.28691763560091, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 942 110440 9872 5794 94774 7288\n(ULOC) 47714\n-------------------------------------------------------------------------------\nGo 733 198744 24777 13872 160095 26403\n(ULOC) 55211\n-------------------------------------------------------------------------------\nSQL 278 3170 273 238 2659 9\n(ULOC) 1770\n-------------------------------------------------------------------------------\nSass 105 3705 518 106 3081 0\n(ULOC) 1792\n-------------------------------------------------------------------------------\nMarkdown 64 4344 1158 0 3186 0\n(ULOC) 2878\n-------------------------------------------------------------------------------\nYAML 64 2778 134 118 2526 0\n(ULOC) 1308\n-------------------------------------------------------------------------------\nGo Template 47 1310 234 0 1076 78\n(ULOC) 409\n-------------------------------------------------------------------------------\nBASH 22 704 128 132 444 54\n(ULOC) 463\n-------------------------------------------------------------------------------\nJavaScript 21 2596 506 314 1776 46\n(ULOC) 1286\n-------------------------------------------------------------------------------\nJSON 18 12258 0 0 12258 0\n(ULOC) 2771\n-------------------------------------------------------------------------------\nShell 11 581 105 106 370 44\n(ULOC) 347\n-------------------------------------------------------------------------------\nTypeScript Typings 4 173 18 11 144 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nPlain Text 2 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nDocker ignore 1 16 4 4 8 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nDockerfile 1 43 14 0 29 2\n(ULOC) 29\n-------------------------------------------------------------------------------\nGraphQL 1 3083 272 828 1983 233\n(ULOC) 1492\n-------------------------------------------------------------------------------\nHTML 1 42 2 15 25 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nRuby 1 495 25 16 454 17\n(ULOC) 332\n───────────────────────────────────────────────────────────────────────────────\nTotal 2317 344686 38072 21554 285060 34174\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 116393\nDRYness % 0.34\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $10,215,942\nEstimated Schedule Effort (organic) 33.26 months\nEstimated People Required (organic) 27.29\n───────────────────────────────────────────────────────────────────────────────\nProcessed 11254942 bytes, 11.255 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 3631373, + "Go": 2157311, + "JavaScript": 83222, + "SCSS": 75343, + "Shell": 44009, + "Ruby": 13726, + "PLpgSQL": 2631, + "HTML": 1586, + "Dockerfile": 1038 + }, + "average_issue_resolution_time": [ + [ + "easi-app", + "00:00:04" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@apollo/client", + -0.0739726027, + "2024-10-16T10:04:15.000" + ], + [ + "@apollo/client", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@apollo/client", + 0.2136986301, + "2024-07-01T00:36:18.000" + ], + [ + "@apollo/react-testing", + 0, + "2024-07-01T00:36:18.000" + ], + [ + "@babel/core", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@babel/plugin-syntax-class-properties", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@babel/preset-env", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@craco/craco", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "@cypress/code-coverage", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@cypress/webpack-preprocessor", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@cypress/webpack-preprocessor", + 2.1780821918, + "2023-09-14T09:02:31.000" + ], + [ + "@graphql-codegen/cli", + -0.1260273973, + "2025-01-01T18:35:34.000" + ], + [ + "@graphql-codegen/cli", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "@graphql-codegen/client-preset", + -0.095890411, + "2025-01-01T18:35:34.000" + ], + [ + "@graphql-codegen/client-preset", + -0.0246575342, + "2024-10-16T10:04:15.000" + ], + [ + "@graphql-codegen/typed-document-node", + 0.2657534247, + "2024-10-16T10:04:15.000" + ], + [ + "@graphql-codegen/typed-document-node", + 0.3917808219, + "2025-01-01T18:35:34.000" + ], + [ + "@graphql-codegen/typescript-react-apollo", + -0.3123287671, + "2025-01-01T18:35:34.000" + ], + [ + "@graphql-codegen/typescript-react-apollo", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "@hookform/error-message", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@hookform/resolvers", + 0.8712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@hookform/resolvers", + 1.2219178082, + "2024-04-10T03:36:47.000" + ], + [ + "@hookform/resolvers", + 1.6438356164, + "2024-07-01T00:36:18.000" + ], + [ + "@hookform/resolvers", + 1.7260273973, + "2024-10-16T10:04:15.000" + ], + [ + "@hookform/resolvers", + 2.0410958904, + "2025-01-01T18:35:34.000" + ], + [ + "@okta/okta-auth-js", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@okta/okta-auth-js", + 0.9342465753, + "2023-09-14T09:02:31.000" + ], + [ + "@okta/okta-auth-js", + 1.3452054795, + "2024-04-10T03:36:47.000" + ], + [ + "@okta/okta-auth-js", + 1.6657534247, + "2024-07-01T00:36:18.000" + ], + [ + "@okta/okta-react", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@okta/okta-signin-widget", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@okta/okta-signin-widget", + 0.6273972603, + "2024-04-10T03:36:47.000" + ], + [ + "@okta/okta-signin-widget", + 0.8630136986, + "2023-09-14T09:02:31.000" + ], + [ + "@storybook/addon-actions", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@storybook/addon-actions", + 0.4712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@storybook/addon-controls", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@storybook/addon-controls", + 0.4712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@storybook/addon-essentials", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@storybook/addon-essentials", + 0.4712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@storybook/addon-links", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@storybook/addon-links", + 0.4712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@storybook/node-logger", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@storybook/node-logger", + 0.4712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@storybook/react", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@storybook/react", + 0.4712328767, + "2023-09-14T09:02:31.000" + ], + [ + "@testing-library/jest-dom", + 0.1342465753, + "2023-09-14T09:02:31.000" + ], + [ + "@testing-library/jest-dom", + 0.5534246575, + "2024-04-10T03:36:47.000" + ], + [ + "@testing-library/jest-dom", + 0.898630137, + "2024-07-01T00:36:18.000" + ], + [ + "@testing-library/jest-dom", + 1.101369863, + "2024-10-16T10:04:15.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2025-01-01T18:35:34.000" + ], + [ + "@testing-library/react", + 1.6931506849, + "2023-09-14T09:02:31.000" + ], + [ + "@testing-library/react", + 2.8356164384, + "2024-04-10T03:36:47.000" + ], + [ + "@testing-library/react", + 2.9890410959, + "2024-07-01T00:36:18.000" + ], + [ + "@testing-library/react", + 3.2246575342, + "2024-10-16T10:04:15.000" + ], + [ + "@testing-library/react", + 3.495890411, + "2025-01-01T18:35:34.000" + ], + [ + "@testing-library/user-event", + 0.8054794521, + "2023-09-14T09:02:31.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2025-01-01T18:35:34.000" + ], + [ + "@toast-ui/react-editor", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@trussworks/react-uswds", + 1.402739726, + "2023-09-14T09:02:31.000" + ], + [ + "@trussworks/react-uswds", + 1.9178082192, + "2025-01-01T18:35:34.000" + ], + [ + "@trussworks/react-uswds", + 1.9369863014, + "2024-07-01T00:36:18.000" + ], + [ + "@trussworks/react-uswds", + 2.3726027397, + "2024-10-16T10:04:15.000" + ], + [ + "@types/apollo-upload-client", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "@types/apollo-upload-client", + 0.1452054795, + "2025-01-01T18:35:34.000" + ], + [ + "@types/dompurify", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/enzyme", + 1.7753424658, + "2023-09-14T09:02:31.000" + ], + [ + "@types/enzyme", + 2.4136986301, + "2024-10-16T10:04:15.000" + ], + [ + "@types/jest", + 2.3232876712, + "2023-09-14T09:02:31.000" + ], + [ + "@types/jest", + 2.7698630137, + "2024-07-01T00:36:18.000" + ], + [ + "@types/jest", + 3.3835616438, + "2024-10-16T10:04:15.000" + ], + [ + "@types/jest", + 3.4931506849, + "2025-01-01T18:35:34.000" + ], + [ + "@types/lodash", + 0, + "2024-07-01T00:36:18.000" + ], + [ + "@types/lodash", + 0.0246575342, + "2024-10-16T10:04:15.000" + ], + [ + "@types/lodash", + 0.098630137, + "2025-01-01T18:35:34.000" + ], + [ + "@types/luxon", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/no-scroll", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/node", + 2.2, + "2023-09-14T09:02:31.000" + ], + [ + "@types/node", + 2.7863013699, + "2024-04-10T03:36:47.000" + ], + [ + "@types/node", + 2.997260274, + "2024-07-01T00:36:18.000" + ], + [ + "@types/node", + 3.2821917808, + "2024-10-16T10:04:15.000" + ], + [ + "@types/node", + 3.5150684932, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react", + 2.202739726, + "2023-09-14T09:02:31.000" + ], + [ + "@types/react", + 2.8328767123, + "2024-04-10T03:36:47.000" + ], + [ + "@types/react", + 2.9561643836, + "2024-07-01T00:36:18.000" + ], + [ + "@types/react", + 3.3178082192, + "2024-10-16T10:04:15.000" + ], + [ + "@types/react", + 3.5287671233, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-autosuggest", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "@types/react-autosuggest", + 0.1397260274, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-csv", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-csv", + 0.0547945205, + "2024-04-10T03:36:47.000" + ], + [ + "@types/react-dom", + 2.0657534247, + "2023-09-14T09:02:31.000" + ], + [ + "@types/react-dom", + 2.7945205479, + "2024-04-10T03:36:47.000" + ], + [ + "@types/react-dom", + 2.8547945205, + "2024-07-01T00:36:18.000" + ], + [ + "@types/react-dom", + 3.3178082192, + "2024-10-16T10:04:15.000" + ], + [ + "@types/react-dom", + 3.4794520548, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-modal", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-redux", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-router-dom", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-router-hash-link", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-table", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/react-test-renderer", + -0.002739726, + "2024-04-10T03:36:47.000" + ], + [ + "@types/react-test-renderer", + 0.4246575342, + "2024-10-16T10:04:15.000" + ], + [ + "@types/react-test-renderer", + 1.0383561644, + "2025-01-01T18:35:34.000" + ], + [ + "@types/redux-mock-store", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/redux-saga-routines", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/text-encoding", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@types/uuid", + 1.6465753425, + "2023-09-14T09:02:31.000" + ], + [ + "@types/uuid", + 2.0520547945, + "2024-04-10T03:36:47.000" + ], + [ + "@types/uuid", + 2.4547945205, + "2025-01-01T18:35:34.000" + ], + [ + "@types/yup", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@uswds/uswds", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "@uswds/uswds", + 0.2054794521, + "2025-01-01T18:35:34.000" + ], + [ + "@vitejs/plugin-react", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "@vitest/coverage-v8", + 0.0383561644, + "2025-01-01T18:35:34.000" + ], + [ + "@vitest/coverage-v8", + 0.4602739726, + "2024-04-10T03:36:47.000" + ], + [ + "@vitest/coverage-v8", + 0.5945205479, + "2024-07-01T00:36:18.000" + ], + [ + "@vitest/coverage-v8", + 1.0438356164, + "2024-10-16T10:04:15.000" + ], + [ + "@wojtekmaj/enzyme-adapter-react-17", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "apollo", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "apollo-upload-client", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "apollo-upload-client", + 1.8767123288, + "2025-01-01T18:35:34.000" + ], + [ + "autoprefixer", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "axios", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "axios", + 1.3315068493, + "2023-09-14T09:02:31.000" + ], + [ + "babel-loader", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "babel-loader", + 3.295890411, + "2023-09-14T09:02:31.000" + ], + [ + "classnames", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "cross-fetch", + -0.002739726, + "2025-01-01T18:35:34.000" + ], + [ + "cross-fetch", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "cypress", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "cypress", + 0.1123287671, + "2024-07-01T00:36:18.000" + ], + [ + "cypress", + 0.4575342466, + "2023-09-14T09:02:31.000" + ], + [ + "cypress-file-upload", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "cypress-otp", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "detect-browser", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "dompurify", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "enzyme", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "eslint", + 0.2410958904, + "2025-01-01T18:35:34.000" + ], + [ + "eslint", + 2.1068493151, + "2023-09-14T09:02:31.000" + ], + [ + "eslint", + 2.6821917808, + "2024-04-10T03:36:47.000" + ], + [ + "eslint", + 2.9123287671, + "2024-07-01T00:36:18.000" + ], + [ + "eslint", + 3.1808219178, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-config-airbnb", + 1.1315068493, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-config-prettier", + 0.0054794521, + "2023-09-14T09:02:31.000" + ], + [ + "eslint-config-prettier", + 0.3315068493, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-config-react-app", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-plugin-cypress", + 0, + "2024-04-10T03:36:47.000" + ], + [ + "eslint-plugin-cypress", + 0.0520547945, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-plugin-cypress", + 0.1178082192, + "2024-07-01T00:36:18.000" + ], + [ + "eslint-plugin-cypress", + 0.4876712329, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-plugin-import", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0, + "2024-07-01T00:36:18.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.2054794521, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-plugin-prettier", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-plugin-prettier", + 1.8876712329, + "2023-09-14T09:02:31.000" + ], + [ + "eslint-plugin-prettier", + 2.3890410959, + "2024-07-01T00:36:18.000" + ], + [ + "eslint-plugin-prettier", + 2.9068493151, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-plugin-react", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-plugin-react-hooks", + -0.2082191781, + "2024-04-10T03:36:47.000" + ], + [ + "eslint-plugin-react-hooks", + 0, + "2024-07-01T00:36:18.000" + ], + [ + "eslint-plugin-react-hooks", + 0.4575342466, + "2024-10-16T10:04:15.000" + ], + [ + "eslint-plugin-react-hooks", + 0.6109589041, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-plugin-simple-import-sort", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "eslint-plugin-simple-import-sort", + 2.1369863014, + "2023-09-14T09:02:31.000" + ], + [ + "eslint-plugin-simple-import-sort", + 3.1726027397, + "2024-04-10T03:36:47.000" + ], + [ + "eslint-plugin-simple-import-sort", + 3.3452054795, + "2024-07-01T00:36:18.000" + ], + [ + "eslint-plugin-simple-import-sort", + 3.5643835616, + "2024-10-16T10:04:15.000" + ], + [ + "font-awesome", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "formik", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "graphql-schema-linter", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "i18next", + 2.498630137, + "2023-09-14T09:02:31.000" + ], + [ + "i18next", + 3.0876712329, + "2024-04-10T03:36:47.000" + ], + [ + "i18next", + 3.2, + "2024-07-01T00:36:18.000" + ], + [ + "i18next", + 3.6, + "2024-10-16T10:04:15.000" + ], + [ + "i18next", + 3.7835616438, + "2025-01-01T18:35:34.000" + ], + [ + "i18next-browser-languagedetector", + 2.8904109589, + "2023-09-14T09:02:31.000" + ], + [ + "i18next-browser-languagedetector", + 3.6493150685, + "2024-04-10T03:36:47.000" + ], + [ + "i18next-browser-languagedetector", + 3.7671232877, + "2024-10-16T10:04:15.000" + ], + [ + "i18next-browser-languagedetector", + 4.3452054795, + "2025-01-01T18:35:34.000" + ], + [ + "istanbul-lib-coverage", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "jest-canvas-mock", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "jest-launchdarkly-mock", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "js-base64", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "jsdom", + 0.6547945205, + "2024-04-10T03:36:47.000" + ], + [ + "jsdom", + 0.997260274, + "2024-07-01T00:36:18.000" + ], + [ + "jsdom", + 1.3232876712, + "2025-01-01T18:35:34.000" + ], + [ + "launchdarkly-react-client-sdk", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "lodash", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "luxon", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "markdown-spellcheck", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "md5", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "no-scroll", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "nyc", + 0, + "2024-04-10T03:36:47.000" + ], + [ + "nyc", + 4.0246575342, + "2024-07-01T00:36:18.000" + ], + [ + "nyc", + 4.304109589, + "2025-01-01T18:35:34.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "prettier", + 0.3506849315, + "2023-09-14T09:02:31.000" + ], + [ + "prettier", + 0.7835616438, + "2024-04-10T03:36:47.000" + ], + [ + "prettier", + 1.1342465753, + "2024-07-01T00:36:18.000" + ], + [ + "prettier", + 1.2246575342, + "2024-10-16T10:04:15.000" + ], + [ + "react", + 1.2273972603, + "2024-04-10T03:36:47.000" + ], + [ + "react", + 3.095890411, + "2024-10-16T10:04:15.000" + ], + [ + "react", + 3.7068493151, + "2025-01-01T18:35:34.000" + ], + [ + "react-autosuggest", + 2.0109589041, + "2025-01-01T18:35:34.000" + ], + [ + "react-csv", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-dom", + 1.2273972603, + "2024-04-10T03:36:47.000" + ], + [ + "react-dom", + 3.095890411, + "2024-10-16T10:04:15.000" + ], + [ + "react-dom", + 3.7068493151, + "2025-01-01T18:35:34.000" + ], + [ + "react-ga4", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-hook-form", + -0.0191780822, + "2025-01-01T18:35:34.000" + ], + [ + "react-hook-form", + 0, + "2024-10-16T10:04:15.000" + ], + [ + "react-i18next", + 2.2739726027, + "2023-09-14T09:02:31.000" + ], + [ + "react-i18next", + 2.7863013699, + "2024-04-10T03:36:47.000" + ], + [ + "react-i18next", + 2.9945205479, + "2024-07-01T00:36:18.000" + ], + [ + "react-i18next", + 3.3863013699, + "2024-10-16T10:04:15.000" + ], + [ + "react-i18next", + 3.602739726, + "2025-01-01T18:35:34.000" + ], + [ + "react-idle-timer", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-media", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-modal", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-redux", + 0.8465753425, + "2023-09-14T09:02:31.000" + ], + [ + "react-redux", + 1.304109589, + "2024-04-10T03:36:47.000" + ], + [ + "react-redux", + 1.6054794521, + "2024-10-16T10:04:15.000" + ], + [ + "react-redux", + 2.2164383562, + "2025-01-01T18:35:34.000" + ], + [ + "react-router-dom", + 0.9452054795, + "2023-09-14T09:02:31.000" + ], + [ + "react-router-dom", + 1.4273972603, + "2024-04-10T03:36:47.000" + ], + [ + "react-router-dom", + 1.7287671233, + "2024-07-01T00:36:18.000" + ], + [ + "react-router-dom", + 2.0273972603, + "2024-10-16T10:04:15.000" + ], + [ + "react-router-dom", + 2.2273972603, + "2025-01-01T18:35:34.000" + ], + [ + "react-router-hash-link", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-scripts", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "react-select", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-select-event", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-table", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "react-test-renderer", + 1.6657534247, + "2024-04-10T03:36:47.000" + ], + [ + "react-test-renderer", + 3.5315068493, + "2024-10-16T10:04:15.000" + ], + [ + "react-test-renderer", + 4.1424657534, + "2025-01-01T18:35:34.000" + ], + [ + "react-to-print", + 0, + "2024-07-01T00:36:18.000" + ], + [ + "react-to-print", + 0.6273972603, + "2024-10-16T10:04:15.000" + ], + [ + "react-to-print", + 0.8630136986, + "2025-01-01T18:35:34.000" + ], + [ + "redux", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "redux", + 0.898630137, + "2025-01-01T18:35:34.000" + ], + [ + "redux-actions", + 3.9452054795, + "2024-07-01T00:36:18.000" + ], + [ + "redux-actions", + 5.3835616438, + "2025-01-01T18:35:34.000" + ], + [ + "redux-devtools-extension", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "redux-mock-store", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "redux-saga", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "redux-saga-routines", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "regenerator-runtime", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "sass", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "sass-loader", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "sass-loader", + 0.1506849315, + "2024-04-10T03:36:47.000" + ], + [ + "sass-loader", + 0.3068493151, + "2024-07-01T00:36:18.000" + ], + [ + "sass-loader", + 0.7369863014, + "2024-10-16T10:04:15.000" + ], + [ + "sass-loader", + 0.9424657534, + "2025-01-01T18:35:34.000" + ], + [ + "sass-resources-loader", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "start-server-and-test", + 0, + "2023-09-14T09:02:31.000" + ], + [ + "start-server-and-test", + 0.7178082192, + "2024-04-10T03:36:47.000" + ], + [ + "text-encoding", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "ts-loader", + 3.0931506849, + "2023-09-14T09:02:31.000" + ], + [ + "ts-loader", + 3.4767123288, + "2025-01-01T18:35:34.000" + ], + [ + "typescript", + 0.5616438356, + "2023-09-14T09:02:31.000" + ], + [ + "typescript", + 1.1753424658, + "2024-04-10T03:36:47.000" + ], + [ + "typescript", + 1.3863013699, + "2024-07-01T00:36:18.000" + ], + [ + "typescript", + 1.6904109589, + "2024-10-16T10:04:15.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:35:34.000" + ], + [ + "uuid", + 2.7589041096, + "2024-04-10T03:36:47.000" + ], + [ + "uuid", + 3.501369863, + "2024-10-16T10:04:15.000" + ], + [ + "uuid", + 3.9260273973, + "2025-01-01T18:35:34.000" + ], + [ + "vite", + 0.0273972603, + "2024-04-10T03:36:47.000" + ], + [ + "vite", + 0.0739726027, + "2024-10-16T10:04:15.000" + ], + [ + "vite", + 0.197260274, + "2025-01-01T18:35:34.000" + ], + [ + "vite", + 0.2602739726, + "2024-07-01T00:36:18.000" + ], + [ + "vite-plugin-svgr", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "vite-plugin-svgr", + 0.1589041096, + "2024-10-16T10:04:15.000" + ], + [ + "vite-tsconfig-paths", + 0, + "2024-07-01T00:36:18.000" + ], + [ + "vite-tsconfig-paths", + 0.402739726, + "2024-10-16T10:04:15.000" + ], + [ + "vite-tsconfig-paths", + 0.7315068493, + "2025-01-01T18:35:34.000" + ], + [ + "vitest", + 0.0383561644, + "2025-01-01T18:35:34.000" + ], + [ + "vitest", + 0.4602739726, + "2024-04-10T03:36:47.000" + ], + [ + "vitest", + 0.5945205479, + "2024-07-01T00:36:18.000" + ], + [ + "vitest", + 1.0438356164, + "2024-10-16T10:04:15.000" + ], + [ + "wait-on", + 1.7479452055, + "2023-09-14T09:02:31.000" + ], + [ + "wait-on", + 2.6602739726, + "2024-04-10T03:36:47.000" + ], + [ + "webpack", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "wildcard-mock-link", + 0, + "2025-01-01T18:35:34.000" + ], + [ + "yup", + 1.6136986301, + "2023-09-14T09:02:31.000" + ], + [ + "yup", + 2.397260274, + "2024-10-16T10:04:15.000" + ], + [ + "yup", + 3.1835616438, + "2025-01-01T18:35:34.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/easi-shared/easi-shared_data.json b/app/site/_data/CMSgov/easi-shared/easi-shared_data.json index 1fc533d36f..08578b24dc 100644 --- a/app/site/_data/CMSgov/easi-shared/easi-shared_data.json +++ b/app/site/_data/CMSgov/easi-shared/easi-shared_data.json @@ -1,445 +1,445 @@ { - "url": "https://github.com/CMSgov/easi-shared", - "owner": "CMSgov", - "name": "easi-shared", - "description": null, - "commits_count": 29, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 39, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 12, - "closed_pull_requests_count": 21, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 6, - "total_project_lines": 810, - "average_project_lines": 39, - "total_project_comment_lines": 39, - "average_project_comment_lines": 2, - "total_project_blank_lines": 101, - "average_blank_lines": 5, - "commits_by_month": { - "2024/3": 2, - "2024/1": 4, - "2023/8": 2, - "2022/12": 2, - "2022/9": 4, - "2022/7": 15 + "url": "https://github.com/CMSgov/easi-shared", + "owner": "CMSgov", + "name": "easi-shared", + "description": null, + "commits_count": 29, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 39, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 12, + "closed_pull_requests_count": 21, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 6, + "total_project_lines": 810, + "average_project_lines": 39, + "total_project_comment_lines": 39, + "average_project_comment_lines": 2, + "total_project_blank_lines": 101, + "average_blank_lines": 5, + "commits_by_month": { + "2024/3": 2, + "2024/1": 4, + "2023/8": 2, + "2022/12": 2, + "2022/9": 4, + "2022/7": 15 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-06-29T17:02:19Z", + "ossf_scorecard": { + "date": "2025-01-11T01:05:10Z", + "repo": { + "name": "github.com/CMSgov/easi-shared", + "commit": "b56c5f5d0e5f336f38bb06d0950259382a100a10" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-06-29T17:02:19Z", - "ossf_scorecard": { - "date": "2025-01-11T01:05:10Z", - "repo": { - "name": "github.com/CMSgov/easi-shared", - "commit": "b56c5f5d0e5f336f38bb06d0950259382a100a10" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 12 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 9/18 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 6, - "reason": "4 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 2991, - "CodeBytes": 0, - "Lines": 119, - "Code": 104, - "Comment": 4, - "Blank": 11, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 9245, - "CodeBytes": 0, - "Lines": 330, - "Code": 248, - "Comment": 28, - "Blank": 54, - "Complexity": 28, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 2438, - "CodeBytes": 0, - "Lines": 101, - "Code": 86, - "Comment": 5, - "Blank": 10, - "Complexity": 16, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 12630, - "CodeBytes": 0, - "Lines": 157, - "Code": 148, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 862, - "CodeBytes": 0, - "Lines": 32, - "Code": 22, - "Comment": 0, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 881, - "CodeBytes": 0, - "Lines": 39, - "Code": 37, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 606, - "CodeBytes": 0, - "Lines": 29, - "Code": 24, - "Comment": 1, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 30, - "CodeBytes": 0, - "Lines": 3, - "Code": 1, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 16178.575371577093, - "estimatedScheduleMonths_low": 2.9718311242887996, - "estimatedPeople_low": 0.5303537668036701, - "estimatedCost_high": 50419.50692722728, - "estimatedScheduleMonths_high": 2.9718311242887996, - "estimatedPeople_high": 0.5303537668036701, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 7 119 11 4 104 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nGo 4 330 54 28 248 28\n(ULOC) 206\n-------------------------------------------------------------------------------\nTypeScript 3 101 10 5 86 16\n(ULOC) 85\n-------------------------------------------------------------------------------\nJSON 2 157 9 0 148 0\n(ULOC) 144\n-------------------------------------------------------------------------------\nMarkdown 2 32 10 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nJavaScript 1 39 2 0 37 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nSass 1 29 4 1 24 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 3 1 1 1 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 21 810 101 39 670 44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 586\nDRYness % 0.72\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $17,740\nEstimated Schedule Effort (organic) 2.97 months\nEstimated People Required (organic) 0.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 29683 bytes, 0.030 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Go": 9245, - "TypeScript": 2438, - "JavaScript": 881, - "SCSS": 606, - "Shell": 30 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@rollup/plugin-commonjs", - 2.3643835616, - "2025-01-01T18:37:34.000" - ], - [ - "@rollup/plugin-node-resolve", - 2.2602739726, - "2025-01-01T18:37:34.000" - ], - [ - "@rollup/plugin-typescript", - 2.2767123288, - "2025-01-01T18:37:34.000" - ], - [ - "@trussworks/react-uswds", - 2.3726027397, - "2025-01-01T18:37:34.000" - ], - [ - "@types/react", - -0.0054794521, - "2025-01-01T18:37:34.000" - ], - [ - "classnames", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "postcss", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "react", - 3.7068493151, - "2025-01-01T18:37:34.000" - ], - [ - "rollup", - 0.2328767123, - "2025-01-01T18:37:34.000" - ], - [ - "rollup-plugin-dts", - 1.6082191781, - "2025-01-01T18:37:34.000" - ], - [ - "rollup-plugin-postcss", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "sass", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "tslib", - 0.0, - "2025-01-01T18:37:34.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:37:34.000" - ] + "score": 4.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 12 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 9/18 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 6, + "reason": "4 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 2991, + "CodeBytes": 0, + "Lines": 119, + "Code": 104, + "Comment": 4, + "Blank": 11, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 9245, + "CodeBytes": 0, + "Lines": 330, + "Code": 248, + "Comment": 28, + "Blank": 54, + "Complexity": 28, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 2438, + "CodeBytes": 0, + "Lines": 101, + "Code": 86, + "Comment": 5, + "Blank": 10, + "Complexity": 16, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 12630, + "CodeBytes": 0, + "Lines": 157, + "Code": 148, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 862, + "CodeBytes": 0, + "Lines": 32, + "Code": 22, + "Comment": 0, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 881, + "CodeBytes": 0, + "Lines": 39, + "Code": 37, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 606, + "CodeBytes": 0, + "Lines": 29, + "Code": 24, + "Comment": 1, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 30, + "CodeBytes": 0, + "Lines": 3, + "Code": 1, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 16178.575371577093, + "estimatedScheduleMonths_low": 2.9718311242887996, + "estimatedPeople_low": 0.5303537668036701, + "estimatedCost_high": 50419.50692722728, + "estimatedScheduleMonths_high": 2.9718311242887996, + "estimatedPeople_high": 0.5303537668036701, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 7 119 11 4 104 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nGo 4 330 54 28 248 28\n(ULOC) 206\n-------------------------------------------------------------------------------\nTypeScript 3 101 10 5 86 16\n(ULOC) 85\n-------------------------------------------------------------------------------\nJSON 2 157 9 0 148 0\n(ULOC) 144\n-------------------------------------------------------------------------------\nMarkdown 2 32 10 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nJavaScript 1 39 2 0 37 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nSass 1 29 4 1 24 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 3 1 1 1 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 21 810 101 39 670 44\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 586\nDRYness % 0.72\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $17,740\nEstimated Schedule Effort (organic) 2.97 months\nEstimated People Required (organic) 0.53\n───────────────────────────────────────────────────────────────────────────────\nProcessed 29683 bytes, 0.030 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 9245, + "TypeScript": 2438, + "JavaScript": 881, + "SCSS": 606, + "Shell": 30 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@rollup/plugin-commonjs", + 2.3643835616, + "2025-01-01T18:37:34.000" + ], + [ + "@rollup/plugin-node-resolve", + 2.2602739726, + "2025-01-01T18:37:34.000" + ], + [ + "@rollup/plugin-typescript", + 2.2767123288, + "2025-01-01T18:37:34.000" + ], + [ + "@trussworks/react-uswds", + 2.3726027397, + "2025-01-01T18:37:34.000" + ], + [ + "@types/react", + -0.0054794521, + "2025-01-01T18:37:34.000" + ], + [ + "classnames", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "postcss", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "react", + 3.7068493151, + "2025-01-01T18:37:34.000" + ], + [ + "rollup", + 0.2328767123, + "2025-01-01T18:37:34.000" + ], + [ + "rollup-plugin-dts", + 1.6082191781, + "2025-01-01T18:37:34.000" + ], + [ + "rollup-plugin-postcss", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "sass", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "tslib", + 0, + "2025-01-01T18:37:34.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:37:34.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/ec2ssm/ec2ssm_data.json b/app/site/_data/CMSgov/ec2ssm/ec2ssm_data.json index 2fddbd7d28..3f51a3a98e 100644 --- a/app/site/_data/CMSgov/ec2ssm/ec2ssm_data.json +++ b/app/site/_data/CMSgov/ec2ssm/ec2ssm_data.json @@ -1,290 +1,290 @@ { - "url": "https://github.com/CMSgov/ec2ssm", - "owner": "CMSgov", - "name": "ec2ssm", - "description": "Connect to instances using SSM session manager. As an alternative to SSH", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 12, - "total_project_lines": 171, - "average_project_lines": 57, - "total_project_comment_lines": 2, - "average_project_comment_lines": 1, - "total_project_blank_lines": 28, - "average_blank_lines": 9, - "commits_by_month": { - "2023/9": 3 + "url": "https://github.com/CMSgov/ec2ssm", + "owner": "CMSgov", + "name": "ec2ssm", + "description": "Connect to instances using SSM session manager. As an alternative to SSH", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 12, + "total_project_lines": 171, + "average_project_lines": 57, + "total_project_comment_lines": 2, + "average_project_comment_lines": 1, + "total_project_blank_lines": 28, + "average_blank_lines": 9, + "commits_by_month": { + "2023/9": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2023-09-12T19:48:30Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:14Z", + "repo": { + "name": "github.com/CMSgov/ec2ssm", + "commit": "296fccfa879dcdc737379a3eeaa7a9e0bc723a89" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2023-09-12T19:48:30Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:14Z", - "repo": { - "name": "github.com/CMSgov/ec2ssm", - "commit": "296fccfa879dcdc737379a3eeaa7a9e0bc723a89" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Go", - "Bytes": 2566, - "CodeBytes": 0, - "Lines": 110, - "Code": 93, - "Comment": 2, - "Blank": 15, - "Complexity": 13, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1097, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1344, - "CodeBytes": 0, - "Lines": 40, - "Code": 31, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3149.5013726738352, - "estimatedScheduleMonths_low": 1.5957274152892587, - "estimatedPeople_low": 0.19227933149368265, - "estimatedCost_high": 9815.221836887902, - "estimatedScheduleMonths_high": 1.5957274152892587, - "estimatedPeople_high": 0.19227933149368265, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGo 1 110 15 2 93 13\n(ULOC) 82\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMarkdown 1 40 9 0 31 0\n(ULOC) 27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 3 171 28 2 141 13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 125\nDRYness % 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,453\nEstimated Schedule Effort (organic) 1.60 months\nEstimated People Required (organic) 0.19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5007 bytes, 0.005 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Go": 2566 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Go", + "Bytes": 2566, + "CodeBytes": 0, + "Lines": 110, + "Code": 93, + "Comment": 2, + "Blank": 15, + "Complexity": 13, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1097, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1344, + "CodeBytes": 0, + "Lines": 40, + "Code": 31, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3149.5013726738352, + "estimatedScheduleMonths_low": 1.5957274152892587, + "estimatedPeople_low": 0.19227933149368265, + "estimatedCost_high": 9815.221836887902, + "estimatedScheduleMonths_high": 1.5957274152892587, + "estimatedPeople_high": 0.19227933149368265, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGo 1 110 15 2 93 13\n(ULOC) 82\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMarkdown 1 40 9 0 31 0\n(ULOC) 27\n───────────────────────────────────────────────────────────────────────────────\nTotal 3 171 28 2 141 13\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 125\nDRYness % 0.73\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,453\nEstimated Schedule Effort (organic) 1.60 months\nEstimated People Required (organic) 0.19\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5007 bytes, 0.005 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 2566 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/fr-notices/fr-notices_data.json b/app/site/_data/CMSgov/fr-notices/fr-notices_data.json index 94ea9846a2..de6b32ad6f 100644 --- a/app/site/_data/CMSgov/fr-notices/fr-notices_data.json +++ b/app/site/_data/CMSgov/fr-notices/fr-notices_data.json @@ -1,294 +1,294 @@ { - "url": "https://github.com/CMSgov/fr-notices", - "owner": "CMSgov", - "name": "fr-notices", - "description": "Collection of manual tweaks to make parsing Federal Register notices easier", - "commits_count": 331, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 3, - "total_project_lines": 190821, - "average_project_lines": 2074, - "total_project_comment_lines": 103, - "average_project_comment_lines": 1, - "total_project_blank_lines": 9144, - "average_blank_lines": 99, - "commits_by_month": { - "2018/4": 3, - "2017/5": 6, - "2017/4": 4, - "2017/3": 3, - "2016/10": 6, - "2016/7": 5, - "2016/5": 3 + "url": "https://github.com/CMSgov/fr-notices", + "owner": "CMSgov", + "name": "fr-notices", + "description": "Collection of manual tweaks to make parsing Federal Register notices easier", + "commits_count": 331, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 3, + "total_project_lines": 190821, + "average_project_lines": 2074, + "total_project_comment_lines": 103, + "average_project_comment_lines": 1, + "total_project_blank_lines": 9144, + "average_blank_lines": 99, + "commits_by_month": { + "2018/4": 3, + "2017/5": 6, + "2017/4": 4, + "2017/3": 3, + "2016/10": 6, + "2016/7": 5, + "2016/5": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-10-07T16:16:30Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:25Z", + "repo": { + "name": "github.com/CMSgov/fr-notices", + "commit": "ad8f9909b12e6d14c973eb0a34bf180fbe9fcd8c" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-10-07T16:16:30Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:25Z", - "repo": { - "name": "github.com/CMSgov/fr-notices", - "commit": "ad8f9909b12e6d14c973eb0a34bf180fbe9fcd8c" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 17 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "XML", - "Bytes": 36639939, - "CodeBytes": 0, - "Lines": 190578, - "Code": 181382, - "Comment": 103, - "Blank": 9093, - "Complexity": 0, - "Count": 88, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4886, - "CodeBytes": 0, - "Lines": 122, - "Code": 83, - "Comment": 0, - "Blank": 39, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 5801871.125015355, - "estimatedScheduleMonths_low": 27.783227253996927, - "estimatedPeople_low": 20.343931951909305, - "estimatedCost_high": 18081164.42023139, - "estimatedScheduleMonths_high": 27.783227253996927, - "estimatedPeople_high": 20.343931951909305, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nXML 88 190578 9093 103 181382 0\n(ULOC) 70978\n-------------------------------------------------------------------------------\nMarkdown 3 122 39 0 83 0\n(ULOC) 84\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 92 190821 9144 103 181574 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 71170\nDRYness % 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,362,117\nEstimated Schedule Effort (organic) 27.78 months\nEstimated People Required (organic) 20.