scorecard-dependencyanalysis

0.0.1 Opens a new window with list of versions in this module.

Scorecard action for checking when new dependencies are added to the repository. For more information about how to use this package see README

Latest version published 1 year ago

Ensure you're using the healthiest golang packages

Snyk scans all the packages in your projects for vulnerabilities and provides automated fix advice

Package Health Score

42 / 100

Popularity

popularity-imported Imported By
0
popularity-stars GitHub Stars
2
popularity-forks Forks
0
popularity-contributors Contributors
5

Usage Popularity


Based on project statistics from the GitHub repository for the Golang package scorecard-dependencyanalysis, we found that it has been 2 times.

The popularity score for Golang modules is calculated based on the number of stars that the project has on GitHub as well as the number of imports by other modules.

Security

No known security issues
Powered by Snyk
0.0.1 Opens a new window with list of versions in this module. (Latest)

Security risks

Direct Vulnerabilities
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
Indirect Vulnerabilities
Check with Snyk

Release Date
May 31, 2023
License
Apache-2.0
Security Policy
Yes

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Inactive
archived

Commit Frequency

Open Issues
0
Open PR
0
Last Release
1 year ago
Last Commit
6 months ago

Further analysis of the maintenance status of github.com/ossf/scorecard-dependencyanalysis based on released golang versions cadence, the repository activity, and other data points determined that its maintenance is Inactive.

An important project maintenance signal to consider for github.com/ossf/scorecard-dependencyanalysis is that it hasn't seen any new versions released to golang in the past 12 months, and could be considered as a discontinued project, or that which receives low attention from its maintainers.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Limited
Readme.md
No
Contributing.md
No
Code of Conduct
Yes
Contributors
5
Funding
No

This project has seen only 10 or less contributors.

How about a good first contribution to this project? It seems that github.com/ossf/scorecard-dependencyanalysis is missing a README file.


Embed Package Health Score Badge

package health: 42/100 package health 42/100