diff --git a/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json b/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json index 5990a42227..6b6cd83f83 100644 --- a/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json +++ b/app/site/_data/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python/T-MSIS-Analytic-File-Generation-Python_data.json @@ -1,363 +1,363 @@ { - "url": "https://github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", - "owner": "Enterprise-CMCS", - "name": "T-MSIS-Analytic-File-Generation-Python", - "description": "Databricks Python code library to create interim T-MSIS Analytic Files (TAF)", - "commits_count": 606, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 234, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 221, - "closed_pull_requests_count": 11, - "forks_count": 4, - "stargazers_count": 5, - "watchers_count": 6, - "total_project_lines": 55862, - "average_project_lines": 291, - "total_project_comment_lines": 15823, - "average_project_comment_lines": 82, - "total_project_blank_lines": 6230, - "average_blank_lines": 32, - "commits_by_month": { - "2025/1": 1, - "2024/12": 2, - "2024/11": 9, - "2024/10": 12, - "2024/9": 6 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2025-01-06T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", + "owner": "Enterprise-CMCS", + "name": "T-MSIS-Analytic-File-Generation-Python", + "description": "Databricks Python code library to create interim T-MSIS Analytic Files (TAF)", + "commits_count": 606, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 234, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 221, + "closed_pull_requests_count": 11, + "forks_count": 4, + "stargazers_count": 5, + "watchers_count": 6, + "total_project_lines": 55862, + "average_project_lines": 291, + "total_project_comment_lines": 15823, + "average_project_comment_lines": 82, + "total_project_blank_lines": 6230, + "average_blank_lines": 32, + "commits_by_month": { + "2025/1": 1, + "2024/12": 2, + "2024/11": 9, + "2024/10": 12, + "2024/9": 6 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2025-01-06T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 2 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 2 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-08-29T00:00:00.000Z", - 1 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ], - [ - "2024-09-13T00:00:00.000Z", - 1 - ], - [ - "2024-11-05T00:00:00.000Z", - 1 - ] + [ + "2024-08-22T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-11-30T17:05:47Z", - "ossf_scorecard": { - "date": "2025-01-19T13:27:38Z", - "repo": { - "name": "github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", - "commit": "439a7a6e30d82ce056e04775ba54d523a5713b23" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 15 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 13/16 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "19 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 9, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 2492660, - "CodeBytes": 0, - "Lines": 55422, - "Code": 33464, - "Comment": 15812, - "Blank": 6146, - "Complexity": 849, - "Count": 186, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 5533, - "CodeBytes": 0, - "Lines": 97, - "Code": 53, - "Comment": 0, - "Blank": 44, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Powershell", - "Bytes": 17029, - "CodeBytes": 0, - "Lines": 132, - "Code": 117, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2770, - "CodeBytes": 0, - "Lines": 90, - "Code": 66, - "Comment": 11, - "Blank": 13, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 993220.5013637338, - "estimatedScheduleMonths_low": 14.207058814731058, - "estimatedPeople_low": 6.8106883055827545, - "estimatedCost_high": 3095308.8760058936, - "estimatedScheduleMonths_high": 14.207058814731058, - "estimatedPeople_high": 6.8106883055827545, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 186 55422 6146 15812 33464 849\n(ULOC) 23029\n-------------------------------------------------------------------------------\nMarkdown 2 97 44 0 53 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nPowershell 2 132 15 0 117 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 90 13 11 66 0\n(ULOC) 69\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 192 55862 6230 15823 33809 849\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 23374\nDRYness % 0.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,089,128\nEstimated Schedule Effort (organic) 14.21 months\nEstimated People Required (organic) 6.81\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2525040 bytes, 2.525 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-08-29T00:00:00.000Z", + 1 + ], + [ + "2024-09-04T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ], + [ + "2024-09-13T00:00:00.000Z", + 1 + ], + [ + "2024-11-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-11-30T17:05:47Z", + "ossf_scorecard": { + "date": "2025-01-19T13:27:38Z", + "repo": { + "name": "github.com/Enterprise-CMCS/T-MSIS-Analytic-File-Generation-Python", + "commit": "439a7a6e30d82ce056e04775ba54d523a5713b23" }, - "predominant_langs": { - "Python": 2492660, - "PowerShell": 17029 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 5.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 15 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 13/16 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "19 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 9, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 2492660, + "CodeBytes": 0, + "Lines": 55422, + "Code": 33464, + "Comment": 15812, + "Blank": 6146, + "Complexity": 849, + "Count": 186, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 5533, + "CodeBytes": 0, + "Lines": 97, + "Code": 53, + "Comment": 0, + "Blank": 44, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Powershell", + "Bytes": 17029, + "CodeBytes": 0, + "Lines": 132, + "Code": 117, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2770, + "CodeBytes": 0, + "Lines": 90, + "Code": 66, + "Comment": 11, + "Blank": 13, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 993220.5013637338, + "estimatedScheduleMonths_low": 14.207058814731058, + "estimatedPeople_low": 6.8106883055827545, + "estimatedCost_high": 3095308.8760058936, + "estimatedScheduleMonths_high": 14.207058814731058, + "estimatedPeople_high": 6.8106883055827545, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 186 55422 6146 15812 33464 849\n(ULOC) 23029\n-------------------------------------------------------------------------------\nMarkdown 2 97 44 0 53 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nPowershell 2 132 15 0 117 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 90 13 11 66 0\n(ULOC) 69\n───────────────────────────────────────────────────────────────────────────────\nTotal 192 55862 6230 15823 33809 849\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 23374\nDRYness % 0.42\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,089,128\nEstimated Schedule Effort (organic) 14.21 months\nEstimated People Required (organic) 6.81\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2525040 bytes, 2.525 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Python": 2492660, + "PowerShell": 17029 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json b/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json index aeed4eef3d..eebccda524 100644 --- a/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json +++ b/app/site/_data/Enterprise-CMCS/cmcs-eregulations/cmcs-eregulations_data.json @@ -1,884 +1,884 @@ { - "url": "https://github.com/Enterprise-CMCS/cmcs-eregulations", - "owner": "Enterprise-CMCS", - "name": "cmcs-eregulations", - "description": "Web application for viewing Medicaid and CHIP regulations and related policy information", - "commits_count": 1226, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1510, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 1230, - "closed_pull_requests_count": 274, - "forks_count": 10, - "stargazers_count": 17, - "watchers_count": 11, - "total_project_lines": 381432, - "average_project_lines": 468, - "total_project_comment_lines": 2779, - "average_project_comment_lines": 3, - "total_project_blank_lines": 9397, - "average_blank_lines": 12, - "commits_by_month": { - "2025/1": 16, - "2024/12": 14 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-30T00:00:00.000Z", - 1 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 3 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-11-12T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-09-28T15:44:46Z", - "ossf_scorecard": { - "date": "2025-01-19T13:23:27Z", - "repo": { - "name": "github.com/Enterprise-CMCS/cmcs-eregulations", - "commit": "1b5ea9223ddbc298dfe958ecb5e7b605de7fcb6d" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "29 out of 29 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 21/22 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 10 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 10, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "34 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Python", - "Bytes": 551981, - "CodeBytes": 0, - "Lines": 14681, - "Code": 11515, - "Comment": 570, - "Blank": 2596, - "Complexity": 917, - "Count": 289, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1672012, - "CodeBytes": 0, - "Lines": 48100, - "Code": 46327, - "Comment": 745, - "Blank": 1028, - "Complexity": 225, - "Count": 97, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Vue", - "Bytes": 226314, - "CodeBytes": 0, - "Lines": 7898, - "Code": 7001, - "Comment": 120, - "Blank": 777, - "Complexity": 236, - "Count": 86, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5832943, - "CodeBytes": 0, - "Lines": 212122, - "Code": 212121, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 83, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 247854, - "CodeBytes": 0, - "Lines": 4239, - "Code": 3811, - "Comment": 6, - "Blank": 422, - "Complexity": 0, - "Count": 75, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1637656, - "CodeBytes": 0, - "Lines": 3098, - "Code": 942, - "Comment": 0, - "Blank": 2156, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 3079878, - "CodeBytes": 0, - "Lines": 15705, - "Code": 15701, - "Comment": 4, - "Blank": 0, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 151418, - "CodeBytes": 0, - "Lines": 6472, - "Code": 5111, - "Comment": 185, - "Blank": 1176, - "Complexity": 0, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Go", - "Bytes": 227549, - "CodeBytes": 0, - "Lines": 8442, - "Code": 7747, - "Comment": 131, - "Blank": 564, - "Complexity": 1129, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 62762, - "CodeBytes": 0, - "Lines": 1935, - "Code": 1668, - "Comment": 134, - "Blank": 133, - "Complexity": 0, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 76276, - "CodeBytes": 0, - "Lines": 2354, - "Code": 1177, - "Comment": 952, - "Blank": 225, - "Complexity": 100, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 73004, - "CodeBytes": 0, - "Lines": 1526, - "Code": 1075, - "Comment": 0, - "Blank": 451, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 42982, - "CodeBytes": 0, - "Lines": 1293, - "Code": 1225, - "Comment": 20, - "Blank": 48, - "Complexity": 29, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5879, - "CodeBytes": 0, - "Lines": 157, - "Code": 102, - "Comment": 29, - "Blank": 26, - "Complexity": 26, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 4136, - "CodeBytes": 0, - "Lines": 177, - "Code": 136, - "Comment": 18, - "Blank": 23, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1343, - "CodeBytes": 0, - "Lines": 57, - "Code": 31, - "Comment": 13, - "Blank": 13, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 9537017, - "CodeBytes": 