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 36651873 bytes, 36.652 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 17 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "XML", + "Bytes": 36639939, + "CodeBytes": 0, + "Lines": 190578, + "Code": 181382, + "Comment": 103, + "Blank": 9093, + "Complexity": 0, + "Count": 88, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4886, + "CodeBytes": 0, + "Lines": 122, + "Code": 83, + "Comment": 0, + "Blank": 39, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 5801871.125015355, + "estimatedScheduleMonths_low": 27.783227253996927, + "estimatedPeople_low": 20.343931951909305, + "estimatedCost_high": 18081164.42023139, + "estimatedScheduleMonths_high": 27.783227253996927, + "estimatedPeople_high": 20.343931951909305, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nXML 88 190578 9093 103 181382 0\n(ULOC) 70978\n-------------------------------------------------------------------------------\nMarkdown 3 122 39 0 83 0\n(ULOC) 84\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 92 190821 9144 103 181574 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 71170\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $6,362,117\nEstimated Schedule Effort (organic) 27.78 months\nEstimated People Required (organic) 20.34\n───────────────────────────────────────────────────────────────────────────────\nProcessed 36651873 bytes, 36.652 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/hospital-price-transparency/hospital-price-transparency_data.json b/app/site/_data/CMSgov/hospital-price-transparency/hospital-price-transparency_data.json index b72b55511d..e51ac34a54 100644 --- a/app/site/_data/CMSgov/hospital-price-transparency/hospital-price-transparency_data.json +++ b/app/site/_data/CMSgov/hospital-price-transparency/hospital-price-transparency_data.json @@ -1,297 +1,297 @@ { - "url": "https://github.com/CMSgov/hospital-price-transparency", - "owner": "CMSgov", - "name": "hospital-price-transparency", - "description": null, - "commits_count": 114, - "issues_count": 3, - "open_issues_count": 0, - "closed_issues_count": 3, - "pull_requests_count": 33, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 32, - "closed_pull_requests_count": 1, - "forks_count": 6, - "stargazers_count": 68, - "watchers_count": 100, - "total_project_lines": 2386, - "average_project_lines": 140, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 113, - "average_blank_lines": 7, - "commits_by_month": { - "2024/8": 1, - "2024/6": 10, - "2024/5": 6, - "2024/4": 10, - "2024/3": 3 + "url": "https://github.com/CMSgov/hospital-price-transparency", + "owner": "CMSgov", + "name": "hospital-price-transparency", + "description": null, + "commits_count": 114, + "issues_count": 3, + "open_issues_count": 0, + "closed_issues_count": 3, + "pull_requests_count": 33, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 32, + "closed_pull_requests_count": 1, + "forks_count": 6, + "stargazers_count": 68, + "watchers_count": 100, + "total_project_lines": 2386, + "average_project_lines": 140, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 113, + "average_blank_lines": 7, + "commits_by_month": { + "2024/8": 1, + "2024/6": 10, + "2024/5": 6, + "2024/4": 10, + "2024/3": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-01T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "created_at": "2022-10-31T18:26:51Z", + "ossf_scorecard": { + "date": "2025-01-11T00:34:36Z", + "repo": { + "name": "github.com/CMSgov/hospital-price-transparency", + "commit": "f6278debb1f649682de7b7cfca91d567527b4c22" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-01T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "created_at": "2022-10-31T18:26:51Z", - "ossf_scorecard": { - "date": "2025-01-11T00:34:36Z", - "repo": { - "name": "github.com/CMSgov/hospital-price-transparency", - "commit": "f6278debb1f649682de7b7cfca91d567527b4c22" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 7 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/8 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 93779, - "CodeBytes": 0, - "Lines": 602, - "Code": 489, - "Comment": 0, - "Blank": 113, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 15026, - "CodeBytes": 0, - "Lines": 63, - "Code": 63, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 44080, - "CodeBytes": 0, - "Lines": 1721, - "Code": 1721, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 58343.32031879614, - "estimatedScheduleMonths_low": 4.838418782264512, - "estimatedPeople_low": 1.17472765763647, - "estimatedCost_high": 181823.26783475187, - "estimatedScheduleMonths_high": 4.838418782264512, - "estimatedPeople_high": 1.17472765763647, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 9 602 113 0 489 0\n(ULOC) 446\n-------------------------------------------------------------------------------\nCSV 4 63 0 0 63 0\n(ULOC) 64\n-------------------------------------------------------------------------------\nJSON 4 1721 0 0 1721 0\n(ULOC) 627\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 17 2386 113 0 2273 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1135\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $63,977\nEstimated Schedule Effort (organic) 4.84 months\nEstimated People Required (organic) 1.17\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 152885 bytes, 0.153 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "predominant_langs": {}, - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 7 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/8 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 93779, + "CodeBytes": 0, + "Lines": 602, + "Code": 489, + "Comment": 0, + "Blank": 113, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 15026, + "CodeBytes": 0, + "Lines": 63, + "Code": 63, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 44080, + "CodeBytes": 0, + "Lines": 1721, + "Code": 1721, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 58343.32031879614, + "estimatedScheduleMonths_low": 4.838418782264512, + "estimatedPeople_low": 1.17472765763647, + "estimatedCost_high": 181823.26783475187, + "estimatedScheduleMonths_high": 4.838418782264512, + "estimatedPeople_high": 1.17472765763647, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 9 602 113 0 489 0\n(ULOC) 446\n-------------------------------------------------------------------------------\nCSV 4 63 0 0 63 0\n(ULOC) 64\n-------------------------------------------------------------------------------\nJSON 4 1721 0 0 1721 0\n(ULOC) 627\n───────────────────────────────────────────────────────────────────────────────\nTotal 17 2386 113 0 2273 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1135\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $63,977\nEstimated Schedule Effort (organic) 4.84 months\nEstimated People Required (organic) 1.17\n───────────────────────────────────────────────────────────────────────────────\nProcessed 152885 bytes, 0.153 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/hpt-tool/hpt-tool_data.json b/app/site/_data/CMSgov/hpt-tool/hpt-tool_data.json index 0ee25fd8f4..98e5099240 100644 --- a/app/site/_data/CMSgov/hpt-tool/hpt-tool_data.json +++ b/app/site/_data/CMSgov/hpt-tool/hpt-tool_data.json @@ -1,533 +1,533 @@ { - "url": "https://github.com/CMSgov/hpt-tool", - "owner": "CMSgov", - "name": "hpt-tool", - "description": "Validator tool for CMS Hospital Price Transparency machine-readable files", - "commits_count": 151, - "issues_count": 4, - "open_issues_count": 0, - "closed_issues_count": 4, - "pull_requests_count": 49, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 40, - "closed_pull_requests_count": 8, - "forks_count": 5, - "stargazers_count": 15, - "watchers_count": 11, - "total_project_lines": 2467, - "average_project_lines": 80, - "total_project_comment_lines": 55, - "average_project_comment_lines": 2, - "total_project_blank_lines": 208, - "average_blank_lines": 7, - "commits_by_month": { - "2024/12": 1, - "2024/11": 8, - "2024/10": 2, - "2024/9": 5, - "2024/8": 2, - "2024/7": 5, - "2024/6": 7 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-19T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-31T00:00:00.000Z", - 2 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/hpt-tool", + "owner": "CMSgov", + "name": "hpt-tool", + "description": "Validator tool for CMS Hospital Price Transparency machine-readable files", + "commits_count": 151, + "issues_count": 4, + "open_issues_count": 0, + "closed_issues_count": 4, + "pull_requests_count": 49, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 40, + "closed_pull_requests_count": 8, + "forks_count": 5, + "stargazers_count": 15, + "watchers_count": 11, + "total_project_lines": 2467, + "average_project_lines": 80, + "total_project_comment_lines": 55, + "average_project_comment_lines": 2, + "total_project_blank_lines": 208, + "average_blank_lines": 7, + "commits_by_month": { + "2024/12": 1, + "2024/11": 8, + "2024/10": 2, + "2024/9": 5, + "2024/8": 2, + "2024/7": 5, + "2024/6": 7 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-19T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-31T00:00:00.000Z", + 2 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "created_at": "2023-04-27T14:28:36Z", - "ossf_scorecard": { - "date": "2025-01-11T00:36:57Z", - "repo": { - "name": "github.com/CMSgov/hpt-tool", - "commit": "f076eada18169e430c1648eb9eb830ae89fc325c" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 3, - "reason": "Found 6/16 approved changesets -- score normalized to 3", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 9, - "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 10, - "reason": "GitHub workflow tokens follow principle of least privilege", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSX", - "Bytes": 60720, - "CodeBytes": 0, - "Lines": 1753, - "Code": 1614, - "Comment": 51, - "Blank": 88, - "Complexity": 79, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 9297, - "CodeBytes": 0, - "Lines": 247, - "Code": 165, - "Comment": 0, - "Blank": 82, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 3446, - "CodeBytes": 0, - "Lines": 100, - "Code": 100, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1368, - "CodeBytes": 0, - "Lines": 59, - "Code": 54, - "Comment": 1, - "Blank": 4, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1254, - "CodeBytes": 0, - "Lines": 80, - "Code": 65, - "Comment": 2, - "Blank": 13, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1818, - "CodeBytes": 0, - "Lines": 60, - "Code": 60, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 6453, - "CodeBytes": 0, - "Lines": 84, - "Code": 80, - "Comment": 1, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1699, - "CodeBytes": 0, - "Lines": 84, - "Code": 66, - "Comment": 0, - "Blank": 18, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 56485.10018351619, - "estimatedScheduleMonths_low": 4.77927152706474, - "estimatedPeople_low": 1.1513880200399857, - "estimatedCost_high": 176032.24230677748, - "estimatedScheduleMonths_high": 4.77927152706474, - "estimatedPeople_high": 1.1513880200399857, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSX 13 1753 88 51 1614 79\n(ULOC) 1133\n-------------------------------------------------------------------------------\nMarkdown 6 247 82 0 165 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nHTML 4 100 0 0 100 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nJavaScript 4 59 4 1 54 0\n(ULOC) 50\n-------------------------------------------------------------------------------\nCSS 1 80 13 2 65 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nJSON 1 60 0 0 60 0\n(ULOC) 59\n-------------------------------------------------------------------------------\nSVG 1 84 3 1 80 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nYAML 1 84 18 0 66 0\n(ULOC) 50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 31 2467 208 55 2204 79\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1572\nDRYness % 0.64\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $61,939\nEstimated Schedule Effort (organic) 4.78 months\nEstimated People Required (organic) 1.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 86055 bytes, 0.086 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-06T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "created_at": "2023-04-27T14:28:36Z", + "ossf_scorecard": { + "date": "2025-01-11T00:36:57Z", + "repo": { + "name": "github.com/CMSgov/hpt-tool", + "commit": "f076eada18169e430c1648eb9eb830ae89fc325c" }, - "predominant_langs": { - "JavaScript": 62088, - "HTML": 3446, - "CSS": 1254 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "average_issue_resolution_time": [ - [ - "hpt-tool", - "77 days 20:16:14" - ] + "score": 7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 3, + "reason": "Found 6/16 approved changesets -- score normalized to 3", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 9, + "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 10, + "reason": "GitHub workflow tokens follow principle of least privilege", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSX", + "Bytes": 60720, + "CodeBytes": 0, + "Lines": 1753, + "Code": 1614, + "Comment": 51, + "Blank": 88, + "Complexity": 79, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 9297, + "CodeBytes": 0, + "Lines": 247, + "Code": 165, + "Comment": 0, + "Blank": 82, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 3446, + "CodeBytes": 0, + "Lines": 100, + "Code": 100, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1368, + "CodeBytes": 0, + "Lines": 59, + "Code": 54, + "Comment": 1, + "Blank": 4, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1254, + "CodeBytes": 0, + "Lines": 80, + "Code": 65, + "Comment": 2, + "Blank": 13, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1818, + "CodeBytes": 0, + "Lines": 60, + "Code": 60, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 6453, + "CodeBytes": 0, + "Lines": 84, + "Code": 80, + "Comment": 1, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1699, + "CodeBytes": 0, + "Lines": 84, + "Code": 66, + "Comment": 0, + "Blank": 18, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 56485.10018351619, + "estimatedScheduleMonths_low": 4.77927152706474, + "estimatedPeople_low": 1.1513880200399857, + "estimatedCost_high": 176032.24230677748, + "estimatedScheduleMonths_high": 4.77927152706474, + "estimatedPeople_high": 1.1513880200399857, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSX 13 1753 88 51 1614 79\n(ULOC) 1133\n-------------------------------------------------------------------------------\nMarkdown 6 247 82 0 165 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nHTML 4 100 0 0 100 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nJavaScript 4 59 4 1 54 0\n(ULOC) 50\n-------------------------------------------------------------------------------\nCSS 1 80 13 2 65 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nJSON 1 60 0 0 60 0\n(ULOC) 59\n-------------------------------------------------------------------------------\nSVG 1 84 3 1 80 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nYAML 1 84 18 0 66 0\n(ULOC) 50\n───────────────────────────────────────────────────────────────────────────────\nTotal 31 2467 208 55 2204 79\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1572\nDRYness % 0.64\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $61,939\nEstimated Schedule Effort (organic) 4.78 months\nEstimated People Required (organic) 1.15\n───────────────────────────────────────────────────────────────────────────────\nProcessed 86055 bytes, 0.086 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 62088, + "HTML": 3446, + "CSS": 1254 + }, + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "average_issue_resolution_time": [ + [ + "hpt-tool", + "77 days 20:16:14" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@babel/eslint-parser", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@babel/preset-env", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@babel/preset-react", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@rollup/plugin-babel", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@trussworks/react-uswds", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@types/papaparse", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "@uswds/uswds", + 0.2054794521, + "2025-01-03T07:14:42.000" + ], + [ + "@vitejs/plugin-react", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "buffer", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "classnames", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "clipboard", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "eslint", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "eslint-config-prettier", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "eslint-plugin-import", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "eslint-plugin-prettier", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "eslint-plugin-react", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "esm", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "hpt-validator", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "jsdom", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "prettier", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "prettier-eslint", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "prop-types", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "react", + 0.6109589041, + "2025-01-03T07:14:42.000" + ], + [ + "react-dom", + 0.6109589041, + "2025-01-03T07:14:42.000" + ], + [ + "validator", + 0, + "2025-01-03T07:14:42.000" + ], + [ + "vite", + 0.2191780822, + "2025-01-03T07:14:42.000" ], - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@babel/preset-env", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@babel/preset-react", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@rollup/plugin-babel", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@trussworks/react-uswds", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@types/papaparse", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "@uswds/uswds", - 0.2054794521, - "2025-01-03T07:14:42.000" - ], - [ - "@vitejs/plugin-react", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "buffer", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "classnames", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "clipboard", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "eslint", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "eslint-config-prettier", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "esm", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "hpt-validator", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "jsdom", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "prettier", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "prettier-eslint", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "prop-types", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "react", - 0.6109589041, - "2025-01-03T07:14:42.000" - ], - [ - "react-dom", - 0.6109589041, - "2025-01-03T07:14:42.000" - ], - [ - "validator", - 0.0, - "2025-01-03T07:14:42.000" - ], - [ - "vite", - 0.2191780822, - "2025-01-03T07:14:42.000" - ], - [ - "vitest", - 0.0383561644, - "2025-01-03T07:14:42.000" - ] + [ + "vitest", + 0.0383561644, + "2025-01-03T07:14:42.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/hpt-validator-cli/hpt-validator-cli_data.json b/app/site/_data/CMSgov/hpt-validator-cli/hpt-validator-cli_data.json index 9a4d21b650..ef71198b8b 100644 --- a/app/site/_data/CMSgov/hpt-validator-cli/hpt-validator-cli_data.json +++ b/app/site/_data/CMSgov/hpt-validator-cli/hpt-validator-cli_data.json @@ -1,430 +1,430 @@ { - "url": "https://github.com/CMSgov/hpt-validator-cli", - "owner": "CMSgov", - "name": "hpt-validator-cli", - "description": "CLI for validating CMS Hospital Price Transparency machine-readable files", - "commits_count": 57, - "issues_count": 6, - "open_issues_count": 1, - "closed_issues_count": 5, - "pull_requests_count": 23, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 16, - "closed_pull_requests_count": 7, - "forks_count": 4, - "stargazers_count": 5, - "watchers_count": 11, - "total_project_lines": 575, - "average_project_lines": 44, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 124, - "average_blank_lines": 10, - "commits_by_month": { - "2025/1": 2, - "2024/11": 6, - "2024/10": 7, - "2024/9": 3, - "2024/8": 2, - "2024/7": 2, - "2024/6": 4, - "2024/5": 2, - "2024/4": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-03T00:00:00.000Z", - 1 - ], - [ - "2024-10-03T00:00:00.000Z", - 1 - ], - [ - "2024-10-29T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/hpt-validator-cli", + "owner": "CMSgov", + "name": "hpt-validator-cli", + "description": "CLI for validating CMS Hospital Price Transparency machine-readable files", + "commits_count": 57, + "issues_count": 6, + "open_issues_count": 1, + "closed_issues_count": 5, + "pull_requests_count": 23, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 16, + "closed_pull_requests_count": 7, + "forks_count": 4, + "stargazers_count": 5, + "watchers_count": 11, + "total_project_lines": 575, + "average_project_lines": 44, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 124, + "average_blank_lines": 10, + "commits_by_month": { + "2025/1": 2, + "2024/11": 6, + "2024/10": 7, + "2024/9": 3, + "2024/8": 2, + "2024/7": 2, + "2024/6": 4, + "2024/5": 2, + "2024/4": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-06T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [ - [ - "2024-07-30T00:00:00.000Z", - 1 - ], - [ - "2024-08-02T00:00:00.000Z", - 1 - ], - [ - "2024-08-07T00:00:00.000Z", - 1 - ] + [ + "2024-09-03T00:00:00.000Z", + 1 ], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-04-27T14:29:33Z", - "ossf_scorecard": { - "date": "2025-01-11T00:39:01Z", - "repo": { - "name": "github.com/CMSgov/hpt-validator-cli", - "commit": "8f431b97c4bfae6f5769c47d0ffd04bd96cdf858" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 6/26 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "13 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 11068, - "CodeBytes": 0, - "Lines": 291, - "Code": 196, - "Comment": 0, - "Blank": 95, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1485, - "CodeBytes": 0, - "Lines": 52, - "Code": 52, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 3722, - "CodeBytes": 0, - "Lines": 152, - "Code": 135, - "Comment": 0, - "Blank": 17, - "Complexity": 32, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1032, - "CodeBytes": 0, - "Lines": 52, - "Code": 40, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 974, - "CodeBytes": 0, - "Lines": 41, - "Code": 39, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 10950.54686097646, - "estimatedScheduleMonths_low": 2.562196471484539, - "estimatedPeople_low": 0.41636372689541556, - "estimatedCost_high": 34126.68672199093, - "estimatedScheduleMonths_high": 2.562196471484539, - "estimatedPeople_high": 0.41636372689541556, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 6 291 95 0 196 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nJSON 2 52 0 0 52 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nTypeScript 2 152 17 0 135 32\n(ULOC) 111\n-------------------------------------------------------------------------------\nYAML 2 52 12 0 40 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nJavaScript 1 41 2 0 39 0\n(ULOC) 36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 13 588 126 0 462 32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 393\nDRYness % 0.67\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $12,007\nEstimated Schedule Effort (organic) 2.56 months\nEstimated People Required (organic) 0.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 18281 bytes, 0.018 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-10-03T00:00:00.000Z", + 1 + ], + [ + "2024-10-29T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [ + [ + "2024-07-30T00:00:00.000Z", + 1 + ], + [ + "2024-08-02T00:00:00.000Z", + 1 + ], + [ + "2024-08-07T00:00:00.000Z", + 1 + ] + ], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-04-27T14:29:33Z", + "ossf_scorecard": { + "date": "2025-01-11T00:39:01Z", + "repo": { + "name": "github.com/CMSgov/hpt-validator-cli", + "commit": "8f431b97c4bfae6f5769c47d0ffd04bd96cdf858" }, - "predominant_langs": { - "TypeScript": 2775, - "JavaScript": 1921 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "hpt-validator-cli", - "1 day 01:05:05.5" - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 6/26 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "13 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 11068, + "CodeBytes": 0, + "Lines": 291, + "Code": 196, + "Comment": 0, + "Blank": 95, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1485, + "CodeBytes": 0, + "Lines": 52, + "Code": 52, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 3722, + "CodeBytes": 0, + "Lines": 152, + "Code": 135, + "Comment": 0, + "Blank": 17, + "Complexity": 32, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1032, + "CodeBytes": 0, + "Lines": 52, + "Code": 40, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 974, + "CodeBytes": 0, + "Lines": 41, + "Code": 39, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 10950.54686097646, + "estimatedScheduleMonths_low": 2.562196471484539, + "estimatedPeople_low": 0.41636372689541556, + "estimatedCost_high": 34126.68672199093, + "estimatedScheduleMonths_high": 2.562196471484539, + "estimatedPeople_high": 0.41636372689541556, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 6 291 95 0 196 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nJSON 2 52 0 0 52 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nTypeScript 2 152 17 0 135 32\n(ULOC) 111\n-------------------------------------------------------------------------------\nYAML 2 52 12 0 40 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nJavaScript 1 41 2 0 39 0\n(ULOC) 36\n───────────────────────────────────────────────────────────────────────────────\nTotal 13 588 126 0 462 32\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 393\nDRYness % 0.67\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $12,007\nEstimated Schedule Effort (organic) 2.56 months\nEstimated People Required (organic) 0.42\n───────────────────────────────────────────────────────────────────────────────\nProcessed 18281 bytes, 0.018 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 2775, + "JavaScript": 1921 + }, + "average_issue_resolution_time": [ + [ + "hpt-validator-cli", + "1 day 01:05:05.5" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@stylistic/eslint-plugin-js", + 0.1835616438, + "2025-01-01T18:37:53.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.202739726, + "2025-01-01T18:37:53.000" + ], + [ + "@typescript-eslint/parser", + 0.202739726, + "2025-01-01T18:37:53.000" + ], + [ + "chalk", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "commander", + 0.6164383562, + "2025-01-01T18:37:53.000" + ], + [ + "eslint", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "eslint-config-prettier", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "eslint-plugin-prettier", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "esm", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "hpt-validator", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:37:53.000" + ], + [ + "ts-node", + 0, + "2025-01-01T18:37:53.000" ], - "repo_dependency_libyear_list": [ - [ - "@stylistic/eslint-plugin-js", - 0.1835616438, - "2025-01-01T18:37:53.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.202739726, - "2025-01-01T18:37:53.000" - ], - [ - "@typescript-eslint/parser", - 0.202739726, - "2025-01-01T18:37:53.000" - ], - [ - "chalk", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "commander", - 0.6164383562, - "2025-01-01T18:37:53.000" - ], - [ - "eslint", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "eslint-config-prettier", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "esm", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "hpt-validator", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T18:37:53.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T18:37:53.000" - ] + [ + "typescript", + -0.1095890411, + "2025-01-01T18:37:53.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/hpt-validator-tool/hpt-validator-tool_data.json b/app/site/_data/CMSgov/hpt-validator-tool/hpt-validator-tool_data.json index 39b9709b74..569dffa174 100644 --- a/app/site/_data/CMSgov/hpt-validator-tool/hpt-validator-tool_data.json +++ b/app/site/_data/CMSgov/hpt-validator-tool/hpt-validator-tool_data.json @@ -1,405 +1,405 @@ { - "url": "https://github.com/CMSgov/hpt-validator-tool", - "owner": "CMSgov", - "name": "hpt-validator-tool", - "description": null, - "commits_count": 4, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 5, - "total_project_lines": 50, - "average_project_lines": 17, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 11, - "average_blank_lines": 4, - "commits_by_month": { - "2024/5": 1, - "2023/12": 3 + "url": "https://github.com/CMSgov/hpt-validator-tool", + "owner": "CMSgov", + "name": "hpt-validator-tool", + "description": null, + "commits_count": 4, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 5, + "total_project_lines": 50, + "average_project_lines": 17, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 11, + "average_blank_lines": 4, + "commits_by_month": { + "2024/5": 1, + "2023/12": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-12-08T14:26:24Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:10Z", + "repo": { + "name": "github.com/CMSgov/hpt-validator-tool", + "commit": "9dd369f1700a5a0cdd2bd7f6f0e4b026d6fb61b9" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-12-08T14:26:24Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:10Z", - "repo": { - "name": "github.com/CMSgov/hpt-validator-tool", - "commit": "9dd369f1700a5a0cdd2bd7f6f0e4b026d6fb61b9" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/4 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 1661, - "CodeBytes": 0, - "Lines": 37, - "Code": 26, - "Comment": 0, - "Blank": 11, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 350, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 816.9200797237463, - "estimatedScheduleMonths_low": 0.9555536125664593, - "estimatedPeople_low": 0.08328638656948481, - "estimatedCost_high": 2545.879762131825, - "estimatedScheduleMonths_high": 0.9555536125664593, - "estimatedPeople_high": 0.08328638656948481, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 2 37 11 0 26 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nHTML 1 13 0 0 13 0\n(ULOC) 14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 3 50 11 0 39 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 40\nDRYness % 0.80\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $895\nEstimated Schedule Effort (organic) 0.96 months\nEstimated People Required (organic) 0.08\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2011 bytes, 0.002 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [ - [ - "hpt-validator-tool", - "1 day 13:24:28" - ] + "score": 2.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/4 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 1661, + "CodeBytes": 0, + "Lines": 37, + "Code": 26, + "Comment": 0, + "Blank": 11, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 350, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 816.9200797237463, + "estimatedScheduleMonths_low": 0.9555536125664593, + "estimatedPeople_low": 0.08328638656948481, + "estimatedCost_high": 2545.879762131825, + "estimatedScheduleMonths_high": 0.9555536125664593, + "estimatedPeople_high": 0.08328638656948481, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 2 37 11 0 26 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nHTML 1 13 0 0 13 0\n(ULOC) 14\n───────────────────────────────────────────────────────────────────────────────\nTotal 3 50 11 0 39 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 40\nDRYness % 0.80\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $895\nEstimated Schedule Effort (organic) 0.96 months\nEstimated People Required (organic) 0.08\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2011 bytes, 0.002 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [ + [ + "hpt-validator-tool", + "1 day 13:24:28" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "@babel/eslint-parser", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "@babel/preset-env", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "@babel/preset-react", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "@rollup/plugin-babel", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "@trussworks/react-uswds", + 0.602739726, + "2023-12-14T20:13:00.000" + ], + [ + "@types/papaparse", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "@uswds/uswds", + 1.3424657534, + "2023-12-14T20:13:00.000" + ], + [ + "@vitejs/plugin-react", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "buffer", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "classnames", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "clipboard", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "eslint", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "eslint-config-prettier", + 0.3315068493, + "2023-12-14T20:13:00.000" + ], + [ + "eslint-plugin-import", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "eslint-plugin-prettier", + 1.2794520548, + "2023-12-14T20:13:00.000" + ], + [ + "eslint-plugin-react", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "esm", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "hpt-validator", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "prettier", + 0.6328767123, + "2023-12-14T20:13:00.000" + ], + [ + "prettier-eslint", + 1.4219178082, + "2023-12-14T20:13:00.000" + ], + [ + "prop-types", + 0, + "2023-12-14T20:13:00.000" + ], + [ + "react", + -1.4931506849, + "2023-12-14T20:13:00.000" + ], + [ + "react-dom", + -1.4931506849, + "2023-12-14T20:13:00.000" ], - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "@babel/preset-env", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "@babel/preset-react", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "@rollup/plugin-babel", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "@trussworks/react-uswds", - 0.602739726, - "2023-12-14T20:13:00.000" - ], - [ - "@types/papaparse", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "@uswds/uswds", - 1.3424657534, - "2023-12-14T20:13:00.000" - ], - [ - "@vitejs/plugin-react", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "buffer", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "classnames", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "clipboard", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "eslint", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "eslint-config-prettier", - 0.3315068493, - "2023-12-14T20:13:00.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "eslint-plugin-prettier", - 1.2794520548, - "2023-12-14T20:13:00.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "esm", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "hpt-validator", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "prettier", - 0.6328767123, - "2023-12-14T20:13:00.000" - ], - [ - "prettier-eslint", - 1.4219178082, - "2023-12-14T20:13:00.000" - ], - [ - "prop-types", - 0.0, - "2023-12-14T20:13:00.000" - ], - [ - "react", - -1.4931506849, - "2023-12-14T20:13:00.000" - ], - [ - "react-dom", - -1.4931506849, - "2023-12-14T20:13:00.000" - ], - [ - "vite", - 0.0273972603, - "2023-12-14T20:13:00.000" - ] + [ + "vite", + 0.0273972603, + "2023-12-14T20:13:00.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/hpt-validator/hpt-validator_data.json b/app/site/_data/CMSgov/hpt-validator/hpt-validator_data.json index fffb40a4df..19aabf8a8c 100644 --- a/app/site/_data/CMSgov/hpt-validator/hpt-validator_data.json +++ b/app/site/_data/CMSgov/hpt-validator/hpt-validator_data.json @@ -1,495 +1,495 @@ { - "url": "https://github.com/CMSgov/hpt-validator", - "owner": "CMSgov", - "name": "hpt-validator", - "description": "Validation library for CMS Hospital Price Transparency machine-readable files", - "commits_count": 165, - "issues_count": 6, - "open_issues_count": 0, - "closed_issues_count": 6, - "pull_requests_count": 57, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 48, - "closed_pull_requests_count": 7, - "forks_count": 5, - "stargazers_count": 4, - "watchers_count": 10, - "total_project_lines": 8780, - "average_project_lines": 142, - "total_project_comment_lines": 213, - "average_project_comment_lines": 3, - "total_project_blank_lines": 388, - "average_blank_lines": 6, - "commits_by_month": { - "2024/11": 2, - "2024/10": 1, - "2024/9": 2, - "2024/8": 4, - "2024/7": 5, - "2024/6": 12, - "2024/5": 4 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-05T00:00:00.000Z", - 1 - ], - [ - "2024-08-19T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/hpt-validator", + "owner": "CMSgov", + "name": "hpt-validator", + "description": "Validation library for CMS Hospital Price Transparency machine-readable files", + "commits_count": 165, + "issues_count": 6, + "open_issues_count": 0, + "closed_issues_count": 6, + "pull_requests_count": 57, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 48, + "closed_pull_requests_count": 7, + "forks_count": 5, + "stargazers_count": 4, + "watchers_count": 10, + "total_project_lines": 8780, + "average_project_lines": 142, + "total_project_comment_lines": 213, + "average_project_comment_lines": 3, + "total_project_blank_lines": 388, + "average_blank_lines": 6, + "commits_by_month": { + "2024/11": 2, + "2024/10": 1, + "2024/9": 2, + "2024/8": 4, + "2024/7": 5, + "2024/6": 12, + "2024/5": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-05T00:00:00.000Z", + 1 + ], + [ + "2024-08-19T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [ + [ + "2024-08-07T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [ - [ - "2024-08-07T00:00:00.000Z", - 1 - ], - [ - "2024-08-21T00:00:00.000Z", - 1 - ], - [ - "2024-11-13T00:00:00.000Z", - 1 - ] + [ + "2024-08-21T00:00:00.000Z", + 1 ], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-04-27T14:26:38Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:40Z", - "repo": { - "name": "github.com/CMSgov/hpt-validator", - "commit": "a9d249388cb591703e4d1f7d9a4e216f32661558" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "19 out of 19 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 12/24 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 2, - "reason": "2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 186801, - "CodeBytes": 0, - "Lines": 6098, - "Code": 5600, - "Comment": 213, - "Blank": 285, - "Complexity": 524, - "Count": 23, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 72154, - "CodeBytes": 0, - "Lines": 2177, - "Code": 2176, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 17, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 43681, - "CodeBytes": 0, - "Lines": 158, - "Code": 158, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 9692, - "CodeBytes": 0, - "Lines": 254, - "Code": 168, - "Comment": 0, - "Blank": 86, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1121, - "CodeBytes": 0, - "Lines": 59, - "Code": 46, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1009, - "CodeBytes": 0, - "Lines": 38, - "Code": 35, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 223933.93539346402, - "estimatedScheduleMonths_low": 8.066263193066664, - "estimatedPeople_low": 2.7045625620069673, - "estimatedCost_high": 697875.9468925606, - "estimatedScheduleMonths_high": 8.066263193066664, - "estimatedPeople_high": 2.7045625620069673, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 23 6098 285 213 5600 524\n(ULOC) 2612\n-------------------------------------------------------------------------------\nJSON 17 2177 1 0 2176 0\n(ULOC) 238\n-------------------------------------------------------------------------------\nCSV 13 158 0 0 158 0\n(ULOC) 100\n-------------------------------------------------------------------------------\nMarkdown 6 254 86 0 168 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nYAML 2 59 13 0 46 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nJavaScript 1 38 3 0 35 0\n(ULOC) 35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 62 8784 388 213 8183 524\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3147\nDRYness % 0.36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $245,557\nEstimated Schedule Effort (organic) 8.07 months\nEstimated People Required (organic) 2.70\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 314458 bytes, 0.314 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-11-13T00:00:00.000Z", + 1 + ] + ], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-04-27T14:26:38Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:40Z", + "repo": { + "name": "github.com/CMSgov/hpt-validator", + "commit": "a9d249388cb591703e4d1f7d9a4e216f32661558" }, - "predominant_langs": { - "TypeScript": 186801, - "JavaScript": 1009 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "hpt-validator", - "12 days 17:49:15.5" - ] + "score": 5.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "19 out of 19 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 12/24 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 2, + "reason": "2 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 2", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 186801, + "CodeBytes": 0, + "Lines": 6098, + "Code": 5600, + "Comment": 213, + "Blank": 285, + "Complexity": 524, + "Count": 23, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 72154, + "CodeBytes": 0, + "Lines": 2177, + "Code": 2176, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 17, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 43681, + "CodeBytes": 0, + "Lines": 158, + "Code": 158, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 9692, + "CodeBytes": 0, + "Lines": 254, + "Code": 168, + "Comment": 0, + "Blank": 86, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1121, + "CodeBytes": 0, + "Lines": 59, + "Code": 46, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1009, + "CodeBytes": 0, + "Lines": 38, + "Code": 35, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 223933.93539346402, + "estimatedScheduleMonths_low": 8.066263193066664, + "estimatedPeople_low": 2.7045625620069673, + "estimatedCost_high": 697875.9468925606, + "estimatedScheduleMonths_high": 8.066263193066664, + "estimatedPeople_high": 2.7045625620069673, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 23 6098 285 213 5600 524\n(ULOC) 2612\n-------------------------------------------------------------------------------\nJSON 17 2177 1 0 2176 0\n(ULOC) 238\n-------------------------------------------------------------------------------\nCSV 13 158 0 0 158 0\n(ULOC) 100\n-------------------------------------------------------------------------------\nMarkdown 6 254 86 0 168 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nYAML 2 59 13 0 46 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nJavaScript 1 38 3 0 35 0\n(ULOC) 35\n───────────────────────────────────────────────────────────────────────────────\nTotal 62 8784 388 213 8183 524\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3147\nDRYness % 0.36\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $245,557\nEstimated Schedule Effort (organic) 8.07 months\nEstimated People Required (organic) 2.70\n───────────────────────────────────────────────────────────────────────────────\nProcessed 314458 bytes, 0.314 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 186801, + "JavaScript": 1009 + }, + "average_issue_resolution_time": [ + [ + "hpt-validator", + "12 days 17:49:15.5" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@streamparser/json", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:38:53.000" + ], + [ + "@types/node", + 0.7424657534, + "2024-08-25T01:17:58.000" + ], + [ + "@types/papaparse", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "@types/papaparse", + 0.1726027397, + "2024-08-25T01:17:58.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.202739726, + "2025-01-01T18:38:53.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.5342465753, + "2024-08-25T01:17:58.000" + ], + [ + "@typescript-eslint/parser", + 0.202739726, + "2025-01-01T18:38:53.000" + ], + [ + "@typescript-eslint/parser", + 0.5342465753, + "2024-08-25T01:17:58.000" + ], + [ + "ajv", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "ajv-formats", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "ajv-formats", + 2.6273972603, + "2024-08-25T01:17:58.000" + ], + [ + "ava", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "ava", + 0.8876712329, + "2024-08-25T01:17:58.000" + ], + [ + "eslint", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "eslint", + 0.495890411, + "2024-08-25T01:17:58.000" + ], + [ + "eslint-config-prettier", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "eslint-plugin-prettier", + 0, + "2024-08-25T01:17:58.000" + ], + [ + "esm", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "npx", + 0, + "2024-08-25T01:17:58.000" + ], + [ + "papaparse", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "ts-node", + 0, + "2025-01-01T18:38:53.000" + ], + [ + "typescript", + -0.0904109589, + "2024-08-25T01:17:58.000" ], - "repo_dependency_libyear_list": [ - [ - "@streamparser/json", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:38:53.000" - ], - [ - "@types/node", - 0.7424657534, - "2024-08-25T01:17:58.000" - ], - [ - "@types/papaparse", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "@types/papaparse", - 0.1726027397, - "2024-08-25T01:17:58.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.202739726, - "2025-01-01T18:38:53.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.5342465753, - "2024-08-25T01:17:58.000" - ], - [ - "@typescript-eslint/parser", - 0.202739726, - "2025-01-01T18:38:53.000" - ], - [ - "@typescript-eslint/parser", - 0.5342465753, - "2024-08-25T01:17:58.000" - ], - [ - "ajv", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "ajv-formats", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "ajv-formats", - 2.6273972603, - "2024-08-25T01:17:58.000" - ], - [ - "ava", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "ava", - 0.8876712329, - "2024-08-25T01:17:58.000" - ], - [ - "eslint", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "eslint", - 0.495890411, - "2024-08-25T01:17:58.000" - ], - [ - "eslint-config-prettier", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2024-08-25T01:17:58.000" - ], - [ - "esm", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "npx", - 0.0, - "2024-08-25T01:17:58.000" - ], - [ - "papaparse", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T18:38:53.000" - ], - [ - "typescript", - -0.0904109589, - "2024-08-25T01:17:58.000" - ], - [ - "typescript", - 0.0, - "2025-01-01T18:38:53.000" - ] + [ + "typescript", + 0, + "2025-01-01T18:38:53.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/httpie-edgegrid/httpie-edgegrid_data.json b/app/site/_data/CMSgov/httpie-edgegrid/httpie-edgegrid_data.json index 79814cc3d8..8343bb8f3a 100644 --- a/app/site/_data/CMSgov/httpie-edgegrid/httpie-edgegrid_data.json +++ b/app/site/_data/CMSgov/httpie-edgegrid/httpie-edgegrid_data.json @@ -1,329 +1,329 @@ { - "url": "https://github.com/CMSgov/httpie-edgegrid", - "owner": "CMSgov", - "name": "httpie-edgegrid", - "description": "Plugin for httpie to allow edge grid authentication for Akamai", - "commits_count": 34, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 5, - "total_project_lines": 503, - "average_project_lines": 84, - "total_project_comment_lines": 27, - "average_project_comment_lines": 5, - "total_project_blank_lines": 90, - "average_blank_lines": 15, - "commits_by_month": { - "2016/6": 2, - "2016/2": 2, - "2016/1": 2, - "2015/10": 1, - "2015/9": 1, - "2015/8": 2, - "2015/7": 6, - "2015/6": 13, - "2013/9": 1 + "url": "https://github.com/CMSgov/httpie-edgegrid", + "owner": "CMSgov", + "name": "httpie-edgegrid", + "description": "Plugin for httpie to allow edge grid authentication for Akamai", + "commits_count": 34, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 5, + "total_project_lines": 503, + "average_project_lines": 84, + "total_project_comment_lines": 27, + "average_project_comment_lines": 5, + "total_project_blank_lines": 90, + "average_blank_lines": 15, + "commits_by_month": { + "2016/6": 2, + "2016/2": 2, + "2016/1": 2, + "2015/10": 1, + "2015/9": 1, + "2015/8": 2, + "2015/7": 6, + "2015/6": 13, + "2013/9": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2017-06-27T18:24:25Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:45Z", + "repo": { + "name": "github.com/CMSgov/httpie-edgegrid", + "commit": "e494e09e21be617d778f6e6fd2ebbdf97f26bc2a" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2017-06-27T18:24:25Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:45Z", - "repo": { - "name": "github.com/CMSgov/httpie-edgegrid", - "commit": "e494e09e21be617d778f6e6fd2ebbdf97f26bc2a" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 7851, - "CodeBytes": 0, - "Lines": 249, - "Code": 184, - "Comment": 27, - "Blank": 38, - "Complexity": 24, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Autoconf", - "Bytes": 22, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11324, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "ReStructuredText", - "Bytes": 1194, - "CodeBytes": 0, - "Lines": 52, - "Code": 32, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 9067.308739285427, - "estimatedScheduleMonths_low": 2.3848914416374694, - "estimatedPeople_low": 0.37039003726280273, - "estimatedCost_high": 28257.6942216356, - "estimatedScheduleMonths_high": 2.3848914416374694, - "estimatedPeople_high": 0.37039003726280273, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 3 249 38 27 184 24\n(ULOC) 197\n-------------------------------------------------------------------------------\nAutoconf 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nReStructuredText 1 52 20 0 32 0\n(ULOC) 25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 6 503 90 27 386 24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 389\nDRYness % 0.77\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,942\nEstimated Schedule Effort (organic) 2.38 months\nEstimated People Required (organic) 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 20391 bytes, 0.020 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Python": 7851 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "edgegrid-python", - 0.0, - "2025-01-01T18:36:54.000" - ], - [ - "httpie", - 0.0, - "2025-01-01T18:36:54.000" - ], - [ - "pyOpenSSL", - 0.0, - "2025-01-01T18:36:54.000" - ] + "score": 2.