package-analysis
sigstore-website
package-analysis | sigstore-website | |
---|---|---|
2 | 2 | |
706 | 26 | |
1.0% | - | |
9.2 | 5.4 | |
3 days ago | about 1 month ago | |
Go | Vue | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
package-analysis
-
Is my email safe with services like anonaddy?
You can try out this thing called Package Analysis by OSSF. It's obviously not a catch-all by any means, but it can help identify hidden malicious software in open source packages.
-
Sigstore
I agree. There are projects such as https://github.com/ossf/package-analysis and https://github.com/step-security/harden-runner that do behavior analysis. Disclaimer: I’m maintainer of the second one.
sigstore-website
-
Python 3.11.0 final is now available
For anyone browsing in Android and confused, the signature website has a major design issue hiding the menu button on some devices. You need to scroll the page to the right: https://github.com/sigstore/sigstore-website/issues/132
- Sigstore
What are some alternatives?
hagrid-container - Hagrid as in, "keeper of keys". Verifying OpenPGP keyserver, written in Rust. OCI image
harden-runner - Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
rfcs - RubyGems + Bundler RFCs
celery-types - :seedling: Type stubs for Celery and its related packages
import-linter - Import Linter allows you to define and enforce rules for the internal and external imports within your Python project.
public-conventions - In-house conventions and styles
nogil - Multithreaded Python without the GIL
django-stubs - PEP-484 stubs for Django
CPython - The Python programming language
Flake8 - flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.