0, - "Lines": 56218, - "Code": 56218, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 155, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2431, - "CodeBytes": 0, - "Lines": 61, - "Code": 37, - "Comment": 13, - "Blank": 11, - "Complexity": 7, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 171, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1061, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 9348, - "CodeBytes": 0, - "Lines": 224, - "Code": 176, - "Comment": 2, - "Blank": 46, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 207, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 2, - "Blank": 0, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 12325815.372405512, - "estimatedScheduleMonths_low": 36.99446676585523, - "estimatedPeople_low": 32.45849614425849, - "estimatedCost_high": 38412624.05863761, - "estimatedScheduleMonths_high": 36.99446676585523, - "estimatedPeople_high": 32.45849614425849, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nPython 289 14681 2596 570 11515 917\n(ULOC) 7679\n-------------------------------------------------------------------------------\nJavaScript 97 48100 1028 745 46327 225\n(ULOC) 10614\n-------------------------------------------------------------------------------\nVue 86 7898 777 120 7001 236\n(ULOC) 3892\n-------------------------------------------------------------------------------\nJSON 83 212122 1 0 212121 0\n(ULOC) 35160\n-------------------------------------------------------------------------------\nHTML 75 4239 422 6 3811 0\n(ULOC) 1807\n-------------------------------------------------------------------------------\nPlain Text 31 3098 2156 0 942 0\n(ULOC) 764\n-------------------------------------------------------------------------------\nSVG 31 15705 0 4 15701 0\n(ULOC) 14555\n-------------------------------------------------------------------------------\nSass 30 6472 1176 185 5111 0\n(ULOC) 2967\n-------------------------------------------------------------------------------\nGo 28 8442 564 131 7747 1129\n(ULOC) 3420\n-------------------------------------------------------------------------------\nYAML 25 1935 133 134 1668 0\n(ULOC) 696\n-------------------------------------------------------------------------------\nTypeScript 19 2354 225 952 1177 100\n(ULOC) 1220\n-------------------------------------------------------------------------------\nMarkdown 13 1526 451 0 1075 0\n(ULOC) 932\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 9 1293 48 20 1225 29\n(ULOC) 541\n-------------------------------------------------------------------------------\nShell 5 157 26 29 102 26\n(ULOC) 114\n-------------------------------------------------------------------------------\nTOML 4 177 23 18 136 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nDockerfile 3 57 13 13 31 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nXML 3 56218 0 0 56218 0\n(ULOC) 30642\n-------------------------------------------------------------------------------\nCSS 2 8 1 1 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nBASH 1 61 11 13 37 7\n(ULOC) 47\n-------------------------------------------------------------------------------\nCSV 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMakefile 1 224 46 2 176 0\n(ULOC) 163\n-------------------------------------------------------------------------------\nSQL 1 4 0 2 2 1\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 838 384796 9701 2945 372150 2670\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 114825\nDRYness % 0.30\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $13,516,033\nEstimated Schedule Effort (organic) 36.99 months\nEstimated People Required (organic) 32.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 23444377 bytes, 23.444 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/cmcs-eregulations", + "owner": "Enterprise-CMCS", + "name": "cmcs-eregulations", + "description": "Web application for viewing Medicaid and CHIP regulations and related policy information", + "commits_count": 1226, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1510, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 1230, + "closed_pull_requests_count": 274, + "forks_count": 10, + "stargazers_count": 17, + "watchers_count": 11, + "total_project_lines": 381432, + "average_project_lines": 468, + "total_project_comment_lines": 2779, + "average_project_comment_lines": 3, + "total_project_blank_lines": 9397, + "average_blank_lines": 12, + "commits_by_month": { + "2025/1": 16, + "2024/12": 14 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-30T00:00:00.000Z", + 1 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 3 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-11-12T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-09-28T15:44:46Z", + "ossf_scorecard": { + "date": "2025-01-19T13:23:27Z", + "repo": { + "name": "github.com/Enterprise-CMCS/cmcs-eregulations", + "commit": "1b5ea9223ddbc298dfe958ecb5e7b605de7fcb6d" }, - "predominant_langs": { - "JavaScript": 1681858, - "Python": 551988, - "Go": 227549, - "Vue": 226306, - "SCSS": 151419, - "HTML": 77838, - "TypeScript": 67838, - "Makefile": 9348, - "Shell": 7109, - "Dockerfile": 1343, - "CSS": 155 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "Cryptography", - 2.0684931507, - "2023-10-21T07:51:46.000" - ], - [ - "Werkzeug", - 4.2054794521, - "2023-10-21T07:51:46.000" - ], - [ - "Werkzeug", - 5.3178082192, - "2025-01-01T18:40:24.000" - ], - [ - "beautifulsoup4", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "boto3", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "certifi", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "cryptography", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "defusedxml", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django", - 3.8794520548, - "2023-10-21T07:51:46.000" - ], - [ - "django-cors-headers", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django-csp", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django-debug-toolbar", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django-jsonform", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django-model-utils", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django-opensearch-dsl", - 0.0, - "2023-10-21T07:51:46.000" - ], - [ - "django-solo", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "django-storages", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "djangorestframework", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "djangorestframework_simplejwt", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "docx2txt", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "drf-spectacular", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "drf-spectacular", - 0.9890410959, - "2023-10-21T07:51:46.000" - ], - [ - "extract-msg", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "httpx", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "idna", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "jinja2", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "magika", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "mock", - 0.0, - "2024-03-10T22:32:45.000" - ], - [ - "moto", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "mozilla-django-oidc", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "olefile", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "openpyxl", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "pdf2image", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "pillow", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "pre-commit", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "psycopg2-binary", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "pyopenssl", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "pytest", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "pytest-cov", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "pytest-django", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "python-dateutil", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "python-magic", - 0.0, - "2024-03-10T22:32:45.000" - ], - [ - "python-pptx", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "requests", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "ruff", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "sqlparse", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "striprtf", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "textract", - 0.0, - "2024-01-10T02:45:29.000" - ], - [ - "werkzeug", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "xlrd", - 0.0, - "2024-08-04T17:12:30.000" - ], - [ - "zappa-django-utils", - 0.0, - "2023-10-21T07:51:46.000" - ] + "score": 6.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "29 out of 29 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 21/22 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 10 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 10, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "34 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Python", + "Bytes": 551988, + "CodeBytes": 0, + "Lines": 14681, + "Code": 11515, + "Comment": 570, + "Blank": 2596, + "Complexity": 917, + "Count": 289, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1673420, + "CodeBytes": 0, + "Lines": 48144, + "Code": 46367, + "Comment": 740, + "Blank": 1037, + "Complexity": 225, + "Count": 97, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Vue", + "Bytes": 226306, + "CodeBytes": 0, + "Lines": 7898, + "Code": 7001, + "Comment": 120, + "Blank": 777, + "Complexity": 236, + "Count": 86, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5833253, + "CodeBytes": 0, + "Lines": 212132, + "Code": 212131, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 84, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 247680, + "CodeBytes": 0, + "Lines": 4230, + "Code": 3806, + "Comment": 6, + "Blank": 418, + "Complexity": 0, + "Count": 75, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1637656, + "CodeBytes": 0, + "Lines": 3098, + "Code": 942, + "Comment": 0, + "Blank": 2156, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 3079878, + "CodeBytes": 0, + "Lines": 15705, + "Code": 15701, + "Comment": 4, + "Blank": 0, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 151419, + "CodeBytes": 0, + "Lines": 6473, + "Code": 5111, + "Comment": 185, + "Blank": 1177, + "Complexity": 0, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Go", + "Bytes": 227549, + "CodeBytes": 0, + "Lines": 8442, + "Code": 7747, + "Comment": 131, + "Blank": 564, + "Complexity": 1129, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 63313, + "CodeBytes": 0, + "Lines": 1952, + "Code": 1685, + "Comment": 134, + "Blank": 133, + "Complexity": 0, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 76276, + "CodeBytes": 0, + "Lines": 2354, + "Code": 1177, + "Comment": 952, + "Blank": 225, + "Complexity": 100, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 73004, + "CodeBytes": 0, + "Lines": 1526, + "Code": 1075, + "Comment": 0, + "Blank": 451, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 42982, + "CodeBytes": 0, + "Lines": 1293, + "Code": 1225, + "Comment": 20, + "Blank": 48, + "Complexity": 29, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5879, + "CodeBytes": 0, + "Lines": 157, + "Code": 102, + "Comment": 29, + "Blank": 26, + "Complexity": 26, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 4136, + "CodeBytes": 0, + "Lines": 177, + "Code": 136, + "Comment": 18, + "Blank": 23, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1343, + "CodeBytes": 0, + "Lines": 57, + "Code": 31, + "Comment": 13, + "Blank": 13, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 9537017, + "CodeBytes": 0, + "Lines": 56218, + "Code": 56218, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 155, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2431, + "CodeBytes": 