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 7851, + "CodeBytes": 0, + "Lines": 249, + "Code": 184, + "Comment": 27, + "Blank": 38, + "Complexity": 24, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Autoconf", + "Bytes": 22, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11324, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "ReStructuredText", + "Bytes": 1194, + "CodeBytes": 0, + "Lines": 52, + "Code": 32, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 9067.308739285427, + "estimatedScheduleMonths_low": 2.3848914416374694, + "estimatedPeople_low": 0.37039003726280273, + "estimatedCost_high": 28257.6942216356, + "estimatedScheduleMonths_high": 2.3848914416374694, + "estimatedPeople_high": 0.37039003726280273, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 3 249 38 27 184 24\n(ULOC) 197\n-------------------------------------------------------------------------------\nAutoconf 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nReStructuredText 1 52 20 0 32 0\n(ULOC) 25\n───────────────────────────────────────────────────────────────────────────────\nTotal 6 503 90 27 386 24\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 389\nDRYness % 0.77\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,942\nEstimated Schedule Effort (organic) 2.38 months\nEstimated People Required (organic) 0.37\n───────────────────────────────────────────────────────────────────────────────\nProcessed 20391 bytes, 0.020 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 7851 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "edgegrid-python", + 0, + "2025-01-01T18:36:54.000" + ], + [ + "httpie", + 0, + "2025-01-01T18:36:54.000" + ], + [ + "pyOpenSSL", + 0, + "2025-01-01T18:36:54.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/inspec-k8s-node/inspec-k8s-node_data.json b/app/site/_data/CMSgov/inspec-k8s-node/inspec-k8s-node_data.json index b513b71976..ac5acc6a9b 100644 --- a/app/site/_data/CMSgov/inspec-k8s-node/inspec-k8s-node_data.json +++ b/app/site/_data/CMSgov/inspec-k8s-node/inspec-k8s-node_data.json @@ -1,290 +1,290 @@ { - "url": "https://github.com/CMSgov/inspec-k8s-node", - "owner": "CMSgov", - "name": "inspec-k8s-node", - "description": null, - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 17, - "total_project_lines": 517, - "average_project_lines": 43, - "total_project_comment_lines": 18, - "average_project_comment_lines": 2, - "total_project_blank_lines": 112, - "average_blank_lines": 9, - "commits_by_month": { - "2022/3": 1 + "url": "https://github.com/CMSgov/inspec-k8s-node", + "owner": "CMSgov", + "name": "inspec-k8s-node", + "description": null, + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 17, + "total_project_lines": 517, + "average_project_lines": 43, + "total_project_comment_lines": 18, + "average_project_comment_lines": 2, + "total_project_blank_lines": 112, + "average_blank_lines": 9, + "commits_by_month": { + "2022/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-03-08T17:56:25Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:05Z", + "repo": { + "name": "github.com/CMSgov/inspec-k8s-node", + "commit": "a3e6144decdf5f29abc1b26607cd99bc19f3d4b1" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-03-08T17:56:25Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:05Z", - "repo": { - "name": "github.com/CMSgov/inspec-k8s-node", - "commit": "a3e6144decdf5f29abc1b26607cd99bc19f3d4b1" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Ruby", - "Bytes": 9511, - "CodeBytes": 0, - "Lines": 365, - "Code": 276, - "Comment": 18, - "Blank": 71, - "Complexity": 32, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2915, - "CodeBytes": 0, - "Lines": 140, - "Code": 100, - "Comment": 0, - "Blank": 40, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 463, - "CodeBytes": 0, - "Lines": 12, - "Code": 11, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 9091.975294453812, - "estimatedScheduleMonths_low": 2.3873547367452197, - "estimatedPeople_low": 0.37101442854661093, - "estimatedCost_high": 28334.565980775045, - "estimatedScheduleMonths_high": 2.3873547367452197, - "estimatedPeople_high": 0.37101442854661093, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nRuby 10 365 71 18 276 32\n(ULOC) 171\n-------------------------------------------------------------------------------\nMarkdown 1 140 40 0 100 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nYAML 1 12 1 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 12 517 112 18 387 32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 238\nDRYness % 0.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,969\nEstimated Schedule Effort (organic) 2.39 months\nEstimated People Required (organic) 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 12889 bytes, 0.013 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 9511 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Ruby", + "Bytes": 9511, + "CodeBytes": 0, + "Lines": 365, + "Code": 276, + "Comment": 18, + "Blank": 71, + "Complexity": 32, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2915, + "CodeBytes": 0, + "Lines": 140, + "Code": 100, + "Comment": 0, + "Blank": 40, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 463, + "CodeBytes": 0, + "Lines": 12, + "Code": 11, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 9091.975294453812, + "estimatedScheduleMonths_low": 2.3873547367452197, + "estimatedPeople_low": 0.37101442854661093, + "estimatedCost_high": 28334.565980775045, + "estimatedScheduleMonths_high": 2.3873547367452197, + "estimatedPeople_high": 0.37101442854661093, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nRuby 10 365 71 18 276 32\n(ULOC) 171\n-------------------------------------------------------------------------------\nMarkdown 1 140 40 0 100 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nYAML 1 12 1 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 12 517 112 18 387 32\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 238\nDRYness % 0.46\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,969\nEstimated Schedule Effort (organic) 2.39 months\nEstimated People Required (organic) 0.37\n───────────────────────────────────────────────────────────────────────────────\nProcessed 12889 bytes, 0.013 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 9511 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/k8s-cluster-stig-baseline/k8s-cluster-stig-baseline_data.json b/app/site/_data/CMSgov/k8s-cluster-stig-baseline/k8s-cluster-stig-baseline_data.json index d192cf46a1..3060027b08 100644 --- a/app/site/_data/CMSgov/k8s-cluster-stig-baseline/k8s-cluster-stig-baseline_data.json +++ b/app/site/_data/CMSgov/k8s-cluster-stig-baseline/k8s-cluster-stig-baseline_data.json @@ -1,306 +1,306 @@ { - "url": "https://github.com/CMSgov/k8s-cluster-stig-baseline", - "owner": "CMSgov", - "name": "k8s-cluster-stig-baseline", - "description": null, - "commits_count": 2, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 2, - "watchers_count": 17, - "total_project_lines": 982, - "average_project_lines": 65, - "total_project_comment_lines": 19, - "average_project_comment_lines": 1, - "total_project_blank_lines": 142, - "average_blank_lines": 9, - "commits_by_month": { - "2022/10": 1, - "2022/3": 1 + "url": "https://github.com/CMSgov/k8s-cluster-stig-baseline", + "owner": "CMSgov", + "name": "k8s-cluster-stig-baseline", + "description": null, + "commits_count": 2, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 2, + "watchers_count": 17, + "total_project_lines": 982, + "average_project_lines": 65, + "total_project_comment_lines": 19, + "average_project_comment_lines": 1, + "total_project_blank_lines": 142, + "average_blank_lines": 9, + "commits_by_month": { + "2022/10": 1, + "2022/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-03-08T17:58:43Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:38Z", + "repo": { + "name": "github.com/CMSgov/k8s-cluster-stig-baseline", + "commit": "ee37e7ed0ee3c6d936e6d1e3df682784396471ef" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-03-08T17:58:43Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:38Z", - "repo": { - "name": "github.com/CMSgov/k8s-cluster-stig-baseline", - "commit": "ee37e7ed0ee3c6d936e6d1e3df682784396471ef" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/2 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Ruby", - "Bytes": 29134, - "CodeBytes": 0, - "Lines": 809, - "Code": 696, - "Comment": 19, - "Blank": 94, - "Complexity": 30, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 91, - "CodeBytes": 0, - "Lines": 5, - "Code": 4, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 9039, - "CodeBytes": 0, - "Lines": 146, - "Code": 101, - "Comment": 0, - "Blank": 45, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 718, - "CodeBytes": 0, - "Lines": 22, - "Code": 20, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 20027.283640866608, - "estimatedScheduleMonths_low": 3.222873060110052, - "estimatedPeople_low": 0.6053804006835333, - "estimatedCost_high": 62413.76283589222, - "estimatedScheduleMonths_high": 3.222873060110052, - "estimatedPeople_high": 0.6053804006835333, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nRuby 12 809 94 19 696 30\n(ULOC) 480\n-------------------------------------------------------------------------------\nGemfile 1 5 1 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nMarkdown 1 146 45 0 101 0\n(ULOC) 90\n-------------------------------------------------------------------------------\nYAML 1 22 2 0 20 0\n(ULOC) 21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 982 142 19 821 30\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 593\nDRYness % 0.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $21,961\nEstimated Schedule Effort (organic) 3.22 months\nEstimated People Required (organic) 0.61\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 38982 bytes, 0.039 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 29225 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/2 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Ruby", + "Bytes": 29134, + "CodeBytes": 0, + "Lines": 809, + "Code": 696, + "Comment": 19, + "Blank": 94, + "Complexity": 30, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 91, + "CodeBytes": 0, + "Lines": 5, + "Code": 4, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 9039, + "CodeBytes": 0, + "Lines": 146, + "Code": 101, + "Comment": 0, + "Blank": 45, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 718, + "CodeBytes": 0, + "Lines": 22, + "Code": 20, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 20027.283640866608, + "estimatedScheduleMonths_low": 3.222873060110052, + "estimatedPeople_low": 0.6053804006835333, + "estimatedCost_high": 62413.76283589222, + "estimatedScheduleMonths_high": 3.222873060110052, + "estimatedPeople_high": 0.6053804006835333, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nRuby 12 809 94 19 696 30\n(ULOC) 480\n-------------------------------------------------------------------------------\nGemfile 1 5 1 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nMarkdown 1 146 45 0 101 0\n(ULOC) 90\n-------------------------------------------------------------------------------\nYAML 1 22 2 0 20 0\n(ULOC) 21\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 982 142 19 821 30\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 593\nDRYness % 0.60\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $21,961\nEstimated Schedule Effort (organic) 3.22 months\nEstimated People Required (organic) 0.61\n───────────────────────────────────────────────────────────────────────────────\nProcessed 38982 bytes, 0.039 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 29225 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/k8s-node-stig-baseline/k8s-node-stig-baseline_data.json b/app/site/_data/CMSgov/k8s-node-stig-baseline/k8s-node-stig-baseline_data.json index 7858e168f6..4c16d61745 100644 --- a/app/site/_data/CMSgov/k8s-node-stig-baseline/k8s-node-stig-baseline_data.json +++ b/app/site/_data/CMSgov/k8s-node-stig-baseline/k8s-node-stig-baseline_data.json @@ -1,291 +1,291 @@ { - "url": "https://github.com/CMSgov/k8s-node-stig-baseline", - "owner": "CMSgov", - "name": "k8s-node-stig-baseline", - "description": null, - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 17, - "total_project_lines": 4495, - "average_project_lines": 54, - "total_project_comment_lines": 83, - "average_project_comment_lines": 1, - "total_project_blank_lines": 581, - "average_blank_lines": 7, - "commits_by_month": { - "2022/10": 1, - "2022/3": 2 + "url": "https://github.com/CMSgov/k8s-node-stig-baseline", + "owner": "CMSgov", + "name": "k8s-node-stig-baseline", + "description": null, + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 17, + "total_project_lines": 4495, + "average_project_lines": 54, + "total_project_comment_lines": 83, + "average_project_comment_lines": 1, + "total_project_blank_lines": 581, + "average_blank_lines": 7, + "commits_by_month": { + "2022/10": 1, + "2022/3": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-03-08T17:59:46Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:27Z", + "repo": { + "name": "github.com/CMSgov/k8s-node-stig-baseline", + "commit": "2f7544d9b16294f3c5f9d7e6d3291b16192642b5" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-03-08T17:59:46Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:27Z", - "repo": { - "name": "github.com/CMSgov/k8s-node-stig-baseline", - "commit": "2f7544d9b16294f3c5f9d7e6d3291b16192642b5" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/3 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Ruby", - "Bytes": 147449, - "CodeBytes": 0, - "Lines": 4211, - "Code": 3599, - "Comment": 83, - "Blank": 529, - "Complexity": 122, - "Count": 81, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 14753, - "CodeBytes": 0, - "Lines": 228, - "Code": 184, - "Comment": 0, - "Blank": 44, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1749, - "CodeBytes": 0, - "Lines": 56, - "Code": 48, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 100934.46682727146, - "estimatedScheduleMonths_low": 5.95884143744277, - "estimatedPeople_low": 1.650164242500498, - "estimatedCost_high": 314555.88224005175, - "estimatedScheduleMonths_high": 5.95884143744277, - "estimatedPeople_high": 1.650164242500498, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nRuby 81 4211 529 83 3599 122\n(ULOC) 1633\n-------------------------------------------------------------------------------\nMarkdown 1 228 44 0 184 0\n(ULOC) 169\n-------------------------------------------------------------------------------\nYAML 1 56 8 0 48 0\n(ULOC) 40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 83 4495 581 83 3831 122\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1822\nDRYness % 0.41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $110,681\nEstimated Schedule Effort (organic) 5.96 months\nEstimated People Required (organic) 1.65\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 163951 bytes, 0.164 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 147449 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/3 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Ruby", + "Bytes": 147449, + "CodeBytes": 0, + "Lines": 4211, + "Code": 3599, + "Comment": 83, + "Blank": 529, + "Complexity": 122, + "Count": 81, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 14753, + "CodeBytes": 0, + "Lines": 228, + "Code": 184, + "Comment": 0, + "Blank": 44, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1749, + "CodeBytes": 0, + "Lines": 56, + "Code": 48, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 100934.46682727146, + "estimatedScheduleMonths_low": 5.95884143744277, + "estimatedPeople_low": 1.650164242500498, + "estimatedCost_high": 314555.88224005175, + "estimatedScheduleMonths_high": 5.95884143744277, + "estimatedPeople_high": 1.650164242500498, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nRuby 81 4211 529 83 3599 122\n(ULOC) 1633\n-------------------------------------------------------------------------------\nMarkdown 1 228 44 0 184 0\n(ULOC) 169\n-------------------------------------------------------------------------------\nYAML 1 56 8 0 48 0\n(ULOC) 40\n───────────────────────────────────────────────────────────────────────────────\nTotal 83 4495 581 83 3831 122\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1822\nDRYness % 0.41\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $110,681\nEstimated Schedule Effort (organic) 5.96 months\nEstimated People Required (organic) 1.65\n───────────────────────────────────────────────────────────────────────────────\nProcessed 163951 bytes, 0.164 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 147449 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/lambda-clamav-layer/lambda-clamav-layer_data.json b/app/site/_data/CMSgov/lambda-clamav-layer/lambda-clamav-layer_data.json index eb6e0c0245..2fab66ad41 100644 --- a/app/site/_data/CMSgov/lambda-clamav-layer/lambda-clamav-layer_data.json +++ b/app/site/_data/CMSgov/lambda-clamav-layer/lambda-clamav-layer_data.json @@ -1,310 +1,310 @@ { - "url": "https://github.com/CMSgov/lambda-clamav-layer", - "owner": "CMSgov", - "name": "lambda-clamav-layer", - "description": "an AWS Lambda Layer with clamav binaries", - "commits_count": 24, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 4, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 4, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 3, - "total_project_lines": 254, - "average_project_lines": 64, - "total_project_comment_lines": 1, - "average_project_comment_lines": 0, - "total_project_blank_lines": 48, - "average_blank_lines": 12, - "commits_by_month": { - "2022/2": 4, - "2020/10": 3, - "2020/9": 1, - "2019/12": 2, - "2019/5": 2, - "2019/4": 12 + "url": "https://github.com/CMSgov/lambda-clamav-layer", + "owner": "CMSgov", + "name": "lambda-clamav-layer", + "description": "an AWS Lambda Layer with clamav binaries", + "commits_count": 24, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 4, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 4, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 3, + "total_project_lines": 254, + "average_project_lines": 64, + "total_project_comment_lines": 1, + "average_project_comment_lines": 0, + "total_project_blank_lines": 48, + "average_blank_lines": 12, + "commits_by_month": { + "2022/2": 4, + "2020/10": 3, + "2020/9": 1, + "2019/12": 2, + "2019/5": 2, + "2019/4": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-09-29T14:25:24Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:48Z", + "repo": { + "name": "github.com/CMSgov/lambda-clamav-layer", + "commit": "d281f5bcc2fcc103840054b7152c1bfcf3fed63b" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-09-29T14:25:24Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:48Z", - "repo": { - "name": "github.com/CMSgov/lambda-clamav-layer", - "commit": "d281f5bcc2fcc103840054b7152c1bfcf3fed63b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 4 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/22 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": 0, - "reason": "Project has not signed or included provenance with any releases.", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1073, - "CodeBytes": 0, - "Lines": 40, - "Code": 25, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 152, - "CodeBytes": 0, - "Lines": 5, - "Code": 3, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 146, - "CodeBytes": 0, - "Lines": 8, - "Code": 8, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4665.554723951954, - "estimatedScheduleMonths_low": 1.8527212003027547, - "estimatedPeople_low": 0.24532551812120038, - "estimatedCost_high": 14539.906222949636, - "estimatedScheduleMonths_high": 1.8527212003027547, - "estimatedPeople_high": 0.24532551812120038, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 1 40 15 0 25 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nShell 1 5 1 1 3 1\n(ULOC) 5\n-------------------------------------------------------------------------------\nYAML 1 8 0 0 8 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 4 254 48 1 205 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 205\nDRYness % 0.81\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,116\nEstimated Schedule Effort (organic) 1.85 months\nEstimated People Required (organic) 0.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 12728 bytes, 0.013 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Shell": 2656 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 4 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/22 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": 0, + "reason": "Project has not signed or included provenance with any releases.", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1073, + "CodeBytes": 0, + "Lines": 40, + "Code": 25, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 152, + "CodeBytes": 0, + "Lines": 5, + "Code": 3, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 146, + "CodeBytes": 0, + "Lines": 8, + "Code": 8, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4665.554723951954, + "estimatedScheduleMonths_low": 1.8527212003027547, + "estimatedPeople_low": 0.24532551812120038, + "estimatedCost_high": 14539.906222949636, + "estimatedScheduleMonths_high": 1.8527212003027547, + "estimatedPeople_high": 0.24532551812120038, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 1 40 15 0 25 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nShell 1 5 1 1 3 1\n(ULOC) 5\n-------------------------------------------------------------------------------\nYAML 1 8 0 0 8 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 4 254 48 1 205 1\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 205\nDRYness % 0.81\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,116\nEstimated Schedule Effort (organic) 1.85 months\nEstimated People Required (organic) 0.25\n───────────────────────────────────────────────────────────────────────────────\nProcessed 12728 bytes, 0.013 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Shell": 2656 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/mint-app/mint-app_data.json b/app/site/_data/CMSgov/mint-app/mint-app_data.json index fd16b2d00e..47fd559a00 100644 --- a/app/site/_data/CMSgov/mint-app/mint-app_data.json +++ b/app/site/_data/CMSgov/mint-app/mint-app_data.json @@ -1,2744 +1,2744 @@ { - "url": "https://github.com/CMSgov/mint-app", - "owner": "CMSgov", - "name": "mint-app", - "description": "MINT App", - "commits_count": 1174, - "issues_count": 41, - "open_issues_count": 0, - "closed_issues_count": 41, - "pull_requests_count": 1554, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 1369, - "closed_pull_requests_count": 181, - "forks_count": 1, - "stargazers_count": 3, - "watchers_count": 6, - "total_project_lines": 379805, - "average_project_lines": 173, - "total_project_comment_lines": 11187, - "average_project_comment_lines": 5, - "total_project_blank_lines": 34754, - "average_blank_lines": 16, - "commits_by_month": { - "2025/1": 2, - "2024/12": 17, - "2024/11": 11 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 1 - ], - [ - "2024-12-19T00:00:00.000Z", - 1 - ], - [ - "2024-12-31T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 2 - ], - [ - "2024-07-30T00:00:00.000Z", - 2 - ], - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-08-05T00:00:00.000Z", - 1 - ], - [ - "2024-08-06T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-07T18:07:06Z", - "ossf_scorecard": { - "date": "2025-01-11T00:59:13Z", - "repo": { - "name": "github.com/CMSgov/mint-app", - "commit": "6822f32d982f082510339336dc7fd97a3ab0b259" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "20 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 4693137, - "CodeBytes": 0, - "Lines": 122699, - "Code": 107771, - "Comment": 4372, - "Blank": 10556, - "Complexity": 9041, - "Count": 834, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 7579220, - "CodeBytes": 0, - "Lines": 211588, - "Code": 187031, - "Comment": 4770, - "Blank": 19787, - "Complexity": 34803, - "Count": 616, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 691357, - "CodeBytes": 0, - "Lines": 14842, - "Code": 12991, - "Comment": 609, - "Blank": 1242, - "Complexity": 68, - "Count": 375, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 53083, - "CodeBytes": 0, - "Lines": 2876, - "Code": 2405, - "Comment": 36, - "Blank": 435, - "Complexity": 0, - "Count": 89, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "GraphQL", - "Bytes": 157337, - "CodeBytes": 0, - "Lines": 4675, - "Code": 3508, - "Comment": 688, - "Blank": 479, - "Complexity": 289, - "Count": 68, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 134610, - "CodeBytes": 0, - "Lines": 2773, - "Code": 1969, - "Comment": 0, - "Blank": 804, - "Complexity": 0, - "Count": 40, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 25039, - "CodeBytes": 0, - "Lines": 926, - "Code": 765, - "Comment": 16, - "Blank": 145, - "Complexity": 0, - "Count": 38, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 120214, - "CodeBytes": 0, - "Lines": 4021, - "Code": 2745, - "Comment": 352, - "Blank": 924, - "Complexity": 25, - "Count": 35, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 469524, - "CodeBytes": 0, - "Lines": 11857, - "Code": 11853, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 19072, - "CodeBytes": 0, - "Lines": 637, - "Code": 400, - "Comment": 121, - "Blank": 116, - "Complexity": 49, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 52564, - "CodeBytes": 0, - "Lines": 1628, - "Code": 1407, - "Comment": 104, - "Blank": 117, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 11498, - "CodeBytes": 0, - "Lines": 315, - "Code": 170, - "Comment": 86, - "Blank": 59, - "Complexity": 20, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go Template", - "Bytes": 1497, - "CodeBytes": 0, - "Lines": 104, - "Code": 103, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 5381, - "CodeBytes": 0, - "Lines": 186, - "Code": 152, - "Comment": 15, - "Blank": 19, - "Complexity": 1, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 171, - "CodeBytes": 0, - "Lines": 16, - "Code": 8, - "Comment": 4, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1271, - "CodeBytes": 0, - "Lines": 49, - "Code": 32, - "Comment": 4, - "Blank": 13, - "Complexity": 5, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 57, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 13028, - "CodeBytes": 0, - "Lines": 479, - "Code": 436, - "Comment": 16, - "Blank": 27, - "Complexity": 17, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 316, - "CodeBytes": 0, - "Lines": 15, - "Code": 15, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 11000253.009270834, - "estimatedScheduleMonths_low": 35.42907697498214, - "estimatedPeople_low": 30.247699115822897, - "estimatedCost_high": 34281592.78947181, - "estimatedScheduleMonths_high": 35.42907697498214, - "estimatedPeople_high": 30.247699115822897, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 834 122699 10556 4372 107771 9041\n(ULOC) 50713\n-------------------------------------------------------------------------------\nGo 616 211588 19787 4770 187031 34803\n(ULOC) 46504\n-------------------------------------------------------------------------------\nSQL 375 14842 1242 609 12991 68\n(ULOC) 7070\n-------------------------------------------------------------------------------\nSass 89 2876 435 36 2405 0\n(ULOC) 1437\n-------------------------------------------------------------------------------\nGraphQL 68 4675 479 688 3508 289\n(ULOC) 2432\n-------------------------------------------------------------------------------\nMarkdown 40 2773 804 0 1969 0\n(ULOC) 1758\n-------------------------------------------------------------------------------\nHTML 38 926 145 16 765 0\n(ULOC) 465\n-------------------------------------------------------------------------------\nJavaScript 35 4021 924 352 2745 25\n(ULOC) 1559\n-------------------------------------------------------------------------------\nJSON 31 11857 4 0 11853 0\n(ULOC) 4895\n-------------------------------------------------------------------------------\nBASH 21 637 116 121 400 49\n(ULOC) 406\n-------------------------------------------------------------------------------\nYAML 18 1628 117 104 1407 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nShell 15 315 59 86 170 20\n(ULOC) 209\n-------------------------------------------------------------------------------\nGo Template 6 104 1 0 103 0\n(ULOC) 58\n-------------------------------------------------------------------------------\nTypeScript Typings 5 186 19 15 152 1\n(ULOC) 154\n-------------------------------------------------------------------------------\nDocker ignore 1 16 4 4 8 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nDockerfile 1 49 13 4 32 5\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nPlain Text 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nRuby 1 479 27 16 436 17\n(ULOC) 301\n-------------------------------------------------------------------------------\nTOML 1 15 0 0 15 0\n(ULOC) 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2197 379889 34764 11193 333932 44318\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 117789\nDRYness % 0.31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $12,062,470\nEstimated Schedule Effort (organic) 35.43 months\nEstimated People Required (organic) 30.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 14039733 bytes, 14.040 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/mint-app", + "owner": "CMSgov", + "name": "mint-app", + "description": "MINT App", + "commits_count": 1174, + "issues_count": 41, + "open_issues_count": 0, + "closed_issues_count": 41, + "pull_requests_count": 1554, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 1369, + "closed_pull_requests_count": 181, + "forks_count": 1, + "stargazers_count": 3, + "watchers_count": 6, + "total_project_lines": 379805, + "average_project_lines": 173, + "total_project_comment_lines": 11187, + "average_project_comment_lines": 5, + "total_project_blank_lines": 34754, + "average_blank_lines": 16, + "commits_by_month": { + "2025/1": 2, + "2024/12": 17, + "2024/11": 11 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 1 + ], + [ + "2024-12-17T00:00:00.000Z", + 1 + ], + [ + "2024-12-19T00:00:00.000Z", + 1 + ], + [ + "2024-12-31T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 2 + ], + [ + "2024-07-30T00:00:00.000Z", + 2 + ], + [ + "2024-07-31T00:00:00.000Z", + 1 + ], + [ + "2024-08-05T00:00:00.000Z", + 1 + ], + [ + "2024-08-06T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-07T18:07:06Z", + "ossf_scorecard": { + "date": "2025-01-11T00:59:13Z", + "repo": { + "name": "github.com/CMSgov/mint-app", + "commit": "6822f32d982f082510339336dc7fd97a3ab0b259" }, - "predominant_langs": { - "TypeScript": 4693137, - "Go": 1697715, - "JavaScript": 120214, - "SCSS": 53083, - "PLpgSQL": 51293, - "Shell": 30570, - "HTML": 25039, - "Ruby": 13028, - "Dockerfile": 1271 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@apollo/client", - -0.0739726027, - "2024-10-16T20:27:46.000" - ], - [ - "@apollo/client", - -0.002739726, - "2023-09-20T14:27:15.000" - ], - [ - "@apollo/client", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@apollo/client", - 0.0931506849, - "2024-06-08T13:54:33.000" - ], - [ - "@apollo/client", - 0.3260273973, - "2024-08-16T04:24:09.000" - ], - [ - "@apollo/react-testing", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "@babel/core", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@babel/plugin-syntax-class-properties", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@babel/preset-env", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@craco/craco", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "@cypress/code-coverage", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@cypress/webpack-preprocessor", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@cypress/webpack-preprocessor", - 0.3287671233, - "2023-09-20T14:27:15.000" - ], - [ - "@graphql-codegen/cli", - -0.0849315068, - "2023-09-20T14:27:15.000" - ], - [ - "@graphql-codegen/cli", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@graphql-codegen/cli", - 0.5369863014, - "2024-03-10T21:51:53.000" - ], - [ - "@graphql-codegen/cli", - 0.6684931507, - "2024-10-16T20:27:46.000" - ], - [ - "@graphql-codegen/client-preset", - -0.1397260274, - "2023-09-20T14:27:15.000" - ], - [ - "@graphql-codegen/client-preset", - -0.095890411, - "2025-01-01T18:37:54.000" - ], - [ - "@graphql-codegen/client-preset", - 0.0, - "2023-08-14T17:10:02.000" - ], - [ - "@graphql-codegen/client-preset", - 0.5808219178, - "2024-03-10T21:51:53.000" - ], - [ - "@graphql-codegen/client-preset", - 0.8136986301, - "2024-06-08T13:54:33.000" - ], - [ - "@graphql-codegen/client-preset", - 1.0109589041, - "2024-08-16T04:24:09.000" - ], - [ - "@graphql-codegen/client-preset", - 1.2054794521, - "2024-10-16T20:27:46.000" - ], - [ - "@graphql-codegen/introspection", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@graphql-codegen/introspection", - 0.0383561644, - "2024-10-16T20:27:46.000" - ], - [ - "@graphql-codegen/introspection", - 0.7452054795, - "2024-03-10T21:51:53.000" - ], - [ - "@graphql-codegen/typed-document-node", - -0.0657534247, - "2025-01-01T18:37:54.000" - ], - [ - "@graphql-codegen/typed-document-node", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "@graphql-codegen/typed-document-node", - 0.2657534247, - "2024-10-16T20:27:46.000" - ], - [ - "@graphql-codegen/typescript-react-apollo", - -0.3123287671, - "2025-01-01T18:37:54.000" - ], - [ - "@graphql-codegen/typescript-react-apollo", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@json2csv/formatters", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@json2csv/plainjs", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@json2csv/transforms", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@okta/okta-auth-js", - 0.8547945205, - "2023-08-14T17:10:02.000" - ], - [ - "@okta/okta-auth-js", - 0.9342465753, - "2023-09-20T14:27:15.000" - ], - [ - "@okta/okta-auth-js", - 1.3452054795, - "2024-03-10T21:51:53.000" - ], - [ - "@okta/okta-auth-js", - 1.6657534247, - "2024-08-16T04:24:09.000" - ], - [ - "@okta/okta-auth-js", - 1.9342465753, - "2024-10-16T20:27:46.000" - ], - [ - "@okta/okta-auth-js", - 2.2054794521, - "2025-01-01T18:37:54.000" - ], - [ - "@okta/okta-react", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@okta/okta-signin-widget", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@okta/okta-signin-widget", - 0.5342465753, - "2024-03-10T21:51:53.000" - ], - [ - "@okta/okta-signin-widget", - 0.7671232877, - "2023-08-14T17:10:02.000" - ], - [ - "@okta/okta-signin-widget", - 0.8630136986, - "2023-09-14T02:10:47.000" - ], - [ - "@okta/okta-signin-widget", - 0.8821917808, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/addon-actions", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/addon-actions", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/addon-actions", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/addon-actions", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/addon-actions", - 0.3863013699, - "2023-08-14T17:10:02.000" - ], - [ - "@storybook/addon-actions", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@storybook/addon-actions", - 0.4712328767, - "2023-09-14T02:10:47.000" - ], - [ - "@storybook/addon-actions", - 0.495890411, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/addon-controls", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/addon-controls", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/addon-controls", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/addon-controls", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/addon-controls", - 0.3863013699, - "2023-08-14T17:10:02.000" - ], - [ - "@storybook/addon-controls", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@storybook/addon-controls", - 0.4712328767, - "2023-09-14T02:10:47.000" - ], - [ - "@storybook/addon-controls", - 0.495890411, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/addon-essentials", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/addon-essentials", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/addon-essentials", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/addon-essentials", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/addon-essentials", - 0.3863013699, - "2023-08-14T17:10:02.000" - ], - [ - "@storybook/addon-essentials", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@storybook/addon-essentials", - 0.4712328767, - "2023-09-14T02:10:47.000" - ], - [ - "@storybook/addon-essentials", - 0.495890411, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/addon-links", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/addon-links", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/addon-links", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/addon-links", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/addon-links", - 0.3863013699, - "2023-08-14T17:10:02.000" - ], - [ - "@storybook/addon-links", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@storybook/addon-links", - 0.4712328767, - "2023-09-14T02:10:47.000" - ], - [ - "@storybook/addon-links", - 0.495890411, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/node-logger", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/node-logger", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/node-logger", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/node-logger", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/node-logger", - 0.3863013699, - "2023-08-14T17:10:02.000" - ], - [ - "@storybook/node-logger", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@storybook/node-logger", - 0.4712328767, - "2023-09-14T02:10:47.000" - ], - [ - "@storybook/node-logger", - 0.495890411, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/react", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/react", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/react", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/react", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/react", - 0.3863013699, - "2023-08-14T17:10:02.000" - ], - [ - "@storybook/react", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@storybook/react", - 0.4712328767, - "2023-09-14T02:10:47.000" - ], - [ - "@storybook/react", - 0.495890411, - "2023-09-20T14:27:15.000" - ], - [ - "@storybook/react-vite", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@storybook/react-vite", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "@storybook/react-vite", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@storybook/react-vite", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "@storybook/react-vite", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "@testing-library/jest-dom", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@testing-library/jest-dom", - 0.0712328767, - "2023-08-14T17:10:02.000" - ], - [ - "@testing-library/jest-dom", - 0.1342465753, - "2023-09-20T14:27:15.000" - ], - [ - "@testing-library/jest-dom", - 0.5534246575, - "2024-03-10T21:51:53.000" - ], - [ - "@testing-library/react", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@testing-library/react", - 1.6931506849, - "2023-09-20T14:27:15.000" - ], - [ - "@testing-library/react", - 2.1452054795, - "2024-08-16T04:24:09.000" - ], - [ - "@testing-library/react", - 2.3835616438, - "2024-10-16T20:27:46.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-03-10T21:51:53.000" - ], - [ - "@testing-library/user-event", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@testing-library/user-event", - 0.8054794521, - "2023-09-14T02:10:47.000" - ], - [ - "@testing-library/user-event", - 1.9095890411, - "2023-09-20T14:27:15.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-03-10T21:51:53.000" - ], - [ - "@tiptap/core", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/core", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/core", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/extension-character-count", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/extension-character-count", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/extension-character-count", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/extension-document", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/extension-document", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/extension-document", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/extension-mention", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/extension-mention", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/extension-mention", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/extension-paragraph", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/extension-paragraph", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/extension-paragraph", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/extension-text", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/extension-text", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/extension-text", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/extension-text-style", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/pm", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/pm", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/pm", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/react", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/react", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/react", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/starter-kit", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/starter-kit", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/starter-kit", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@tiptap/suggestion", - -0.0684931507, - "2024-06-08T13:54:33.000" - ], - [ - "@tiptap/suggestion", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@tiptap/suggestion", - 0.1863013699, - "2025-01-01T18:37:54.000" - ], - [ - "@trussworks/react-uswds", - 0.1561643836, - "2024-03-10T21:51:53.000" - ], - [ - "@trussworks/react-uswds", - 0.197260274, - "2024-08-16T04:24:09.000" - ], - [ - "@trussworks/react-uswds", - 0.6328767123, - "2025-01-01T18:37:54.000" - ], - [ - "@trussworks/react-uswds", - 1.2547945205, - "2023-08-14T17:10:02.000" - ], - [ - "@trussworks/react-uswds", - 1.402739726, - "2023-09-20T14:27:15.000" - ], - [ - "@types/apollo-upload-client", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "@types/apollo-upload-client", - 0.1452054795, - "2025-01-01T18:37:54.000" - ], - [ - "@types/enzyme", - 1.7753424658, - "2023-09-20T14:27:15.000" - ], - [ - "@types/enzyme", - 2.4136986301, - "2024-10-16T20:27:46.000" - ], - [ - "@types/jest", - 2.2054794521, - "2023-08-14T17:10:02.000" - ], - [ - "@types/jest", - 2.3232876712, - "2023-09-14T02:10:47.000" - ], - [ - "@types/jest", - 2.3890410959, - "2023-09-20T14:27:15.000" - ], - [ - "@types/jest", - 2.7698630137, - "2024-08-16T04:24:09.000" - ], - [ - "@types/jest", - 3.3835616438, - "2024-10-16T20:27:46.000" - ], - [ - "@types/jest", - 3.4931506849, - "2025-01-01T18:37:54.000" - ], - [ - "@types/json2csv", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/lodash", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/luxon", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/luxon", - 2.0383561644, - "2023-08-14T17:10:02.000" - ], - [ - "@types/luxon", - 2.1479452055, - "2023-09-20T14:27:15.000" - ], - [ - "@types/luxon", - 2.5369863014, - "2024-03-10T21:51:53.000" - ], - [ - "@types/no-scroll", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/node", - 2.1287671233, - "2023-08-14T17:10:02.000" - ], - [ - "@types/node", - 2.2, - "2023-09-14T02:10:47.000" - ], - [ - "@types/node", - 2.2328767123, - "2023-09-20T14:27:15.000" - ], - [ - "@types/node", - 2.6931506849, - "2024-03-10T21:51:53.000" - ], - [ - "@types/node", - 2.9424657534, - "2024-06-08T13:54:33.000" - ], - [ - "@types/node", - 3.