-
Notifications
You must be signed in to change notification settings - Fork 30k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
tools: add scorecard ci #47254
tools: add scorecard ci #47254
Conversation
Review requested:
|
I think we have consciously decided against a variety of available "badges" in the README. I am wondering if this one is helpful to people who come across the README. |
I see. Also in |
I'm fine removing the badge too. We'll have a report.md in the security-wg. That should be fine. |
@nodejs/security-wg could you please review it? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can you please fix the commit message? it should be tools: XX
(considering you are also removing the badge)
98199cc
to
1357413
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM! 🚀
Commit Queue failed- Loading data for nodejs/node/pull/47254 ✔ Done loading data for nodejs/node/pull/47254 ----------------------------------- PR info ------------------------------------ Title tools: add scorecard ci (#47254) Author Mateo Nunez (@mateonunez, first-time contributor) Branch mateonunez:feat/add-scorecard -> nodejs:main Labels doc, meta Commits 1 - tools: add scorecard workflow Committers 1 - mateonunez PR-URL: https://github.com/nodejs/node/pull/47254 Reviewed-By: Rafael Gonzaga ------------------------------ Generated metadata ------------------------------ PR-URL: https://github.com/nodejs/node/pull/47254 Reviewed-By: Rafael Gonzaga -------------------------------------------------------------------------------- ℹ This PR was created on Sat, 25 Mar 2023 15:57:35 GMT ✔ Approvals: 1 ✔ - Rafael Gonzaga (@RafaelGSS) (TSC): https://github.com/nodejs/node/pull/47254#pullrequestreview-1362648093 ✘ This PR needs to wait 49 more hours to land (or 0 hours if there is one more approval) ✔ Last GitHub CI successful ℹ Green GitHub CI is sufficient -------------------------------------------------------------------------------- ✔ Aborted `git node land` session in /home/runner/work/node/node/.ncuhttps://github.com/nodejs/node/actions/runs/4565236989 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
Landed in 04cfb82 |
PR-URL: #47254 Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Marco Ippolito <[email protected]>
PR-URL: #47254 Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Marco Ippolito <[email protected]>
PR-URL: #47254 Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Marco Ippolito <[email protected]>
PR-URL: #47254 Reviewed-By: Rafael Gonzaga <[email protected]> Reviewed-By: Michael Dawson <[email protected]> Reviewed-By: Marco Ippolito <[email protected]>
This Pull Request aims to integrate the
scorecard
CI, and to include a badge that exhibits the project's evaluation score as reported in nodejs/security-wg#929.The enhancement of the score will be achieved through the merging of a PR that incorporates the specified version of the actions, as referenced in #46820.