0, + "Lines": 61, + "Code": 37, + "Comment": 13, + "Blank": 11, + "Complexity": 7, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 171, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1061, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 9348, + "CodeBytes": 0, + "Lines": 224, + "Code": 176, + "Comment": 2, + "Blank": 46, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 207, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 2, + "Blank": 0, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 12327971.529660914, + "estimatedScheduleMonths_low": 36.996925783204915, + "estimatedPeople_low": 32.462016369269385, + "estimatedCost_high": 38419343.58635733, + "estimatedScheduleMonths_high": 36.996925783204915, + "estimatedPeople_high": 32.462016369269385, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nPython 289 14681 2596 570 11515 917\n(ULOC) 7679\n-------------------------------------------------------------------------------\nJavaScript 97 48144 1037 740 46367 225\n(ULOC) 10634\n-------------------------------------------------------------------------------\nVue 86 7898 777 120 7001 236\n(ULOC) 3891\n-------------------------------------------------------------------------------\nJSON 84 212132 1 0 212131 0\n(ULOC) 35164\n-------------------------------------------------------------------------------\nHTML 75 4230 418 6 3806 0\n(ULOC) 1802\n-------------------------------------------------------------------------------\nPlain Text 31 3098 2156 0 942 0\n(ULOC) 764\n-------------------------------------------------------------------------------\nSVG 31 15705 0 4 15701 0\n(ULOC) 14555\n-------------------------------------------------------------------------------\nSass 30 6473 1177 185 5111 0\n(ULOC) 2967\n-------------------------------------------------------------------------------\nGo 28 8442 564 131 7747 1129\n(ULOC) 3420\n-------------------------------------------------------------------------------\nYAML 25 1952 133 134 1685 0\n(ULOC) 711\n-------------------------------------------------------------------------------\nTypeScript 19 2354 225 952 1177 100\n(ULOC) 1220\n-------------------------------------------------------------------------------\nMarkdown 13 1526 451 0 1075 0\n(ULOC) 932\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 9 1293 48 20 1225 29\n(ULOC) 541\n-------------------------------------------------------------------------------\nShell 5 157 26 29 102 26\n(ULOC) 114\n-------------------------------------------------------------------------------\nTOML 4 177 23 18 136 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nDockerfile 3 57 13 13 31 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nXML 3 56218 0 0 56218 0\n(ULOC) 30642\n-------------------------------------------------------------------------------\nCSS 2 8 1 1 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nBASH 1 61 11 13 37 7\n(ULOC) 47\n-------------------------------------------------------------------------------\nCSV 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nMakefile 1 224 46 2 176 0\n(ULOC) 163\n-------------------------------------------------------------------------------\nSQL 1 4 0 2 2 1\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 839 384859 9707 2940 372212 2670\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 114860\nDRYness % 0.30\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $13,518,397\nEstimated Schedule Effort (organic) 37.00 months\nEstimated People Required (organic) 32.46\n───────────────────────────────────────────────────────────────────────────────\nProcessed 23446472 bytes, 23.446 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 1681858, + "Python": 551988, + "Go": 227549, + "Vue": 226306, + "SCSS": 151419, + "HTML": 77838, + "TypeScript": 67838, + "Makefile": 9348, + "Shell": 7109, + "Dockerfile": 1343, + "CSS": 155 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "Cryptography", + 2.0684931507, + "2023-10-21T07:51:46.000" + ], + [ + "Werkzeug", + 4.2054794521, + "2023-10-21T07:51:46.000" + ], + [ + "Werkzeug", + 5.3178082192, + "2025-01-01T18:40:24.000" + ], + [ + "beautifulsoup4", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "boto3", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "certifi", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "cryptography", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "defusedxml", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django", + 3.8794520548, + "2023-10-21T07:51:46.000" + ], + [ + "django-cors-headers", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django-csp", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django-debug-toolbar", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django-jsonform", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django-model-utils", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django-opensearch-dsl", + 0.0, + "2023-10-21T07:51:46.000" + ], + [ + "django-solo", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "django-storages", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "djangorestframework", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "djangorestframework_simplejwt", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "docx2txt", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "drf-spectacular", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "drf-spectacular", + 0.9890410959, + "2023-10-21T07:51:46.000" + ], + [ + "extract-msg", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "httpx", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "idna", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "jinja2", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "magika", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "mock", + 0.0, + "2024-03-10T22:32:45.000" + ], + [ + "moto", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "mozilla-django-oidc", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "olefile", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "openpyxl", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "pdf2image", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "pillow", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "pre-commit", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "psycopg2-binary", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "pyopenssl", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "pytest", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "pytest-cov", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "pytest-django", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "python-dateutil", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "python-magic", + 0.0, + "2024-03-10T22:32:45.000" + ], + [ + "python-pptx", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "requests", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "ruff", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "sqlparse", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "striprtf", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "textract", + 0.0, + "2024-01-10T02:45:29.000" + ], + [ + "werkzeug", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "xlrd", + 0.0, + "2024-08-04T17:12:30.000" + ], + [ + "zappa-django-utils", + 0.0, + "2023-10-21T07:51:46.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json b/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json index 2ba3baca00..8ac9ad6fef 100644 --- a/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json +++ b/app/site/_data/Enterprise-CMCS/eAPD/eAPD_data.json @@ -1,584 +1,584 @@ { - "url": "https://github.com/Enterprise-CMCS/eAPD", - "owner": "Enterprise-CMCS", - "name": "eAPD", - "description": "CMS (Centers for Medicare and Medicaid Services) eAPD - Modernizing the APD experience", - "commits_count": 6958, - "issues_count": 2840, - "open_issues_count": 294, - "closed_issues_count": 2546, - "pull_requests_count": 1827, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 1604, - "closed_pull_requests_count": 222, - "forks_count": 26, - "stargazers_count": 59, - "watchers_count": 15, - "total_project_lines": 183752, - "average_project_lines": 143, - "total_project_comment_lines": 5216, - "average_project_comment_lines": 4, - "total_project_blank_lines": 12193, - "average_blank_lines": 10, - "commits_by_month": { - "2023/4": 26, - "2023/3": 4 + "url": "https://github.com/Enterprise-CMCS/eAPD", + "owner": "Enterprise-CMCS", + "name": "eAPD", + "description": "CMS (Centers for Medicare and Medicaid Services) eAPD - Modernizing the APD experience", + "commits_count": 6958, + "issues_count": 2840, + "open_issues_count": 294, + "closed_issues_count": 2546, + "pull_requests_count": 1827, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 1604, + "closed_pull_requests_count": 222, + "forks_count": 26, + "stargazers_count": 59, + "watchers_count": 15, + "total_project_lines": 183752, + "average_project_lines": 143, + "total_project_comment_lines": 5216, + "average_project_comment_lines": 4, + "total_project_blank_lines": 12193, + "average_blank_lines": 10, + "commits_by_month": { + "2023/4": 26, + "2023/3": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2017-12-05T21:20:35Z", + "ossf_scorecard": { + "date": "2025-01-19T13:32:22Z", + "repo": { + "name": "github.com/Enterprise-CMCS/eAPD", + "commit": "e3eb85c03858858cbeefbc09862d502ee3ca60d0" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2017-12-05T21:20:35Z", - "ossf_scorecard": { - "date": "2025-01-19T13:32:22Z", - "repo": { - "name": "github.com/Enterprise-CMCS/eAPD", - "commit": "e3eb85c03858858cbeefbc09862d502ee3ca60d0" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 30 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 10 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "59 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 4758720, - "CodeBytes": 0, - "Lines": 147101, - "Code": 132205, - "Comment": 4351, - "Blank": 10545, - "Complexity": 3113, - "Count": 959, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 312668, - "CodeBytes": 0, - "Lines": 1150, - "Code": 1146, - "Comment": 3, - "Blank": 1, - "Complexity": 0, - "Count": 80, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 92328, - "CodeBytes": 0, - "Lines": 3332, - "Code": 2632, - "Comment": 244, - "Blank": 456, - "Complexity": 79, - "Count": 65, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 830468, - "CodeBytes": 0, - "Lines": 23086, - "Code": 22962, - "Comment": 0, - "Blank": 124, - "Complexity": 0, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 122436, - "CodeBytes": 0, - "Lines": 3271, - "Code": 2922, - "Comment": 136, - "Blank": 213, - "Complexity": 0, - "Count": 41, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 33485, - "CodeBytes": 0, - "Lines": 1549, - "Code": 1289, - "Comment": 50, - "Blank": 210, - "Complexity": 0, - "Count": 24, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 84459, - "CodeBytes": 0, - "Lines": 2371, - "Code": 1642, - "Comment": 427, - "Blank": 302, - "Complexity": 87, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 55654, - "CodeBytes": 0, - "Lines": 1206, - "Code": 942, - "Comment": 0, - "Blank": 264, - "Complexity": 0, - "Count": 17, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Raku", - "Bytes": 6680, - "CodeBytes": 0, - "Lines": 252, - "Code": 214, - "Comment": 0, - "Blank": 38, - "Complexity": 5, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 732, - "CodeBytes": 0, - "Lines": 40, - "Code": 30, - "Comment": 0, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1811, - "CodeBytes": 0, - "Lines": 62, - "Code": 57, - "Comment": 5, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 573, - "CodeBytes": 0, - "Lines": 23, - "Code": 18, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 