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "@types/node", - 3.2821917808, - "2024-10-16T20:27:46.000" - ], - [ - "@types/node", - 3.5150684932, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react", - 2.1671232877, - "2023-08-14T17:10:02.000" - ], - [ - "@types/react", - 2.202739726, - "2023-09-14T02:10:47.000" - ], - [ - "@types/react", - 2.2767123288, - "2023-09-20T14:27:15.000" - ], - [ - "@types/react", - 2.7424657534, - "2024-03-10T21:51:53.000" - ], - [ - "@types/react", - 2.9561643836, - "2024-08-16T04:24:09.000" - ], - [ - "@types/react", - 3.3178082192, - "2024-10-16T20:27:46.000" - ], - [ - "@types/react", - 3.5287671233, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-autosuggest", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-autosuggest", - 0.1397260274, - "2024-03-10T21:51:53.000" - ], - [ - "@types/react-csv", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "@types/react-dom", - -0.0054794521, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-dom", - 2.0657534247, - "2023-09-20T14:27:15.000" - ], - [ - "@types/react-dom", - 2.7178082192, - "2024-03-10T21:51:53.000" - ], - [ - "@types/react-dom", - 2.8547945205, - "2024-08-16T04:24:09.000" - ], - [ - "@types/react-dom", - 3.3178082192, - "2024-10-16T20:27:46.000" - ], - [ - "@types/react-modal", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-redux", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-router-dom", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-table", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/react-test-renderer", - -0.002739726, - "2024-03-10T21:51:53.000" - ], - [ - "@types/react-test-renderer", - 0.4246575342, - "2024-10-16T20:27:46.000" - ], - [ - "@types/react-test-renderer", - 1.0383561644, - "2025-01-01T18:37:54.000" - ], - [ - "@types/redux-mock-store", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/redux-saga-routines", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/sinon", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "@types/sinon", - 0.2273972603, - "2025-01-01T18:37:54.000" - ], - [ - "@types/text-encoding", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@types/yup", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "@uswds/uswds", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "@uswds/uswds", - 0.2054794521, - "2025-01-01T18:37:54.000" - ], - [ - "@vitejs/plugin-react", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "@vitest/coverage-v8", - 0.3945205479, - "2024-03-10T21:51:53.000" - ], - [ - "@vitest/coverage-v8", - 0.5945205479, - "2024-06-08T13:54:33.000" - ], - [ - "@vitest/coverage-v8", - 0.8383561644, - "2024-08-16T04:24:09.000" - ], - [ - "@vitest/coverage-v8", - 1.0438356164, - "2024-10-16T20:27:46.000" - ], - [ - "@vitest/coverage-v8", - 1.1780821918, - "2025-01-01T18:37:54.000" - ], - [ - "@wojtekmaj/enzyme-adapter-react-17", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "apollo", - 0.0, - "2024-06-08T13:54:33.000" - ], - [ - "apollo-link", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "apollo-link-error", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "apollo-upload-client", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "apollo-upload-client", - 1.8767123288, - "2025-01-01T18:37:54.000" - ], - [ - "autoprefixer", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "axios", - -0.0493150685, - "2024-03-10T21:51:53.000" - ], - [ - "axios", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "axios", - 1.0, - "2023-08-14T17:10:02.000" - ], - [ - "axios", - 1.3315068493, - "2023-09-20T14:27:15.000" - ], - [ - "babel-loader", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "babel-loader", - 3.295890411, - "2023-09-20T14:27:15.000" - ], - [ - "classnames", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "cross-fetch", - -0.002739726, - "2025-01-01T18:37:54.000" - ], - [ - "cross-fetch", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "cypress", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "cypress", - 0.0739726027, - "2024-06-08T13:54:33.000" - ], - [ - "cypress", - 0.2684931507, - "2024-08-16T04:24:09.000" - ], - [ - "cypress", - 0.3452054795, - "2023-08-14T17:10:02.000" - ], - [ - "cypress", - 0.3835616438, - "2024-10-16T20:27:46.000" - ], - [ - "cypress-file-upload", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "cypress-otp", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "detect-browser", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "enzyme", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "enzyme-to-json", - 0.0, - "2023-08-14T17:10:02.000" - ], - [ - "eslint", - 0.0493150685, - "2024-10-16T20:27:46.000" - ], - [ - "eslint", - 0.2410958904, - "2025-01-01T18:37:54.000" - ], - [ - "eslint", - 2.0301369863, - "2023-08-14T17:10:02.000" - ], - [ - "eslint", - 2.1068493151, - "2023-09-20T14:27:15.000" - ], - [ - "eslint", - 2.5671232877, - "2024-03-10T21:51:53.000" - ], - [ - "eslint", - 2.8356164384, - "2024-06-08T13:54:33.000" - ], - [ - "eslint", - 3.0273972603, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-config-airbnb", - 1.1315068493, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-config-prettier", - 0.0054794521, - "2023-09-20T14:27:15.000" - ], - [ - "eslint-config-prettier", - 0.3315068493, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-config-react-app", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-plugin-cypress", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "eslint-plugin-cypress", - 0.0520547945, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-plugin-cypress", - 0.1178082192, - "2024-06-08T13:54:33.000" - ], - [ - "eslint-plugin-cypress", - 0.3232876712, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-plugin-prettier", - 1.8876712329, - "2023-09-20T14:27:15.000" - ], - [ - "eslint-plugin-prettier", - 2.3890410959, - "2024-06-08T13:54:33.000" - ], - [ - "eslint-plugin-prettier", - 2.9068493151, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-plugin-react-hooks", - -0.2082191781, - "2024-03-10T21:51:53.000" - ], - [ - "eslint-plugin-react-hooks", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "eslint-plugin-react-hooks", - 0.4575342466, - "2024-10-16T20:27:46.000" - ], - [ - "eslint-plugin-react-hooks", - 0.6109589041, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-plugin-simple-import-sort", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "eslint-plugin-simple-import-sort", - 2.1369863014, - "2023-09-20T14:27:15.000" - ], - [ - "eslint-plugin-simple-import-sort", - 3.1726027397, - "2024-03-10T21:51:53.000" - ], - [ - "eslint-plugin-simple-import-sort", - 3.3452054795, - "2024-06-08T13:54:33.000" - ], - [ - "eslint-plugin-simple-import-sort", - 3.5643835616, - "2024-08-16T04:24:09.000" - ], - [ - "font-awesome", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "formik", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "glob", - -0.002739726, - "2025-01-01T18:37:54.000" - ], - [ - "glob", - 0.0, - "2024-06-08T13:54:33.000" - ], - [ - "graphql", - -0.002739726, - "2024-10-16T20:27:46.000" - ], - [ - "graphql", - 0.4821917808, - "2025-01-01T18:37:54.000" - ], - [ - "graphql", - 1.5397260274, - "2023-08-14T17:10:02.000" - ], - [ - "graphql", - 1.6849315068, - "2023-09-14T02:10:47.000" - ], - [ - "graphql", - 1.7808219178, - "2024-06-08T13:54:33.000" - ], - [ - "graphql-schema-linter", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "html-react-parser", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "i18next", - 0.0493150685, - "2024-03-10T21:51:53.000" - ], - [ - "i18next", - 0.0794520548, - "2025-01-01T18:37:54.000" - ], - [ - "i18next", - 0.2520547945, - "2024-06-08T13:54:33.000" - ], - [ - "i18next", - 0.4904109589, - "2024-08-16T04:24:09.000" - ], - [ - "i18next", - 0.6493150685, - "2024-10-16T20:27:46.000" - ], - [ - "i18next", - 2.4164383562, - "2023-08-14T17:10:02.000" - ], - [ - "i18next", - 2.498630137, - "2023-09-20T14:27:15.000" - ], - [ - "i18next-browser-languagedetector", - 2.8904109589, - "2023-09-20T14:27:15.000" - ], - [ - "i18next-browser-languagedetector", - 3.2657534247, - "2024-03-10T21:51:53.000" - ], - [ - "i18next-browser-languagedetector", - 3.7671232877, - "2024-10-16T20:27:46.000" - ], - [ - "i18next-browser-languagedetector", - 4.3452054795, - "2025-01-01T18:37:54.000" - ], - [ - "istanbul-lib-coverage", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "jest-canvas-mock", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "jest-launchdarkly-mock", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "jest-launchdarkly-mock", - 1.3369863014, - "2023-09-20T14:27:15.000" - ], - [ - "js-base64", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "jsdom", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "jsdom", - 0.6547945205, - "2024-03-10T21:51:53.000" - ], - [ - "jsdom", - 0.997260274, - "2024-06-08T13:54:33.000" - ], - [ - "jsdom", - 1.1506849315, - "2024-08-16T04:24:09.000" - ], - [ - "jsdom", - 1.3232876712, - "2024-10-16T20:27:46.000" - ], - [ - "json2csv", - 0.9068493151, - "2023-09-14T02:10:47.000" - ], - [ - "launchdarkly-react-client-sdk", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "launchdarkly-react-client-sdk", - 0.304109589, - "2024-03-10T21:51:53.000" - ], - [ - "launchdarkly-react-client-sdk", - 0.5616438356, - "2023-08-14T17:10:02.000" - ], - [ - "launchdarkly-react-client-sdk", - 0.6657534247, - "2023-09-20T14:27:15.000" - ], - [ - "lodash", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "luxon", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "luxon", - 0.5917808219, - "2023-08-14T17:10:02.000" - ], - [ - "luxon", - 0.6657534247, - "2023-09-20T14:27:15.000" - ], - [ - "luxon", - 0.8547945205, - "2024-03-10T21:51:53.000" - ], - [ - "markdown-spellcheck", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "no-scroll", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "nyc", - 0.0, - "2024-06-08T13:54:33.000" - ], - [ - "nyc", - 4.0246575342, - "2024-08-16T04:24:09.000" - ], - [ - "nyc", - 4.304109589, - "2025-01-01T18:37:54.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "prettier", - 0.2767123288, - "2023-08-14T17:10:02.000" - ], - [ - "prettier", - 0.3506849315, - "2023-09-20T14:27:15.000" - ], - [ - "prettier", - 0.7835616438, - "2024-03-10T21:51:53.000" - ], - [ - "prettier", - 1.1205479452, - "2024-06-08T13:54:33.000" - ], - [ - "prettier", - 1.2246575342, - "2024-08-16T04:24:09.000" - ], - [ - "react", - 0.6109589041, - "2025-01-01T18:37:54.000" - ], - [ - "react", - 1.2273972603, - "2024-03-10T21:51:53.000" - ], - [ - "react", - 3.095890411, - "2024-10-16T20:27:46.000" - ], - [ - "react-autosuggest", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-dom", - 0.6109589041, - "2025-01-01T18:37:54.000" - ], - [ - "react-dom", - 1.2273972603, - "2024-03-10T21:51:53.000" - ], - [ - "react-dom", - 3.095890411, - "2024-10-16T20:27:46.000" - ], - [ - "react-ga4", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-hook-form", - -0.0191780822, - "2025-01-01T18:37:54.000" - ], - [ - "react-i18next", - 0.3068493151, - "2024-03-10T21:51:53.000" - ], - [ - "react-i18next", - 0.5150684932, - "2024-06-08T13:54:33.000" - ], - [ - "react-i18next", - 0.7260273973, - "2024-08-16T04:24:09.000" - ], - [ - "react-i18next", - 0.9068493151, - "2024-10-16T20:27:46.000" - ], - [ - "react-i18next", - 1.1232876712, - "2025-01-01T18:37:54.000" - ], - [ - "react-i18next", - 2.2136986301, - "2023-08-14T17:10:02.000" - ], - [ - "react-i18next", - 2.2739726027, - "2023-09-20T14:27:15.000" - ], - [ - "react-idle-timer", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-media", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-modal", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-paginate", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "react-redux", - 0.8465753425, - "2023-09-20T14:27:15.000" - ], - [ - "react-redux", - 1.304109589, - "2024-03-10T21:51:53.000" - ], - [ - "react-redux", - 1.6054794521, - "2024-10-16T20:27:46.000" - ], - [ - "react-redux", - 2.2164383562, - "2025-01-01T18:37:54.000" - ], - [ - "react-router-dom", - 0.8520547945, - "2023-08-14T17:10:02.000" - ], - [ - "react-router-dom", - 0.9452054795, - "2023-09-20T14:27:15.000" - ], - [ - "react-router-dom", - 1.4273972603, - "2024-03-10T21:51:53.000" - ], - [ - "react-router-dom", - 1.6054794521, - "2024-06-08T13:54:33.000" - ], - [ - "react-router-dom", - 1.8684931507, - "2024-08-16T04:24:09.000" - ], - [ - "react-router-dom", - 2.0273972603, - "2024-10-16T20:27:46.000" - ], - [ - "react-router-dom", - 2.2273972603, - "2025-01-01T18:37:54.000" - ], - [ - "react-scripts", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "react-select", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-select-event", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-table", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "react-test-renderer", - 1.6657534247, - "2024-03-10T21:51:53.000" - ], - [ - "react-test-renderer", - 3.5315068493, - "2024-10-16T20:27:46.000" - ], - [ - "react-test-renderer", - 4.1424657534, - "2025-01-01T18:37:54.000" - ], - [ - "react-to-print", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "react-to-print", - 0.6273972603, - "2024-10-16T20:27:46.000" - ], - [ - "react-to-print", - 0.8630136986, - "2025-01-01T18:37:54.000" - ], - [ - "redux", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "redux", - 0.898630137, - "2025-01-01T18:37:54.000" - ], - [ - "redux-actions", - 3.9452054795, - "2024-06-08T13:54:33.000" - ], - [ - "redux-actions", - 5.3835616438, - "2025-01-01T18:37:54.000" - ], - [ - "redux-devtools-extension", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "redux-mock-store", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "redux-saga", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "redux-saga-routines", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "regenerator-runtime", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "sass", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "sass-loader", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "sass-loader", - 0.1506849315, - "2024-03-10T21:51:53.000" - ], - [ - "sass-loader", - 0.3068493151, - "2024-06-08T13:54:33.000" - ], - [ - "sass-loader", - 0.5835616438, - "2024-08-16T04:24:09.000" - ], - [ - "sass-loader", - 0.7369863014, - "2024-10-16T20:27:46.000" - ], - [ - "sass-loader", - 0.9424657534, - "2025-01-01T18:37:54.000" - ], - [ - "sass-resources-loader", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "sinon", - 0.2328767123, - "2023-09-20T14:27:15.000" - ], - [ - "sinon", - 0.3643835616, - "2024-03-10T21:51:53.000" - ], - [ - "sinon", - 0.901369863, - "2024-08-16T04:24:09.000" - ], - [ - "sinon", - 1.2328767123, - "2025-01-01T18:37:54.000" - ], - [ - "start-server-and-test", - 0.0, - "2023-09-20T14:27:15.000" - ], - [ - "start-server-and-test", - 0.7178082192, - "2024-03-10T21:51:53.000" - ], - [ - "start-server-and-test", - 1.2712328767, - "2024-06-08T13:54:33.000" - ], - [ - "start-server-and-test", - 1.4191780822, - "2024-08-16T04:24:09.000" - ], - [ - "start-server-and-test", - 1.5534246575, - "2024-10-16T20:27:46.000" - ], - [ - "start-server-and-test", - 1.7890410959, - "2025-01-01T18:37:54.000" - ], - [ - "storybook", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "storybook", - 0.095890411, - "2024-06-08T13:54:33.000" - ], - [ - "storybook", - 0.1342465753, - "2024-08-16T04:24:09.000" - ], - [ - "storybook", - 0.2767123288, - "2024-10-16T20:27:46.000" - ], - [ - "storybook", - 0.4493150685, - "2025-01-01T18:37:54.000" - ], - [ - "storybook-addon-apollo-client", - 0.0, - "2024-03-10T21:51:53.000" - ], - [ - "storybook-addon-apollo-client", - 0.2465753425, - "2023-09-20T14:27:15.000" - ], - [ - "storybook-addon-apollo-client", - 0.8356164384, - "2025-01-01T18:37:54.000" - ], - [ - "subscriptions-transport-ws", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "text-encoding", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "tippy.js", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "ts-loader", - 3.0931506849, - "2023-09-20T14:27:15.000" - ], - [ - "ts-loader", - 3.4767123288, - "2025-01-01T18:37:54.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T18:37:54.000" - ], - [ - "typescript", - 0.4082191781, - "2023-08-14T17:10:02.000" - ], - [ - "typescript", - 0.5616438356, - "2023-09-20T14:27:15.000" - ], - [ - "typescript", - 1.095890411, - "2024-03-10T21:51:53.000" - ], - [ - "typescript", - 1.1917808219, - "2024-06-08T13:54:33.000" - ], - [ - "typescript", - 1.4767123288, - "2024-08-16T04:24:09.000" - ], - [ - "typescript", - 1.6904109589, - "2024-10-16T20:27:46.000" - ], - [ - "vite", - 0.0, - "2024-10-16T20:27:46.000" - ], - [ - "vite", - 0.1205479452, - "2025-01-01T18:37:54.000" - ], - [ - "vite", - 0.1232876712, - "2024-03-10T21:51:53.000" - ], - [ - "vite", - 0.202739726, - "2024-06-08T13:54:33.000" - ], - [ - "vite-plugin-svgr", - 0.1589041096, - "2024-10-16T20:27:46.000" - ], - [ - "vite-plugin-svgr", - 1.1178082192, - "2025-01-01T18:37:54.000" - ], - [ - "vite-tsconfig-paths", - 0.0, - "2024-06-08T13:54:33.000" - ], - [ - "vite-tsconfig-paths", - 0.402739726, - "2024-10-16T20:27:46.000" - ], - [ - "vite-tsconfig-paths", - 0.7315068493, - "2025-01-01T18:37:54.000" - ], - [ - "vitest", - 0.0383561644, - "2025-01-01T18:37:54.000" - ], - [ - "vitest", - 0.3945205479, - "2024-03-10T21:51:53.000" - ], - [ - "vitest", - 0.5945205479, - "2024-06-08T13:54:33.000" - ], - [ - "vitest", - 0.8383561644, - "2024-08-16T04:24:09.000" - ], - [ - "vitest", - 1.0438356164, - "2024-10-16T20:27:46.000" - ], - [ - "wait-on", - 0.0, - "2024-08-16T04:24:09.000" - ], - [ - "wait-on", - 0.8219178082, - "2025-01-01T18:37:54.000" - ], - [ - "wait-on", - 1.7479452055, - "2023-09-20T14:27:15.000" - ], - [ - "wait-on", - 2.6602739726, - "2024-03-10T21:51:53.000" - ], - [ - "webpack", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "yup", - 0.0, - "2025-01-01T18:37:54.000" - ], - [ - "yup", - 2.2657534247, - "2023-09-20T14:27:15.000" - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "20 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 4693137, + "CodeBytes": 0, + "Lines": 122699, + "Code": 107771, + "Comment": 4372, + "Blank": 10556, + "Complexity": 9041, + "Count": 834, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 7579220, + "CodeBytes": 0, + "Lines": 211588, + "Code": 187031, + "Comment": 4770, + "Blank": 19787, + "Complexity": 34803, + "Count": 616, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 691357, + "CodeBytes": 0, + "Lines": 14842, + "Code": 12991, + "Comment": 609, + "Blank": 1242, + "Complexity": 68, + "Count": 375, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 53083, + "CodeBytes": 0, + "Lines": 2876, + "Code": 2405, + "Comment": 36, + "Blank": 435, + "Complexity": 0, + "Count": 89, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "GraphQL", + "Bytes": 157337, + "CodeBytes": 0, + "Lines": 4675, + "Code": 3508, + "Comment": 688, + "Blank": 479, + "Complexity": 289, + "Count": 68, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 134610, + "CodeBytes": 0, + "Lines": 2773, + "Code": 1969, + "Comment": 0, + "Blank": 804, + "Complexity": 0, + "Count": 40, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 25039, + "CodeBytes": 0, + "Lines": 926, + "Code": 765, + "Comment": 16, + "Blank": 145, + "Complexity": 0, + "Count": 38, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 120214, + "CodeBytes": 0, + "Lines": 4021, + "Code": 2745, + "Comment": 352, + "Blank": 924, + "Complexity": 25, + "Count": 35, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 469524, + "CodeBytes": 0, + "Lines": 11857, + "Code": 11853, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 19072, + "CodeBytes": 0, + "Lines": 637, + "Code": 400, + "Comment": 121, + "Blank": 116, + "Complexity": 49, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 52564, + "CodeBytes": 0, + "Lines": 1628, + "Code": 1407, + "Comment": 104, + "Blank": 117, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 11498, + "CodeBytes": 0, + "Lines": 315, + "Code": 170, + "Comment": 86, + "Blank": 59, + "Complexity": 20, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go Template", + "Bytes": 1497, + "CodeBytes": 0, + "Lines": 104, + "Code": 103, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 5381, + "CodeBytes": 0, + "Lines": 186, + "Code": 152, + "Comment": 15, + "Blank": 19, + "Complexity": 1, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 171, + "CodeBytes": 0, + "Lines": 16, + "Code": 8, + "Comment": 4, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1271, + "CodeBytes": 0, + "Lines": 49, + "Code": 32, + "Comment": 4, + "Blank": 13, + "Complexity": 5, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 57, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 13028, + "CodeBytes": 0, + "Lines": 479, + "Code": 436, + "Comment": 16, + "Blank": 27, + "Complexity": 17, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 316, + "CodeBytes": 0, + "Lines": 15, + "Code": 15, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 11000253.009270834, + "estimatedScheduleMonths_low": 35.42907697498214, + "estimatedPeople_low": 30.247699115822897, + "estimatedCost_high": 34281592.78947181, + "estimatedScheduleMonths_high": 35.42907697498214, + "estimatedPeople_high": 30.247699115822897, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 834 122699 10556 4372 107771 9041\n(ULOC) 50713\n-------------------------------------------------------------------------------\nGo 616 211588 19787 4770 187031 34803\n(ULOC) 46504\n-------------------------------------------------------------------------------\nSQL 375 14842 1242 609 12991 68\n(ULOC) 7070\n-------------------------------------------------------------------------------\nSass 89 2876 435 36 2405 0\n(ULOC) 1437\n-------------------------------------------------------------------------------\nGraphQL 68 4675 479 688 3508 289\n(ULOC) 2432\n-------------------------------------------------------------------------------\nMarkdown 40 2773 804 0 1969 0\n(ULOC) 1758\n-------------------------------------------------------------------------------\nHTML 38 926 145 16 765 0\n(ULOC) 465\n-------------------------------------------------------------------------------\nJavaScript 35 4021 924 352 2745 25\n(ULOC) 1559\n-------------------------------------------------------------------------------\nJSON 31 11857 4 0 11853 0\n(ULOC) 4895\n-------------------------------------------------------------------------------\nBASH 21 637 116 121 400 49\n(ULOC) 406\n-------------------------------------------------------------------------------\nYAML 18 1628 117 104 1407 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nShell 15 315 59 86 170 20\n(ULOC) 209\n-------------------------------------------------------------------------------\nGo Template 6 104 1 0 103 0\n(ULOC) 58\n-------------------------------------------------------------------------------\nTypeScript Typings 5 186 19 15 152 1\n(ULOC) 154\n-------------------------------------------------------------------------------\nDocker ignore 1 16 4 4 8 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nDockerfile 1 49 13 4 32 5\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nPlain Text 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nRuby 1 479 27 16 436 17\n(ULOC) 301\n-------------------------------------------------------------------------------\nTOML 1 15 0 0 15 0\n(ULOC) 8\n───────────────────────────────────────────────────────────────────────────────\nTotal 2197 379889 34764 11193 333932 44318\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 117789\nDRYness % 0.31\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $12,062,470\nEstimated Schedule Effort (organic) 35.43 months\nEstimated People Required (organic) 30.25\n───────────────────────────────────────────────────────────────────────────────\nProcessed 14039733 bytes, 14.040 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 4693137, + "Go": 1697715, + "JavaScript": 120214, + "SCSS": 53083, + "PLpgSQL": 51293, + "Shell": 30570, + "HTML": 25039, + "Ruby": 13028, + "Dockerfile": 1271 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@apollo/client", + -0.0739726027, + "2024-10-16T20:27:46.000" + ], + [ + "@apollo/client", + -0.002739726, + "2023-09-20T14:27:15.000" + ], + [ + "@apollo/client", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@apollo/client", + 0.0931506849, + "2024-06-08T13:54:33.000" + ], + [ + "@apollo/client", + 0.3260273973, + "2024-08-16T04:24:09.000" + ], + [ + "@apollo/react-testing", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "@babel/core", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@babel/plugin-syntax-class-properties", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@babel/preset-env", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@craco/craco", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "@cypress/code-coverage", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@cypress/webpack-preprocessor", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@cypress/webpack-preprocessor", + 0.3287671233, + "2023-09-20T14:27:15.000" + ], + [ + "@graphql-codegen/cli", + -0.0849315068, + "2023-09-20T14:27:15.000" + ], + [ + "@graphql-codegen/cli", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@graphql-codegen/cli", + 0.5369863014, + "2024-03-10T21:51:53.000" + ], + [ + "@graphql-codegen/cli", + 0.6684931507, + "2024-10-16T20:27:46.000" + ], + [ + "@graphql-codegen/client-preset", + -0.1397260274, + "2023-09-20T14:27:15.000" + ], + [ + "@graphql-codegen/client-preset", + -0.095890411, + "2025-01-01T18:37:54.000" + ], + [ + "@graphql-codegen/client-preset", + 0, + "2023-08-14T17:10:02.000" + ], + [ + "@graphql-codegen/client-preset", + 0.5808219178, + "2024-03-10T21:51:53.000" + ], + [ + "@graphql-codegen/client-preset", + 0.8136986301, + "2024-06-08T13:54:33.000" + ], + [ + "@graphql-codegen/client-preset", + 1.0109589041, + "2024-08-16T04:24:09.000" + ], + [ + "@graphql-codegen/client-preset", + 1.2054794521, + "2024-10-16T20:27:46.000" + ], + [ + "@graphql-codegen/introspection", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@graphql-codegen/introspection", + 0.0383561644, + "2024-10-16T20:27:46.000" + ], + [ + "@graphql-codegen/introspection", + 0.7452054795, + "2024-03-10T21:51:53.000" + ], + [ + "@graphql-codegen/typed-document-node", + -0.0657534247, + "2025-01-01T18:37:54.000" + ], + [ + "@graphql-codegen/typed-document-node", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "@graphql-codegen/typed-document-node", + 0.2657534247, + "2024-10-16T20:27:46.000" + ], + [ + "@graphql-codegen/typescript-react-apollo", + -0.3123287671, + "2025-01-01T18:37:54.000" + ], + [ + "@graphql-codegen/typescript-react-apollo", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@json2csv/formatters", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@json2csv/plainjs", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@json2csv/transforms", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@okta/okta-auth-js", + 0.8547945205, + "2023-08-14T17:10:02.000" + ], + [ + "@okta/okta-auth-js", + 0.9342465753, + "2023-09-20T14:27:15.000" + ], + [ + "@okta/okta-auth-js", + 1.3452054795, + "2024-03-10T21:51:53.000" + ], + [ + "@okta/okta-auth-js", + 1.6657534247, + "2024-08-16T04:24:09.000" + ], + [ + "@okta/okta-auth-js", + 1.9342465753, + "2024-10-16T20:27:46.000" + ], + [ + "@okta/okta-auth-js", + 2.2054794521, + "2025-01-01T18:37:54.000" + ], + [ + "@okta/okta-react", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@okta/okta-signin-widget", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@okta/okta-signin-widget", + 0.5342465753, + "2024-03-10T21:51:53.000" + ], + [ + "@okta/okta-signin-widget", + 0.7671232877, + "2023-08-14T17:10:02.000" + ], + [ + "@okta/okta-signin-widget", + 0.8630136986, + "2023-09-14T02:10:47.000" + ], + [ + "@okta/okta-signin-widget", + 0.8821917808, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/addon-actions", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/addon-actions", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/addon-actions", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/addon-actions", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/addon-actions", + 0.3863013699, + "2023-08-14T17:10:02.000" + ], + [ + "@storybook/addon-actions", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@storybook/addon-actions", + 0.4712328767, + "2023-09-14T02:10:47.000" + ], + [ + "@storybook/addon-actions", + 0.495890411, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/addon-controls", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/addon-controls", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/addon-controls", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/addon-controls", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/addon-controls", + 0.3863013699, + "2023-08-14T17:10:02.000" + ], + [ + "@storybook/addon-controls", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@storybook/addon-controls", + 0.4712328767, + "2023-09-14T02:10:47.000" + ], + [ + "@storybook/addon-controls", + 0.495890411, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/addon-essentials", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/addon-essentials", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/addon-essentials", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/addon-essentials", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/addon-essentials", + 0.3863013699, + "2023-08-14T17:10:02.000" + ], + [ + "@storybook/addon-essentials", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@storybook/addon-essentials", + 0.4712328767, + "2023-09-14T02:10:47.000" + ], + [ + "@storybook/addon-essentials", + 0.495890411, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/addon-links", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/addon-links", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/addon-links", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/addon-links", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/addon-links", + 0.3863013699, + "2023-08-14T17:10:02.000" + ], + [ + "@storybook/addon-links", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@storybook/addon-links", + 0.4712328767, + "2023-09-14T02:10:47.000" + ], + [ + "@storybook/addon-links", + 0.495890411, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/node-logger", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/node-logger", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/node-logger", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/node-logger", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/node-logger", + 0.3863013699, + "2023-08-14T17:10:02.000" + ], + [ + "@storybook/node-logger", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@storybook/node-logger", + 0.4712328767, + "2023-09-14T02:10:47.000" + ], + [ + "@storybook/node-logger", + 0.495890411, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/react", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/react", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/react", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/react", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/react", + 0.3863013699, + "2023-08-14T17:10:02.000" + ], + [ + "@storybook/react", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@storybook/react", + 0.4712328767, + "2023-09-14T02:10:47.000" + ], + [ + "@storybook/react", + 0.495890411, + "2023-09-20T14:27:15.000" + ], + [ + "@storybook/react-vite", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@storybook/react-vite", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "@storybook/react-vite", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@storybook/react-vite", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "@storybook/react-vite", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "@testing-library/jest-dom", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@testing-library/jest-dom", + 0.0712328767, + "2023-08-14T17:10:02.000" + ], + [ + "@testing-library/jest-dom", + 0.1342465753, + "2023-09-20T14:27:15.000" + ], + [ + "@testing-library/jest-dom", + 0.5534246575, + "2024-03-10T21:51:53.000" + ], + [ + "@testing-library/react", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@testing-library/react", + 1.6931506849, + "2023-09-20T14:27:15.000" + ], + [ + "@testing-library/react", + 2.1452054795, + "2024-08-16T04:24:09.000" + ], + [ + "@testing-library/react", + 2.3835616438, + "2024-10-16T20:27:46.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-03-10T21:51:53.000" + ], + [ + "@testing-library/user-event", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@testing-library/user-event", + 0.8054794521, + "2023-09-14T02:10:47.000" + ], + [ + "@testing-library/user-event", + 1.9095890411, + "2023-09-20T14:27:15.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-03-10T21:51:53.000" + ], + [ + "@tiptap/core", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/core", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/core", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/extension-character-count", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/extension-character-count", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/extension-character-count", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/extension-document", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/extension-document", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/extension-document", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/extension-mention", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/extension-mention", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/extension-mention", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/extension-paragraph", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/extension-paragraph", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/extension-paragraph", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/extension-text", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/extension-text", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/extension-text", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/extension-text-style", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/pm", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/pm", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/pm", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/react", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/react", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/react", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/starter-kit", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/starter-kit", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/starter-kit", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@tiptap/suggestion", + -0.0684931507, + "2024-06-08T13:54:33.000" + ], + [ + "@tiptap/suggestion", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@tiptap/suggestion", + 0.1863013699, + "2025-01-01T18:37:54.000" + ], + [ + "@trussworks/react-uswds", + 0.1561643836, + "2024-03-10T21:51:53.000" + ], + [ + "@trussworks/react-uswds", + 0.197260274, + "2024-08-16T04:24:09.000" + ], + [ + "@trussworks/react-uswds", + 0.6328767123, + "2025-01-01T18:37:54.000" + ], + [ + "@trussworks/react-uswds", + 1.2547945205, + "2023-08-14T17:10:02.000" + ], + [ + "@trussworks/react-uswds", + 1.402739726, + "2023-09-20T14:27:15.000" + ], + [ + "@types/apollo-upload-client", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "@types/apollo-upload-client", + 0.1452054795, + "2025-01-01T18:37:54.000" + ], + [ + "@types/enzyme", + 1.7753424658, + "2023-09-20T14:27:15.000" + ], + [ + "@types/enzyme", + 2.4136986301, + "2024-10-16T20:27:46.000" + ], + [ + "@types/jest", + 2.2054794521, + "2023-08-14T17:10:02.000" + ], + [ + "@types/jest", + 2.3232876712, + "2023-09-14T02:10:47.000" + ], + [ + "@types/jest", + 2.3890410959, + "2023-09-20T14:27:15.000" + ], + [ + "@types/jest", + 2.7698630137, + "2024-08-16T04:24:09.000" + ], + [ + "@types/jest", + 3.3835616438, + "2024-10-16T20:27:46.000" + ], + [ + "@types/jest", + 3.4931506849, + "2025-01-01T18:37:54.000" + ], + [ + "@types/json2csv", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/lodash", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/luxon", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/luxon", + 2.0383561644, + "2023-08-14T17:10:02.000" + ], + [ + "@types/luxon", + 2.1479452055, + "2023-09-20T14:27:15.000" + ], + [ + "@types/luxon", + 2.5369863014, + "2024-03-10T21:51:53.000" + ], + [ + "@types/no-scroll", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/node", + 2.1287671233, + "2023-08-14T17:10:02.000" + ], + [ + "@types/node", + 2.2, + "2023-09-14T02:10:47.000" + ], + [ + "@types/node", + 2.2328767123, + "2023-09-20T14:27:15.000" + ], + [ + "@types/node", + 2.6931506849, + "2024-03-10T21:51:53.000" + ], + [ + "@types/node", + 2.9424657534, + "2024-06-08T13:54:33.000" + ], + [ + "@types/node", + 3.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "@types/node", + 3.2821917808, + "2024-10-16T20:27:46.000" + ], + [ + "@types/node", + 3.5150684932, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react", + 2.1671232877, + "2023-08-14T17:10:02.000" + ], + [ + "@types/react", + 2.202739726, + "2023-09-14T02:10:47.000" + ], + [ + "@types/react", + 2.2767123288, + "2023-09-20T14:27:15.000" + ], + [ + "@types/react", + 2.7424657534, + "2024-03-10T21:51:53.000" + ], + [ + "@types/react", + 2.9561643836, + "2024-08-16T04:24:09.000" + ], + [ + "@types/react", + 3.3178082192, + "2024-10-16T20:27:46.000" + ], + [ + "@types/react", + 3.5287671233, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-autosuggest", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-autosuggest", + 0.1397260274, + "2024-03-10T21:51:53.000" + ], + [ + "@types/react-csv", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "@types/react-dom", + -0.0054794521, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-dom", + 2.0657534247, + "2023-09-20T14:27:15.000" + ], + [ + "@types/react-dom", + 2.7178082192, + "2024-03-10T21:51:53.000" + ], + [ + "@types/react-dom", + 2.8547945205, + "2024-08-16T04:24:09.000" + ], + [ + "@types/react-dom", + 3.3178082192, + "2024-10-16T20:27:46.000" + ], + [ + "@types/react-modal", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-redux", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-router-dom", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-table", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/react-test-renderer", + -0.002739726, + "2024-03-10T21:51:53.000" + ], + [ + "@types/react-test-renderer", + 0.4246575342, + "2024-10-16T20:27:46.000" + ], + [ + "@types/react-test-renderer", + 1.0383561644, + "2025-01-01T18:37:54.000" + ], + [ + "@types/redux-mock-store", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/redux-saga-routines", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/sinon", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "@types/sinon", + 0.2273972603, + "2025-01-01T18:37:54.000" + ], + [ + "@types/text-encoding", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@types/yup", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "@uswds/uswds", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "@uswds/uswds", + 0.2054794521, + "2025-01-01T18:37:54.000" + ], + [ + "@vitejs/plugin-react", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "@vitest/coverage-v8", + 0.3945205479, + "2024-03-10T21:51:53.000" + ], + [ + "@vitest/coverage-v8", + 0.5945205479, + "2024-06-08T13:54:33.000" + ], + [ + "@vitest/coverage-v8", + 0.8383561644, + "2024-08-16T04:24:09.000" + ], + [ + "@vitest/coverage-v8", + 1.0438356164, + "2024-10-16T20:27:46.000" + ], + [ + "@vitest/coverage-v8", + 1.1780821918, + "2025-01-01T18:37:54.000" + ], + [ + "@wojtekmaj/enzyme-adapter-react-17", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "apollo", + 0, + "2024-06-08T13:54:33.000" + ], + [ + "apollo-link", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "apollo-link-error", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "apollo-upload-client", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "apollo-upload-client", + 1.8767123288, + "2025-01-01T18:37:54.000" + ], + [ + "autoprefixer", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "axios", + -0.0493150685, + "2024-03-10T21:51:53.000" + ], + [ + "axios", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "axios", + 1, + "2023-08-14T17:10:02.000" + ], + [ + "axios", + 1.3315068493, + "2023-09-20T14:27:15.000" + ], + [ + "babel-loader", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "babel-loader", + 3.295890411, + "2023-09-20T14:27:15.000" + ], + [ + "classnames", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "cross-fetch", + -0.002739726, + "2025-01-01T18:37:54.000" + ], + [ + "cross-fetch", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "cypress", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "cypress", + 0.0739726027, + "2024-06-08T13:54:33.000" + ], + [ + "cypress", + 0.2684931507, + "2024-08-16T04:24:09.000" + ], + [ + "cypress", + 0.3452054795, + "2023-08-14T17:10:02.000" + ], + [ + "cypress", + 0.3835616438, + "2024-10-16T20:27:46.000" + ], + [ + "cypress-file-upload", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "cypress-otp", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "detect-browser", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "enzyme", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "enzyme-to-json", + 0, + "2023-08-14T17:10:02.000" + ], + [ + "eslint", + 0.0493150685, + "2024-10-16T20:27:46.000" + ], + [ + "eslint", + 0.2410958904, + "2025-01-01T18:37:54.000" + ], + [ + "eslint", + 2.0301369863, + "2023-08-14T17:10:02.000" + ], + [ + "eslint", + 2.1068493151, + "2023-09-20T14:27:15.000" + ], + [ + "eslint", + 2.5671232877, + "2024-03-10T21:51:53.000" + ], + [ + "eslint", + 2.8356164384, + "2024-06-08T13:54:33.000" + ], + [ + "eslint", + 3.0273972603, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-config-airbnb", + 1.1315068493, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-config-prettier", + 0.0054794521, + "2023-09-20T14:27:15.000" + ], + [ + "eslint-config-prettier", + 0.3315068493, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-config-react-app", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-plugin-cypress", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "eslint-plugin-cypress", + 0.0520547945, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-plugin-cypress", + 0.1178082192, + "2024-06-08T13:54:33.000" + ], + [ + "eslint-plugin-cypress", + 0.3232876712, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-plugin-import", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-plugin-prettier", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-plugin-prettier", + 1.8876712329, + "2023-09-20T14:27:15.000" + ], + [ + "eslint-plugin-prettier", + 2.3890410959, + "2024-06-08T13:54:33.000" + ], + [ + "eslint-plugin-prettier", + 2.9068493151, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-plugin-react", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-plugin-react-hooks", + -0.2082191781, + "2024-03-10T21:51:53.000" + ], + [ + "eslint-plugin-react-hooks", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "eslint-plugin-react-hooks", + 0.4575342466, + "2024-10-16T20:27:46.000" + ], + [ + "eslint-plugin-react-hooks", + 0.6109589041, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-plugin-simple-import-sort", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "eslint-plugin-simple-import-sort", + 2.1369863014, + "2023-09-20T14:27:15.000" + ], + [ + "eslint-plugin-simple-import-sort", + 3.1726027397, + "2024-03-10T21:51:53.000" + ], + [ + "eslint-plugin-simple-import-sort", + 3.3452054795, + "2024-06-08T13:54:33.000" + ], + [ + "eslint-plugin-simple-import-sort", + 3.5643835616, + "2024-08-16T04:24:09.000" + ], + [ + "font-awesome", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "formik", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "glob", + -0.002739726, + "2025-01-01T18:37:54.000" + ], + [ + "glob", + 0, + "2024-06-08T13:54:33.000" + ], + [ + "graphql", + -0.002739726, + "2024-10-16T20:27:46.000" + ], + [ + "graphql", + 0.4821917808, + "2025-01-01T18:37:54.000" + ], + [ + "graphql", + 1.5397260274, + "2023-08-14T17:10:02.000" + ], + [ + "graphql", + 1.6849315068, + "2023-09-14T02:10:47.000" + ], + [ + "graphql", + 1.7808219178, + "2024-06-08T13:54:33.000" + ], + [ + "graphql-schema-linter", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "html-react-parser", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "i18next", + 0.0493150685, + "2024-03-10T21:51:53.000" + ], + [ + "i18next", + 0.0794520548, + "2025-01-01T18:37:54.000" + ], + [ + "i18next", + 0.2520547945, + "2024-06-08T13:54:33.000" + ], + [ + "i18next", + 0.4904109589, + "2024-08-16T04:24:09.000" + ], + [ + "i18next", + 0.6493150685, + "2024-10-16T20:27:46.000" + ], + [ + "i18next", + 2.4164383562, + "2023-08-14T17:10:02.000" + ], + [ + "i18next", + 2.498630137, + "2023-09-20T14:27:15.000" + ], + [ + "i18next-browser-languagedetector", + 2.8904109589, + "2023-09-20T14:27:15.000" + ], + [ + "i18next-browser-languagedetector", + 3.2657534247, + "2024-03-10T21:51:53.000" + ], + [ + "i18next-browser-languagedetector", + 3.7671232877, + "2024-10-16T20:27:46.000" + ], + [ + "i18next-browser-languagedetector", + 4.3452054795, + "2025-01-01T18:37:54.000" + ], + [ + "istanbul-lib-coverage", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "jest-canvas-mock", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "jest-launchdarkly-mock", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "jest-launchdarkly-mock", + 1.3369863014, + "2023-09-20T14:27:15.000" + ], + [ + "js-base64", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "jsdom", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "jsdom", + 0.6547945205, + "2024-03-10T21:51:53.000" + ], + [ + "jsdom", + 0.997260274, + "2024-06-08T13:54:33.000" + ], + [ + "jsdom", + 1.1506849315, + "2024-08-16T04:24:09.000" + ], + [ + "jsdom", + 1.3232876712, + "2024-10-16T20:27:46.000" + ], + [ + "json2csv", + 0.9068493151, + "2023-09-14T02:10:47.000" + ], + [ + "launchdarkly-react-client-sdk", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "launchdarkly-react-client-sdk", + 0.304109589, + "2024-03-10T21:51:53.000" + ], + [ + "launchdarkly-react-client-sdk", + 0.5616438356, + "2023-08-14T17:10:02.000" + ], + [ + "launchdarkly-react-client-sdk", + 0.6657534247, + "2023-09-20T14:27:15.000" + ], + [ + "lodash", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "luxon", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "luxon", + 0.5917808219, + "2023-08-14T17:10:02.000" + ], + [ + "luxon", + 0.6657534247, + "2023-09-20T14:27:15.000" + ], + [ + "luxon", + 0.8547945205, + "2024-03-10T21:51:53.000" + ], + [ + "markdown-spellcheck", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "no-scroll", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "nyc", + 0, + "2024-06-08T13:54:33.000" + ], + [ + "nyc", + 4.0246575342, + "2024-08-16T04:24:09.000" + ], + [ + "nyc", + 4.304109589, + "2025-01-01T18:37:54.