criticality_score
typescript-eslint
criticality_score | typescript-eslint | |
---|---|---|
13 | 123 | |
1,282 | 14,612 | |
0.6% | 0.9% | |
8.6 | 9.9 | |
6 days ago | 2 days ago | |
Go | TypeScript | |
Apache License 2.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
criticality_score
- Open Source Project Criticality Score
-
Open source public fund experiment - One and a half years update
TL;DR: I could extend the Criticality Score algorithm with usage metrics from Ecosyste.ms API and apply it to all open source accounts under the Open Collective, so we have a new ranking now! I also made it possible to change the weights of each parameter so that you can try the algorithm by yourself.
-
Discover Awesome Python projects
As mentioned in the description, the score is based on the OpenSSF criticality score. I dropped some of the features that are difficult to get from GitHub due to crawl limits, as well as changing some weights.
- criticality_score - Gives criticality score for an open source project
- ossf/criticality_score: Gives criticality score for an open source project
-
Is Spring still relevant and how do you know?
I am doing some research based on the criticality scores assigned by this project to different technologies: https://github.com/ossf/criticality_score
-
'Securing Open Source Software Act' Introduced to US Senate
LF OpenSSF "criticality score" for 100,000 Github repos, https://github.com/ossf/criticality_score & https://docs.google.com/spreadsheets/d/1uahUIUa82J6WetAqtxCM...
> Generate a criticality score for every open source project. Create a list of critical projects that the open source community depends on. Use this data to proactively improve the security posture of these critical projects ... A project's criticality score defines the influence and importance of a project. It is a number between 0 (least-critical) and 1 (most-critical). It is based on the following algorithm by Rob Pike
Top 20 projects:
> node, kubernetes, rust, spark, nixpkgs, cmsSW, tensorflow, symfony, DefinitelyTyped, git, azure-docs, magento2, rails, ansible, pytorch, PrestaShop, framework, ceph, php-src, linux
- Google wants to work with government to secure open-source software
-
Open source public fund experiment
For more information, please check the Criticality Score repo itself.
- Quantifying Criticality [pdf]
typescript-eslint
-
Mastering Type-Safe JSON Serialization in TypeScript
Typescript-eslint can assist in this task. This tool helps identify all instances of unsafe any usage. Specifically, all usages of JSON.parse can be found and it can be ensured that the received data's format is checked. More about getting rid of the any type in a codebase can be read in the article Making TypeScript Truly "Strongly Typed".
-
Oxlint – written in Rust – 50-100 Times Faster than ESLint
> Only lint files that have changed? How hard that is?
Quite hard, especially since type-aware rules from e.g. https://typescript-eslint.io/ mean that changing the type of a variable in file A can break your code in file B, even if file B hasn't changed.
-
How to Do a TypeScript Conversion: an opinionated take on gradual conversions
The article only touches this: when converting to TypeScript, `any` is useful, but in the end you don't want this type in your codebase - so don't forget to use typescript-eslint [0] and turn on those no-unsafe-* rules which guard against `any` leaking into your code.
[0] https://github.com/typescript-eslint/typescript-eslint
- How do I add additional rules to my typescript-eslint settings?
- What's the best config for typescript-eslint?
- How do you add angular-eslint to your typescript-eslint config?
- What's the best typescript-eslint config?
-
The Best ESLint Rules for React Projects
By convention, React components should be named in PascalCase. @typescript-eslint has the config we need, and though we can't specifically target React components, we can target variables (and set some other conventions while we're at it):
- Open source public fund experiment - One and a half years update
- Never touch those //ts-ignores
What are some alternatives?
AutoGPT - AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.
eslint-config-google - ESLint shareable config for the Google JavaScript style guide
wg-best-practices-os-developers - The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for open source developers.
angular-eslint - :sparkles: Monorepo for all the tooling related to using ESLint with Angular
criticality_score - Gives criticality score for an open source project
ts-standard - Typescript style guide, linter, and formatter using StandardJS
wg-securing-critical-projects - Helping allocate resources to secure the critical open source projects we all depend on.
zod - TypeScript-first schema validation with static type inference
awesome-python - 🐍 Hand-picked awesome Python libraries and frameworks, organised by category
node-clinic - Clinic.js diagnoses your Node.js performance issues
ts-node - TypeScript execution and REPL for node.js
WSL - Issues found on WSL