2052, - "CodeBytes": 0, - "Lines": 22, - "Code": 22, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 281, - "CodeBytes": 0, - "Lines": 21, - "Code": 21, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "MDX", - "Bytes": 5285, - "CodeBytes": 0, - "Lines": 219, - "Code": 195, - "Comment": 0, - "Blank": 24, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 1611, - "CodeBytes": 0, - "Lines": 47, - "Code": 46, - "Comment": 0, - "Blank": 1, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 5291959.232844879, - "estimatedScheduleMonths_low": 26.828790111268844, - "estimatedPeople_low": 19.216084952719797, - "estimatedCost_high": 16492056.257795038, - "estimatedScheduleMonths_high": 26.828790111268844, - "estimatedPeople_high": 19.216084952719797, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 959 147101 10545 4351 132205 3113\n(ULOC) 47432\n-------------------------------------------------------------------------------\nSVG 80 1150 1 3 1146 0\n(ULOC) 671\n-------------------------------------------------------------------------------\nTerraform 65 3332 456 244 2632 79\n(ULOC) 1235\n-------------------------------------------------------------------------------\nJSON 54 23086 124 0 22962 0\n(ULOC) 9193\n-------------------------------------------------------------------------------\nYAML 41 3271 213 136 2922 0\n(ULOC) 1821\n-------------------------------------------------------------------------------\nSass 24 1549 210 50 1289 0\n(ULOC) 864\n-------------------------------------------------------------------------------\nShell 19 2371 302 427 1642 87\n(ULOC) 1102\n-------------------------------------------------------------------------------\nMarkdown 17 1206 264 0 942 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nRaku 12 252 38 0 214 5\n(ULOC) 149\n-------------------------------------------------------------------------------\nDockerfile 2 40 10 0 30 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 62 0 5 57 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nSQL 2 23 5 0 18 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nCSV 1 22 0 0 22 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nDocker ignore 1 21 0 0 21 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nMDX 1 219 24 0 195 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nSmarty Template 1 47 1 0 46 3\n(ULOC) 44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1281 183752 12193 5216 166343 3287\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 63392\nDRYness % 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,802,966\nEstimated Schedule Effort (organic) 26.83 months\nEstimated People Required (organic) 19.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 6309243 bytes, 6.309 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 4766765, - "HCL": 102233, - "Shell": 84459, - "SCSS": 33485, - "EJS": 6680, - "HTML": 1811, - "Smarty": 1611, - "Dockerfile": 732 - }, - "average_issue_resolution_time": [ - [ - "eapd", - "73 days 18:25:07.087588" - ] + "score": 4.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 30 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 10 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "59 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 4758720, + "CodeBytes": 0, + "Lines": 147101, + "Code": 132205, + "Comment": 4351, + "Blank": 10545, + "Complexity": 3113, + "Count": 959, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 312668, + "CodeBytes": 0, + "Lines": 1150, + "Code": 1146, + "Comment": 3, + "Blank": 1, + "Complexity": 0, + "Count": 80, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 92328, + "CodeBytes": 0, + "Lines": 3332, + "Code": 2632, + "Comment": 244, + "Blank": 456, + "Complexity": 79, + "Count": 65, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 830468, + "CodeBytes": 0, + "Lines": 23086, + "Code": 22962, + "Comment": 0, + "Blank": 124, + "Complexity": 0, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 122436, + "CodeBytes": 0, + "Lines": 3271, + "Code": 2922, + "Comment": 136, + "Blank": 213, + "Complexity": 0, + "Count": 41, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 33485, + "CodeBytes": 0, + "Lines": 1549, + "Code": 1289, + "Comment": 50, + "Blank": 210, + "Complexity": 0, + "Count": 24, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 84459, + "CodeBytes": 0, + "Lines": 2371, + "Code": 1642, + "Comment": 427, + "Blank": 302, + "Complexity": 87, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 55654, + "CodeBytes": 0, + "Lines": 1206, + "Code": 942, + "Comment": 0, + "Blank": 264, + "Complexity": 0, + "Count": 17, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Raku", + "Bytes": 6680, + "CodeBytes": 0, + "Lines": 252, + "Code": 214, + "Comment": 0, + "Blank": 38, + "Complexity": 5, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 732, + "CodeBytes": 0, + "Lines": 40, + "Code": 30, + "Comment": 0, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1811, + "CodeBytes": 0, + "Lines": 62, + "Code": 57, + "Comment": 5, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 573, + "CodeBytes": 0, + "Lines": 23, + "Code": 18, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 2052, + "CodeBytes": 0, + "Lines": 22, + "Code": 22, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 281, + "CodeBytes": 0, + "Lines": 21, + "Code": 21, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "MDX", + "Bytes": 5285, + "CodeBytes": 0, + "Lines": 219, + "Code": 195, + "Comment": 0, + "Blank": 24, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 1611, + "CodeBytes": 0, + "Lines": 47, + "Code": 46, + "Comment": 0, + "Blank": 1, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 5291959.232844879, + "estimatedScheduleMonths_low": 26.828790111268844, + "estimatedPeople_low": 19.216084952719797, + "estimatedCost_high": 16492056.257795038, + "estimatedScheduleMonths_high": 26.828790111268844, + "estimatedPeople_high": 19.216084952719797, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 959 147101 10545 4351 132205 3113\n(ULOC) 47432\n-------------------------------------------------------------------------------\nSVG 80 1150 1 3 1146 0\n(ULOC) 671\n-------------------------------------------------------------------------------\nTerraform 65 3332 456 244 2632 79\n(ULOC) 1235\n-------------------------------------------------------------------------------\nJSON 54 23086 124 0 22962 0\n(ULOC) 9193\n-------------------------------------------------------------------------------\nYAML 41 3271 213 136 2922 0\n(ULOC) 1821\n-------------------------------------------------------------------------------\nSass 24 1549 210 50 1289 0\n(ULOC) 864\n-------------------------------------------------------------------------------\nShell 19 2371 302 427 1642 87\n(ULOC) 1102\n-------------------------------------------------------------------------------\nMarkdown 17 1206 264 0 942 0\n(ULOC) 851\n-------------------------------------------------------------------------------\nRaku 12 252 38 0 214 5\n(ULOC) 149\n-------------------------------------------------------------------------------\nDockerfile 2 40 10 0 30 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 62 0 5 57 0\n(ULOC) 54\n-------------------------------------------------------------------------------\nSQL 2 23 5 0 18 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nCSV 1 22 0 0 22 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nDocker ignore 1 21 0 0 21 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nMDX 1 219 24 0 195 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nSmarty Template 1 47 1 0 46 3\n(ULOC) 44\n───────────────────────────────────────────────────────────────────────────────\nTotal 1281 183752 12193 5216 166343 3287\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 63392\nDRYness % 0.34\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,802,966\nEstimated Schedule Effort (organic) 26.83 months\nEstimated People Required (organic) 19.22\n───────────────────────────────────────────────────────────────────────────────\nProcessed 6309243 bytes, 6.309 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 4766765, + "HCL": 102233, + "Shell": 84459, + "SCSS": 33485, + "EJS": 6680, + "HTML": 1811, + "Smarty": 1611, + "Dockerfile": 732 + }, + "average_issue_resolution_time": [ + [ + "eapd", + "73 days 18:25:07.087588" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@babel/cli", + 1.7917808219, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/core", + 1.5726027397, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/eslint-parser", + 1.6109589041, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/node", + 1.8438356164, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/plugin-proposal-class-properties", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/plugin-proposal-object-rest-spread", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/plugin-transform-modules-commonjs", + 1.7808219178, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/preset-env", + 1.5726027397, + "2025-01-01T18:40:22.000" + ], + [ + "@babel/preset-react", + 2.4383561644, + "2025-01-01T18:40:22.000" + ], + [ + "@snyk/protect", + 1.6547945205, + "2025-01-01T18:40:22.000" + ], + [ + "babel-jest", + 1.5890410959, + "2025-01-01T18:40:22.000" + ], + [ + "babel-plugin-dynamic-import-node", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "husky", + 1.8767123288, + "2025-01-01T18:40:22.000" + ], + [ + "jest", + 1.5890410959, + "2025-01-01T18:40:22.000" + ], + [ + "prettier", + 1.698630137, + "2025-01-01T18:40:22.000" + ], + [ + "pretty-quick", + 2.0712328767, + "2025-01-01T18:40:22.000" ], - "repo_dependency_libyear_list": [ - [ - "@babel/cli", - 1.7917808219, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/core", - 1.5726027397, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/eslint-parser", - 1.6109589041, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/node", - 1.8438356164, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/plugin-proposal-class-properties", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/plugin-proposal-object-rest-spread", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/plugin-transform-modules-commonjs", - 1.7808219178, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/preset-env", - 1.5726027397, - "2025-01-01T18:40:22.000" - ], - [ - "@babel/preset-react", - 2.4383561644, - "2025-01-01T18:40:22.000" - ], - [ - "@snyk/protect", - 1.6547945205, - "2025-01-01T18:40:22.000" - ], - [ - "babel-jest", - 1.5890410959, - "2025-01-01T18:40:22.000" - ], - [ - "babel-plugin-dynamic-import-node", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "husky", - 1.8767123288, - "2025-01-01T18:40:22.000" - ], - [ - "jest", - 1.5890410959, - "2025-01-01T18:40:22.000" - ], - [ - "prettier", - 1.698630137, - "2025-01-01T18:40:22.000" - ], - [ - "pretty-quick", - 2.0712328767, - "2025-01-01T18:40:22.000" - ], - [ - "uuid", - 3.9260273973, - "2025-01-01T18:40:22.000" - ] + [ + "uuid", + 3.9260273973, + "2025-01-01T18:40:22.