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "prettier", + 0.2767123288, + "2023-08-14T17:10:02.000" + ], + [ + "prettier", + 0.3506849315, + "2023-09-20T14:27:15.000" + ], + [ + "prettier", + 0.7835616438, + "2024-03-10T21:51:53.000" + ], + [ + "prettier", + 1.1205479452, + "2024-06-08T13:54:33.000" + ], + [ + "prettier", + 1.2246575342, + "2024-08-16T04:24:09.000" + ], + [ + "react", + 0.6109589041, + "2025-01-01T18:37:54.000" + ], + [ + "react", + 1.2273972603, + "2024-03-10T21:51:53.000" + ], + [ + "react", + 3.095890411, + "2024-10-16T20:27:46.000" + ], + [ + "react-autosuggest", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-dom", + 0.6109589041, + "2025-01-01T18:37:54.000" + ], + [ + "react-dom", + 1.2273972603, + "2024-03-10T21:51:53.000" + ], + [ + "react-dom", + 3.095890411, + "2024-10-16T20:27:46.000" + ], + [ + "react-ga4", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-hook-form", + -0.0191780822, + "2025-01-01T18:37:54.000" + ], + [ + "react-i18next", + 0.3068493151, + "2024-03-10T21:51:53.000" + ], + [ + "react-i18next", + 0.5150684932, + "2024-06-08T13:54:33.000" + ], + [ + "react-i18next", + 0.7260273973, + "2024-08-16T04:24:09.000" + ], + [ + "react-i18next", + 0.9068493151, + "2024-10-16T20:27:46.000" + ], + [ + "react-i18next", + 1.1232876712, + "2025-01-01T18:37:54.000" + ], + [ + "react-i18next", + 2.2136986301, + "2023-08-14T17:10:02.000" + ], + [ + "react-i18next", + 2.2739726027, + "2023-09-20T14:27:15.000" + ], + [ + "react-idle-timer", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-media", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-modal", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-paginate", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "react-redux", + 0.8465753425, + "2023-09-20T14:27:15.000" + ], + [ + "react-redux", + 1.304109589, + "2024-03-10T21:51:53.000" + ], + [ + "react-redux", + 1.6054794521, + "2024-10-16T20:27:46.000" + ], + [ + "react-redux", + 2.2164383562, + "2025-01-01T18:37:54.000" + ], + [ + "react-router-dom", + 0.8520547945, + "2023-08-14T17:10:02.000" + ], + [ + "react-router-dom", + 0.9452054795, + "2023-09-20T14:27:15.000" + ], + [ + "react-router-dom", + 1.4273972603, + "2024-03-10T21:51:53.000" + ], + [ + "react-router-dom", + 1.6054794521, + "2024-06-08T13:54:33.000" + ], + [ + "react-router-dom", + 1.8684931507, + "2024-08-16T04:24:09.000" + ], + [ + "react-router-dom", + 2.0273972603, + "2024-10-16T20:27:46.000" + ], + [ + "react-router-dom", + 2.2273972603, + "2025-01-01T18:37:54.000" + ], + [ + "react-scripts", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "react-select", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-select-event", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-table", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "react-test-renderer", + 1.6657534247, + "2024-03-10T21:51:53.000" + ], + [ + "react-test-renderer", + 3.5315068493, + "2024-10-16T20:27:46.000" + ], + [ + "react-test-renderer", + 4.1424657534, + "2025-01-01T18:37:54.000" + ], + [ + "react-to-print", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "react-to-print", + 0.6273972603, + "2024-10-16T20:27:46.000" + ], + [ + "react-to-print", + 0.8630136986, + "2025-01-01T18:37:54.000" + ], + [ + "redux", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "redux", + 0.898630137, + "2025-01-01T18:37:54.000" + ], + [ + "redux-actions", + 3.9452054795, + "2024-06-08T13:54:33.000" + ], + [ + "redux-actions", + 5.3835616438, + "2025-01-01T18:37:54.000" + ], + [ + "redux-devtools-extension", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "redux-mock-store", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "redux-saga", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "redux-saga-routines", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "regenerator-runtime", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "sass", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "sass-loader", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "sass-loader", + 0.1506849315, + "2024-03-10T21:51:53.000" + ], + [ + "sass-loader", + 0.3068493151, + "2024-06-08T13:54:33.000" + ], + [ + "sass-loader", + 0.5835616438, + "2024-08-16T04:24:09.000" + ], + [ + "sass-loader", + 0.7369863014, + "2024-10-16T20:27:46.000" + ], + [ + "sass-loader", + 0.9424657534, + "2025-01-01T18:37:54.000" + ], + [ + "sass-resources-loader", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "sinon", + 0.2328767123, + "2023-09-20T14:27:15.000" + ], + [ + "sinon", + 0.3643835616, + "2024-03-10T21:51:53.000" + ], + [ + "sinon", + 0.901369863, + "2024-08-16T04:24:09.000" + ], + [ + "sinon", + 1.2328767123, + "2025-01-01T18:37:54.000" + ], + [ + "start-server-and-test", + 0, + "2023-09-20T14:27:15.000" + ], + [ + "start-server-and-test", + 0.7178082192, + "2024-03-10T21:51:53.000" + ], + [ + "start-server-and-test", + 1.2712328767, + "2024-06-08T13:54:33.000" + ], + [ + "start-server-and-test", + 1.4191780822, + "2024-08-16T04:24:09.000" + ], + [ + "start-server-and-test", + 1.5534246575, + "2024-10-16T20:27:46.000" + ], + [ + "start-server-and-test", + 1.7890410959, + "2025-01-01T18:37:54.000" + ], + [ + "storybook", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "storybook", + 0.095890411, + "2024-06-08T13:54:33.000" + ], + [ + "storybook", + 0.1342465753, + "2024-08-16T04:24:09.000" + ], + [ + "storybook", + 0.2767123288, + "2024-10-16T20:27:46.000" + ], + [ + "storybook", + 0.4493150685, + "2025-01-01T18:37:54.000" + ], + [ + "storybook-addon-apollo-client", + 0, + "2024-03-10T21:51:53.000" + ], + [ + "storybook-addon-apollo-client", + 0.2465753425, + "2023-09-20T14:27:15.000" + ], + [ + "storybook-addon-apollo-client", + 0.8356164384, + "2025-01-01T18:37:54.000" + ], + [ + "subscriptions-transport-ws", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "text-encoding", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "tippy.js", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "ts-loader", + 3.0931506849, + "2023-09-20T14:27:15.000" + ], + [ + "ts-loader", + 3.4767123288, + "2025-01-01T18:37:54.000" + ], + [ + "ts-node", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "typescript", + -0.1095890411, + "2025-01-01T18:37:54.000" + ], + [ + "typescript", + 0.4082191781, + "2023-08-14T17:10:02.000" + ], + [ + "typescript", + 0.5616438356, + "2023-09-20T14:27:15.000" + ], + [ + "typescript", + 1.095890411, + "2024-03-10T21:51:53.000" + ], + [ + "typescript", + 1.1917808219, + "2024-06-08T13:54:33.000" + ], + [ + "typescript", + 1.4767123288, + "2024-08-16T04:24:09.000" + ], + [ + "typescript", + 1.6904109589, + "2024-10-16T20:27:46.000" + ], + [ + "vite", + 0, + "2024-10-16T20:27:46.000" + ], + [ + "vite", + 0.1205479452, + "2025-01-01T18:37:54.000" + ], + [ + "vite", + 0.1232876712, + "2024-03-10T21:51:53.000" + ], + [ + "vite", + 0.202739726, + "2024-06-08T13:54:33.000" + ], + [ + "vite-plugin-svgr", + 0.1589041096, + "2024-10-16T20:27:46.000" + ], + [ + "vite-plugin-svgr", + 1.1178082192, + "2025-01-01T18:37:54.000" + ], + [ + "vite-tsconfig-paths", + 0, + "2024-06-08T13:54:33.000" + ], + [ + "vite-tsconfig-paths", + 0.402739726, + "2024-10-16T20:27:46.000" + ], + [ + "vite-tsconfig-paths", + 0.7315068493, + "2025-01-01T18:37:54.000" + ], + [ + "vitest", + 0.0383561644, + "2025-01-01T18:37:54.000" + ], + [ + "vitest", + 0.3945205479, + "2024-03-10T21:51:53.000" + ], + [ + "vitest", + 0.5945205479, + "2024-06-08T13:54:33.000" + ], + [ + "vitest", + 0.8383561644, + "2024-08-16T04:24:09.000" + ], + [ + "vitest", + 1.0438356164, + "2024-10-16T20:27:46.000" + ], + [ + "wait-on", + 0, + "2024-08-16T04:24:09.000" + ], + [ + "wait-on", + 0.8219178082, + "2025-01-01T18:37:54.000" + ], + [ + "wait-on", + 1.7479452055, + "2023-09-20T14:27:15.000" + ], + [ + "wait-on", + 2.6602739726, + "2024-03-10T21:51:53.000" + ], + [ + "webpack", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "yup", + 0, + "2025-01-01T18:37:54.000" + ], + [ + "yup", + 2.2657534247, + "2023-09-20T14:27:15.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/newrelic_mysql_java_plugin/newrelic_mysql_java_plugin_data.json b/app/site/_data/CMSgov/newrelic_mysql_java_plugin/newrelic_mysql_java_plugin_data.json index 36512c8676..414ce68ace 100644 --- a/app/site/_data/CMSgov/newrelic_mysql_java_plugin/newrelic_mysql_java_plugin_data.json +++ b/app/site/_data/CMSgov/newrelic_mysql_java_plugin/newrelic_mysql_java_plugin_data.json @@ -1,353 +1,353 @@ { - "url": "https://github.com/CMSgov/newrelic_mysql_java_plugin", - "owner": "CMSgov", - "name": "newrelic_mysql_java_plugin", - "description": "MySQL Metrics Plugin", - "commits_count": 245, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 4, - "stargazers_count": 2, - "watchers_count": 32, - "total_project_lines": 2388, - "average_project_lines": 119, - "total_project_comment_lines": 263, - "average_project_comment_lines": 13, - "total_project_blank_lines": 441, - "average_blank_lines": 22, - "commits_by_month": { - "2014/10": 1, - "2014/6": 2, - "2014/5": 4, - "2014/4": 16, - "2014/3": 4, - "2014/1": 3 + "url": "https://github.com/CMSgov/newrelic_mysql_java_plugin", + "owner": "CMSgov", + "name": "newrelic_mysql_java_plugin", + "description": "MySQL Metrics Plugin", + "commits_count": 245, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 4, + "stargazers_count": 2, + "watchers_count": 32, + "total_project_lines": 2388, + "average_project_lines": 119, + "total_project_comment_lines": 263, + "average_project_comment_lines": 13, + "total_project_blank_lines": 441, + "average_blank_lines": 22, + "commits_by_month": { + "2014/10": 1, + "2014/6": 2, + "2014/5": 4, + "2014/4": 16, + "2014/3": 4, + "2014/1": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2014-10-29T12:23:48Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:12Z", + "repo": { + "name": "github.com/CMSgov/newrelic_mysql_java_plugin", + "commit": "bae6bd022cbe47133bb9a919d9fb32338b1c9327" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2014-10-29T12:23:48Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:12Z", - "repo": { - "name": "github.com/CMSgov/newrelic_mysql_java_plugin", - "commit": "bae6bd022cbe47133bb9a919d9fb32338b1c9327" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.3, - "checks": [ - { - "details": null, - "score": 6, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 79380, - "CodeBytes": 0, - "Lines": 1765, - "Code": 1253, - "Comment": 262, - "Blank": 250, - "Complexity": 135, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5429, - "CodeBytes": 0, - "Lines": 37, - "Code": 37, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 17083, - "CodeBytes": 0, - "Lines": 364, - "Code": 210, - "Comment": 0, - "Blank": 154, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5506, - "CodeBytes": 0, - "Lines": 110, - "Code": 87, - "Comment": 0, - "Blank": 23, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1075, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 324, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 3981, - "CodeBytes": 0, - "Lines": 87, - "Code": 76, - "Comment": 1, - "Blank": 10, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 42581.49697298271, - "estimatedScheduleMonths_low": 4.292702321845686, - "estimatedPeople_low": 0.9663615905050673, - "estimatedCost_high": 132702.54223822462, - "estimatedScheduleMonths_high": 4.292702321845686, - "estimatedPeople_high": 0.9663615905050673, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 10 1765 250 262 1253 135\n(ULOC) 1057\n-------------------------------------------------------------------------------\nJSON 3 37 0 0 37 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nMarkdown 2 364 154 0 210 0\n(ULOC) 174\n-------------------------------------------------------------------------------\nPlain Text 2 110 23 0 87 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nSQL 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 1 87 10 1 76 0\n(ULOC) 73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 20 2388 441 263 1684 135\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1426\nDRYness % 0.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $46,693\nEstimated Schedule Effort (organic) 4.29 months\nEstimated People Required (organic) 0.97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 112778 bytes, 0.113 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.3, + "checks": [ + { + "details": null, + "score": 6, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 79380, + "CodeBytes": 0, + "Lines": 1765, + "Code": 1253, + "Comment": 262, + "Blank": 250, + "Complexity": 135, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5429, + "CodeBytes": 0, + "Lines": 37, + "Code": 37, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 17083, + "CodeBytes": 0, + "Lines": 364, + "Code": 210, + "Comment": 0, + "Blank": 154, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5506, + "CodeBytes": 0, + "Lines": 110, + "Code": 87, + "Comment": 0, + "Blank": 23, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1075, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 324, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 3981, + "CodeBytes": 0, + "Lines": 87, + "Code": 76, + "Comment": 1, + "Blank": 10, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 42581.49697298271, + "estimatedScheduleMonths_low": 4.292702321845686, + "estimatedPeople_low": 0.9663615905050673, + "estimatedCost_high": 132702.54223822462, + "estimatedScheduleMonths_high": 4.292702321845686, + "estimatedPeople_high": 0.9663615905050673, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 10 1765 250 262 1253 135\n(ULOC) 1057\n-------------------------------------------------------------------------------\nJSON 3 37 0 0 37 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nMarkdown 2 364 154 0 210 0\n(ULOC) 174\n-------------------------------------------------------------------------------\nPlain Text 2 110 23 0 87 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nSQL 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 1 87 10 1 76 0\n(ULOC) 73\n───────────────────────────────────────────────────────────────────────────────\nTotal 20 2388 441 263 1684 135\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1426\nDRYness % 0.60\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $46,693\nEstimated Schedule Effort (organic) 4.29 months\nEstimated People Required (organic) 0.97\n───────────────────────────────────────────────────────────────────────────────\nProcessed 112778 bytes, 0.113 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/nimbus-pub-code-scanning-1/nimbus-pub-code-scanning-1_data.json b/app/site/_data/CMSgov/nimbus-pub-code-scanning-1/nimbus-pub-code-scanning-1_data.json index 6b69ad2ab8..475497c06b 100644 --- a/app/site/_data/CMSgov/nimbus-pub-code-scanning-1/nimbus-pub-code-scanning-1_data.json +++ b/app/site/_data/CMSgov/nimbus-pub-code-scanning-1/nimbus-pub-code-scanning-1_data.json @@ -1,351 +1,351 @@ { - "url": "https://github.com/CMSgov/nimbus-pub-code-scanning-1", - "owner": "CMSgov", - "name": "nimbus-pub-code-scanning-1", - "description": null, - "commits_count": 5, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "total_project_lines": 543, - "average_project_lines": 36, - "total_project_comment_lines": 72, - "average_project_comment_lines": 5, - "total_project_blank_lines": 100, - "average_blank_lines": 7, - "commits_by_month": { - "2021/4": 1, - "2020/12": 4 + "url": "https://github.com/CMSgov/nimbus-pub-code-scanning-1", + "owner": "CMSgov", + "name": "nimbus-pub-code-scanning-1", + "description": null, + "commits_count": 5, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "total_project_lines": 543, + "average_project_lines": 36, + "total_project_comment_lines": 72, + "average_project_comment_lines": 5, + "total_project_blank_lines": 100, + "average_blank_lines": 7, + "commits_by_month": { + "2021/4": 1, + "2020/12": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2020-12-18T14:34:20Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:22Z", + "repo": { + "name": "github.com/CMSgov/nimbus-pub-code-scanning-1", + "commit": "3353b6d99e07d82c5bada6aefb8cd622ba2e302b" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2020-12-18T14:34:20Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:22Z", - "repo": { - "name": "github.com/CMSgov/nimbus-pub-code-scanning-1", - "commit": "3353b6d99e07d82c5bada6aefb8cd622ba2e302b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/5 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool detected: CodeQL", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 9, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 3428, - "CodeBytes": 0, - "Lines": 145, - "Code": 108, - "Comment": 1, - "Blank": 36, - "Complexity": 27, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 388, - "CodeBytes": 0, - "Lines": 19, - "Code": 13, - "Comment": 1, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 218, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2736, - "CodeBytes": 0, - "Lines": 82, - "Code": 36, - "Comment": 34, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 2954, - "CodeBytes": 0, - "Lines": 104, - "Code": 78, - "Comment": 0, - "Blank": 26, - "Complexity": 22, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 58, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5770, - "CodeBytes": 0, - "Lines": 185, - "Code": 128, - "Comment": 36, - "Blank": 21, - "Complexity": 19, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 8697.698294085645, - "estimatedScheduleMonths_low": 2.3474722682891134, - "estimatedPeople_low": 0.3609552611814017, - "estimatedCost_high": 27105.82664528117, - "estimatedScheduleMonths_high": 2.3474722682891134, - "estimatedPeople_high": 0.3609552611814017, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 6 145 36 1 108 27\n(ULOC) 86\n-------------------------------------------------------------------------------\nGradle 2 19 5 1 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nProperties File 2 6 0 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nYAML 2 82 12 34 36 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nBatch 1 104 26 0 78 22\n(ULOC) 66\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 185 21 36 128 19\n(ULOC) 137\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 543 100 72 371 68\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 371\nDRYness % 0.68\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,537\nEstimated Schedule Effort (organic) 2.35 months\nEstimated People Required (organic) 0.36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 15552 bytes, 0.016 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Java": 3428 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/5 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool detected: CodeQL", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 9, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 3428, + "CodeBytes": 0, + "Lines": 145, + "Code": 108, + "Comment": 1, + "Blank": 36, + "Complexity": 27, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 388, + "CodeBytes": 0, + "Lines": 19, + "Code": 13, + "Comment": 1, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 218, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2736, + "CodeBytes": 0, + "Lines": 82, + "Code": 36, + "Comment": 34, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 2954, + "CodeBytes": 0, + "Lines": 104, + "Code": 78, + "Comment": 0, + "Blank": 26, + "Complexity": 22, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 58, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5770, + "CodeBytes": 0, + "Lines": 185, + "Code": 128, + "Comment": 36, + "Blank": 21, + "Complexity": 19, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 8697.698294085645, + "estimatedScheduleMonths_low": 2.3474722682891134, + "estimatedPeople_low": 0.3609552611814017, + "estimatedCost_high": 27105.82664528117, + "estimatedScheduleMonths_high": 2.3474722682891134, + "estimatedPeople_high": 0.3609552611814017, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 6 145 36 1 108 27\n(ULOC) 86\n-------------------------------------------------------------------------------\nGradle 2 19 5 1 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nProperties File 2 6 0 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nYAML 2 82 12 34 36 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nBatch 1 104 26 0 78 22\n(ULOC) 66\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 185 21 36 128 19\n(ULOC) 137\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 543 100 72 371 68\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 371\nDRYness % 0.68\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,537\nEstimated Schedule Effort (organic) 2.35 months\nEstimated People Required (organic) 0.36\n───────────────────────────────────────────────────────────────────────────────\nProcessed 15552 bytes, 0.016 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 3428 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/nimbus-pub-github-action-poc/nimbus-pub-github-action-poc_data.json b/app/site/_data/CMSgov/nimbus-pub-github-action-poc/nimbus-pub-github-action-poc_data.json index f547fbc0f8..3e8ff5531f 100644 --- a/app/site/_data/CMSgov/nimbus-pub-github-action-poc/nimbus-pub-github-action-poc_data.json +++ b/app/site/_data/CMSgov/nimbus-pub-github-action-poc/nimbus-pub-github-action-poc_data.json @@ -1,350 +1,350 @@ { - "url": "https://github.com/CMSgov/nimbus-pub-github-action-poc", - "owner": "CMSgov", - "name": "nimbus-pub-github-action-poc", - "description": null, - "commits_count": 72, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 16, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 7, - "closed_pull_requests_count": 8, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 8, - "total_project_lines": 575, - "average_project_lines": 38, - "total_project_comment_lines": 81, - "average_project_comment_lines": 5, - "total_project_blank_lines": 108, - "average_blank_lines": 7, - "commits_by_month": { - "2021/4": 30 + "url": "https://github.com/CMSgov/nimbus-pub-github-action-poc", + "owner": "CMSgov", + "name": "nimbus-pub-github-action-poc", + "description": null, + "commits_count": 72, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 16, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 7, + "closed_pull_requests_count": 8, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 8, + "total_project_lines": 575, + "average_project_lines": 38, + "total_project_comment_lines": 81, + "average_project_comment_lines": 5, + "total_project_blank_lines": 108, + "average_blank_lines": 7, + "commits_by_month": { + "2021/4": 30 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2020-10-29T12:29:22Z", + "ossf_scorecard": { + "date": "2025-01-11T01:02:30Z", + "repo": { + "name": "github.com/CMSgov/nimbus-pub-github-action-poc", + "commit": "9d5e4468921cae999e66b79d9e3c23c3c18656e6" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2020-10-29T12:29:22Z", - "ossf_scorecard": { - "date": "2025-01-11T01:02:30Z", - "repo": { - "name": "github.com/CMSgov/nimbus-pub-github-action-poc", - "commit": "9d5e4468921cae999e66b79d9e3c23c3c18656e6" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.7, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/4 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 9, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 3479, - "CodeBytes": 0, - "Lines": 146, - "Code": 108, - "Comment": 2, - "Blank": 36, - "Complexity": 27, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 388, - "CodeBytes": 0, - "Lines": 19, - "Code": 13, - "Comment": 1, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 218, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3490, - "CodeBytes": 0, - "Lines": 106, - "Code": 49, - "Comment": 42, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 2954, - "CodeBytes": 0, - "Lines": 104, - "Code": 78, - "Comment": 0, - "Blank": 26, - "Complexity": 22, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 329, - "CodeBytes": 0, - "Lines": 9, - "Code": 4, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5770, - "CodeBytes": 0, - "Lines": 185, - "Code": 128, - "Comment": 36, - "Blank": 21, - "Complexity": 19, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 9067.308739285427, - "estimatedScheduleMonths_low": 2.3848914416374694, - "estimatedPeople_low": 0.37039003726280273, - "estimatedCost_high": 28257.6942216356, - "estimatedScheduleMonths_high": 2.3848914416374694, - "estimatedPeople_high": 0.37039003726280273, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 6 146 36 2 108 27\n(ULOC) 87\n-------------------------------------------------------------------------------\nGradle 2 19 5 1 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nProperties File 2 6 0 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nYAML 2 106 15 42 49 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nBatch 1 104 26 0 78 22\n(ULOC) 66\n-------------------------------------------------------------------------------\nMarkdown 1 9 5 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nShell 1 185 21 36 128 19\n(ULOC) 137\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 575 108 81 386 68\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 393\nDRYness % 0.68\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,942\nEstimated Schedule Effort (organic) 2.38 months\nEstimated People Required (organic) 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 16628 bytes, 0.017 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Java": 3479 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.7, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/4 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 9, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 3479, + "CodeBytes": 0, + "Lines": 146, + "Code": 108, + "Comment": 2, + "Blank": 36, + "Complexity": 27, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 388, + "CodeBytes": 0, + "Lines": 19, + "Code": 13, + "Comment": 1, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 218, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3490, + "CodeBytes": 0, + "Lines": 106, + "Code": 49, + "Comment": 42, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 2954, + "CodeBytes": 0, + "Lines": 104, + "Code": 78, + "Comment": 0, + "Blank": 26, + "Complexity": 22, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 329, + "CodeBytes": 0, + "Lines": 9, + "Code": 4, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5770, + "CodeBytes": 0, + "Lines": 185, + "Code": 128, + "Comment": 36, + "Blank": 21, + "Complexity": 19, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 9067.308739285427, + "estimatedScheduleMonths_low": 2.3848914416374694, + "estimatedPeople_low": 0.37039003726280273, + "estimatedCost_high": 28257.6942216356, + "estimatedScheduleMonths_high": 2.3848914416374694, + "estimatedPeople_high": 0.37039003726280273, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 6 146 36 2 108 27\n(ULOC) 87\n-------------------------------------------------------------------------------\nGradle 2 19 5 1 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nProperties File 2 6 0 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nYAML 2 106 15 42 49 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nBatch 1 104 26 0 78 22\n(ULOC) 66\n-------------------------------------------------------------------------------\nMarkdown 1 9 5 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nShell 1 185 21 36 128 19\n(ULOC) 137\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 575 108 81 386 68\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 393\nDRYness % 0.68\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,942\nEstimated Schedule Effort (organic) 2.38 months\nEstimated People Required (organic) 0.37\n───────────────────────────────────────────────────────────────────────────────\nProcessed 16628 bytes, 0.017 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 3479 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/oopc-calculations/oopc-calculations_data.json b/app/site/_data/CMSgov/oopc-calculations/oopc-calculations_data.json index 2c7aa82abf..d699a1a4ae 100644 --- a/app/site/_data/CMSgov/oopc-calculations/oopc-calculations_data.json +++ b/app/site/_data/CMSgov/oopc-calculations/oopc-calculations_data.json @@ -1,275 +1,275 @@ { - "url": "https://github.com/CMSgov/oopc-calculations", - "owner": "CMSgov", - "name": "oopc-calculations", - "description": "This code fragment represents the portion of programming that calculates the estimated out of pocket cost for a given household under a specific plan within the Window Shopping experience on HealthCare.gov.", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 1, - "forks_count": 5, - "stargazers_count": 0, - "watchers_count": 43, - "total_project_lines": 1245, - "average_project_lines": 415, - "total_project_comment_lines": 56, - "average_project_comment_lines": 19, - "total_project_blank_lines": 190, - "average_blank_lines": 63, - "commits_by_month": { - "2016/12": 3 + "url": "https://github.com/CMSgov/oopc-calculations", + "owner": "CMSgov", + "name": "oopc-calculations", + "description": "This code fragment represents the portion of programming that calculates the estimated out of pocket cost for a given household under a specific plan within the Window Shopping experience on HealthCare.gov.", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 1, + "forks_count": 5, + "stargazers_count": 0, + "watchers_count": 43, + "total_project_lines": 1245, + "average_project_lines": 415, + "total_project_comment_lines": 56, + "average_project_comment_lines": 19, + "total_project_blank_lines": 190, + "average_blank_lines": 63, + "commits_by_month": { + "2016/12": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2016-12-08T20:13:15Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:49Z", + "repo": { + "name": "github.com/CMSgov/oopc-calculations", + "commit": "b4382cb390e5f8ca512a34d5f4b6c67bb256ef9c" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2016-12-08T20:13:15Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:49Z", - "repo": { - "name": "github.com/CMSgov/oopc-calculations", - "commit": "b4382cb390e5f8ca512a34d5f4b6c67bb256ef9c" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/2 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 1955, - "CodeBytes": 0, - "Lines": 45, - "Code": 30, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 35444, - "CodeBytes": 0, - "Lines": 1200, - "Code": 969, - "Comment": 56, - "Blank": 175, - "Complexity": 284, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 24609.65335088728, - "estimatedScheduleMonths_low": 3.4853541226479114, - "estimatedPeople_low": 0.687872732197018, - "estimatedCost_high": 76694.4282239833, - "estimatedScheduleMonths_high": 3.4853541226479114, - "estimatedPeople_high": 0.687872732197018, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 2 45 15 0 30 0\n(ULOC) 29\n-------------------------------------------------------------------------------\nGo 1 1200 175 56 969 284\n(ULOC) 746\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 3 1245 190 56 999 284\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 774\nDRYness % 0.62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $26,986\nEstimated Schedule Effort (organic) 3.49 months\nEstimated People Required (organic) 0.69\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 37399 bytes, 0.037 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Go": 35444 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/2 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 1955, + "CodeBytes": 0, + "Lines": 45, + "Code": 30, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 35444, + "CodeBytes": 0, + "Lines": 1200, + "Code": 969, + "Comment": 56, + "Blank": 175, + "Complexity": 284, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 24609.65335088728, + "estimatedScheduleMonths_low": 3.4853541226479114, + "estimatedPeople_low": 0.687872732197018, + "estimatedCost_high": 76694.4282239833, + "estimatedScheduleMonths_high": 3.4853541226479114, + "estimatedPeople_high": 0.687872732197018, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 2 45 15 0 30 0\n(ULOC) 29\n-------------------------------------------------------------------------------\nGo 1 1200 175 56 969 284\n(ULOC) 746\n───────────────────────────────────────────────────────────────────────────────\nTotal 3 1245 190 56 999 284\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 774\nDRYness % 0.62\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $26,986\nEstimated Schedule Effort (organic) 3.49 months\nEstimated People Required (organic) 0.69\n───────────────────────────────────────────────────────────────────────────────\nProcessed 37399 bytes, 0.037 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 35444 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/oracle-database-19c-cis-baseline/oracle-database-19c-cis-baseline_data.json b/app/site/_data/CMSgov/oracle-database-19c-cis-baseline/oracle-database-19c-cis-baseline_data.json index c8c91c72e7..df31f1a8df 100644 --- a/app/site/_data/CMSgov/oracle-database-19c-cis-baseline/oracle-database-19c-cis-baseline_data.json +++ b/app/site/_data/CMSgov/oracle-database-19c-cis-baseline/oracle-database-19c-cis-baseline_data.json @@ -1,305 +1,305 @@ { - "url": "https://github.com/CMSgov/oracle-database-19c-cis-baseline", - "owner": "CMSgov", - "name": "oracle-database-19c-cis-baseline", - "description": null, - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 17, - "total_project_lines": 10334, - "average_project_lines": 89, - "total_project_comment_lines": 3, - "average_project_comment_lines": 0, - "total_project_blank_lines": 428, - "average_blank_lines": 4, - "commits_by_month": { - "2022/3": 1 + "url": "https://github.com/CMSgov/oracle-database-19c-cis-baseline", + "owner": "CMSgov", + "name": "oracle-database-19c-cis-baseline", + "description": null, + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 17, + "total_project_lines": 10334, + "average_project_lines": 89, + "total_project_comment_lines": 3, + "average_project_comment_lines": 0, + "total_project_blank_lines": 428, + "average_blank_lines": 4, + "commits_by_month": { + "2022/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-03-08T17:57:39Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:08Z", + "repo": { + "name": "github.com/CMSgov/oracle-database-19c-cis-baseline", + "commit": "a04e6b53a91912ff16693bbf34fcceef8c9c345f" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-03-08T17:57:39Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:08Z", - "repo": { - "name": "github.com/CMSgov/oracle-database-19c-cis-baseline", - "commit": "a04e6b53a91912ff16693bbf34fcceef8c9c345f" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Ruby", - "Bytes": 358334, - "CodeBytes": 0, - "Lines": 10018, - "Code": 9630, - "Comment": 3, - "Blank": 385, - "Complexity": 198, - "Count": 109, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1861, - "CodeBytes": 0, - "Lines": 80, - "Code": 71, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 61, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 14375, - "CodeBytes": 0, - "Lines": 232, - "Code": 199, - "Comment": 0, - "Blank": 33, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 273600.47793045157, - "estimatedScheduleMonths_low": 8.704247378412493, - "estimatedPeople_low": 3.0622111560387366, - "estimatedCost_high": 852658.5855354193, - "estimatedScheduleMonths_high": 8.704247378412493, - "estimatedPeople_high": 3.0622111560387366, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nRuby 109 10018 385 3 9630 198\n(ULOC) 2373\n-------------------------------------------------------------------------------\nYAML 5 80 9 0 71 0\n(ULOC) 55\n-------------------------------------------------------------------------------\nGemfile 1 4 1 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nMarkdown 1 232 33 0 199 0\n(ULOC) 183\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 116 10334 428 3 9903 198\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 2603\nDRYness % 0.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $300,020\nEstimated Schedule Effort (organic) 8.70 months\nEstimated People Required (organic) 3.06\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 374631 bytes, 0.375 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 358395 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Ruby", + "Bytes": 358334, + "CodeBytes": 0, + "Lines": 10018, + "Code": 9630, + "Comment": 3, + "Blank": 385, + "Complexity": 198, + "Count": 109, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1861, + "CodeBytes": 0, + "Lines": 80, + "Code": 71, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 61, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 14375, + "CodeBytes": 0, + "Lines": 232, + "Code": 199, + "Comment": 0, + "Blank": 33, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 273600.47793045157, + "estimatedScheduleMonths_low": 8.704247378412493, + "estimatedPeople_low": 3.0622111560387366, + "estimatedCost_high": 852658.5855354193, + "estimatedScheduleMonths_high": 8.704247378412493, + "estimatedPeople_high": 3.0622111560387366, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nRuby 109 10018 385 3 9630 198\n(ULOC) 2373\n-------------------------------------------------------------------------------\nYAML 5 80 9 0 71 0\n(ULOC) 55\n-------------------------------------------------------------------------------\nGemfile 1 4 1 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nMarkdown 1 232 33 0 199 0\n(ULOC) 183\n───────────────────────────────────────────────────────────────────────────────\nTotal 116 10334 428 3 9903 198\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 2603\nDRYness % 0.25\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $300,020\nEstimated Schedule Effort (organic) 8.70 months\nEstimated People Required (organic) 3.06\n───────────────────────────────────────────────────────────────────────────────\nProcessed 374631 bytes, 0.375 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 358395 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/portal-test-user-manager/portal-test-user-manager_data.json b/app/site/_data/CMSgov/portal-test-user-manager/portal-test-user-manager_data.json index 83f6eb8ed9..cbafefbf9a 100644 --- a/app/site/_data/CMSgov/portal-test-user-manager/portal-test-user-manager_data.json +++ b/app/site/_data/CMSgov/portal-test-user-manager/portal-test-user-manager_data.json @@ -1,340 +1,340 @@ { - "url": "https://github.com/CMSgov/portal-test-user-manager", - "owner": "CMSgov", - "name": "portal-test-user-manager", - "description": null, - "commits_count": 24, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 24, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 23, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 9, - "total_project_lines": 3445, - "average_project_lines": 128, - "total_project_comment_lines": 116, - "average_project_comment_lines": 4, - "total_project_blank_lines": 437, - "average_blank_lines": 16, - "commits_by_month": { - "2022/3": 1, - "2022/2": 8, - "2022/1": 11, - "2021/12": 4 + "url": "https://github.com/CMSgov/portal-test-user-manager", + "owner": "CMSgov", + "name": "portal-test-user-manager", + "description": null, + "commits_count": 24, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 24, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 23, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 9, + "total_project_lines": 3445, + "average_project_lines": 128, + "total_project_comment_lines": 116, + "average_project_comment_lines": 4, + "total_project_blank_lines": 437, + "average_blank_lines": 16, + "commits_by_month": { + "2022/3": 1, + "2022/2": 8, + "2022/1": 11, + "2021/12": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-12-02T18:36:26Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:29Z", + "repo": { + "name": "github.com/CMSgov/portal-test-user-manager", + "commit": "0c04f4abd5737232fb2304647e43764e7d0c3ad2" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-12-02T18:36:26Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:29Z", - "repo": { - "name": "github.com/CMSgov/portal-test-user-manager", - "commit": "0c04f4abd5737232fb2304647e43764e7d0c3ad2" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 23 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 23/24 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Terraform", - "Bytes": 19462, - "CodeBytes": 0, - "Lines": 694, - "Code": 539, - "Comment": 33, - "Blank": 122, - "Complexity": 17, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 72545, - "CodeBytes": 0, - "Lines": 2581, - "Code": 2213, - "Comment": 83, - "Blank": 285, - "Complexity": 541, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 5089, - "CodeBytes": 0, - "Lines": 97, - "Code": 68, - "Comment": 0, - "Blank": 29, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 333, - "CodeBytes": 0, - "Lines": 10, - "Code": 9, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2150, - "CodeBytes": 0, - "Lines": 48, - "Code": 48, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Jenkins Buildfile", - "Bytes": 370, - "CodeBytes": 0, - "Lines": 15, - "Code": 15, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 75131.13274977352, - "estimatedScheduleMonths_low": 5.326456660650098, - "estimatedPeople_low": 1.3741402067909179, - "estimatedCost_high": 234141.42352624066, - "estimatedScheduleMonths_high": 5.326456660650098, - "estimatedPeople_high": 1.3741402067909179, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTerraform 12 694 122 33 539 17\n(ULOC) 381\n-------------------------------------------------------------------------------\nGo 8 2581 285 83 2213 541\n(ULOC) 1242\n-------------------------------------------------------------------------------\nMarkdown 4 97 29 0 68 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nDockerfile 1 10 1 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nJSON 1 48 0 0 48 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nJenkins Buildfile 1 15 0 0 15 0\n(ULOC) 16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 27 3445 437 116 2892 558\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1743\nDRYness % 0.51\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $82,386\nEstimated Schedule Effort (organic) 5.33 months\nEstimated People Required (organic) 1.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 99949 bytes, 0.100 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Go": 72545, - "HCL": 19462, - "Dockerfile": 333 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 23 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 23/24 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Terraform", + "Bytes": 19462, + "CodeBytes": 0, + "Lines": 694, + "Code": 539, + "Comment": 33, + "Blank": 122, + "Complexity": 17, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 72545, + "CodeBytes": 0, + "Lines": 2581, + "Code": 2213, + "Comment": 83, + "Blank": 285, + "Complexity": 541, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 5089, + "CodeBytes": 0, + "Lines": 97, + "Code": 68, + "Comment": 0, + "Blank": 29, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 333, + "CodeBytes": 0, + "Lines": 10, + "Code": 9, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2150, + "CodeBytes": 0, + "Lines": 48, + "Code": 48, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Jenkins Buildfile", + "Bytes": 370, + "CodeBytes": 0, + "Lines": 15, + "Code": 15, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 75131.13274977352, + "estimatedScheduleMonths_low": 5.326456660650098, + "estimatedPeople_low": 1.3741402067909179, + "estimatedCost_high": 234141.42352624066, + "estimatedScheduleMonths_high": 5.326456660650098, + "estimatedPeople_high": 1.3741402067909179, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTerraform 12 694 122 33 539 17\n(ULOC) 381\n-------------------------------------------------------------------------------\nGo 8 2581 285 83 2213 541\n(ULOC) 1242\n-------------------------------------------------------------------------------\nMarkdown 4 97 29 0 68 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nDockerfile 1 10 1 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nJSON 1 48 0 0 48 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nJenkins Buildfile 1 15 0 0 15 0\n(ULOC) 16\n───────────────────────────────────────────────────────────────────────────────\nTotal 27 3445 437 116 2892 558\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1743\nDRYness % 0.51\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $82,386\nEstimated Schedule Effort (organic) 5.33 months\nEstimated People Required (organic) 1.37\n───────────────────────────────────────────────────────────────────────────────\nProcessed 99949 bytes, 0.100 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 72545, + "HCL": 19462, + "Dockerfile": 333 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/price-transparency-guide-validator/price-transparency-guide-validator_data.json b/app/site/_data/CMSgov/price-transparency-guide-validator/price-transparency-guide-validator_data.json index 388917361f..aba187ba29 100644 --- a/app/site/_data/CMSgov/price-transparency-guide-validator/price-transparency-guide-validator_data.json +++ b/app/site/_data/CMSgov/price-transparency-guide-validator/price-transparency-guide-validator_data.json @@ -1,530 +1,530 @@ { - "url": "https://github.com/CMSgov/price-transparency-guide-validator", - "owner": "CMSgov", - "name": "price-transparency-guide-validator", - "description": "Validation tool to check output files required by the price-transparency-guide", - "commits_count": 98, - "issues_count": 47, - "open_issues_count": 4, - "closed_issues_count": 43, - "pull_requests_count": 52, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 45, - "closed_pull_requests_count": 7, - "forks_count": 14, - "stargazers_count": 31, - "watchers_count": 17, - "total_project_lines": 3424, - "average_project_lines": 107, - "total_project_comment_lines": 69, - "average_project_comment_lines": 2, - "total_project_blank_lines": 264, - "average_blank_lines": 8, - "commits_by_month": { - "2024/12": 1, - "2024/10": 1, - "2024/9": 1, - "2024/1": 4, - "2023/12": 2, - "2023/11": 2, - "2023/10": 4, - "2023/9": 8, - "2023/8": 7 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-16T00:00:00.000Z", - 1 - ], - [ - "2024-10-21T00:00:00.000Z", - 1 - ], - [ - "2024-12-06T00:00:00.000Z", - 1 - ] + "url": "https://github.com/CMSgov/price-transparency-guide-validator", + "owner": "CMSgov", + "name": "price-transparency-guide-validator", + "description": "Validation tool to check output files required by the price-transparency-guide", + "commits_count": 98, + "issues_count": 47, + "open_issues_count": 4, + "closed_issues_count": 43, + "pull_requests_count": 52, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 45, + "closed_pull_requests_count": 7, + "forks_count": 14, + "stargazers_count": 31, + "watchers_count": 17, + "total_project_lines": 3424, + "average_project_lines": 107, + "total_project_comment_lines": 69, + "average_project_comment_lines": 2, + "total_project_blank_lines": 264, + "average_blank_lines": 8, + "commits_by_month": { + "2024/12": 1, + "2024/10": 1, + "2024/9": 1, + "2024/1": 4, + "2023/12": 2, + "2023/11": 2, + "2023/10": 4, + "2023/9": 8, + "2023/8": 7 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-16T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-11-17T20:54:57Z", - "ossf_scorecard": { - "date": "2025-01-11T00:35:43Z", - "repo": { - "name": "github.com/CMSgov/price-transparency-guide-validator", - "commit": "4f9c3ac25fb5bcb46701291bd73a0cef1355f80a" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 6, - "reason": "7 out of 11 merged PRs checked by a CI test -- score normalized to 6", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 4, - "reason": "Found 7/16 approved changesets -- score normalized to 4", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 3, - "reason": "2 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 3", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 10963, - "CodeBytes": 0, - "Lines": 358, - "Code": 358, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 75409, - "CodeBytes": 0, - "Lines": 2064, - "Code": 1909, - "Comment": 25, - "Blank": 130, - "Complexity": 256, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 7826, - "CodeBytes": 0, - "Lines": 221, - "Code": 157, - "Comment": 0, - "Blank": 64, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1515, - "CodeBytes": 0, - "Lines": 62, - "Code": 53, - "Comment": 4, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1127, - "CodeBytes": 0, - "Lines": 44, - "Code": 40, - "Comment": 1, - "Blank": 3, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "C++", - "Bytes": 15746, - "CodeBytes": 0, - "Lines": 484, - "Code": 414, - "Comment": 39, - "Blank": 31, - "Complexity": 95, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 380, - "CodeBytes": 0, - "Lines": 13, - "Code": 11, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 81116.04086636702, - "estimatedScheduleMonths_low": 5.483872955381232, - "estimatedPeople_low": 1.441016217293837, - "estimatedCost_high": 252793.01115450222, - "estimatedScheduleMonths_high": 5.483872955381232, - "estimatedPeople_high": 1.441016217293837, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 11 358 0 0 358 0\n(ULOC) 195\n-------------------------------------------------------------------------------\nTypeScript 11 2064 130 25 1909 256\n(ULOC) 1118\n-------------------------------------------------------------------------------\nMarkdown 3 221 64 0 157 0\n(ULOC) 114\n-------------------------------------------------------------------------------\nJavaScript 2 62 5 4 53 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nYAML 2 44 3 1 40 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nC++ 1 484 31 39 414 95\n(ULOC) 318\n-------------------------------------------------------------------------------\nDockerfile 1 13 2 0 11 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 32 3447 267 69 3111 351\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1984\nDRYness % 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $88,948\nEstimated Schedule Effort (organic) 5.48 months\nEstimated People Required (organic) 1.