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json index 1bc3d5d487..f32efd19da 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-amazon-ecs-run-task/mac-fc-amazon-ecs-run-task_data.json @@ -1,356 +1,356 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", - "owner": "Enterprise-CMCS", - "name": "mac-fc-amazon-ecs-run-task", - "description": "Runs an Amazon ECS task on ECS cluster", - "commits_count": 191, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 11, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 1, - "total_project_lines": 42589, - "average_project_lines": 3872, - "total_project_comment_lines": 6117, - "average_project_comment_lines": 556, - "total_project_blank_lines": 6719, - "average_blank_lines": 611, - "commits_by_month": { - "2023/9": 5, - "2023/6": 6, - "2023/3": 5, - "2023/2": 10, - "2021/3": 1, - "2020/10": 3 + "url": "https://github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", + "owner": "Enterprise-CMCS", + "name": "mac-fc-amazon-ecs-run-task", + "description": "Runs an Amazon ECS task on ECS cluster", + "commits_count": 191, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 11, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 1, + "total_project_lines": 42589, + "average_project_lines": 3872, + "total_project_comment_lines": 6117, + "average_project_comment_lines": 556, + "total_project_blank_lines": 6719, + "average_blank_lines": 611, + "commits_by_month": { + "2023/9": 5, + "2023/6": 6, + "2023/3": 5, + "2023/2": 10, + "2021/3": 1, + "2020/10": 3 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-02-23T18:13:54Z", + "ossf_scorecard": { + "date": "2025-01-19T13:31:31Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", + "commit": "d0e41e15a6833b6aec7a31cf2e90adbfb61b9998" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-02-23T18:13:54Z", - "ossf_scorecard": { - "date": "2025-01-19T13:31:31Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-amazon-ecs-run-task", - "commit": "d0e41e15a6833b6aec7a31cf2e90adbfb61b9998" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 2/22 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 7 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "29 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 3309, - "CodeBytes": 0, - "Lines": 123, - "Code": 118, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1260, - "CodeBytes": 0, - "Lines": 54, - "Code": 54, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5724757, - "CodeBytes": 0, - "Lines": 42202, - "Code": 29414, - "Comment": 6117, - "Blank": 6671, - "Complexity": 4777, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 9119, - "CodeBytes": 0, - "Lines": 189, - "Code": 150, - "Comment": 0, - "Blank": 39, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1067, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 868498.4226988906, - "estimatedScheduleMonths_low": 13.500786040868586, - "estimatedPeople_low": 6.266997008876875, - "estimatedCost_high": 2706620.4059278728, - "estimatedScheduleMonths_high": 13.500786040868586, - "estimatedPeople_high": 6.266997008876875, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 4 123 5 0 118 0\n(ULOC) 101\n-------------------------------------------------------------------------------\nJSON 2 54 0 0 54 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nJavaScript 2 42202 6671 6117 29414 4777\n(ULOC) 20180\n-------------------------------------------------------------------------------\nMarkdown 2 189 39 0 150 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 11 42589 6719 6117 29753 4777\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 20452\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $952,363\nEstimated Schedule Effort (organic) 13.50 months\nEstimated People Required (organic) 6.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5739512 bytes, 5.740 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 7168 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@actions/core", - 2.1589041096, - "2025-01-01T23:28:34.000" - ], - [ - "@zeit/ncc", - 0.0, - "2025-01-01T23:28:34.000" - ], - [ - "aws-sdk", - 3.101369863, - "2025-01-01T23:28:34.000" - ], - [ - "eslint", - 4.2547945205, - "2025-01-01T23:28:34.000" - ], - [ - "jest", - 2.8547945205, - "2025-01-01T23:28:34.000" - ], - [ - "yaml", - 3.802739726, - "2025-01-01T23:28:34.000" - ] + "score": 3.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 2/22 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 7 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "29 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 3309, + "CodeBytes": 0, + "Lines": 123, + "Code": 118, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1260, + "CodeBytes": 0, + "Lines": 54, + "Code": 54, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5724757, + "CodeBytes": 0, + "Lines": 42202, + "Code": 29414, + "Comment": 6117, + "Blank": 6671, + "Complexity": 4777, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 9119, + "CodeBytes": 0, + "Lines": 189, + "Code": 150, + "Comment": 0, + "Blank": 39, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1067, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 868498.4226988906, + "estimatedScheduleMonths_low": 13.500786040868586, + "estimatedPeople_low": 6.266997008876875, + "estimatedCost_high": 2706620.4059278728, + "estimatedScheduleMonths_high": 13.500786040868586, + "estimatedPeople_high": 6.266997008876875, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 4 123 5 0 118 0\n(ULOC) 101\n-------------------------------------------------------------------------------\nJSON 2 54 0 0 54 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nJavaScript 2 42202 6671 6117 29414 4777\n(ULOC) 20180\n-------------------------------------------------------------------------------\nMarkdown 2 189 39 0 150 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n───────────────────────────────────────────────────────────────────────────────\nTotal 11 42589 6719 6117 29753 4777\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 20452\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $952,363\nEstimated Schedule Effort (organic) 13.50 months\nEstimated People Required (organic) 6.27\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5739512 bytes, 5.740 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 7168 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@actions/core", + 2.1589041096, + "2025-01-01T23:28:34.000" + ], + [ + "@zeit/ncc", + 0.0, + "2025-01-01T23:28:34.000" + ], + [ + "aws-sdk", + 3.101369863, + "2025-01-01T23:28:34.000" + ], + [ + "eslint", + 4.2547945205, + "2025-01-01T23:28:34.000" + ], + [ + "jest", + 2.8547945205, + "2025-01-01T23:28:34.000" + ], + [ + "yaml", + 3.802739726, + "2025-01-01T23:28:34.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json index 1af37dc2e9..9b9985dff5 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-github-actions-runner-aws/mac-fc-github-actions-runner-aws_data.json @@ -1,407 +1,407 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", - "owner": "Enterprise-CMCS", - "name": "mac-fc-github-actions-runner-aws", - "description": "This repository will house infrastructure related to standing up an internally hosted GitHub Actions Runner within an AWS environment", - "commits_count": 357, - "issues_count": 10, - "open_issues_count": 0, - "closed_issues_count": 10, - "pull_requests_count": 226, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 162, - "closed_pull_requests_count": 59, - "forks_count": 11, - "stargazers_count": 16, - "watchers_count": 9, - "total_project_lines": 2318, - "average_project_lines": 68, - "total_project_comment_lines": 47, - "average_project_comment_lines": 1, - "total_project_blank_lines": 393, - "average_blank_lines": 12, - "commits_by_month": { - "2025/1": 1, - "2024/12": 5, - "2024/11": 2, - "2024/10": 1, - "2024/8": 9, - "2024/5": 2, - "2024/4": 1, - "2024/3": 1, - "2024/2": 2, - "2024/1": 4, - "2023/12": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 2 - ] + "url": "https://github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", + "owner": "Enterprise-CMCS", + "name": "mac-fc-github-actions-runner-aws", + "description": "This repository will house infrastructure related to standing up an internally hosted GitHub Actions Runner within an AWS environment", + "commits_count": 357, + "issues_count": 10, + "open_issues_count": 0, + "closed_issues_count": 10, + "pull_requests_count": 226, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 162, + "closed_pull_requests_count": 59, + "forks_count": 11, + "stargazers_count": 16, + "watchers_count": 9, + "total_project_lines": 2318, + "average_project_lines": 68, + "total_project_comment_lines": 47, + "average_project_comment_lines": 1, + "total_project_blank_lines": 393, + "average_blank_lines": 12, + "commits_by_month": { + "2025/1": 1, + "2024/12": 5, + "2024/11": 2, + "2024/10": 1, + "2024/8": 9, + "2024/5": 2, + "2024/4": 1, + "2024/3": 1, + "2024/2": 2, + "2024/1": 4, + "2023/12": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-27T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-06-11T18:35:45Z", - "ossf_scorecard": { - "date": "2025-01-19T13:27:48Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", - "commit": "26432e2adb8f395eabfffc79a02025115f27e7d6" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 19/20 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "7 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Terraform", - "Bytes": 22908, - "CodeBytes": 0, - "Lines": 851, - "Code": 697, - "Comment": 14, - "Blank": 140, - "Complexity": 18, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 24493, - "CodeBytes": 0, - "Lines": 695, - "Code": 592, - "Comment": 12, - "Blank": 91, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 24570, - "CodeBytes": 0, - "Lines": 487, - "Code": 360, - "Comment": 0, - "Blank": 127, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 3220, - "CodeBytes": 0, - "Lines": 97, - "Code": 63, - "Comment": 12, - "Blank": 22, - "Complexity": 21, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 3816, - "CodeBytes": 0, - "Lines": 107, - "Code": 100, - "Comment": 1, - "Blank": 6, - "Complexity": 6, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 334, - "CodeBytes": 0, - "Lines": 14, - "Code": 14, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 50, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 1804, - "CodeBytes": 0, - "Lines": 50, - "Code": 31, - "Comment": 11, - "Blank": 8, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 901, - "CodeBytes": 0, - "Lines": 32, - "Code": 32, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 48066.95690825407, - "estimatedScheduleMonths_low": 4.494988038571902, - "estimatedPeople_low": 1.0417598025911112, - "estimatedCost_high": 149797.63119712847, - "estimatedScheduleMonths_high": 4.494988038571902, - "estimatedPeople_high": 1.0417598025911112, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTerraform 14 851 140 14 697 18\n(ULOC) 389\n-------------------------------------------------------------------------------\nYAML 8 695 91 12 592 0\n(ULOC) 433\n-------------------------------------------------------------------------------\nMarkdown 5 487 127 0 360 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nDockerfile 2 97 22 12 63 21\n(ULOC) 43\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 1 107 6 1 100 6\n(ULOC) 86\n-------------------------------------------------------------------------------\nJSON 1 14 0 0 14 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nProperties File 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nShell 1 50 8 11 31 2\n(ULOC) 43\n-------------------------------------------------------------------------------\nSmarty Template 1 32 0 0 32 0\n(ULOC) 31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 34 2334 394 50 1890 47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1291\nDRYness % 0.55\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $52,708\nEstimated Schedule Effort (organic) 4.49 months\nEstimated People Required (organic) 1.04\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 82096 bytes, 0.082 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-30T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-06-11T18:35:45Z", + "ossf_scorecard": { + "date": "2025-01-19T13:27:48Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-github-actions-runner-aws", + "commit": "26432e2adb8f395eabfffc79a02025115f27e7d6" }, - "predominant_langs": { - "HCL": 22908, - "Dockerfile": 3768, - "Shell": 1804, - "Smarty": 901 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "mac-fc-github-actions-runner-aws", - "404 days 24:40:23" - ] + "score": 5.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 19/20 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "7 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Terraform", + "Bytes": 22908, + "CodeBytes": 0, + "Lines": 851, + "Code": 697, + "Comment": 14, + "Blank": 140, + "Complexity": 18, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 24493, + "CodeBytes": 0, + "Lines": 695, + "Code": 592, + "Comment": 12, + "Blank": 91, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 24570, + "CodeBytes": 0, + "Lines": 487, + "Code": 360, + "Comment": 0, + "Blank": 127, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 3768, + "CodeBytes": 0, + "Lines": 109, + "Code": 69, + "Comment": 16, + "Blank": 24, + "Complexity": 25, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 3816, + "CodeBytes": 0, + "Lines": 107, + "Code": 100, + "Comment": 1, + "Blank": 6, + "Complexity": 6, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 334, + "CodeBytes": 0, + "Lines": 14, + "Code": 14, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 50, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 1804, + "CodeBytes": 0, + "Lines": 50, + "Code": 31, + "Comment": 11, + "Blank": 8, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 901, + "CodeBytes": 0, + "Lines": 32, + "Code": 32, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 48227.19280131075, + "estimatedScheduleMonths_low": 4.500676267707724, + "estimatedPeople_low": 1.0439115818720195, + "estimatedCost_high": 150296.99622367806, + "estimatedScheduleMonths_high": 4.500676267707724, + "estimatedPeople_high": 1.0439115818720195, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTerraform 14 851 140 14 697 18\n(ULOC) 389\n-------------------------------------------------------------------------------\nYAML 8 695 91 12 592 0\n(ULOC) 433\n-------------------------------------------------------------------------------\nMarkdown 5 487 127 0 360 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nDockerfile 2 109 24 16 69 25\n(ULOC) 48\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 1 107 6 1 100 6\n(ULOC) 86\n-------------------------------------------------------------------------------\nJSON 1 14 0 0 14 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nProperties File 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nShell 1 50 8 11 31 2\n(ULOC) 43\n-------------------------------------------------------------------------------\nSmarty Template 1 32 0 0 32 0\n(ULOC) 31\n───────────────────────────────────────────────────────────────────────────────\nTotal 34 2346 396 54 1896 51\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1296\nDRYness % 0.55\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $52,884\nEstimated Schedule Effort (organic) 4.50 months\nEstimated People Required (organic) 1.04\n───────────────────────────────────────────────────────────────────────────────\nProcessed 82644 bytes, 0.083 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "HCL": 22908, + "Dockerfile": 3768, + "Shell": 1804, + "Smarty": 901 + }, + "average_issue_resolution_time": [ + [ + "mac-fc-github-actions-runner-aws", + "404 days 24:40:23" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json index 497574d9d9..e6d14c011a 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-collector/mac-fc-security-hub-collector_data.json @@ -1,376 +1,376 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-collector", - "owner": "Enterprise-CMCS", - "name": "mac-fc-security-hub-collector", - "description": "Repo for security hub findings collector tool", - "commits_count": 88, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 30, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 27, - "closed_pull_requests_count": 3, - "forks_count": 1, - "stargazers_count": 5, - "watchers_count": 11, - "total_project_lines": 2144, - "average_project_lines": 69, - "total_project_comment_lines": 151, - "average_project_comment_lines": 5, - "total_project_blank_lines": 301, - "average_blank_lines": 10, - "commits_by_month": { - "2025/1": 2, - "2024/7": 2, - "2024/1": 1, - "2023/4": 4, - "2022/8": 2, - "2022/2": 1, - "2021/12": 2, - "2021/10": 4, - "2021/6": 12 + "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-collector", + "owner": "Enterprise-CMCS", + "name": "mac-fc-security-hub-collector", + "description": "Repo for security hub findings collector tool", + "commits_count": 88, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 30, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 27, + "closed_pull_requests_count": 3, + "forks_count": 1, + "stargazers_count": 5, + "watchers_count": 11, + "total_project_lines": 2144, + "average_project_lines": 69, + "total_project_comment_lines": 151, + "average_project_comment_lines": 5, + "total_project_blank_lines": 301, + "average_blank_lines": 10, + "commits_by_month": { + "2025/1": 2, + "2024/7": 2, + "2024/1": 1, + "2023/4": 4, + "2022/8": 2, + "2022/2": 1, + "2021/12": 2, + "2021/10": 4, + "2021/6": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-04-05T13:31:36Z", + "ossf_scorecard": { + "date": "2025-01-19T13:28:29Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-collector", + "commit": "52ff27870732f7b1f6f421ab340e00842f0af79e" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-04-05T13:31:36Z", - "ossf_scorecard": { - "date": "2025-01-19T13:28:29Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-collector", - "commit": "52ff27870732f7b1f6f421ab340e00842f0af79e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 3, - "reason": "5 out of 16 merged PRs checked by a CI test -- score normalized to 3", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 15/18 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 1, - "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Go", - "Bytes": 32514, - "CodeBytes": 0, - "Lines": 1049, - "Code": 873, - "Comment": 66, - "Blank": 110, - "Complexity": 172, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Terraform", - "Bytes": 12939, - "CodeBytes": 0, - "Lines": 482, - "Code": 350, - "Comment": 62, - "Blank": 70, - "Complexity": 4, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2134, - "CodeBytes": 0, - "Lines": 101, - "Code": 101, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5056, - "CodeBytes": 0, - "Lines": 185, - "Code": 155, - "Comment": 4, - "Blank": 26, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 8917, - "CodeBytes": 0, - "Lines": 223, - "Code": 156, - "Comment": 0, - "Blank": 67, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 912, - "CodeBytes": 0, - "Lines": 34, - "Code": 9, - "Comment": 17, - "Blank": 8, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 431, - "CodeBytes": 0, - "Lines": 13, - "Code": 11, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11336, - "CodeBytes": 0, - "Lines": 202, - "Code": 169, - "Comment": 0, - "Blank": 33, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 46306.05778336302, - "estimatedScheduleMonths_low": 4.431688119579195, - "estimatedPeople_low": 1.0179305021100649, - "estimatedCost_high": 144309.90044293797, - "estimatedScheduleMonths_high": 4.431688119579195, - "estimatedPeople_high": 1.0179305021100649, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGo 8 1049 110 66 873 172\n(ULOC) 524\n-------------------------------------------------------------------------------\nTerraform 8 482 70 62 350 4\n(ULOC) 242\n-------------------------------------------------------------------------------\nJSON 4 101 0 0 101 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nYAML 4 185 26 4 155 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nMarkdown 3 223 67 0 156 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nBASH 1 34 8 17 9 1\n(ULOC) 24\n-------------------------------------------------------------------------------\nDockerfile 1 13 2 0 11 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nLicense 1 202 33 0 169 0\n(ULOC) 168\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 30 2289 316 149 1824 177\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1277\nDRYness % 0.56\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $50,777\nEstimated Schedule Effort (organic) 4.43 months\nEstimated People Required (organic) 1.02\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 74239 bytes, 0.074 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "Go": 32514, - "HCL": 13531, - "Shell": 912, - "Dockerfile": 431 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 5.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 3, + "reason": "5 out of 16 merged PRs checked by a CI test -- score normalized to 3", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 15/18 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 1, + "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Go", + "Bytes": 32514, + "CodeBytes": 0, + "Lines": 1049, + "Code": 873, + "Comment": 66, + "Blank": 110, + "Complexity": 172, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Terraform", + "Bytes": 12939, + "CodeBytes": 0, + "Lines": 482, + "Code": 350, + "Comment": 62, + "Blank": 70, + "Complexity": 4, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2134, + "CodeBytes": 0, + "Lines": 101, + "Code": 101, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5056, + "CodeBytes": 0, + "Lines": 185, + "Code": 155, + "Comment": 4, + "Blank": 26, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 8917, + "CodeBytes": 0, + "Lines": 223, + "Code": 156, + "Comment": 0, + "Blank": 67, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 912, + "CodeBytes": 0, + "Lines": 34, + "Code": 9, + "Comment": 17, + "Blank": 8, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 431, + "CodeBytes": 0, + "Lines": 13, + "Code": 11, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11336, + "CodeBytes": 0, + "Lines": 202, + "Code": 169, + "Comment": 0, + "Blank": 33, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 46306.05778336302, + "estimatedScheduleMonths_low": 4.431688119579195, + "estimatedPeople_low": 1.0179305021100649, + "estimatedCost_high": 144309.90044293797, + "estimatedScheduleMonths_high": 4.431688119579195, + "estimatedPeople_high": 1.0179305021100649, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGo 8 1049 110 66 873 172\n(ULOC) 524\n-------------------------------------------------------------------------------\nTerraform 8 482 70 62 350 4\n(ULOC) 242\n-------------------------------------------------------------------------------\nJSON 4 101 0 0 101 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nYAML 4 185 26 4 155 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nMarkdown 3 223 67 0 156 0\n(ULOC) 148\n-------------------------------------------------------------------------------\nBASH 1 34 8 17 9 1\n(ULOC) 24\n-------------------------------------------------------------------------------\nDockerfile 1 13 2 0 11 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nLicense 1 202 33 0 169 0\n(ULOC) 168\n───────────────────────────────────────────────────────────────────────────────\nTotal 30 2289 316 149 1824 177\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1277\nDRYness % 0.56\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $50,777\nEstimated Schedule Effort (organic) 4.43 months\nEstimated People Required (organic) 1.02\n───────────────────────────────────────────────────────────────────────────────\nProcessed 74239 bytes, 0.074 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "Go": 32514, + "HCL": 13531, + "Shell": 912, + "Dockerfile": 431 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json index 38a49cb810..769a083182 100644 --- a/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json +++ b/app/site/_data/Enterprise-CMCS/mac-fc-security-hub-visibility/mac-fc-security-hub-visibility_data.json @@ -1,380 +1,380 @@ { - "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", - "owner": "Enterprise-CMCS", - "name": "mac-fc-security-hub-visibility", - "description": null, - "commits_count": 39, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 74, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 47, - "closed_pull_requests_count": 21, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "total_project_lines": 119890, - "average_project_lines": 8564, - "total_project_comment_lines": 4132, - "average_project_comment_lines": 295, - "total_project_blank_lines": 8555, - "average_blank_lines": 611, - "commits_by_month": { - "2024/12": 8, - "2024/8": 4, - "2024/7": 10, - "2024/6": 5, - "2024/5": 2, - "2024/3": 1 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-12-19T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", + "owner": "Enterprise-CMCS", + "name": "mac-fc-security-hub-visibility", + "description": null, + "commits_count": 39, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 74, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 47, + "closed_pull_requests_count": 21, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "total_project_lines": 119890, + "average_project_lines": 8564, + "total_project_comment_lines": 4132, + "average_project_comment_lines": 295, + "total_project_blank_lines": 8555, + "average_blank_lines": 611, + "commits_by_month": { + "2024/12": 8, + "2024/8": 4, + "2024/7": 10, + "2024/6": 5, + "2024/5": 2, + "2024/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2024-01-10T16:11:19Z", - "ossf_scorecard": { - "date": "2025-01-19T13:28:17Z", - "repo": { - "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", - "commit": "2d848daf353c7ff77378ec2bda1ee90b7bd791a5" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "25 out of 25 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 13/20 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 6, - "reason": "8 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 6", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 9, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 5300, - "CodeBytes": 0, - "Lines": 179, - "Code": 158, - "Comment": 4, - "Blank": 17, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1243, - "CodeBytes": 0, - "Lines": 51, - "Code": 51, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 4948060, - "CodeBytes": 0, - "Lines": 119564, - "Code": 106918, - "Comment": 4128, - "Blank": 8518, - "Complexity": 9380, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2188, - "CodeBytes": 0, - "Lines": 44, - "Code": 29, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 1914, - "CodeBytes": 0, - "Lines": 52, - "Code": 47, - "Comment": 0, - "Blank": 5, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3336406.968315081, - "estimatedScheduleMonths_low": 22.51504654777715, - "estimatedPeople_low": 14.436292684145918, - "estimatedCost_high": 10397701.30480985, - "estimatedScheduleMonths_high": 22.51504654777715, - "estimatedPeople_high": 14.436292684145918, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 6 179 17 4 158 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nJSON 3 51 0 0 51 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nJavaScript 2 119564 8518 4128 106918 9380\n(ULOC) 56029\n-------------------------------------------------------------------------------\nMarkdown 2 44 15 0 29 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nTypeScript 1 52 5 0 47 2\n(ULOC) 48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 119890 8555 4132 107203 9382\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 56268\nDRYness % 0.47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,658,580\nEstimated Schedule Effort (organic) 22.52 months\nEstimated People Required (organic) 14.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 4958705 bytes, 4.959 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-12-19T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2024-01-10T16:11:19Z", + "ossf_scorecard": { + "date": "2025-01-19T13:28:17Z", + "repo": { + "name": "github.com/Enterprise-CMCS/mac-fc-security-hub-visibility", + "commit": "2d848daf353c7ff77378ec2bda1ee90b7bd791a5" }, - "predominant_langs": { - "TypeScript": 1914 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "mac-fc-security-hub-visibility", - "57 days 03:39:58" - ] + "score": 5.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "25 out of 25 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 13/20 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 6, + "reason": "8 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 6", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 9, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 5300, + "CodeBytes": 0, + "Lines": 179, + "Code": 158, + "Comment": 4, + "Blank": 17, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1243, + "CodeBytes": 0, + "Lines": 51, + "Code": 51, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 4948060, + "CodeBytes": 0, + "Lines": 119564, + "Code": 106918, + "Comment": 4128, + "Blank": 8518, + "Complexity": 9380, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2188, + "CodeBytes": 0, + "Lines": 44, + "Code": 29, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 1914, + "CodeBytes": 0, + "Lines": 52, + "Code": 47, + "Comment": 0, + "Blank": 5, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3336406.968315081, + "estimatedScheduleMonths_low": 22.51504654777715, + "estimatedPeople_low": 14.436292684145918, + "estimatedCost_high": 10397701.30480985, + "estimatedScheduleMonths_high": 22.51504654777715, + "estimatedPeople_high": 14.436292684145918, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 6 179 17 4 158 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nJSON 3 51 0 0 51 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nJavaScript 2 119564 8518 4128 106918 9380\n(ULOC) 56029\n-------------------------------------------------------------------------------\nMarkdown 2 44 15 0 29 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nTypeScript 1 52 5 0 47 2\n(ULOC) 48\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 119890 8555 4132 107203 9382\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 56268\nDRYness % 0.47\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,658,580\nEstimated Schedule Effort (organic) 22.52 months\nEstimated People Required (organic) 14.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 4958705 bytes, 4.959 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1914 + }, + "average_issue_resolution_time": [ + [ + "mac-fc-security-hub-visibility", + "57 days 03:39:58" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@actions/core", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "@enterprise-cmcs/macpro-security-hub-sync", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "@vercel/ncc", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "eslint", + 0.3068493151, + "2025-01-01T18:40:24.000" + ], + [ + "eslint-config-prettier", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "eslint-plugin-prettier", + 0.0, + "2025-01-01T18:40:24.000" + ], + [ + "prettier", + 0.0, + "2025-01-01T18:40:24.000" ], - "repo_dependency_libyear_list": [ - [ - "@actions/core", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "@enterprise-cmcs/macpro-security-hub-sync", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "@vercel/ncc", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "eslint", - 0.3068493151, - "2025-01-01T18:40:24.000" - ], - [ - "eslint-config-prettier", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "prettier", - 0.0, - "2025-01-01T18:40:24.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:24.000" - ] + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:24.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json b/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json index 508102e854..db7ca8d4f7 100644 --- a/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json +++ b/app/site/_data/Enterprise-CMCS/macfc-security-scan-report/macfc-security-scan-report_data.json @@ -1,332 +1,332 @@ { - "url": "https://github.com/Enterprise-CMCS/macfc-security-scan-report", - "owner": "Enterprise-CMCS", - "name": "macfc-security-scan-report", - "description": null, - "commits_count": 245, - "issues_count": 4, - "open_issues_count": 4, - "closed_issues_count": 0, - "pull_requests_count": 45, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 28, - "closed_pull_requests_count": 12, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 5, - "total_project_lines": 11495, - "average_project_lines": 821, - "total_project_comment_lines": 1779, - "average_project_comment_lines": 127, - "total_project_blank_lines": 1746, - "average_blank_lines": 125, - "commits_by_month": { - "2024/9": 4, - "2024/4": 10, - "2024/3": 7, - "2024/2": 9 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macfc-security-scan-report", + "owner": "Enterprise-CMCS", + "name": "macfc-security-scan-report", + "description": null, + "commits_count": 245, + "issues_count": 4, + "open_issues_count": 4, + "closed_issues_count": 0, + "pull_requests_count": 45, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 28, + "closed_pull_requests_count": 12, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 5, + "total_project_lines": 11495, + "average_project_lines": 821, + "total_project_comment_lines": 1779, + "average_project_comment_lines": 127, + "total_project_blank_lines": 1746, + "average_blank_lines": 125, + "commits_by_month": { + "2024/9": 4, + "2024/4": 10, + "2024/3": 7, + "2024/2": 9 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-17T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-06-06T16:15:58Z", - "ossf_scorecard": { - "date": "2025-01-19T13:27:59Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macfc-security-scan-report", - "commit": "ba67c243db85dcea5186098258841735a44fe34e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "6 out of 6 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 9, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 4905, - "CodeBytes": 0, - "Lines": 177, - "Code": 162, - "Comment": 3, - "Blank": 12, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 501705, - "CodeBytes": 0, - "Lines": 10534, - "Code": 7192, - "Comment": 1776, - "Blank": 1566, - "Complexity": 1527, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 21173, - "CodeBytes": 0, - "Lines": 420, - "Code": 341, - "Comment": 0, - "Blank": 79, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 863, - "CodeBytes": 0, - "Lines": 27, - "Code": 27, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 17925, - "CodeBytes": 0, - "Lines": 337, - "Code": 248, - "Comment": 0, - "Blank": 89, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 217817.60132431585, - "estimatedScheduleMonths_low": 7.981824063254876, - "estimatedPeople_low": 2.658522427565319, - "estimatedCost_high": 678814.7785952318, - "estimatedScheduleMonths_high": 7.981824063254876, - "estimatedPeople_high": 2.658522427565319, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 7 177 12 3 162 0\n(ULOC) 131\n-------------------------------------------------------------------------------\nJavaScript 3 10534 1566 1776 7192 1527\n(ULOC) 5636\n-------------------------------------------------------------------------------\nMarkdown 2 420 79 0 341 0\n(ULOC) 224\n-------------------------------------------------------------------------------\nJSON 1 27 0 0 27 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nPlain Text 1 337 89 0 248 0\n(ULOC) 124\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 11495 1746 1779 7970 1527\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 6111\nDRYness % 0.