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 124323 bytes, 0.124 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-10-21T00:00:00.000Z", + 1 + ], + [ + "2024-12-06T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-11-17T20:54:57Z", + "ossf_scorecard": { + "date": "2025-01-11T00:35:43Z", + "repo": { + "name": "github.com/CMSgov/price-transparency-guide-validator", + "commit": "4f9c3ac25fb5bcb46701291bd73a0cef1355f80a" }, - "predominant_langs": { - "TypeScript": 72821, - "C++": 15746, - "JavaScript": 4103, - "Dockerfile": 380 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "price-transparency-guide-validator", - "35 days 16:43:47.128205" - ] + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 6, + "reason": "7 out of 11 merged PRs checked by a CI test -- score normalized to 6", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 4, + "reason": "Found 7/16 approved changesets -- score normalized to 4", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 3, + "reason": "2 commit(s) and 2 issue activity found in the last 90 days -- score normalized to 3", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 10963, + "CodeBytes": 0, + "Lines": 358, + "Code": 358, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 75409, + "CodeBytes": 0, + "Lines": 2064, + "Code": 1909, + "Comment": 25, + "Blank": 130, + "Complexity": 256, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 7826, + "CodeBytes": 0, + "Lines": 221, + "Code": 157, + "Comment": 0, + "Blank": 64, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1515, + "CodeBytes": 0, + "Lines": 62, + "Code": 53, + "Comment": 4, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1127, + "CodeBytes": 0, + "Lines": 44, + "Code": 40, + "Comment": 1, + "Blank": 3, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "C++", + "Bytes": 15746, + "CodeBytes": 0, + "Lines": 484, + "Code": 414, + "Comment": 39, + "Blank": 31, + "Complexity": 95, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 380, + "CodeBytes": 0, + "Lines": 13, + "Code": 11, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 81116.04086636702, + "estimatedScheduleMonths_low": 5.483872955381232, + "estimatedPeople_low": 1.441016217293837, + "estimatedCost_high": 252793.01115450222, + "estimatedScheduleMonths_high": 5.483872955381232, + "estimatedPeople_high": 1.441016217293837, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 11 358 0 0 358 0\n(ULOC) 195\n-------------------------------------------------------------------------------\nTypeScript 11 2064 130 25 1909 256\n(ULOC) 1118\n-------------------------------------------------------------------------------\nMarkdown 3 221 64 0 157 0\n(ULOC) 114\n-------------------------------------------------------------------------------\nJavaScript 2 62 5 4 53 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nYAML 2 44 3 1 40 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nC++ 1 484 31 39 414 95\n(ULOC) 318\n-------------------------------------------------------------------------------\nDockerfile 1 13 2 0 11 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n───────────────────────────────────────────────────────────────────────────────\nTotal 32 3447 267 69 3111 351\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1984\nDRYness % 0.58\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $88,948\nEstimated Schedule Effort (organic) 5.48 months\nEstimated People Required (organic) 1.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 124323 bytes, 0.124 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 72821, + "C++": 15746, + "JavaScript": 4103, + "Dockerfile": 380 + }, + "average_issue_resolution_time": [ + [ + "price-transparency-guide-validator", + "35 days 16:43:47.128205" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@streamparser/json", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@streamparser/json-node", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@types/fs-extra", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@types/jest", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:39:04.000" + ], + [ + "@types/readline-sync", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@types/temp", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@types/yauzl", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.202739726, + "2025-01-01T18:39:04.000" + ], + [ + "@typescript-eslint/parser", + 0.202739726, + "2025-01-01T18:39:04.000" + ], + [ + "axios", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "chalk", + 3.397260274, + "2025-01-01T18:39:04.000" + ], + [ + "commander", + 0.6164383562, + "2025-01-01T18:39:04.000" + ], + [ + "del-cli", + 1.101369863, + "2025-01-01T18:39:04.000" + ], + [ + "eslint", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "eslint-config-prettier", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "fs-extra", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "jest", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "jest-extended", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "nock", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "readline-sync", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "temp", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "ts-jest", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "typescript", + 0, + "2025-01-01T18:39:04.000" + ], + [ + "winston", + 0, + "2025-01-01T18:39:04.000" ], - "repo_dependency_libyear_list": [ - [ - "@streamparser/json", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@streamparser/json-node", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@types/fs-extra", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@types/jest", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:39:04.000" - ], - [ - "@types/readline-sync", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@types/temp", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@types/yauzl", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.202739726, - "2025-01-01T18:39:04.000" - ], - [ - "@typescript-eslint/parser", - 0.202739726, - "2025-01-01T18:39:04.000" - ], - [ - "axios", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "chalk", - 3.397260274, - "2025-01-01T18:39:04.000" - ], - [ - "commander", - 0.6164383562, - "2025-01-01T18:39:04.000" - ], - [ - "del-cli", - 1.101369863, - "2025-01-01T18:39:04.000" - ], - [ - "eslint", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "eslint-config-prettier", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "fs-extra", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "jest", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "jest-extended", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "nock", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "readline-sync", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "temp", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "ts-jest", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "typescript", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "winston", - 0.0, - "2025-01-01T18:39:04.000" - ], - [ - "yauzl", - 0.0, - "2025-01-01T18:39:04.000" - ] + [ + "yauzl", + 0, + "2025-01-01T18:39:04.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/price-transparency-guide/price-transparency-guide_data.json b/app/site/_data/CMSgov/price-transparency-guide/price-transparency-guide_data.json index 11d0248ece..e9724e2712 100644 --- a/app/site/_data/CMSgov/price-transparency-guide/price-transparency-guide_data.json +++ b/app/site/_data/CMSgov/price-transparency-guide/price-transparency-guide_data.json @@ -1,343 +1,343 @@ { - "url": "https://github.com/CMSgov/price-transparency-guide", - "owner": "CMSgov", - "name": "price-transparency-guide", - "description": "The technical implementation guide for the tri-departmental price transparency rule.", - "commits_count": 268, - "issues_count": 84, - "open_issues_count": 16, - "closed_issues_count": 68, - "pull_requests_count": 118, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 103, - "closed_pull_requests_count": 13, - "forks_count": 116, - "stargazers_count": 374, - "watchers_count": 282, - "total_project_lines": 3409, - "average_project_lines": 92, - "total_project_comment_lines": 99, - "average_project_comment_lines": 3, - "total_project_blank_lines": 167, - "average_blank_lines": 5, - "commits_by_month": { - "2025/1": 1, - "2023/11": 7, - "2023/10": 7, - "2023/9": 15 + "url": "https://github.com/CMSgov/price-transparency-guide", + "owner": "CMSgov", + "name": "price-transparency-guide", + "description": "The technical implementation guide for the tri-departmental price transparency rule.", + "commits_count": 268, + "issues_count": 84, + "open_issues_count": 16, + "closed_issues_count": 68, + "pull_requests_count": 118, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 103, + "closed_pull_requests_count": 13, + "forks_count": 116, + "stargazers_count": 374, + "watchers_count": 282, + "total_project_lines": 3409, + "average_project_lines": 92, + "total_project_comment_lines": 99, + "average_project_comment_lines": 3, + "total_project_blank_lines": 167, + "average_blank_lines": 5, + "commits_by_month": { + "2025/1": 1, + "2023/11": 7, + "2023/10": 7, + "2023/9": 15 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2019-10-02T06:42:01Z", + "ossf_scorecard": { + "date": "2025-01-11T00:31:01Z", + "repo": { + "name": "github.com/CMSgov/price-transparency-guide", + "commit": "e20a3b7e19ad8e8cfa466578b4c126cbb17e48cd" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2019-10-02T06:42:01Z", - "ossf_scorecard": { - "date": "2025-01-11T00:31:01Z", - "repo": { - "name": "github.com/CMSgov/price-transparency-guide", - "commit": "e20a3b7e19ad8e8cfa466578b4c126cbb17e48cd" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 5, - "reason": "8 out of 15 merged PRs checked by a CI test -- score normalized to 5", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/15 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 3, - "reason": "1 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 3", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 8, - "reason": "dependency not pinned by hash detected -- score normalized to 8", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 35428, - "CodeBytes": 0, - "Lines": 1379, - "Code": 1374, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 55106, - "CodeBytes": 0, - "Lines": 642, - "Code": 512, - "Comment": 0, - "Blank": 130, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 38190, - "CodeBytes": 0, - "Lines": 1153, - "Code": 1151, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 8339, - "CodeBytes": 0, - "Lines": 200, - "Code": 86, - "Comment": 90, - "Blank": 24, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 86, - "CodeBytes": 0, - "Lines": 6, - "Code": 5, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1121, - "CodeBytes": 0, - "Lines": 35, - "Code": 21, - "Comment": 9, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 82156.70771405681, - "estimatedScheduleMonths_low": 5.510502098534433, - "estimatedPeople_low": 1.452450576421086, - "estimatedCost_high": 256036.18356807646, - "estimatedScheduleMonths_high": 5.510502098534433, - "estimatedPeople_high": 1.452450576421086, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 16 1379 5 0 1374 0\n(ULOC) 559\n-------------------------------------------------------------------------------\nMarkdown 7 642 130 0 512 0\n(ULOC) 342\n-------------------------------------------------------------------------------\nXML 7 1153 2 0 1151 0\n(ULOC) 515\n-------------------------------------------------------------------------------\nRuby 5 200 24 90 86 0\n(ULOC) 123\n-------------------------------------------------------------------------------\nGemfile 1 6 1 0 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nYAML 1 35 5 9 21 0\n(ULOC) 31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 37 3415 167 99 3149 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1559\nDRYness % 0.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $90,090\nEstimated Schedule Effort (organic) 5.51 months\nEstimated People Required (organic) 1.45\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 138270 bytes, 0.138 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 8425 - }, - "average_issue_resolution_time": [ - [ - "price-transparency-guide", - "94 days 27:34:32.828125" - ] + "score": 3.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 5, + "reason": "8 out of 15 merged PRs checked by a CI test -- score normalized to 5", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/15 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 3, + "reason": "1 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 3", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 8, + "reason": "dependency not pinned by hash detected -- score normalized to 8", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 35428, + "CodeBytes": 0, + "Lines": 1379, + "Code": 1374, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 55106, + "CodeBytes": 0, + "Lines": 642, + "Code": 512, + "Comment": 0, + "Blank": 130, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 38190, + "CodeBytes": 0, + "Lines": 1153, + "Code": 1151, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 8339, + "CodeBytes": 0, + "Lines": 200, + "Code": 86, + "Comment": 90, + "Blank": 24, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 86, + "CodeBytes": 0, + "Lines": 6, + "Code": 5, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1121, + "CodeBytes": 0, + "Lines": 35, + "Code": 21, + "Comment": 9, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 82156.70771405681, + "estimatedScheduleMonths_low": 5.510502098534433, + "estimatedPeople_low": 1.452450576421086, + "estimatedCost_high": 256036.18356807646, + "estimatedScheduleMonths_high": 5.510502098534433, + "estimatedPeople_high": 1.452450576421086, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 16 1379 5 0 1374 0\n(ULOC) 559\n-------------------------------------------------------------------------------\nMarkdown 7 642 130 0 512 0\n(ULOC) 342\n-------------------------------------------------------------------------------\nXML 7 1153 2 0 1151 0\n(ULOC) 515\n-------------------------------------------------------------------------------\nRuby 5 200 24 90 86 0\n(ULOC) 123\n-------------------------------------------------------------------------------\nGemfile 1 6 1 0 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nYAML 1 35 5 9 21 0\n(ULOC) 31\n───────────────────────────────────────────────────────────────────────────────\nTotal 37 3415 167 99 3149 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1559\nDRYness % 0.46\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $90,090\nEstimated Schedule Effort (organic) 5.51 months\nEstimated People Required (organic) 1.45\n───────────────────────────────────────────────────────────────────────────────\nProcessed 138270 bytes, 0.138 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 8425 + }, + "average_issue_resolution_time": [ + [ + "price-transparency-guide", + "94 days 27:34:32.828125" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/qpp-conversion-tool/qpp-conversion-tool_data.json b/app/site/_data/CMSgov/qpp-conversion-tool/qpp-conversion-tool_data.json index f580c9121b..4fe9be90b4 100644 --- a/app/site/_data/CMSgov/qpp-conversion-tool/qpp-conversion-tool_data.json +++ b/app/site/_data/CMSgov/qpp-conversion-tool/qpp-conversion-tool_data.json @@ -1,605 +1,605 @@ { - "url": "https://github.com/CMSgov/qpp-conversion-tool", - "owner": "CMSgov", - "name": "qpp-conversion-tool", - "description": "Conversion tool for QPP, particularly focused on QRDA3 -> QPP, built by Flexion. ", - "commits_count": 7815, - "issues_count": 47, - "open_issues_count": 0, - "closed_issues_count": 47, - "pull_requests_count": 1402, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 1228, - "closed_pull_requests_count": 169, - "forks_count": 62, - "stargazers_count": 36, - "watchers_count": 28, - "total_project_lines": 12794241, - "average_project_lines": 8357, - "total_project_comment_lines": 696308, - "average_project_comment_lines": 455, - "total_project_blank_lines": 42843, - "average_blank_lines": 28, - "commits_by_month": { - "2025/1": 6, - "2024/12": 22, - "2024/11": 2 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-17T00:00:00.000Z", - 2 - ], - [ - "2024-12-30T00:00:00.000Z", - 2 - ] + "url": "https://github.com/CMSgov/qpp-conversion-tool", + "owner": "CMSgov", + "name": "qpp-conversion-tool", + "description": "Conversion tool for QPP, particularly focused on QRDA3 -> QPP, built by Flexion. ", + "commits_count": 7815, + "issues_count": 47, + "open_issues_count": 0, + "closed_issues_count": 47, + "pull_requests_count": 1402, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 1228, + "closed_pull_requests_count": 169, + "forks_count": 62, + "stargazers_count": 36, + "watchers_count": 28, + "total_project_lines": 12794241, + "average_project_lines": 8357, + "total_project_comment_lines": 696308, + "average_project_comment_lines": 455, + "total_project_blank_lines": 42843, + "average_blank_lines": 28, + "commits_by_month": { + "2025/1": 6, + "2024/12": 22, + "2024/11": 2 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-17T00:00:00.000Z", + 2 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 1 - ], - [ - "2024-07-30T00:00:00.000Z", - 2 - ], - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-08-01T00:00:00.000Z", - 1 - ], - [ - "2024-08-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-10-16T00:00:00.000Z", - 2 - ], - [ - "2024-10-29T00:00:00.000Z", - 1 - ], - [ - "2024-12-30T00:00:00.000Z", - 1 - ] + [ + "2024-12-30T00:00:00.000Z", + 2 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2017-03-24T20:26:32Z", - "ossf_scorecard": { - "date": "2025-01-11T00:35:13Z", - "repo": { - "name": "github.com/CMSgov/qpp-conversion-tool", - "commit": "111597ae7b9a691b60df7e3560b8a244e65f1df2" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.4, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 18 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "XML", - "Bytes": 857519592, - "CodeBytes": 0, - "Lines": 12508871, - "Code": 11784563, - "Comment": 689418, - "Blank": 34890, - "Complexity": 0, - "Count": 978, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 1379987, - "CodeBytes": 0, - "Lines": 41212, - "Code": 28165, - "Comment": 6067, - "Blank": 6980, - "Complexity": 1107, - "Count": 432, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 108411, - "CodeBytes": 0, - "Lines": 4100, - "Code": 3073, - "Comment": 527, - "Blank": 500, - "Complexity": 32, - "Count": 37, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 7530279, - "CodeBytes": 0, - "Lines": 236830, - "Code": 236827, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 24, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 40673, - "CodeBytes": 0, - "Lines": 701, - "Code": 531, - "Comment": 0, - "Blank": 170, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 43796, - "CodeBytes": 0, - "Lines": 1103, - "Code": 779, - "Comment": 188, - "Blank": 136, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5731, - "CodeBytes": 0, - "Lines": 167, - "Code": 106, - "Comment": 26, - "Blank": 35, - "Complexity": 9, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 10037, - "CodeBytes": 0, - "Lines": 281, - "Code": 236, - "Comment": 12, - "Blank": 33, - "Complexity": 19, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 1165, - "CodeBytes": 0, - "Lines": 32, - "Code": 23, - "Comment": 6, - "Blank": 3, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gherkin Specification", - "Bytes": 35972, - "CodeBytes": 0, - "Lines": 158, - "Code": 138, - "Comment": 2, - "Blank": 18, - "Complexity": 5, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1387, - "CodeBytes": 0, - "Lines": 41, - "Code": 30, - "Comment": 0, - "Blank": 11, - "Complexity": 6, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 6434, - "CodeBytes": 0, - "Lines": 172, - "Code": 108, - "Comment": 38, - "Blank": 26, - "Complexity": 12, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 8942, - "CodeBytes": 0, - "Lines": 210, - "Code": 210, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 404, - "CodeBytes": 0, - "Lines": 20, - "Code": 15, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 150, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Groovy", - "Bytes": 1184, - "CodeBytes": 0, - "Lines": 48, - "Code": 36, - "Comment": 6, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 3577, - "CodeBytes": 0, - "Lines": 104, - "Code": 104, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 475104727.43747234, - "estimatedScheduleMonths_low": 148.1858635748694, - "estimatedPeople_low": 312.3432208804165, - "estimatedCost_high": 1480633834.934316, - "estimatedScheduleMonths_high": 148.1858635748694, - "estimatedPeople_high": 312.3432208804165, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nXML 978 12508871 34890 689418 11784563 0\n(ULOC) 22983\n-------------------------------------------------------------------------------\nJava 432 41212 6980 6067 28165 1107\n(ULOC) 16306\n-------------------------------------------------------------------------------\nTerraform 37 4100 500 527 3073 32\n(ULOC) 1312\n-------------------------------------------------------------------------------\nJSON 24 236830 3 0 236827 0\n(ULOC) 30227\n-------------------------------------------------------------------------------\nMarkdown 16 701 170 0 531 0\n(ULOC) 495\n-------------------------------------------------------------------------------\nYAML 12 1103 136 188 779 0\n(ULOC) 674\n-------------------------------------------------------------------------------\nShell 7 167 35 26 106 9\n(ULOC) 122\n-------------------------------------------------------------------------------\nPython 6 281 33 12 236 19\n(ULOC) 224\n-------------------------------------------------------------------------------\nProperties File 4 32 3 6 23 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nGherkin Specificati\u2026 3 158 18 2 138 5\n(ULOC) 112\n-------------------------------------------------------------------------------\nDockerfile 2 41 11 0 30 6\n(ULOC) 31\n-------------------------------------------------------------------------------\nJavaScript 2 172 26 38 108 12\n(ULOC) 130\n-------------------------------------------------------------------------------\nSmarty Template 2 210 0 0 210 0\n(ULOC) 153\n-------------------------------------------------------------------------------\nBatch 1 20 5 0 15 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nDocker ignore 1 13 0 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nGroovy 1 48 6 6 36 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nTOML 1 104 0 0 104 0\n(ULOC) 78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1531 12794180 42836 696290 12055054 1190\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 72893\nDRYness % 0.01\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $520,982,270\nEstimated Schedule Effort (organic) 148.19 months\nEstimated People Required (organic) 312.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 866704288 bytes, 866.704 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-07-30T00:00:00.000Z", + 2 + ], + [ + "2024-07-31T00:00:00.000Z", + 1 + ], + [ + "2024-08-01T00:00:00.000Z", + 1 + ], + [ + "2024-08-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-04T00:00:00.000Z", + 1 + ], + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-10-16T00:00:00.000Z", + 2 + ], + [ + "2024-10-29T00:00:00.000Z", + 1 + ], + [ + "2024-12-30T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2017-03-24T20:26:32Z", + "ossf_scorecard": { + "date": "2025-01-11T00:35:13Z", + "repo": { + "name": "github.com/CMSgov/qpp-conversion-tool", + "commit": "111597ae7b9a691b60df7e3560b8a244e65f1df2" }, - "predominant_langs": { - "Java": 1379987, - "HCL": 118777, - "Gherkin": 35972, - "Python": 10037, - "Smarty": 8942, - "JavaScript": 6434, - "Shell": 5731, - "Dockerfile": 1387, - "Groovy": 1184, - "Batchfile": 404, - "Procfile": 60 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "qpp-conversion-tool", - "31 days 14:57:32.511627" - ] + "score": 6.4, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 18 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 3 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "XML", + "Bytes": 857519592, + "CodeBytes": 0, + "Lines": 12508871, + "Code": 11784563, + "Comment": 689418, + "Blank": 34890, + "Complexity": 0, + "Count": 978, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 1379987, + "CodeBytes": 0, + "Lines": 41212, + "Code": 28165, + "Comment": 6067, + "Blank": 6980, + "Complexity": 1107, + "Count": 432, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 108411, + "CodeBytes": 0, + "Lines": 4100, + "Code": 3073, + "Comment": 527, + "Blank": 500, + "Complexity": 32, + "Count": 37, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 7530279, + "CodeBytes": 0, + "Lines": 236830, + "Code": 236827, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 24, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 40673, + "CodeBytes": 0, + "Lines": 701, + "Code": 531, + "Comment": 0, + "Blank": 170, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 43796, + "CodeBytes": 0, + "Lines": 1103, + "Code": 779, + "Comment": 188, + "Blank": 136, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5731, + "CodeBytes": 0, + "Lines": 167, + "Code": 106, + "Comment": 26, + "Blank": 35, + "Complexity": 9, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 10037, + "CodeBytes": 0, + "Lines": 281, + "Code": 236, + "Comment": 12, + "Blank": 33, + "Complexity": 19, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 1165, + "CodeBytes": 0, + "Lines": 32, + "Code": 23, + "Comment": 6, + "Blank": 3, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gherkin Specification", + "Bytes": 35972, + "CodeBytes": 0, + "Lines": 158, + "Code": 138, + "Comment": 2, + "Blank": 18, + "Complexity": 5, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1387, + "CodeBytes": 0, + "Lines": 41, + "Code": 30, + "Comment": 0, + "Blank": 11, + "Complexity": 6, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 6434, + "CodeBytes": 0, + "Lines": 172, + "Code": 108, + "Comment": 38, + "Blank": 26, + "Complexity": 12, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 8942, + "CodeBytes": 0, + "Lines": 210, + "Code": 210, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 404, + "CodeBytes": 0, + "Lines": 20, + "Code": 15, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 150, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Groovy", + "Bytes": 1184, + "CodeBytes": 0, + "Lines": 48, + "Code": 36, + "Comment": 6, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 3577, + "CodeBytes": 0, + "Lines": 104, + "Code": 104, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 475104727.43747234, + "estimatedScheduleMonths_low": 148.1858635748694, + "estimatedPeople_low": 312.3432208804165, + "estimatedCost_high": 1480633834.934316, + "estimatedScheduleMonths_high": 148.1858635748694, + "estimatedPeople_high": 312.3432208804165, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nXML 978 12508871 34890 689418 11784563 0\n(ULOC) 22983\n-------------------------------------------------------------------------------\nJava 432 41212 6980 6067 28165 1107\n(ULOC) 16306\n-------------------------------------------------------------------------------\nTerraform 37 4100 500 527 3073 32\n(ULOC) 1312\n-------------------------------------------------------------------------------\nJSON 24 236830 3 0 236827 0\n(ULOC) 30227\n-------------------------------------------------------------------------------\nMarkdown 16 701 170 0 531 0\n(ULOC) 495\n-------------------------------------------------------------------------------\nYAML 12 1103 136 188 779 0\n(ULOC) 674\n-------------------------------------------------------------------------------\nShell 7 167 35 26 106 9\n(ULOC) 122\n-------------------------------------------------------------------------------\nPython 6 281 33 12 236 19\n(ULOC) 224\n-------------------------------------------------------------------------------\nProperties File 4 32 3 6 23 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nGherkin Specificati… 3 158 18 2 138 5\n(ULOC) 112\n-------------------------------------------------------------------------------\nDockerfile 2 41 11 0 30 6\n(ULOC) 31\n-------------------------------------------------------------------------------\nJavaScript 2 172 26 38 108 12\n(ULOC) 130\n-------------------------------------------------------------------------------\nSmarty Template 2 210 0 0 210 0\n(ULOC) 153\n-------------------------------------------------------------------------------\nBatch 1 20 5 0 15 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nDocker ignore 1 13 0 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nGroovy 1 48 6 6 36 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nTOML 1 104 0 0 104 0\n(ULOC) 78\n───────────────────────────────────────────────────────────────────────────────\nTotal 1531 12794180 42836 696290 12055054 1190\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 72893\nDRYness % 0.01\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $520,982,270\nEstimated Schedule Effort (organic) 148.19 months\nEstimated People Required (organic) 312.34\n───────────────────────────────────────────────────────────────────────────────\nProcessed 866704288 bytes, 866.704 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Java": 1379987, + "HCL": 118777, + "Gherkin": 35972, + "Python": 10037, + "Smarty": 8942, + "JavaScript": 6434, + "Shell": 5731, + "Dockerfile": 1387, + "Groovy": 1184, + "Batchfile": 404, + "Procfile": 60 + }, + "average_issue_resolution_time": [ + [ + "qpp-conversion-tool", + "31 days 14:57:32.511627" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/qpp-eu-data/qpp-eu-data_data.json b/app/site/_data/CMSgov/qpp-eu-data/qpp-eu-data_data.json index f765ad5a16..5943cd5903 100644 --- a/app/site/_data/CMSgov/qpp-eu-data/qpp-eu-data_data.json +++ b/app/site/_data/CMSgov/qpp-eu-data/qpp-eu-data_data.json @@ -1,441 +1,441 @@ { - "url": "https://github.com/CMSgov/qpp-eu-data", - "owner": "CMSgov", - "name": "qpp-eu-data", - "description": "This repository publishes the county-zipcode crosswalk data used for determining the providers eligible Extreme And Uncontrollable Circumstances Hardship. ", - "commits_count": 92, - "issues_count": 15, - "open_issues_count": 1, - "closed_issues_count": 14, - "pull_requests_count": 34, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 23, - "closed_pull_requests_count": 11, - "forks_count": 0, - "stargazers_count": 4, - "watchers_count": 25, - "total_project_lines": 12786, - "average_project_lines": 346, - "total_project_comment_lines": 27, - "average_project_comment_lines": 1, - "total_project_blank_lines": 242, - "average_blank_lines": 7, - "commits_by_month": { - "2025/1": 1, - "2024/12": 2, - "2023/12": 3, - "2023/11": 11, - "2023/5": 6, - "2023/4": 7 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-12-12T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-08-30T12:17:03Z", - "ossf_scorecard": { - "date": "2025-01-11T00:58:17Z", - "repo": { - "name": "github.com/CMSgov/qpp-eu-data", - "commit": "27ff70d07503d49be61962584b55850ff92e0b3f" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 6, - "reason": "6 out of 10 merged PRs checked by a CI test -- score normalized to 6", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 2, - "reason": "3 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 2", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 5, - "reason": "SAST tool is not run on all commits -- score normalized to 5", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 4, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 18754, - "CodeBytes": 0, - "Lines": 394, - "Code": 288, - "Comment": 0, - "Blank": 106, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 19400, - "CodeBytes": 0, - "Lines": 502, - "Code": 390, - "Comment": 22, - "Blank": 90, - "Complexity": 62, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 176730, - "CodeBytes": 0, - "Lines": 10432, - "Code": 10432, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6229, - "CodeBytes": 0, - "Lines": 238, - "Code": 226, - "Comment": 5, - "Blank": 7, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1943289, - "CodeBytes": 0, - "Lines": 9668, - "Code": 9668, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 633, - "CodeBytes": 0, - "Lines": 29, - "Code": 29, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 5339, - "CodeBytes": 0, - "Lines": 172, - "Code": 143, - "Comment": 0, - "Blank": 29, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 610605.1658746507, - "estimatedScheduleMonths_low": 11.80907285433678, - "estimatedPeople_low": 5.037257826637965, - "estimatedCost_high": 1902912.381562595, - "estimatedScheduleMonths_high": 11.80907285433678, - "estimatedPeople_high": 5.037257826637965, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 12 394 106 0 288 0\n(ULOC) 261\n-------------------------------------------------------------------------------\nPython 11 502 90 22 390 62\n(ULOC) 317\n-------------------------------------------------------------------------------\nCSV 6 10432 0 0 10432 0\n(ULOC) 6724\n-------------------------------------------------------------------------------\nYAML 5 238 7 5 226 0\n(ULOC) 140\n-------------------------------------------------------------------------------\nPlain Text 3 9668 0 0 9668 0\n(ULOC) 7967\n-------------------------------------------------------------------------------\nJSON 1 29 0 0 29 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nTOML 1 172 29 0 143 1\n(ULOC) 109\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 40 21551 252 27 21272 63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 15634\nDRYness % 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $669,567\nEstimated Schedule Effort (organic) 11.81 months\nEstimated People Required (organic) 5.04\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2176929 bytes, 2.177 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/qpp-eu-data", + "owner": "CMSgov", + "name": "qpp-eu-data", + "description": "This repository publishes the county-zipcode crosswalk data used for determining the providers eligible Extreme And Uncontrollable Circumstances Hardship. ", + "commits_count": 92, + "issues_count": 15, + "open_issues_count": 1, + "closed_issues_count": 14, + "pull_requests_count": 34, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 23, + "closed_pull_requests_count": 11, + "forks_count": 0, + "stargazers_count": 4, + "watchers_count": 25, + "total_project_lines": 12786, + "average_project_lines": 346, + "total_project_comment_lines": 27, + "average_project_comment_lines": 1, + "total_project_blank_lines": 242, + "average_blank_lines": 7, + "commits_by_month": { + "2025/1": 1, + "2024/12": 2, + "2023/12": 3, + "2023/11": 11, + "2023/5": 6, + "2023/4": 7 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-12-12T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-08-30T12:17:03Z", + "ossf_scorecard": { + "date": "2025-01-11T00:58:17Z", + "repo": { + "name": "github.com/CMSgov/qpp-eu-data", + "commit": "27ff70d07503d49be61962584b55850ff92e0b3f" }, - "predominant_langs": { - "Python": 19400 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "qpp-eu-data", - "9 days 13:10:41.714286" - ] + "score": 6.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 6, + "reason": "6 out of 10 merged PRs checked by a CI test -- score normalized to 6", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 2, + "reason": "3 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 2", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 5, + "reason": "SAST tool is not run on all commits -- score normalized to 5", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 4, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 18754, + "CodeBytes": 0, + "Lines": 394, + "Code": 288, + "Comment": 0, + "Blank": 106, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 19400, + "CodeBytes": 0, + "Lines": 502, + "Code": 390, + "Comment": 22, + "Blank": 90, + "Complexity": 62, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 176730, + "CodeBytes": 0, + "Lines": 10432, + "Code": 10432, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6229, + "CodeBytes": 0, + "Lines": 238, + "Code": 226, + "Comment": 5, + "Blank": 7, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1943289, + "CodeBytes": 0, + "Lines": 9668, + "Code": 9668, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 633, + "CodeBytes": 0, + "Lines": 29, + "Code": 29, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 5339, + "CodeBytes": 0, + "Lines": 172, + "Code": 143, + "Comment": 0, + "Blank": 29, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 610605.1658746507, + "estimatedScheduleMonths_low": 11.80907285433678, + "estimatedPeople_low": 5.037257826637965, + "estimatedCost_high": 1902912.381562595, + "estimatedScheduleMonths_high": 11.80907285433678, + "estimatedPeople_high": 5.037257826637965, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 12 394 106 0 288 0\n(ULOC) 261\n-------------------------------------------------------------------------------\nPython 11 502 90 22 390 62\n(ULOC) 317\n-------------------------------------------------------------------------------\nCSV 6 10432 0 0 10432 0\n(ULOC) 6724\n-------------------------------------------------------------------------------\nYAML 5 238 7 5 226 0\n(ULOC) 140\n-------------------------------------------------------------------------------\nPlain Text 3 9668 0 0 9668 0\n(ULOC) 7967\n-------------------------------------------------------------------------------\nJSON 1 29 0 0 29 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nTOML 1 172 29 0 143 1\n(ULOC) 109\n───────────────────────────────────────────────────────────────────────────────\nTotal 40 21551 252 27 21272 63\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 15634\nDRYness % 0.73\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $669,567\nEstimated Schedule Effort (organic) 11.81 months\nEstimated People Required (organic) 5.04\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2176929 bytes, 2.177 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 19400 + }, + "average_issue_resolution_time": [ + [ + "qpp-eu-data", + "9 days 13:10:41.714286" + ] + ], + "repo_dependency_libyear_list": [ + [ + "PyGithub", + 2.0054794521, + "2025-01-01T18:38:35.000" + ], + [ + "PyYAML", + 2.8164383562, + "2025-01-01T18:38:35.000" + ], + [ + "coverage", + 2.0219178082, + "2025-01-01T18:38:35.000" + ], + [ + "openpyxl", + 2.1095890411, + "2025-01-01T18:38:35.000" + ], + [ + "pandas", + 1.8273972603, + "2025-01-01T18:38:35.000" + ], + [ + "pydash", + 1.9287671233, + "2025-01-01T18:38:35.000" + ], + [ + "pytest", + 2.104109589, + "2025-01-01T18:38:35.000" + ], + [ + "pytest-cov", + 2.0876712329, + "2025-01-01T18:38:35.000" + ], + [ + "python-dateutil", + 2.6328767123, + "2025-01-01T18:38:35.000" + ], + [ + "requests", + 1.0219178082, + "2025-01-01T18:38:35.000" + ], + [ + "slack-sdk", + 2.0438356164, + "2025-01-01T18:38:35.000" ], - "repo_dependency_libyear_list": [ - [ - "PyGithub", - 2.0054794521, - "2025-01-01T18:38:35.000" - ], - [ - "PyYAML", - 2.8164383562, - "2025-01-01T18:38:35.000" - ], - [ - "coverage", - 2.0219178082, - "2025-01-01T18:38:35.000" - ], - [ - "openpyxl", - 2.1095890411, - "2025-01-01T18:38:35.000" - ], - [ - "pandas", - 1.8273972603, - "2025-01-01T18:38:35.000" - ], - [ - "pydash", - 1.9287671233, - "2025-01-01T18:38:35.000" - ], - [ - "pytest", - 2.104109589, - "2025-01-01T18:38:35.000" - ], - [ - "pytest-cov", - 2.0876712329, - "2025-01-01T18:38:35.000" - ], - [ - "python-dateutil", - 2.6328767123, - "2025-01-01T18:38:35.000" - ], - [ - "requests", - 1.0219178082, - "2025-01-01T18:38:35.000" - ], - [ - "slack-sdk", - 2.0438356164, - "2025-01-01T18:38:35.000" - ], - [ - "unidecode", - 1.2821917808, - "2025-01-01T18:38:35.000" - ] + [ + "unidecode", + 1.2821917808, + "2025-01-01T18:38:35.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/qpp-file-upload-api-client/qpp-file-upload-api-client_data.json b/app/site/_data/CMSgov/qpp-file-upload-api-client/qpp-file-upload-api-client_data.json index 1f5a10c89c..949c3947b0 100644 --- a/app/site/_data/CMSgov/qpp-file-upload-api-client/qpp-file-upload-api-client_data.json +++ b/app/site/_data/CMSgov/qpp-file-upload-api-client/qpp-file-upload-api-client_data.json @@ -1,463 +1,463 @@ { - "url": "https://github.com/CMSgov/qpp-file-upload-api-client", - "owner": "CMSgov", - "name": "qpp-file-upload-api-client", - "description": "A set of functions to call the QPP Submissions API in common manner, such as for the file upload use case. ", - "commits_count": 425, - "issues_count": 14, - "open_issues_count": 4, - "closed_issues_count": 10, - "pull_requests_count": 199, - "open_pull_requests_count": 8, - "merged_pull_requests_count": 138, - "closed_pull_requests_count": 53, - "forks_count": 3, - "stargazers_count": 3, - "watchers_count": 35, - "total_project_lines": 2381, - "average_project_lines": 95, - "total_project_comment_lines": 167, - "average_project_comment_lines": 7, - "total_project_blank_lines": 287, - "average_blank_lines": 11, - "commits_by_month": { - "2024/10": 1, - "2024/1": 2, - "2023/11": 1, - "2023/1": 8, - "2022/12": 3, - "2022/11": 5, - "2022/10": 7, - "2022/9": 3 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-10-01T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2017-09-18T19:06:47Z", - "ossf_scorecard": { - "date": "2025-01-11T00:39:39Z", - "repo": { - "name": "github.com/CMSgov/qpp-file-upload-api-client", - "commit": "3422dcd806b0768c8d6b3b22bca109c0d72060f0" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 1, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "internal error: internal error: Client.Repositories.ListStatuses: internal error: ListStatuses: GET https://api.github.com/repos/CMSgov/qpp-file-upload-api-client/commits/00cf42e6e177f77878369d0489c745c479fec4c4/statuses: 401 Bad credentials []", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 6, - "reason": "dependency not pinned by hash detected -- score normalized to 6", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "11 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 51510, - "CodeBytes": 0, - "Lines": 1463, - "Code": 1144, - "Comment": 166, - "Blank": 153, - "Complexity": 87, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3858, - "CodeBytes": 0, - "Lines": 170, - "Code": 137, - "Comment": 1, - "Blank": 32, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 6189, - "CodeBytes": 0, - "Lines": 236, - "Code": 235, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 13346, - "CodeBytes": 0, - "Lines": 291, - "Code": 210, - "Comment": 0, - "Blank": 81, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 3576, - "CodeBytes": 0, - "Lines": 104, - "Code": 104, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 139, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 49055.480507903456, - "estimatedScheduleMonths_low": 4.529894470155126, - "estimatedPeople_low": 1.0549914923851864, - "estimatedCost_high": 152878.30247599838, - "estimatedScheduleMonths_high": 4.529894470155126, - "estimatedPeople_high": 1.0549914923851864, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 8 1463 153 166 1144 87\n(ULOC) 686\n-------------------------------------------------------------------------------\nYAML 6 170 32 1 137 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nJSON 4 236 1 0 235 0\n(ULOC) 159\n-------------------------------------------------------------------------------\nMarkdown 4 291 81 0 210 0\n(ULOC) 186\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nTOML 1 104 0 0 104 0\n(ULOC) 77\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 0 1 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 25 2381 287 167 1927 87\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1276\nDRYness % 0.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $53,792\nEstimated Schedule Effort (organic) 4.53 months\nEstimated People Required (organic) 1.05\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 85173 bytes, 0.085 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/qpp-file-upload-api-client", + "owner": "CMSgov", + "name": "qpp-file-upload-api-client", + "description": "A set of functions to call the QPP Submissions API in common manner, such as for the file upload use case. ", + "commits_count": 425, + "issues_count": 14, + "open_issues_count": 4, + "closed_issues_count": 10, + "pull_requests_count": 199, + "open_pull_requests_count": 8, + "merged_pull_requests_count": 138, + "closed_pull_requests_count": 53, + "forks_count": 3, + "stargazers_count": 3, + "watchers_count": 35, + "total_project_lines": 2381, + "average_project_lines": 95, + "total_project_comment_lines": 167, + "average_project_comment_lines": 7, + "total_project_blank_lines": 287, + "average_blank_lines": 11, + "commits_by_month": { + "2024/10": 1, + "2024/1": 2, + "2023/11": 1, + "2023/1": 8, + "2022/12": 3, + "2022/11": 5, + "2022/10": 7, + "2022/9": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-10-01T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2017-09-18T19:06:47Z", + "ossf_scorecard": { + "date": "2025-01-11T00:39:39Z", + "repo": { + "name": "github.com/CMSgov/qpp-file-upload-api-client", + "commit": "3422dcd806b0768c8d6b3b22bca109c0d72060f0" }, - "predominant_langs": { - "JavaScript": 51510 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "qpp-file-upload-api-client", - "33 days 13:31:32.1" - ] + "score": 4.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 1, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "internal error: internal error: Client.Repositories.ListStatuses: internal error: ListStatuses: GET https://api.github.com/repos/CMSgov/qpp-file-upload-api-client/commits/00cf42e6e177f77878369d0489c745c479fec4c4/statuses: 401 Bad credentials []", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 6, + "reason": "dependency not pinned by hash detected -- score normalized to 6", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "11 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 51510, + "CodeBytes": 0, + "Lines": 1463, + "Code": 1144, + "Comment": 166, + "Blank": 153, + "Complexity": 87, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3858, + "CodeBytes": 0, + "Lines": 170, + "Code": 137, + "Comment": 1, + "Blank": 32, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 6189, + "CodeBytes": 0, + "Lines": 236, + "Code": 235, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 13346, + "CodeBytes": 0, + "Lines": 291, + "Code": 210, + "Comment": 0, + "Blank": 81, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 3576, + "CodeBytes": 0, + "Lines": 104, + "Code": 104, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 139, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 49055.480507903456, + "estimatedScheduleMonths_low": 4.529894470155126, + "estimatedPeople_low": 1.0549914923851864, + "estimatedCost_high": 152878.30247599838, + "estimatedScheduleMonths_high": 4.529894470155126, + "estimatedPeople_high": 1.0549914923851864, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 8 1463 153 166 1144 87\n(ULOC) 686\n-------------------------------------------------------------------------------\nYAML 6 170 32 1 137 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nJSON 4 236 1 0 235 0\n(ULOC) 159\n-------------------------------------------------------------------------------\nMarkdown 4 291 81 0 210 0\n(ULOC) 186\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nTOML 1 104 0 0 104 0\n(ULOC) 77\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 0 1 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 25 2381 287 167 1927 87\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1276\nDRYness % 0.54\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $53,792\nEstimated Schedule Effort (organic) 4.53 months\nEstimated People Required (organic) 1.05\n───────────────────────────────────────────────────────────────────────────────\nProcessed 85173 bytes, 0.085 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 51510 + }, + "average_issue_resolution_time": [ + [ + "qpp-file-upload-api-client", + "33 days 13:31:32.1" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@babel/cli", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "@babel/preset-env", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "@babel/register", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "@snyk/protect", + 2.2657534247, + "2025-01-01T18:36:34.000" + ], + [ + "axios", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "babel-loader", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "chai", + 0.2438356164, + "2025-01-01T18:36:34.000" + ], + [ + "debug", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "eslint", + 3.3726027397, + "2025-01-01T18:36:34.000" + ], + [ + "mocha", + 2.7287671233, + "2025-01-01T18:36:34.000" + ], + [ + "nyc", + 4.304109589, + "2025-01-01T18:36:34.000" + ], + [ + "pre-push", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "rimraf", + 4.4191780822, + "2025-01-01T18:36:34.000" + ], + [ + "sinon", + 3.1342465753, + "2025-01-01T18:36:34.000" + ], + [ + "snyk", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "tar", + 0.3452054795, + "2025-01-01T18:36:34.000" + ], + [ + "terser-webpack-plugin", + 0, + "2025-01-01T18:36:34.000" + ], + [ + "webpack", + 0, + "2025-01-01T18:36:34.000" ], - "repo_dependency_libyear_list": [ - [ - "@babel/cli", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "@babel/preset-env", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "@babel/register", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "@snyk/protect", - 2.2657534247, - "2025-01-01T18:36:34.000" - ], - [ - "axios", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "babel-loader", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "chai", - 0.2438356164, - "2025-01-01T18:36:34.000" - ], - [ - "debug", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "eslint", - 3.3726027397, - "2025-01-01T18:36:34.000" - ], - [ - "mocha", - 2.7287671233, - "2025-01-01T18:36:34.000" - ], - [ - "nyc", - 4.304109589, - "2025-01-01T18:36:34.000" - ], - [ - "pre-push", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "rimraf", - 4.4191780822, - "2025-01-01T18:36:34.000" - ], - [ - "sinon", - 3.1342465753, - "2025-01-01T18:36:34.000" - ], - [ - "snyk", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "tar", - 0.3452054795, - "2025-01-01T18:36:34.000" - ], - [ - "terser-webpack-plugin", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "webpack", - 0.0, - "2025-01-01T18:36:34.000" - ], - [ - "webpack-cli", - 2.9068493151, - "2025-01-01T18:36:34.000" - ] + [ + "webpack-cli", + 2.9068493151, + "2025-01-01T18:36:34.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/qpp-measures-data/qpp-measures-data_data.json b/app/site/_data/CMSgov/qpp-measures-data/qpp-measures-data_data.json index 327b9ff66b..c7f6da966c 100644 --- a/app/site/_data/CMSgov/qpp-measures-data/qpp-measures-data_data.json +++ b/app/site/_data/CMSgov/qpp-measures-data/qpp-measures-data_data.json @@ -1,520 +1,520 @@ { - "url": "https://github.com/CMSgov/qpp-measures-data", - "owner": "CMSgov", - "name": "qpp-measures-data", - "description": "QPP Measures Data", - "commits_count": 1929, - "issues_count": 18, - "open_issues_count": 0, - "closed_issues_count": 18, - "pull_requests_count": 808, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 713, - "closed_pull_requests_count": 94, - "forks_count": 46, - "stargazers_count": 90, - "watchers_count": 75, - "total_project_lines": 1817443, - "average_project_lines": 2741, - "total_project_comment_lines": 2578, - "average_project_comment_lines": 4, - "total_project_blank_lines": 6834, - "average_blank_lines": 10, - "commits_by_month": { - "2025/1": 26, - "2024/12": 4 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-16T00:00:00.000Z", - 2 - ], - [ - "2024-12-17T00:00:00.000Z", - 1 - ], - [ - "2024-12-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-23T00:00:00.000Z", - 4 - ] + "url": "https://github.com/CMSgov/qpp-measures-data", + "owner": "CMSgov", + "name": "qpp-measures-data", + "description": "QPP Measures Data", + "commits_count": 1929, + "issues_count": 18, + "open_issues_count": 0, + "closed_issues_count": 18, + "pull_requests_count": 808, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 713, + "closed_pull_requests_count": 94, + "forks_count": 46, + "stargazers_count": 90, + "watchers_count": 75, + "total_project_lines": 1817443, + "average_project_lines": 2741, + "total_project_comment_lines": 2578, + "average_project_comment_lines": 4, + "total_project_blank_lines": 6834, + "average_blank_lines": 10, + "commits_by_month": { + "2025/1": 26, + "2024/12": 4 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-16T00:00:00.000Z", + 2 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-07-29T00:00:00.000Z", - 2 - ], - [ - "2024-07-31T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-20T00:00:00.000Z", - 1 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 2 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-23T00:00:00.000Z", - 2 - ] + [ + "2024-12-17T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2017-01-06T18:57:02Z", - "ossf_scorecard": { - "date": "2025-01-11T00:32:07Z", - "repo": { - "name": "github.com/CMSgov/qpp-measures-data", - "commit": "5879c781099ac3aa7a95f8e35983441434e38b5b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 6.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 11/13 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "CSV", - "Bytes": 17121032, - "CodeBytes": 0, - "Lines": 253361, - "Code": 249924, - "Comment": 0, - "Blank": 3437, - "Complexity": 0, - "Count": 237, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 43867491, - "CodeBytes": 0, - "Lines": 1463467, - "Code": 1463454, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 195, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 368335, - "CodeBytes": 0, - "Lines": 10334, - "Code": 8603, - "Comment": 478, - "Blank": 1253, - "Complexity": 946, - "Count": 82, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 317361, - "CodeBytes": 0, - "Lines": 8757, - "Code": 6083, - "Comment": 1777, - "Blank": 897, - "Complexity": 903, - "Count": 72, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 276536, - "CodeBytes": 0, - "Lines": 7091, - "Code": 6745, - "Comment": 46, - "Blank": 300, - "Complexity": 0, - "Count": 46, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 129856, - "CodeBytes": 0, - "Lines": 3406, - "Code": 2884, - "Comment": 165, - "Blank": 357, - "Complexity": 311, - "Count": 20, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 35422, - "CodeBytes": 0, - "Lines": 768, - "Code": 472, - "Comment": 118, - "Blank": 178, - "Complexity": 33, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 44754, - "CodeBytes": 0, - "Lines": 680, - "Code": 541, - "Comment": 0, - "Blank": 139, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 5393648, - "CodeBytes": 0, - "Lines": 114756, - "Code": 114476, - "Comment": 0, - "Blank": 280, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 643, - "CodeBytes": 0, - "Lines": 29, - "Code": 20, - "Comment": 0, - "Blank": 9, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "INI", - "Bytes": 50, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 339, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 96, - "CodeBytes": 0, - "Lines": 5, - "Code": 3, - "Comment": 1, - "Blank": 1, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 66509447.2713211, - "estimatedScheduleMonths_low": 70.19763656253419, - "estimatedPeople_low": 92.30183950306208, - "estimatedCost_high": 207272486.01342973, - "estimatedScheduleMonths_high": 70.19763656253419, - "estimatedPeople_high": 92.30183950306208, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nCSV 237 253361 3437 0 249924 0\n(ULOC) 156053\n-------------------------------------------------------------------------------\nJSON 195 1463467 13 0 1463454 0\n(ULOC) 69173\n-------------------------------------------------------------------------------\nTypeScript 82 10334 1253 478 8603 946\n(ULOC) 3839\n-------------------------------------------------------------------------------\nJavaScript 72 8757 897 1777 6083 903\n(ULOC) 2586\n-------------------------------------------------------------------------------\nYAML 46 7091 300 46 6745 0\n(ULOC) 991\n-------------------------------------------------------------------------------\nPython 20 3406 357 165 2884 311\n(ULOC) 2180\n-------------------------------------------------------------------------------\nBASH 14 768 178 118 472 33\n(ULOC) 338\n-------------------------------------------------------------------------------\nMarkdown 11 680 139 0 541 0\n(ULOC) 411\n-------------------------------------------------------------------------------\nXML 2 114756 280 0 114476 0\n(ULOC) 15451\n-------------------------------------------------------------------------------\nDockerfile 1 29 9 0 20 3\n(ULOC) 18\n-------------------------------------------------------------------------------\nINI 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nMakefile 1 8 2 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nShell 1 5 1 1 3 2\n(ULOC) 5\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 683 1862664 6866 2585 1853213 2198\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 250428\nDRYness % 0.13\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $72,931,799\nEstimated Schedule Effort (organic) 70.20 months\nEstimated People Required (organic) 92.30\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 67555563 bytes, 67.556 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-12-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-23T00:00:00.000Z", + 4 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-07-29T00:00:00.000Z", + 2 + ], + [ + "2024-07-31T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-08-20T00:00:00.000Z", + 1 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 2 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-09-25T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-23T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2017-01-06T18:57:02Z", + "ossf_scorecard": { + "date": "2025-01-11T00:32:07Z", + "repo": { + "name": "github.com/CMSgov/qpp-measures-data", + "commit": "5879c781099ac3aa7a95f8e35983441434e38b5b" }, - "predominant_langs": { - "TypeScript": 368335, - "JavaScript": 317361, - "Python": 129856, - "Shell": 35518, - "Dockerfile": 643, - "Makefile": 339 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [ - [ - "qpp-measures-data", - "168 days 20:53:08.882353" - ] + "score": 6.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 11/13 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "CSV", + "Bytes": 17121032, + "CodeBytes": 0, + "Lines": 253361, + "Code": 249924, + "Comment": 0, + "Blank": 3437, + "Complexity": 0, + "Count": 237, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 43867491, + "CodeBytes": 0, + "Lines": 1463467, + "Code": 1463454, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 195, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 368335, + "CodeBytes": 0, + "Lines": 10334, + "Code": 8603, + "Comment": 478, + "Blank": 1253, + "Complexity": 946, + "Count": 82, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 317361, + "CodeBytes": 0, + "Lines": 8757, + "Code": 6083, + "Comment": 1777, + "Blank": 897, + "Complexity": 903, + "Count": 72, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 276536, + "CodeBytes": 0, + "Lines": 7091, + "Code": 6745, + "Comment": 46, + "Blank": 300, + "Complexity": 0, + "Count": 46, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 129856, + "CodeBytes": 0, + "Lines": 3406, + "Code": 2884, + "Comment": 165, + "Blank": 357, + "Complexity": 311, + "Count": 20, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 35422, + "CodeBytes": 0, + "Lines": 768, + "Code": 472, + "Comment": 118, + "Blank": 178, + "Complexity": 33, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 44754, + "CodeBytes": 0, + "Lines": 680, + "Code": 541, + "Comment": 0, + "Blank": 139, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 5393648, + "CodeBytes": 0, + "Lines": 114756, + "Code": 114476, + "Comment": 0, + "Blank": 280, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 643, + "CodeBytes": 0, + "Lines": 29, + "Code": 20, + "Comment": 0, + "Blank": 9, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "INI", + "Bytes": 50, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 339, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 96, + "CodeBytes": 0, + "Lines": 5, + "Code": 3, + "Comment": 1, + "Blank": 1, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 66509447.2713211, + "estimatedScheduleMonths_low": 70.19763656253419, + "estimatedPeople_low": 92.30183950306208, + "estimatedCost_high": 207272486.01342973, + "estimatedScheduleMonths_high": 70.19763656253419, + "estimatedPeople_high": 92.30183950306208, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nCSV 237 253361 3437 0 249924 0\n(ULOC) 156053\n-------------------------------------------------------------------------------\nJSON 195 1463467 13 0 1463454 0\n(ULOC) 69173\n-------------------------------------------------------------------------------\nTypeScript 82 10334 1253 478 8603 946\n(ULOC) 3839\n-------------------------------------------------------------------------------\nJavaScript 72 8757 897 1777 6083 903\n(ULOC) 2586\n-------------------------------------------------------------------------------\nYAML 46 7091 300 46 6745 0\n(ULOC) 991\n-------------------------------------------------------------------------------\nPython 20 3406 357 165 2884 311\n(ULOC) 2180\n-------------------------------------------------------------------------------\nBASH 14 768 178 118 472 33\n(ULOC) 338\n-------------------------------------------------------------------------------\nMarkdown 11 680 139 0 541 0\n(ULOC) 411\n-------------------------------------------------------------------------------\nXML 2 114756 280 0 114476 0\n(ULOC) 15451\n-------------------------------------------------------------------------------\nDockerfile 1 29 9 0 20 3\n(ULOC) 18\n-------------------------------------------------------------------------------\nINI 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nMakefile 1 8 2 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nShell 1 5 1 1 3 2\n(ULOC) 5\n───────────────────────────────────────────────────────────────────────────────\nTotal 683 1862664 6866 2585 1853213 2198\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 250428\nDRYness % 0.13\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $72,931,799\nEstimated Schedule Effort (organic) 70.20 months\nEstimated People Required (organic) 92.30\n───────────────────────────────────────────────────────────────────────────────\nProcessed 67555563 bytes, 67.556 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 368335, + "JavaScript": 317361, + "Python": 129856, + "Shell": 35518, + "Dockerfile": 643, + "Makefile": 339 + }, + "average_issue_resolution_time": [ + [ + "qpp-measures-data", + "168 days 20:53:08.882353" + ] + ], + "repo_dependency_libyear_list": [ + [ + "numpy", + 0, + "2025-01-01T18:34:24.000" ], - "repo_dependency_libyear_list": [ - [ - "numpy", - 0.0, - "2025-01-01T18:34:24.000" - ], - [ - "pandas", - 0.0, - "2025-01-01T18:34:24.000" - ] + [ + "pandas", + 0, + "2025-01-01T18:34:24.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/qpp-shared-api-versioning-node/qpp-shared-api-versioning-node_data.json b/app/site/_data/CMSgov/qpp-shared-api-versioning-node/qpp-shared-api-versioning-node_data.json index 17f8603799..73ca52344c 100644 --- a/app/site/_data/CMSgov/qpp-shared-api-versioning-node/qpp-shared-api-versioning-node_data.json +++ b/app/site/_data/CMSgov/qpp-shared-api-versioning-node/qpp-shared-api-versioning-node_data.json @@ -1,391 +1,391 @@ { - "url": "https://github.com/CMSgov/qpp-shared-api-versioning-node", - "owner": "CMSgov", - "name": "qpp-shared-api-versioning-node", - "description": "The middleware package parses incoming headers to determine the version of the API to be consumed.", - "commits_count": 23, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 18, - "open_pull_requests_count": 7, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 10, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 17, - "total_project_lines": 843, - "average_project_lines": 53, - "total_project_comment_lines": 27, - "average_project_comment_lines": 2, - "total_project_blank_lines": 175, - "average_blank_lines": 11, - "commits_by_month": { - "2020/12": 6, - "2020/9": 1, - "2020/8": 3, - "2017/12": 1, - "2017/11": 6, - "2017/10": 6 + "url": "https://github.com/CMSgov/qpp-shared-api-versioning-node", + "owner": "CMSgov", + "name": "qpp-shared-api-versioning-node", + "description": "The middleware package parses incoming headers to determine the version of the API to be consumed.", + "commits_count": 23, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 18, + "open_pull_requests_count": 7, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 10, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 17, + "total_project_lines": 843, + "average_project_lines": 53, + "total_project_comment_lines": 27, + "average_project_comment_lines": 2, + "total_project_blank_lines": 175, + "average_blank_lines": 11, + "commits_by_month": { + "2020/12": 6, + "2020/9": 1, + "2020/8": 3, + "2017/12": 1, + "2017/11": 6, + "2017/10": 6 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-10-01T12:20:21Z", + "ossf_scorecard": { + "date": "2025-01-11T01:03:38Z", + "repo": { + "name": "github.com/CMSgov/qpp-shared-api-versioning-node", + "commit": "750a8b3b9f29aeb0bb1ed1bb6f1440a2763daae9" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-10-01T12:20:21Z", - "ossf_scorecard": { - "date": "2025-01-11T01:03:38Z", - "repo": { - "name": "github.com/CMSgov/qpp-shared-api-versioning-node", - "commit": "750a8b3b9f29aeb0bb1ed1bb6f1440a2763daae9" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/23 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 6, - "reason": "dependency not pinned by hash detected -- score normalized to 6", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 4, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "28 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 11230, - "CodeBytes": 0, - "Lines": 300, - "Code": 207, - "Comment": 0, - "Blank": 93, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4159, - "CodeBytes": 0, - "Lines": 159, - "Code": 107, - "Comment": 24, - "Blank": 28, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 7325, - "CodeBytes": 0, - "Lines": 205, - "Code": 172, - "Comment": 3, - "Blank": 30, - "Complexity": 26, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1282, - "CodeBytes": 0, - "Lines": 50, - "Code": 50, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 368, - "CodeBytes": 0, - "Lines": 13, - "Code": 9, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 15444.102122027654, - "estimatedScheduleMonths_low": 2.919823733055316, - "estimatedPeople_low": 0.5152945372157588, - "estimatedCost_high": 48130.56749696203, - "estimatedScheduleMonths_high": 2.919823733055316, - "estimatedPeople_high": 0.5152945372157588, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 6 300 93 0 207 0\n(ULOC) 185\n-------------------------------------------------------------------------------\nYAML 4 159 28 24 107 0\n(ULOC) 99\n-------------------------------------------------------------------------------\nJavaScript 3 205 30 3 172 26\n(ULOC) 114\n-------------------------------------------------------------------------------\nJSON 1 50 0 0 50 0\n(ULOC) 49\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nProperties File 1 13 4 0 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 16 843 175 27 641 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 545\nDRYness % 0.65\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,935\nEstimated Schedule Effort (organic) 2.92 months\nEstimated People Required (organic) 0.52\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 30919 bytes, 0.031 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 7325 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "chai", - 7.1479452055, - "2025-01-01T18:36:04.000" - ], - [ - "eslint", - 7.1698630137, - "2025-01-01T18:36:04.000" - ], - [ - "eslint-config-standard", - 6.1232876712, - "2025-01-01T18:36:04.000" - ], - [ - "eslint-plugin-promise", - 7.1260273973, - "2025-01-01T18:36:04.000" - ], - [ - "eslint-plugin-standard", - 3.6328767123, - "2025-01-01T18:36:04.000" - ], - [ - "mocha", - 3.5753424658, - "2025-01-01T18:36:04.000" - ], - [ - "nyc", - 4.304109589, - "2025-01-01T18:36:04.000" - ], - [ - "opn-cli", - 3.2520547945, - "2025-01-01T18:36:04.000" - ], - [ - "sinon", - 6.9479452055, - "2025-01-01T18:36:04.000" - ], - [ - "standard", - 7.1068493151, - "2025-01-01T18:36:04.000" - ] + "score": 2.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/23 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 6, + "reason": "dependency not pinned by hash detected -- score normalized to 6", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 4, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "28 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 11230, + "CodeBytes": 0, + "Lines": 300, + "Code": 207, + "Comment": 0, + "Blank": 93, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4159, + "CodeBytes": 0, + "Lines": 159, + "Code": 107, + "Comment": 24, + "Blank": 28, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 7325, + "CodeBytes": 0, + "Lines": 205, + "Code": 172, + "Comment": 3, + "Blank": 30, + "Complexity": 26, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1282, + "CodeBytes": 0, + "Lines": 50, + "Code": 50, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 368, + "CodeBytes": 0, + "Lines": 13, + "Code": 9, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 15444.102122027654, + "estimatedScheduleMonths_low": 2.919823733055316, + "estimatedPeople_low": 0.5152945372157588, + "estimatedCost_high": 48130.56749696203, + "estimatedScheduleMonths_high": 2.919823733055316, + "estimatedPeople_high": 0.5152945372157588, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 6 300 93 0 207 0\n(ULOC) 185\n-------------------------------------------------------------------------------\nYAML 4 159 28 24 107 0\n(ULOC) 99\n-------------------------------------------------------------------------------\nJavaScript 3 205 30 3 172 26\n(ULOC) 114\n-------------------------------------------------------------------------------\nJSON 1 50 0 0 50 0\n(ULOC) 49\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nProperties File 1 13 4 0 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 16 843 175 27 641 26\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 545\nDRYness % 0.65\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,935\nEstimated Schedule Effort (organic) 2.92 months\nEstimated People Required (organic) 0.52\n───────────────────────────────────────────────────────────────────────────────\nProcessed 30919 bytes, 0.031 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 7325 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "chai", + 7.1479452055, + "2025-01-01T18:36:04.000" + ], + [ + "eslint", + 7.1698630137, + "2025-01-01T18:36:04.000" + ], + [ + "eslint-config-standard", + 6.1232876712, + "2025-01-01T18:36:04.000" + ], + [ + "eslint-plugin-promise", + 7.1260273973, + "2025-01-01T18:36:04.000" + ], + [ + "eslint-plugin-standard", + 3.6328767123, + "2025-01-01T18:36:04.000" + ], + [ + "mocha", + 3.5753424658, + "2025-01-01T18:36:04.000" + ], + [ + "nyc", + 4.304109589, + "2025-01-01T18:36:04.000" + ], + [ + "opn-cli", + 3.2520547945, + "2025-01-01T18:36:04.000" + ], + [ + "sinon", + 6.9479452055, + "2025-01-01T18:36:04.000" + ], + [ + "standard", + 7.1068493151, + "2025-01-01T18:36:04.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/qpp-shared-healthcheck-node/qpp-shared-healthcheck-node_data.json b/app/site/_data/CMSgov/qpp-shared-healthcheck-node/qpp-shared-healthcheck-node_data.json index c674d134b8..71b7df627c 100644 --- a/app/site/_data/CMSgov/qpp-shared-healthcheck-node/qpp-shared-healthcheck-node_data.json +++ b/app/site/_data/CMSgov/qpp-shared-healthcheck-node/qpp-shared-healthcheck-node_data.json @@ -1,339 +1,339 @@ { - "url": "https://github.com/CMSgov/qpp-shared-healthcheck-node", - "owner": "CMSgov", - "name": "qpp-shared-healthcheck-node", - "description": "Shared health check route for QPP services.", - "commits_count": 16, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 11, - "open_pull_requests_count": 8, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 2, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 26, - "total_project_lines": 716, - "average_project_lines": 48, - "total_project_comment_lines": 34, - "average_project_comment_lines": 2, - "total_project_blank_lines": 146, - "average_blank_lines": 10, - "commits_by_month": { - "2020/12": 6, - "2020/8": 1, - "2018/11": 2, - "2018/4": 1, - "2017/11": 6 + "url": "https://github.com/CMSgov/qpp-shared-healthcheck-node", + "owner": "CMSgov", + "name": "qpp-shared-healthcheck-node", + "description": "Shared health check route for QPP services.", + "commits_count": 16, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 11, + "open_pull_requests_count": 8, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 2, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 26, + "total_project_lines": 716, + "average_project_lines": 48, + "total_project_comment_lines": 34, + "average_project_comment_lines": 2, + "total_project_blank_lines": 146, + "average_blank_lines": 10, + "commits_by_month": { + "2020/12": 6, + "2020/8": 1, + "2018/11": 2, + "2018/4": 1, + "2017/11": 6 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-10-01T12:19:34Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:18Z", + "repo": { + "name": "github.com/CMSgov/qpp-shared-healthcheck-node", + "commit": "4136c92ea59f78c2c875ef193e4190999ba78ecb" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-10-01T12:19:34Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:18Z", - "repo": { - "name": "github.com/CMSgov/qpp-shared-healthcheck-node", - "commit": "4136c92ea59f78c2c875ef193e4190999ba78ecb" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/16 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 5, - "reason": "dependency not pinned by hash detected -- score normalized to 5", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 4, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "16 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 11229, - "CodeBytes": 0, - "Lines": 278, - "Code": 198, - "Comment": 0, - "Blank": 80, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3534, - "CodeBytes": 0, - "Lines": 143, - "Code": 94, - "Comment": 24, - "Blank": 25, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 3723, - "CodeBytes": 0, - "Lines": 142, - "Code": 115, - "Comment": 10, - "Blank": 17, - "Complexity": 6, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 569, - "CodeBytes": 0, - "Lines": 24, - "Code": 24, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 345, - "CodeBytes": 0, - "Lines": 13, - "Code": 9, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 12799.257099576724, - "estimatedScheduleMonths_low": 2.7186733599721986, - "estimatedPeople_low": 0.4586456082415519, - "estimatedCost_high": 39888.07525841903, - "estimatedScheduleMonths_high": 2.7186733599721986, - "estimatedPeople_high": 0.4586456082415519, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 6 278 80 0 198 0\n(ULOC) 180\n-------------------------------------------------------------------------------\nYAML 4 143 25 24 94 0\n(ULOC) 86\n-------------------------------------------------------------------------------\nJavaScript 2 142 17 10 115 6\n(ULOC) 88\n-------------------------------------------------------------------------------\nJSON 1 24 0 0 24 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nProperties File 1 13 4 0 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 716 146 34 536 6\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 473\nDRYness % 0.66\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $14,035\nEstimated Schedule Effort (organic) 2.72 months\nEstimated People Required (organic) 0.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 25955 bytes, 0.026 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 3723 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/16 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 5, + "reason": "dependency not pinned by hash detected -- score normalized to 5", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 4, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "16 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 11229, + "CodeBytes": 0, + "Lines": 278, + "Code": 198, + "Comment": 0, + "Blank": 80, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3534, + "CodeBytes": 0, + "Lines": 143, + "Code": 94, + "Comment": 24, + "Blank": 25, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 3723, + "CodeBytes": 0, + "Lines": 142, + "Code": 115, + "Comment": 10, + "Blank": 17, + "Complexity": 6, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 569, + "CodeBytes": 0, + "Lines": 24, + "Code": 24, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 345, + "CodeBytes": 0, + "Lines": 13, + "Code": 9, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 12799.257099576724, + "estimatedScheduleMonths_low": 2.7186733599721986, + "estimatedPeople_low": 0.4586456082415519, + "estimatedCost_high": 39888.07525841903, + "estimatedScheduleMonths_high": 2.7186733599721986, + "estimatedPeople_high": 0.4586456082415519, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 6 278 80 0 198 0\n(ULOC) 180\n-------------------------------------------------------------------------------\nYAML 4 143 25 24 94 0\n(ULOC) 86\n-------------------------------------------------------------------------------\nJavaScript 2 142 17 10 115 6\n(ULOC) 88\n-------------------------------------------------------------------------------\nJSON 1 24 0 0 24 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nProperties File 1 13 4 0 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 716 146 34 536 6\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 473\nDRYness % 0.66\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $14,035\nEstimated Schedule Effort (organic) 2.72 months\nEstimated People Required (organic) 0.46\n───────────────────────────────────────────────────────────────────────────────\nProcessed 25955 bytes, 0.026 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 3723 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/qpp-shared-logger-node/qpp-shared-logger-node_data.json b/app/site/_data/CMSgov/qpp-shared-logger-node/qpp-shared-logger-node_data.json index c691302e83..8edd170fad 100644 --- a/app/site/_data/CMSgov/qpp-shared-logger-node/qpp-shared-logger-node_data.json +++ b/app/site/_data/CMSgov/qpp-shared-logger-node/qpp-shared-logger-node_data.json @@ -1,630 +1,630 @@ { - "url": "https://github.com/CMSgov/qpp-shared-logger-node", - "owner": "CMSgov", - "name": "qpp-shared-logger-node", - "description": "Common QPP logger that is shared across the different teams", - "commits_count": 141, - "issues_count": 1, - "open_issues_count": 1, - "closed_issues_count": 0, - "pull_requests_count": 56, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 31, - "closed_pull_requests_count": 24, - "forks_count": 3, - "stargazers_count": 2, - "watchers_count": 20, - "total_project_lines": 2505, - "average_project_lines": 81, - "total_project_comment_lines": 122, - "average_project_comment_lines": 4, - "total_project_blank_lines": 347, - "average_blank_lines": 11, - "commits_by_month": { - "2024/12": 1, - "2024/6": 2, - "2023/7": 23, - "2023/1": 4 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-19T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-12-19T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-10-01T12:18:35Z", - "ossf_scorecard": { - "date": "2025-01-11T01:00:01Z", - "repo": { - "name": "github.com/CMSgov/qpp-shared-logger-node", - "commit": "427542f2f398ba1126f4dcdd7e1c451ed1f44a19" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 4.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 2, - "reason": "2 out of 7 merged PRs checked by a CI test -- score normalized to 2", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 5/7 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 8 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 5, - "reason": "dependency not pinned by hash detected -- score normalized to 5", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 4, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 3, - "reason": "7 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 47164, - "CodeBytes": 0, - "Lines": 1360, - "Code": 1176, - "Comment": 49, - "Blank": 135, - "Complexity": 97, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 21535, - "CodeBytes": 0, - "Lines": 435, - "Code": 312, - "Comment": 0, - "Blank": 123, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 8641, - "CodeBytes": 0, - "Lines": 290, - "Code": 189, - "Comment": 53, - "Blank": 48, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3684, - "CodeBytes": 0, - "Lines": 156, - "Code": 156, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 3757, - "CodeBytes": 0, - "Lines": 135, - "Code": 98, - "Comment": 20, - "Blank": 17, - "Complexity": 14, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 365, - "CodeBytes": 0, - "Lines": 13, - "Code": 9, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 51973.07300184891, - "estimatedScheduleMonths_low": 4.630443743550191, - "estimatedPeople_low": 1.0934660204491848, - "estimatedCost_high": 161970.79495946792, - "estimatedScheduleMonths_high": 4.630443743550191, - "estimatedPeople_high": 1.0934660204491848, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 8 1360 135 49 1176 97\n(ULOC) 758\n-------------------------------------------------------------------------------\nMarkdown 7 435 123 0 312 0\n(ULOC) 279\n-------------------------------------------------------------------------------\nYAML 6 290 48 53 189 0\n(ULOC) 180\n-------------------------------------------------------------------------------\nJSON 4 156 0 0 156 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nJavaScript 4 135 17 20 98 14\n(ULOC) 98\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nProperties File 1 13 4 0 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 31 2505 347 122 2036 111\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1534\nDRYness % 0.61\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $56,991\nEstimated Schedule Effort (organic) 4.63 months\nEstimated People Required (organic) 1.09\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 91701 bytes, 0.092 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/CMSgov/qpp-shared-logger-node", + "owner": "CMSgov", + "name": "qpp-shared-logger-node", + "description": "Common QPP logger that is shared across the different teams", + "commits_count": 141, + "issues_count": 1, + "open_issues_count": 1, + "closed_issues_count": 0, + "pull_requests_count": 56, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 31, + "closed_pull_requests_count": 24, + "forks_count": 3, + "stargazers_count": 2, + "watchers_count": 20, + "total_project_lines": 2505, + "average_project_lines": 81, + "total_project_comment_lines": 122, + "average_project_comment_lines": 4, + "total_project_blank_lines": 347, + "average_blank_lines": 11, + "commits_by_month": { + "2024/12": 1, + "2024/6": 2, + "2023/7": 23, + "2023/1": 4 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-19T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-12-19T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-10-01T12:18:35Z", + "ossf_scorecard": { + "date": "2025-01-11T01:00:01Z", + "repo": { + "name": "github.com/CMSgov/qpp-shared-logger-node", + "commit": "427542f2f398ba1126f4dcdd7e1c451ed1f44a19" }, - "predominant_langs": { - "TypeScript": 47164, - "JavaScript": 3757 + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@snyk/protect", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "@types/chai", - 0.0, - "2023-07-19T10:56:56.000" - ], - [ - "@types/chai", - 1.0301369863, - "2025-01-01T18:36:04.000" - ], - [ - "@types/mocha", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "@types/mocha", - 3.501369863, - "2023-07-19T10:56:56.000" - ], - [ - "@types/morgan", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "@types/node", - 1.1068493151, - "2025-01-01T18:36:04.000" - ], - [ - "@types/node", - 3.2821917808, - "2023-07-19T10:56:56.000" - ], - [ - "@types/winston", - 0.0, - "2023-07-19T10:56:56.000" - ], - [ - "@typescript-eslint/parser", - 0.898630137, - "2025-01-01T18:36:04.000" - ], - [ - "chai", - 0.0, - "2023-07-19T10:56:56.000" - ], - [ - "chai", - 0.2438356164, - "2025-01-01T18:36:04.000" - ], - [ - "eslint", - 0.2410958904, - "2025-01-01T18:36:04.000" - ], - [ - "eslint", - 5.3150684932, - "2023-07-19T10:56:56.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2025-01-01T18:36:04.000" - ], - [ - "eslint-config-prettier", - 5.3150684932, - "2023-07-19T10:56:56.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "eslint-plugin-prettier", - 4.7890410959, - "2023-07-19T10:56:56.000" - ], - [ - "husky", - 1.202739726, - "2023-07-19T10:56:56.000" - ], - [ - "husky", - 1.8767123288, - "2025-01-01T18:36:04.000" - ], - [ - "lodash", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "mocha", - 0.0876712329, - "2025-01-01T18:36:04.000" - ], - [ - "mocha", - 2.5534246575, - "2023-07-19T10:56:56.000" - ], - [ - "moment", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "morgan", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "nyc", - 0.0, - "2023-07-19T10:56:56.000" - ], - [ - "nyc", - 4.304109589, - "2025-01-01T18:36:04.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "prettier", - 0.2, - "2023-07-19T10:56:56.000" - ], - [ - "rimraf", - -0.0602739726, - "2025-01-01T18:36:04.000" - ], - [ - "rimraf", - 3.2684931507, - "2023-07-19T10:56:56.000" - ], - [ - "rotating-file-stream", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "rotating-file-stream", - 3.3095890411, - "2023-07-19T10:56:56.000" - ], - [ - "sinon", - 1.2328767123, - "2025-01-01T18:36:04.000" - ], - [ - "sinon", - 5.2273972603, - "2023-07-19T10:56:56.000" - ], - [ - "snyk", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "snyk", - 0.8602739726, - "2023-07-19T10:56:56.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "ts-node", - 4.0602739726, - "2023-07-19T10:56:56.000" - ], - [ - "ts-node-dev", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "ts-node-dev", - 0.901369863, - "2023-07-19T10:56:56.000" - ], - [ - "tsconfig-paths", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "tsconfig-paths", - 3.5452054795, - "2023-07-19T10:56:56.000" - ], - [ - "tslint", - 0.7342465753, - "2023-07-19T10:56:56.000" - ], - [ - "tslint-config-airbnb", - 1.3342465753, - "2023-07-19T10:56:56.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T18:36:04.000" - ], - [ - "typescript", - 2.0328767123, - "2023-07-19T10:56:56.000" - ], - [ - "winston", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "winston", - 0.1232876712, - "2023-07-19T10:56:56.000" - ], - [ - "winston-daily-rotate-file", - 0.0, - "2023-07-19T10:56:56.000" - ], - [ - "winston-daily-rotate-file", - 1.695890411, - "2025-01-01T18:36:04.000" - ], - [ - "winston-splunk-httplogger", - 0.0, - "2025-01-01T18:36:04.000" - ], - [ - "winston-transport", - 0.0, - "2025-01-01T18:36:04.000" - ] + "score": 4.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 2, + "reason": "2 out of 7 merged PRs checked by a CI test -- score normalized to 2", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 5/7 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 8 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "1 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 5, + "reason": "dependency not pinned by hash detected -- score normalized to 5", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 4, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 3, + "reason": "7 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 47164, + "CodeBytes": 0, + "Lines": 1360, + "Code": 1176, + "Comment": 49, + "Blank": 135, + "Complexity": 97, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 21535, + "CodeBytes": 0, + "Lines": 435, + "Code": 312, + "Comment": 0, + "Blank": 123, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 8641, + "CodeBytes": 0, + "Lines": 290, + "Code": 189, + "Comment": 53, + "Blank": 48, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3684, + "CodeBytes": 0, + "Lines": 156, + "Code": 156, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 3757, + "CodeBytes": 0, + "Lines": 135, + "Code": 98, + "Comment": 20, + "Blank": 17, + "Complexity": 14, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 365, + "CodeBytes": 0, + "Lines": 13, + "Code": 9, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 51973.07300184891, + "estimatedScheduleMonths_low": 4.630443743550191, + "estimatedPeople_low": 1.0934660204491848, + "estimatedCost_high": 161970.79495946792, + "estimatedScheduleMonths_high": 4.630443743550191, + "estimatedPeople_high": 1.0934660204491848, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 8 1360 135 49 1176 97\n(ULOC) 758\n-------------------------------------------------------------------------------\nMarkdown 7 435 123 0 312 0\n(ULOC) 279\n-------------------------------------------------------------------------------\nYAML 6 290 48 53 189 0\n(ULOC) 180\n-------------------------------------------------------------------------------\nJSON 4 156 0 0 156 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nJavaScript 4 135 17 20 98 14\n(ULOC) 98\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nProperties File 1 13 4 0 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 31 2505 347 122 2036 111\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1534\nDRYness % 0.61\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $56,991\nEstimated Schedule Effort (organic) 4.63 months\nEstimated People Required (organic) 1.09\n───────────────────────────────────────────────────────────────────────────────\nProcessed 91701 bytes, 0.092 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 47164, + "JavaScript": 3757 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@snyk/protect", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "@types/chai", + 0, + "2023-07-19T10:56:56.000" + ], + [ + "@types/chai", + 1.0301369863, + "2025-01-01T18:36:04.000" + ], + [ + "@types/mocha", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "@types/mocha", + 3.501369863, + "2023-07-19T10:56:56.000" + ], + [ + "@types/morgan", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "@types/node", + 1.1068493151, + "2025-01-01T18:36:04.000" + ], + [ + "@types/node", + 3.2821917808, + "2023-07-19T10:56:56.000" + ], + [ + "@types/winston", + 0, + "2023-07-19T10:56:56.000" + ], + [ + "@typescript-eslint/parser", + 0.898630137, + "2025-01-01T18:36:04.000" + ], + [ + "chai", + 0, + "2023-07-19T10:56:56.000" + ], + [ + "chai", + 0.2438356164, + "2025-01-01T18:36:04.000" + ], + [ + "eslint", + 0.2410958904, + "2025-01-01T18:36:04.000" + ], + [ + "eslint", + 5.3150684932, + "2023-07-19T10:56:56.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2025-01-01T18:36:04.000" + ], + [ + "eslint-config-prettier", + 5.3150684932, + "2023-07-19T10:56:56.000" + ], + [ + "eslint-plugin-prettier", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "eslint-plugin-prettier", + 4.7890410959, + "2023-07-19T10:56:56.000" + ], + [ + "husky", + 1.202739726, + "2023-07-19T10:56:56.000" + ], + [ + "husky", + 1.8767123288, + "2025-01-01T18:36:04.000" + ], + [ + "lodash", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "mocha", + 0.0876712329, + "2025-01-01T18:36:04.000" + ], + [ + "mocha", + 2.5534246575, + "2023-07-19T10:56:56.000" + ], + [ + "moment", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "morgan", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "nyc", + 0, + "2023-07-19T10:56:56.000" + ], + [ + "nyc", + 4.304109589, + "2025-01-01T18:36:04.000" + ], + [ + "prettier", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "prettier", + 0.2, + "2023-07-19T10:56:56.000" + ], + [ + "rimraf", + -0.0602739726, + "2025-01-01T18:36:04.000" + ], + [ + "rimraf", + 3.2684931507, + "2023-07-19T10:56:56.000" + ], + [ + "rotating-file-stream", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "rotating-file-stream", + 3.3095890411, + "2023-07-19T10:56:56.000" + ], + [ + "sinon", + 1.2328767123, + "2025-01-01T18:36:04.000" + ], + [ + "sinon", + 5.2273972603, + "2023-07-19T10:56:56.000" + ], + [ + "snyk", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "snyk", + 0.8602739726, + "2023-07-19T10:56:56.000" + ], + [ + "ts-node", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "ts-node", + 4.0602739726, + "2023-07-19T10:56:56.000" + ], + [ + "ts-node-dev", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "ts-node-dev", + 0.901369863, + "2023-07-19T10:56:56.000" + ], + [ + "tsconfig-paths", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "tsconfig-paths", + 3.5452054795, + "2023-07-19T10:56:56.000" + ], + [ + "tslint", + 0.7342465753, + "2023-07-19T10:56:56.000" + ], + [ + "tslint-config-airbnb", + 1.3342465753, + "2023-07-19T10:56:56.000" + ], + [ + "typescript", + -0.1095890411, + "2025-01-01T18:36:04.000" + ], + [ + "typescript", + 2.0328767123, + "2023-07-19T10:56:56.000" + ], + [ + "winston", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "winston", + 0.1232876712, + "2023-07-19T10:56:56.000" + ], + [ + "winston-daily-rotate-file", + 0, + "2023-07-19T10:56:56.000" + ], + [ + "winston-daily-rotate-file", + 1.695890411, + "2025-01-01T18:36:04.000" + ], + [ + "winston-splunk-httplogger", + 0, + "2025-01-01T18:36:04.000" + ], + [ + "winston-transport", + 0, + "2025-01-01T18:36:04.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/CMSgov/rato-website/rato-website_data.json b/app/site/_data/CMSgov/rato-website/rato-website_data.json index bfda0a37ea..a45dce10b9 100644 --- a/app/site/_data/CMSgov/rato-website/rato-website_data.json +++ b/app/site/_data/CMSgov/rato-website/rato-website_data.json @@ -1,360 +1,360 @@ { - "url": "https://github.com/CMSgov/rato-website", - "owner": "CMSgov", - "name": "rato-website", - "description": "Rapid ATO website content focused on demystifying security & compliance at CMS.", - "commits_count": 81, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 5, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 2, - "forks_count": 3, - "stargazers_count": 2, - "watchers_count": 17, - "total_project_lines": 63192, - "average_project_lines": 28, - "total_project_comment_lines": 5814, - "average_project_comment_lines": 3, - "total_project_blank_lines": 5432, - "average_blank_lines": 2, - "commits_by_month": { - "2023/7": 2, - "2023/6": 2, - "2022/10": 2, - "2022/5": 1, - "2021/11": 2, - "2021/10": 6, - "2021/9": 9, - "2021/8": 6 + "url": "https://github.com/CMSgov/rato-website", + "owner": "CMSgov", + "name": "rato-website", + "description": "Rapid ATO website content focused on demystifying security & compliance at CMS.", + "commits_count": 81, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 5, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 2, + "forks_count": 3, + "stargazers_count": 2, + "watchers_count": 17, + "total_project_lines": 63192, + "average_project_lines": 28, + "total_project_comment_lines": 5814, + "average_project_comment_lines": 3, + "total_project_blank_lines": 5432, + "average_blank_lines": 2, + "commits_by_month": { + "2023/7": 2, + "2023/6": 2, + "2022/10": 2, + "2022/5": 1, + "2021/11": 2, + "2021/10": 6, + "2021/9": 9, + "2021/8": 6 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-02-25T21:26:52Z", + "ossf_scorecard": { + "date": "2025-01-11T00:59:06Z", + "repo": { + "name": "github.com/CMSgov/rato-website", + "commit": "02ed4303fa4a7d6f98aac2cc8b861bfca634dbe9" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-02-25T21:26:52Z", - "ossf_scorecard": { - "date": "2025-01-11T00:59:06Z", - "repo": { - "name": "github.com/CMSgov/rato-website", - "commit": "02ed4303fa4a7d6f98aac2cc8b861bfca634dbe9" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 3.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/26 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "SVG", - "Bytes": 857885, - "CodeBytes": 0, - "Lines": 1904, - "Code": 1904, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1870, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 655033, - "CodeBytes": 0, - "Lines": 26531, - "Code": 19417, - "Comment": 4222, - "Blank": 2892, - "Complexity": 305, - "Count": 329, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 254823, - "CodeBytes": 0, - "Lines": 4685, - "Code": 2710, - "Comment": 1171, - "Blank": 804, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 827361, - "CodeBytes": 0, - "Lines": 6985, - "Code": 5999, - "Comment": 414, - "Blank": 572, - "Complexity": 373, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 814499, - "CodeBytes": 0, - "Lines": 23042, - "Code": 21888, - "Comment": 7, - "Blank": 1147, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1511, - "CodeBytes": 0, - "Lines": 44, - "Code": 27, - "Comment": 0, - "Blank": 17, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 26, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1559162.7497549846, - "estimatedScheduleMonths_low": 16.86264017524975, - "estimatedPeople_low": 9.00773052934784, - "estimatedCost_high": 4859032.099949542, - "estimatedScheduleMonths_high": 16.86264017524975, - "estimatedPeople_high": 9.00773052934784, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSVG 1870 1904 0 0 1904 0\n(ULOC) 1550\n-------------------------------------------------------------------------------\nSass 329 26531 2892 4222 19417 305\n(ULOC) 13314\n-------------------------------------------------------------------------------\nHTML 13 4685 804 1171 2710 0\n(ULOC) 1077\n-------------------------------------------------------------------------------\nJavaScript 4 6985 572 414 5999 373\n(ULOC) 3878\n-------------------------------------------------------------------------------\nCSS 2 23042 1147 7 21888 0\n(ULOC) 8109\n-------------------------------------------------------------------------------\nMarkdown 2 44 17 0 27 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nYAML 1 1 0 0 1 0\n(ULOC) 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2221 63192 5432 5814 51946 678\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 27882\nDRYness % 0.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,709,720\nEstimated Schedule Effort (organic) 16.86 months\nEstimated People Required (organic) 9.01\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3411138 bytes, 3.411 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 738341, - "SCSS": 655033, - "CSS": 458253, - "HTML": 254823 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/26 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "SVG", + "Bytes": 857885, + "CodeBytes": 0, + "Lines": 1904, + "Code": 1904, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1870, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 655033, + "CodeBytes": 0, + "Lines": 26531, + "Code": 19417, + "Comment": 4222, + "Blank": 2892, + "Complexity": 305, + "Count": 329, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 254823, + "CodeBytes": 0, + "Lines": 4685, + "Code": 2710, + "Comment": 1171, + "Blank": 804, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 827361, + "CodeBytes": 0, + "Lines": 6985, + "Code": 5999, + "Comment": 414, + "Blank": 572, + "Complexity": 373, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 814499, + "CodeBytes": 0, + "Lines": 23042, + "Code": 21888, + "Comment": 7, + "Blank": 1147, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1511, + "CodeBytes": 0, + "Lines": 44, + "Code": 27, + "Comment": 0, + "Blank": 17, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 26, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1559162.7497549846, + "estimatedScheduleMonths_low": 16.86264017524975, + "estimatedPeople_low": 9.00773052934784, + "estimatedCost_high": 4859032.099949542, + "estimatedScheduleMonths_high": 16.86264017524975, + "estimatedPeople_high": 9.00773052934784, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSVG 1870 1904 0 0 1904 0\n(ULOC) 1550\n-------------------------------------------------------------------------------\nSass 329 26531 2892 4222 19417 305\n(ULOC) 13314\n-------------------------------------------------------------------------------\nHTML 13 4685 804 1171 2710 0\n(ULOC) 1077\n-------------------------------------------------------------------------------\nJavaScript 4 6985 572 414 5999 373\n(ULOC) 3878\n-------------------------------------------------------------------------------\nCSS 2 23042 1147 7 21888 0\n(ULOC) 8109\n-------------------------------------------------------------------------------\nMarkdown 2 44 17 0 27 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nYAML 1 1 0 0 1 0\n(ULOC) 1\n───────────────────────────────────────────────────────────────────────────────\nTotal 2221 63192 5432 5814 51946 678\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 27882\nDRYness % 0.44\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,709,720\nEstimated Schedule Effort (organic) 16.86 months\nEstimated People Required (organic) 9.01\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3411138 bytes, 3.411 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 738341, + "SCSS": 655033, + "CSS": 458253, + "HTML": 254823 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/redhat-enterprise-linux-8-stig-baseline/redhat-enterprise-linux-8-stig-baseline_data.json b/app/site/_data/CMSgov/redhat-enterprise-linux-8-stig-baseline/redhat-enterprise-linux-8-stig-baseline_data.json index 2f0ef3d928..d607b92627 100644 --- a/app/site/_data/CMSgov/redhat-enterprise-linux-8-stig-baseline/redhat-enterprise-linux-8-stig-baseline_data.json +++ b/app/site/_data/CMSgov/redhat-enterprise-linux-8-stig-baseline/redhat-enterprise-linux-8-stig-baseline_data.json @@ -1,373 +1,373 @@ { - "url": "https://github.com/CMSgov/redhat-enterprise-linux-8-stig-baseline", - "owner": "CMSgov", - "name": "redhat-enterprise-linux-8-stig-baseline", - "description": null, - "commits_count": 66, - "issues_count": 6, - "open_issues_count": 5, - "closed_issues_count": 1, - "pull_requests_count": 17, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 5, - "closed_pull_requests_count": 7, - "forks_count": 11, - "stargazers_count": 8, - "watchers_count": 17, - "total_project_lines": 38234, - "average_project_lines": 91, - "total_project_comment_lines": 684, - "average_project_comment_lines": 2, - "total_project_blank_lines": 6760, - "average_blank_lines": 16, - "commits_by_month": { - "2023/5": 3, - "2022/10": 16, - "2022/9": 11 + "url": "https://github.com/CMSgov/redhat-enterprise-linux-8-stig-baseline", + "owner": "CMSgov", + "name": "redhat-enterprise-linux-8-stig-baseline", + "description": null, + "commits_count": 66, + "issues_count": 6, + "open_issues_count": 5, + "closed_issues_count": 1, + "pull_requests_count": 17, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 5, + "closed_pull_requests_count": 7, + "forks_count": 11, + "stargazers_count": 8, + "watchers_count": 17, + "total_project_lines": 38234, + "average_project_lines": 91, + "total_project_comment_lines": 684, + "average_project_comment_lines": 2, + "total_project_blank_lines": 6760, + "average_blank_lines": 16, + "commits_by_month": { + "2023/5": 3, + "2022/10": 16, + "2022/9": 11 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-08T17:54:28Z", + "ossf_scorecard": { + "date": "2025-01-11T00:37:18Z", + "repo": { + "name": "github.com/CMSgov/redhat-enterprise-linux-8-stig-baseline", + "commit": "3a16e0f3e62e03a1fce5e38f489d67732d5011db" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-08T17:54:28Z", - "ossf_scorecard": { - "date": "2025-01-11T00:37:18Z", - "repo": { - "name": "github.com/CMSgov/redhat-enterprise-linux-8-stig-baseline", - "commit": "3a16e0f3e62e03a1fce5e38f489d67732d5011db" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 2/3 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "14 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Ruby", - "Bytes": 1002699, - "CodeBytes": 0, - "Lines": 27075, - "Code": 23018, - "Comment": 211, - "Blank": 3846, - "Complexity": 1516, - "Count": 383, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 121583, - "CodeBytes": 0, - "Lines": 2957, - "Code": 2408, - "Comment": 473, - "Blank": 76, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 51453118, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 72818, - "CodeBytes": 0, - "Lines": 868, - "Code": 789, - "Comment": 0, - "Blank": 79, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 248, - "CodeBytes": 0, - "Lines": 14, - "Code": 13, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 3382, - "CodeBytes": 0, - "Lines": 86, - "Code": 77, - "Comment": 0, - "Blank": 9, - "Complexity": 15, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1273647, - "CodeBytes": 0, - "Lines": 7220, - "Code": 4471, - "Comment": 0, - "Blank": 2749, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 900309.6538528526, - "estimatedScheduleMonths_low": 13.686605404716962, - "estimatedPeople_low": 6.408341816576975, - "estimatedCost_high": 2805758.0959094395, - "estimatedScheduleMonths_high": 13.686605404716962, - "estimatedPeople_high": 6.408341816576975, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nRuby 383 27075 3846 211 23018 1516\n(ULOC) 9670\n-------------------------------------------------------------------------------\nYAML 19 2957 76 473 2408 0\n(ULOC) 1803\n-------------------------------------------------------------------------------\nJSON 13 13 0 0 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nMarkdown 2 868 79 0 789 0\n(ULOC) 588\n-------------------------------------------------------------------------------\nGemfile 1 14 1 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nLicense 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nPython 1 86 9 0 77 15\n(ULOC) 76\n-------------------------------------------------------------------------------\nXML 1 7220 2749 0 4471 0\n(ULOC) 2870\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 421 38234 6760 684 30790 1531\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 15016\nDRYness % 0.39\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $987,246\nEstimated Schedule Effort (organic) 13.69 months\nEstimated People Required (organic) 6.41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 53927506 bytes, 53.928 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Ruby": 1002947, - "Python": 3382 - }, - "average_issue_resolution_time": [ - [ - "redhat-enterprise-linux-8-stig-baseline", - "1 day 03:03:01" - ] + "score": 2.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 2/3 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "14 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Ruby", + "Bytes": 1002699, + "CodeBytes": 0, + "Lines": 27075, + "Code": 23018, + "Comment": 211, + "Blank": 3846, + "Complexity": 1516, + "Count": 383, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 121583, + "CodeBytes": 0, + "Lines": 2957, + "Code": 2408, + "Comment": 473, + "Blank": 76, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 51453118, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 72818, + "CodeBytes": 0, + "Lines": 868, + "Code": 789, + "Comment": 0, + "Blank": 79, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 248, + "CodeBytes": 0, + "Lines": 14, + "Code": 13, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 3382, + "CodeBytes": 0, + "Lines": 86, + "Code": 77, + "Comment": 0, + "Blank": 9, + "Complexity": 15, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1273647, + "CodeBytes": 0, + "Lines": 7220, + "Code": 4471, + "Comment": 0, + "Blank": 2749, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 900309.6538528526, + "estimatedScheduleMonths_low": 13.686605404716962, + "estimatedPeople_low": 6.408341816576975, + "estimatedCost_high": 2805758.0959094395, + "estimatedScheduleMonths_high": 13.686605404716962, + "estimatedPeople_high": 6.408341816576975, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nRuby 383 27075 3846 211 23018 1516\n(ULOC) 9670\n-------------------------------------------------------------------------------\nYAML 19 2957 76 473 2408 0\n(ULOC) 1803\n-------------------------------------------------------------------------------\nJSON 13 13 0 0 13 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nMarkdown 2 868 79 0 789 0\n(ULOC) 588\n-------------------------------------------------------------------------------\nGemfile 1 14 1 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nLicense 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nPython 1 86 9 0 77 15\n(ULOC) 76\n-------------------------------------------------------------------------------\nXML 1 7220 2749 0 4471 0\n(ULOC) 2870\n───────────────────────────────────────────────────────────────────────────────\nTotal 421 38234 6760 684 30790 1531\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 15016\nDRYness % 0.39\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $987,246\nEstimated Schedule Effort (organic) 13.69 months\nEstimated People Required (organic) 6.41\n───────────────────────────────────────────────────────────────────────────────\nProcessed 53927506 bytes, 53.928 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Ruby": 1002947, + "Python": 3382 + }, + "average_issue_resolution_time": [ + [ + "redhat-enterprise-linux-8-stig-baseline", + "1 day 03:03:01" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/snyk_web/snyk_web_data.json b/app/site/_data/CMSgov/snyk_web/snyk_web_data.json index 0b99f99d85..bfcf9021b6 100644 --- a/app/site/_data/CMSgov/snyk_web/snyk_web_data.json +++ b/app/site/_data/CMSgov/snyk_web/snyk_web_data.json @@ -1,340 +1,340 @@ { - "url": "https://github.com/CMSgov/snyk_web", - "owner": "CMSgov", - "name": "snyk_web", - "description": "To store the content for the Snyk Web for OIT", - "commits_count": 38, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 10, - "total_project_lines": 65478, - "average_project_lines": 26, - "total_project_comment_lines": 5893, - "average_project_comment_lines": 2, - "total_project_blank_lines": 5386, - "average_blank_lines": 2, - "commits_by_month": { - "2023/8": 14, - "2022/9": 2, - "2021/11": 14 + "url": "https://github.com/CMSgov/snyk_web", + "owner": "CMSgov", + "name": "snyk_web", + "description": "To store the content for the Snyk Web for OIT", + "commits_count": 38, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 10, + "total_project_lines": 65478, + "average_project_lines": 26, + "total_project_comment_lines": 5893, + "average_project_comment_lines": 2, + "total_project_blank_lines": 5386, + "average_blank_lines": 2, + "commits_by_month": { + "2023/8": 14, + "2022/9": 2, + "2021/11": 14 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-10-27T19:39:02Z", + "ossf_scorecard": { + "date": "2025-01-11T01:01:13Z", + "repo": { + "name": "github.com/CMSgov/snyk_web", + "commit": "8e3e7f351e0082134a6e6ec624171fb7a542d95b" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-10-27T19:39:02Z", - "ossf_scorecard": { - "date": "2025-01-11T01:01:13Z", - "repo": { - "name": "github.com/CMSgov/snyk_web", - "commit": "8e3e7f351e0082134a6e6ec624171fb7a542d95b" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/29 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "SVG", - "Bytes": 949059, - "CodeBytes": 0, - "Lines": 2151, - "Code": 2151, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2117, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 782046, - "CodeBytes": 0, - "Lines": 30989, - "Code": 22077, - "Comment": 5446, - "Blank": 3466, - "Complexity": 657, - "Count": 434, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 791050, - "CodeBytes": 0, - "Lines": 6612, - "Code": 5597, - "Comment": 440, - "Blank": 575, - "Complexity": 368, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 917560, - "CodeBytes": 0, - "Lines": 25392, - "Code": 24054, - "Comment": 7, - "Blank": 1331, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 14575, - "CodeBytes": 0, - "Lines": 331, - "Code": 318, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 291, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1630243.8518085172, - "estimatedScheduleMonths_low": 17.1507374527343, - "estimatedPeople_low": 9.260176838467164, - "estimatedCost_high": 5080551.858956214, - "estimatedScheduleMonths_high": 17.1507374527343, - "estimatedPeople_high": 9.260176838467164, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSVG 2117 2151 0 0 2151 0\n(ULOC) 1551\n-------------------------------------------------------------------------------\nSass 434 30989 3466 5446 22077 657\n(ULOC) 15631\n-------------------------------------------------------------------------------\nJavaScript 4 6612 575 440 5597 368\n(ULOC) 3665\n-------------------------------------------------------------------------------\nCSS 3 25392 1331 7 24054 0\n(ULOC) 8975\n-------------------------------------------------------------------------------\nHTML 1 331 13 0 318 0\n(ULOC) 227\n-------------------------------------------------------------------------------\nMarkdown 1 3 1 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2560 65478 5386 5893 54199 1025\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 29979\nDRYness % 0.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,787,665\nEstimated Schedule Effort (organic) 17.15 months\nEstimated People Required (organic) 9.26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3454581 bytes, 3.455 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "SCSS": 782046, - "JavaScript": 709138, - "CSS": 516277, - "HTML": 14575 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/29 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "SVG", + "Bytes": 949059, + "CodeBytes": 0, + "Lines": 2151, + "Code": 2151, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2117, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 782046, + "CodeBytes": 0, + "Lines": 30989, + "Code": 22077, + "Comment": 5446, + "Blank": 3466, + "Complexity": 657, + "Count": 434, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 791050, + "CodeBytes": 0, + "Lines": 6612, + "Code": 5597, + "Comment": 440, + "Blank": 575, + "Complexity": 368, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 917560, + "CodeBytes": 0, + "Lines": 25392, + "Code": 24054, + "Comment": 7, + "Blank": 1331, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 14575, + "CodeBytes": 0, + "Lines": 331, + "Code": 318, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 291, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1630243.8518085172, + "estimatedScheduleMonths_low": 17.1507374527343, + "estimatedPeople_low": 9.260176838467164, + "estimatedCost_high": 5080551.858956214, + "estimatedScheduleMonths_high": 17.1507374527343, + "estimatedPeople_high": 9.260176838467164, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSVG 2117 2151 0 0 2151 0\n(ULOC) 1551\n-------------------------------------------------------------------------------\nSass 434 30989 3466 5446 22077 657\n(ULOC) 15631\n-------------------------------------------------------------------------------\nJavaScript 4 6612 575 440 5597 368\n(ULOC) 3665\n-------------------------------------------------------------------------------\nCSS 3 25392 1331 7 24054 0\n(ULOC) 8975\n-------------------------------------------------------------------------------\nHTML 1 331 13 0 318 0\n(ULOC) 227\n-------------------------------------------------------------------------------\nMarkdown 1 3 1 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 2560 65478 5386 5893 54199 1025\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 29979\nDRYness % 0.46\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,787,665\nEstimated Schedule Effort (organic) 17.15 months\nEstimated People Required (organic) 9.26\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3454581 bytes, 3.455 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "SCSS": 782046, + "JavaScript": 709138, + "CSS": 516277, + "HTML": 14575 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/vsam-migration-scenarios/vsam-migration-scenarios_data.json b/app/site/_data/CMSgov/vsam-migration-scenarios/vsam-migration-scenarios_data.json index 6b15458bf4..6bf03a2924 100644 --- a/app/site/_data/CMSgov/vsam-migration-scenarios/vsam-migration-scenarios_data.json +++ b/app/site/_data/CMSgov/vsam-migration-scenarios/vsam-migration-scenarios_data.json @@ -1,275 +1,275 @@ { - "url": "https://github.com/CMSgov/vsam-migration-scenarios", - "owner": "CMSgov", - "name": "vsam-migration-scenarios", - "description": "VSAM Migration Scenarios", - "commits_count": 4, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 0, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 9, - "total_project_lines": 3175, - "average_project_lines": 454, - "total_project_comment_lines": 155, - "average_project_comment_lines": 22, - "total_project_blank_lines": 48, - "average_blank_lines": 7, - "commits_by_month": { - "2020/1": 4 + "url": "https://github.com/CMSgov/vsam-migration-scenarios", + "owner": "CMSgov", + "name": "vsam-migration-scenarios", + "description": "VSAM Migration Scenarios", + "commits_count": 4, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 0, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 9, + "total_project_lines": 3175, + "average_project_lines": 454, + "total_project_comment_lines": 155, + "average_project_comment_lines": 22, + "total_project_blank_lines": 48, + "average_blank_lines": 7, + "commits_by_month": { + "2020/1": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2020-01-17T17:56:37Z", + "ossf_scorecard": { + "date": "2025-01-11T01:04:16Z", + "repo": { + "name": "github.com/CMSgov/vsam-migration-scenarios", + "commit": "5c03e055e7d5855bcefa53f4df4490d3916e37c3" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2020-01-17T17:56:37Z", - "ossf_scorecard": { - "date": "2025-01-11T01:04:16Z", - "repo": { - "name": "github.com/CMSgov/vsam-migration-scenarios", - "commit": "5c03e055e7d5855bcefa53f4df4490d3916e37c3" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/4 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "COBOL", - "Bytes": 209280, - "CodeBytes": 0, - "Lines": 3130, - "Code": 2949, - "Comment": 155, - "Blank": 26, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2633, - "CodeBytes": 0, - "Lines": 45, - "Code": 23, - "Comment": 0, - "Blank": 22, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 77314.86092771737, - "estimatedScheduleMonths_low": 5.3847649879806365, - "estimatedPeople_low": 1.3987681450162954, - "estimatedCost_high": 240946.87428233452, - "estimatedScheduleMonths_high": 5.3847649879806365, - "estimatedPeople_high": 1.3987681450162954, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nCOBOL 6 3130 26 155 2949 0\n(ULOC) 2986\n-------------------------------------------------------------------------------\nMarkdown 1 45 22 0 23 0\n(ULOC) 24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 7 3175 48 155 2972 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3009\nDRYness % 0.95\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $84,780\nEstimated Schedule Effort (organic) 5.38 months\nEstimated People Required (organic) 1.40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 211913 bytes, 0.212 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "COBOL": 209280 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 2.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/4 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "COBOL", + "Bytes": 209280, + "CodeBytes": 0, + "Lines": 3130, + "Code": 2949, + "Comment": 155, + "Blank": 26, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2633, + "CodeBytes": 0, + "Lines": 45, + "Code": 23, + "Comment": 0, + "Blank": 22, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 77314.86092771737, + "estimatedScheduleMonths_low": 5.3847649879806365, + "estimatedPeople_low": 1.3987681450162954, + "estimatedCost_high": 240946.87428233452, + "estimatedScheduleMonths_high": 5.3847649879806365, + "estimatedPeople_high": 1.3987681450162954, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nCOBOL 6 3130 26 155 2949 0\n(ULOC) 2986\n-------------------------------------------------------------------------------\nMarkdown 1 45 22 0 23 0\n(ULOC) 24\n───────────────────────────────────────────────────────────────────────────────\nTotal 7 3175 48 155 2972 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3009\nDRYness % 0.95\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $84,780\nEstimated Schedule Effort (organic) 5.38 months\nEstimated People Required (organic) 1.40\n───────────────────────────────────────────────────────────────────────────────\nProcessed 211913 bytes, 0.212 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "COBOL": 209280 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/CMSgov/web-design-standards/web-design-standards_data.json b/app/site/_data/CMSgov/web-design-standards/web-design-standards_data.json index 9707995d9c..0a50eb4971 100644 --- a/app/site/_data/CMSgov/web-design-standards/web-design-standards_data.json +++ b/app/site/_data/CMSgov/web-design-standards/web-design-standards_data.json @@ -1,533 +1,533 @@ { - "url": "https://github.com/CMSgov/web-design-standards", - "owner": "CMSgov", - "name": "web-design-standards", - "description": "Open source UI components and visual style guide for U.S. government websites.", - "commits_count": 4064, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 3, - "stargazers_count": 5, - "watchers_count": 5, - "total_project_lines": 9274, - "average_project_lines": 61, - "total_project_comment_lines": 495, - "average_project_comment_lines": 3, - "total_project_blank_lines": 1407, - "average_blank_lines": 9, - "commits_by_month": { - "2017/2": 30 + "url": "https://github.com/CMSgov/web-design-standards", + "owner": "CMSgov", + "name": "web-design-standards", + "description": "Open source UI components and visual style guide for U.S. government websites.", + "commits_count": 4064, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 3, + "stargazers_count": 5, + "watchers_count": 5, + "total_project_lines": 9274, + "average_project_lines": 61, + "total_project_comment_lines": 495, + "average_project_comment_lines": 3, + "total_project_blank_lines": 1407, + "average_blank_lines": 9, + "commits_by_month": { + "2017/2": 30 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2017-02-25T19:54:49Z", + "ossf_scorecard": { + "date": "2025-01-11T00:57:48Z", + "repo": { + "name": "github.com/CMSgov/web-design-standards", + "commit": "06d34219096071d859ed78fe3d0ea0812e9dc67e" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2017-02-25T19:54:49Z", - "ossf_scorecard": { - "date": "2025-01-11T00:57:48Z", - "repo": { - "name": "github.com/CMSgov/web-design-standards", - "commit": "06d34219096071d859ed78fe3d0ea0812e9dc67e" - }, - "scorecard": { - "version": "v5.0.0-132-g43d5832d", - "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 35 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-132-g43d5832d", + "commit": "43d5832d25ccc597a9b94926b6ad43da25204085" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 78976, - "CodeBytes": 0, - "Lines": 2615, - "Code": 1792, - "Comment": 356, - "Blank": 467, - "Complexity": 188, - "Count": 49, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 29472, - "CodeBytes": 0, - "Lines": 90, - "Code": 87, - "Comment": 3, - "Blank": 0, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 65479, - "CodeBytes": 0, - "Lines": 3465, - "Code": 2763, - "Comment": 116, - "Blank": 586, - "Complexity": 2, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 90431, - "CodeBytes": 0, - "Lines": 2215, - "Code": 2070, - "Comment": 16, - "Blank": 129, - "Complexity": 0, - "Count": 29, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 38061, - "CodeBytes": 0, - "Lines": 728, - "Code": 514, - "Comment": 0, - "Blank": 214, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1605, - "CodeBytes": 0, - "Lines": 85, - "Code": 70, - "Comment": 4, - "Blank": 11, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2383, - "CodeBytes": 0, - "Lines": 76, - "Code": 76, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 200690.27430326646, - "estimatedScheduleMonths_low": 7.737253494458854, - "estimatedPeople_low": 2.5269055470385333, - "estimatedCost_high": 625438.5471564739, - "estimatedScheduleMonths_high": 7.737253494458854, - "estimatedPeople_high": 2.5269055470385333, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 49 2615 467 356 1792 188\n(ULOC) 1498\n-------------------------------------------------------------------------------\nSVG 31 90 0 3 87 0\n(ULOC) 72\n-------------------------------------------------------------------------------\nSass 31 3465 586 116 2763 2\n(ULOC) 1485\n-------------------------------------------------------------------------------\nHTML 29 2215 129 16 2070 0\n(ULOC) 757\n-------------------------------------------------------------------------------\nMarkdown 7 728 214 0 514 0\n(ULOC) 477\n-------------------------------------------------------------------------------\nYAML 5 85 11 4 70 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nJSON 1 76 0 0 76 0\n(ULOC) 74\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 153 9274 1407 495 7372 190\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 4416\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $220,069\nEstimated Schedule Effort (organic) 7.74 months\nEstimated People Required (organic) 2.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 306407 bytes, 0.306 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "HTML": 90431, - "CSS": 65479, - "JavaScript": 50396 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@18f/stylelint-rules", - 0.0410958904, - "2025-01-01T18:34:27.000" - ], - [ - "bourbon", - 5.8164383562, - "2025-01-01T18:34:27.000" - ], - [ - "bourbon-neat", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "browserify", - 7.7506849315, - "2025-01-01T18:34:27.000" - ], - [ - "classlist-polyfill", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "cross-spawn", - 8.602739726, - "2025-01-01T18:34:27.000" - ], - [ - "del", - 8.1561643836, - "2025-01-01T18:34:27.000" - ], - [ - "gulp", - 8.1397260274, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-autoprefixer", - 7.2246575342, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-clean", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-cssnano", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-eslint", - 3.5945205479, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-filter", - 8.2383561644, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-mocha", - 8.4356164384, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-rename", - 1.3643835616, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-replace", - 5.4931506849, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-sass", - 8.4547945205, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-sourcemaps", - 3.9726027397, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-stylelint", - 3.7506849315, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-uglify", - 2.6876712329, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-util", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "gulp-zip", - 7.7123287671, - "2025-01-01T18:34:27.000" - ], - [ - "istanbul", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "jquery", - 7.2739726027, - "2025-01-01T18:34:27.000" - ], - [ - "jsdom", - 7.5342465753, - "2025-01-01T18:34:27.000" - ], - [ - "jsdom-global", - 0.3698630137, - "2025-01-01T18:34:27.000" - ], - [ - "lodash.debounce", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "mocha", - 8.5287671233, - "2025-01-01T18:34:27.000" - ], - [ - "node-notifier", - 5.4520547945, - "2025-01-01T18:34:27.000" - ], - [ - "node-sass", - 6.701369863, - "2025-01-01T18:34:27.000" - ], - [ - "normalize.css", - 3.6136986301, - "2025-01-01T18:34:27.000" - ], - [ - "run-sequence", - 1.5150684932, - "2025-01-01T18:34:27.000" - ], - [ - "should", - 2.1917808219, - "2025-01-01T18:34:27.000" - ], - [ - "vinyl-buffer", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "vinyl-source-stream", - 0.0, - "2025-01-01T18:34:27.000" - ], - [ - "watch", - 0.3698630137, - "2025-01-01T18:34:27.000" - ] + "score": 2.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 35 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/43d5832d25ccc597a9b94926b6ad43da25204085/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 78976, + "CodeBytes": 0, + "Lines": 2615, + "Code": 1792, + "Comment": 356, + "Blank": 467, + "Complexity": 188, + "Count": 49, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 29472, + "CodeBytes": 0, + "Lines": 90, + "Code": 87, + "Comment": 3, + "Blank": 0, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 65479, + "CodeBytes": 0, + "Lines": 3465, + "Code": 2763, + "Comment": 116, + "Blank": 586, + "Complexity": 2, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 90431, + "CodeBytes": 0, + "Lines": 2215, + "Code": 2070, + "Comment": 16, + "Blank": 129, + "Complexity": 0, + "Count": 29, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 38061, + "CodeBytes": 0, + "Lines": 728, + "Code": 514, + "Comment": 0, + "Blank": 214, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1605, + "CodeBytes": 0, + "Lines": 85, + "Code": 70, + "Comment": 4, + "Blank": 11, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2383, + "CodeBytes": 0, + "Lines": 76, + "Code": 76, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 200690.27430326646, + "estimatedScheduleMonths_low": 7.737253494458854, + "estimatedPeople_low": 2.5269055470385333, + "estimatedCost_high": 625438.5471564739, + "estimatedScheduleMonths_high": 7.737253494458854, + "estimatedPeople_high": 2.5269055470385333, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 49 2615 467 356 1792 188\n(ULOC) 1498\n-------------------------------------------------------------------------------\nSVG 31 90 0 3 87 0\n(ULOC) 72\n-------------------------------------------------------------------------------\nSass 31 3465 586 116 2763 2\n(ULOC) 1485\n-------------------------------------------------------------------------------\nHTML 29 2215 129 16 2070 0\n(ULOC) 757\n-------------------------------------------------------------------------------\nMarkdown 7 728 214 0 514 0\n(ULOC) 477\n-------------------------------------------------------------------------------\nYAML 5 85 11 4 70 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nJSON 1 76 0 0 76 0\n(ULOC) 74\n───────────────────────────────────────────────────────────────────────────────\nTotal 153 9274 1407 495 7372 190\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 4416\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $220,069\nEstimated Schedule Effort (organic) 7.74 months\nEstimated People Required (organic) 2.53\n───────────────────────────────────────────────────────────────────────────────\nProcessed 306407 bytes, 0.306 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HTML": 90431, + "CSS": 65479, + "JavaScript": 50396 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@18f/stylelint-rules", + 0.0410958904, + "2025-01-01T18:34:27.000" + ], + [ + "bourbon", + 5.8164383562, + "2025-01-01T18:34:27.000" + ], + [ + "bourbon-neat", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "browserify", + 7.7506849315, + "2025-01-01T18:34:27.000" + ], + [ + "classlist-polyfill", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "cross-spawn", + 8.602739726, + "2025-01-01T18:34:27.000" + ], + [ + "del", + 8.1561643836, + "2025-01-01T18:34:27.000" + ], + [ + "gulp", + 8.1397260274, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-autoprefixer", + 7.2246575342, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-clean", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-cssnano", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-eslint", + 3.5945205479, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-filter", + 8.2383561644, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-mocha", + 8.4356164384, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-rename", + 1.3643835616, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-replace", + 5.4931506849, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-sass", + 8.4547945205, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-sourcemaps", + 3.9726027397, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-stylelint", + 3.7506849315, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-uglify", + 2.6876712329, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-util", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "gulp-zip", + 7.7123287671, + "2025-01-01T18:34:27.000" + ], + [ + "istanbul", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "jquery", + 7.2739726027, + "2025-01-01T18:34:27.000" + ], + [ + "jsdom", + 7.5342465753, + "2025-01-01T18:34:27.000" + ], + [ + "jsdom-global", + 0.3698630137, + "2025-01-01T18:34:27.000" + ], + [ + "lodash.debounce", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "mocha", + 8.5287671233, + "2025-01-01T18:34:27.000" + ], + [ + "node-notifier", + 5.4520547945, + "2025-01-01T18:34:27.000" + ], + [ + "node-sass", + 6.701369863, + "2025-01-01T18:34:27.000" + ], + [ + "normalize.css", + 3.6136986301, + "2025-01-01T18:34:27.000" + ], + [ + "run-sequence", + 1.5150684932, + "2025-01-01T18:34:27.000" + ], + [ + "should", + 2.1917808219, + "2025-01-01T18:34:27.000" + ], + [ + "vinyl-buffer", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "vinyl-source-stream", + 0, + "2025-01-01T18:34:27.000" + ], + [ + "watch", + 0.3698630137, + "2025-01-01T18:34:27.000" ] -} \ No newline at end of file + ] +}