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $238,850\nEstimated Schedule Effort (organic) 7.98 months\nEstimated People Required (organic) 2.66\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 546571 bytes, 0.547 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-09-18T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-06-06T16:15:58Z", + "ossf_scorecard": { + "date": "2025-01-19T13:27:59Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macfc-security-scan-report", + "commit": "ba67c243db85dcea5186098258841735a44fe34e" }, - "predominant_langs": { - "JavaScript": 20306 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 4.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "6 out of 6 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 9, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 4905, + "CodeBytes": 0, + "Lines": 177, + "Code": 162, + "Comment": 3, + "Blank": 12, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 501705, + "CodeBytes": 0, + "Lines": 10534, + "Code": 7192, + "Comment": 1776, + "Blank": 1566, + "Complexity": 1527, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 21173, + "CodeBytes": 0, + "Lines": 420, + "Code": 341, + "Comment": 0, + "Blank": 79, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 863, + "CodeBytes": 0, + "Lines": 27, + "Code": 27, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 17925, + "CodeBytes": 0, + "Lines": 337, + "Code": 248, + "Comment": 0, + "Blank": 89, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 217817.60132431585, + "estimatedScheduleMonths_low": 7.981824063254876, + "estimatedPeople_low": 2.658522427565319, + "estimatedCost_high": 678814.7785952318, + "estimatedScheduleMonths_high": 7.981824063254876, + "estimatedPeople_high": 2.658522427565319, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 7 177 12 3 162 0\n(ULOC) 131\n-------------------------------------------------------------------------------\nJavaScript 3 10534 1566 1776 7192 1527\n(ULOC) 5636\n-------------------------------------------------------------------------------\nMarkdown 2 420 79 0 341 0\n(ULOC) 224\n-------------------------------------------------------------------------------\nJSON 1 27 0 0 27 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nPlain Text 1 337 89 0 248 0\n(ULOC) 124\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 11495 1746 1779 7970 1527\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 6111\nDRYness % 0.53\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $238,850\nEstimated Schedule Effort (organic) 7.98 months\nEstimated People Required (organic) 2.66\n───────────────────────────────────────────────────────────────────────────────\nProcessed 546571 bytes, 0.547 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 20306 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json b/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json index 4748cf2e96..370b4391b7 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-appian-connector/macpro-appian-connector_data.json @@ -1,553 +1,553 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-appian-connector", - "owner": "Enterprise-CMCS", - "name": "macpro-appian-connector", - "description": "MACPro Platform team is working on building a Kafka Connector to stream data changes from Appian to Bigmac.", - "commits_count": 144, - "issues_count": 10, - "open_issues_count": 0, - "closed_issues_count": 10, - "pull_requests_count": 77, - "open_pull_requests_count": 11, - "merged_pull_requests_count": 54, - "closed_pull_requests_count": 12, - "forks_count": 0, - "stargazers_count": 3, - "watchers_count": 7, - "total_project_lines": 5864, - "average_project_lines": 54, - "total_project_comment_lines": 150, - "average_project_comment_lines": 1, - "total_project_blank_lines": 735, - "average_blank_lines": 7, - "commits_by_month": { - "2023/12": 2, - "2023/7": 3, - "2023/6": 2, - "2023/5": 1, - "2023/4": 4, - "2023/3": 18 + "url": "https://github.com/Enterprise-CMCS/macpro-appian-connector", + "owner": "Enterprise-CMCS", + "name": "macpro-appian-connector", + "description": "MACPro Platform team is working on building a Kafka Connector to stream data changes from Appian to Bigmac.", + "commits_count": 144, + "issues_count": 10, + "open_issues_count": 0, + "closed_issues_count": 10, + "pull_requests_count": 77, + "open_pull_requests_count": 11, + "merged_pull_requests_count": 54, + "closed_pull_requests_count": 12, + "forks_count": 0, + "stargazers_count": 3, + "watchers_count": 7, + "total_project_lines": 5864, + "average_project_lines": 54, + "total_project_comment_lines": 150, + "average_project_comment_lines": 1, + "total_project_blank_lines": 735, + "average_blank_lines": 7, + "commits_by_month": { + "2023/12": 2, + "2023/7": 3, + "2023/6": 2, + "2023/5": 1, + "2023/4": 4, + "2023/3": 18 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-12-12T21:16:45Z", + "ossf_scorecard": { + "date": "2025-01-19T13:29:45Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-appian-connector", + "commit": "c294d5670e6cab4d5c155710228797cd3da7e670" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-12-12T21:16:45Z", - "ossf_scorecard": { - "date": "2025-01-19T13:29:45Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-appian-connector", - "commit": "c294d5670e6cab4d5c155710228797cd3da7e670" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 4, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "1 out of 14 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 9/11 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "27 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 59069, - "CodeBytes": 0, - "Lines": 1261, - "Code": 906, - "Comment": 0, - "Blank": 355, - "Complexity": 0, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 44349, - "CodeBytes": 0, - "Lines": 1579, - "Code": 1428, - "Comment": 22, - "Blank": 129, - "Complexity": 79, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 32067, - "CodeBytes": 0, - "Lines": 1024, - "Code": 834, - "Comment": 70, - "Blank": 120, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 19430, - "CodeBytes": 0, - "Lines": 593, - "Code": 513, - "Comment": 29, - "Blank": 51, - "Complexity": 34, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 10180, - "CodeBytes": 0, - "Lines": 234, - "Code": 227, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 27158, - "CodeBytes": 0, - "Lines": 758, - "Code": 725, - "Comment": 2, - "Blank": 31, - "Complexity": 26, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 4628, - "CodeBytes": 0, - "Lines": 152, - "Code": 111, - "Comment": 19, - "Blank": 22, - "Complexity": 29, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 1439, - "CodeBytes": 0, - "Lines": 43, - "Code": 27, - "Comment": 8, - "Blank": 8, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5758, - "CodeBytes": 0, - "Lines": 179, - "Code": 177, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 85, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 132911.01245407187, - "estimatedScheduleMonths_low": 6.615763762363063, - "estimatedPeople_low": 1.9571787212398326, - "estimatedCost_high": 414208.7643208614, - "estimatedScheduleMonths_high": 6.615763762363063, - "estimatedPeople_high": 1.9571787212398326, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 28 1261 355 0 906 0\n(ULOC) 512\n-------------------------------------------------------------------------------\nTypeScript 28 1579 129 22 1428 79\n(ULOC) 1049\n-------------------------------------------------------------------------------\nYAML 19 1024 120 70 834 0\n(ULOC) 567\n-------------------------------------------------------------------------------\nJavaScript 11 593 51 29 513 34\n(ULOC) 354\n-------------------------------------------------------------------------------\nJSON 10 234 7 0 227 0\n(ULOC) 185\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 4 758 31 2 725 26\n(ULOC) 477\n-------------------------------------------------------------------------------\nShell 2 152 22 19 111 29\n(ULOC) 105\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 179 2 0 177 0\n(ULOC) 95\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 108 5864 735 150 4979 177\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3353\nDRYness % 0.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $145,745\nEstimated Schedule Effort (organic) 6.62 months\nEstimated People Required (organic) 1.96\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 205618 bytes, 0.206 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 19260, - "TypeScript": 16670, - "Shell": 1969 - }, - "average_issue_resolution_time": [ - [ - "macpro-appian-connector", - "16 days 29:08:11.3" - ] + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 4, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "1 out of 14 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 9/11 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "27 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 59069, + "CodeBytes": 0, + "Lines": 1261, + "Code": 906, + "Comment": 0, + "Blank": 355, + "Complexity": 0, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 44349, + "CodeBytes": 0, + "Lines": 1579, + "Code": 1428, + "Comment": 22, + "Blank": 129, + "Complexity": 79, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 32067, + "CodeBytes": 0, + "Lines": 1024, + "Code": 834, + "Comment": 70, + "Blank": 120, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 19430, + "CodeBytes": 0, + "Lines": 593, + "Code": 513, + "Comment": 29, + "Blank": 51, + "Complexity": 34, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 10180, + "CodeBytes": 0, + "Lines": 234, + "Code": 227, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 27158, + "CodeBytes": 0, + "Lines": 758, + "Code": 725, + "Comment": 2, + "Blank": 31, + "Complexity": 26, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 4628, + "CodeBytes": 0, + "Lines": 152, + "Code": 111, + "Comment": 19, + "Blank": 22, + "Complexity": 29, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 1439, + "CodeBytes": 0, + "Lines": 43, + "Code": 27, + "Comment": 8, + "Blank": 8, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5758, + "CodeBytes": 0, + "Lines": 179, + "Code": 177, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 85, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 132911.01245407187, + "estimatedScheduleMonths_low": 6.615763762363063, + "estimatedPeople_low": 1.9571787212398326, + "estimatedCost_high": 414208.7643208614, + "estimatedScheduleMonths_high": 6.615763762363063, + "estimatedPeople_high": 1.9571787212398326, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 28 1261 355 0 906 0\n(ULOC) 512\n-------------------------------------------------------------------------------\nTypeScript 28 1579 129 22 1428 79\n(ULOC) 1049\n-------------------------------------------------------------------------------\nYAML 19 1024 120 70 834 0\n(ULOC) 567\n-------------------------------------------------------------------------------\nJavaScript 11 593 51 29 513 34\n(ULOC) 354\n-------------------------------------------------------------------------------\nJSON 10 234 7 0 227 0\n(ULOC) 185\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 4 758 31 2 725 26\n(ULOC) 477\n-------------------------------------------------------------------------------\nShell 2 152 22 19 111 29\n(ULOC) 105\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 179 2 0 177 0\n(ULOC) 95\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 108 5864 735 150 4979 177\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3353\nDRYness % 0.57\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $145,745\nEstimated Schedule Effort (organic) 6.62 months\nEstimated People Required (organic) 1.96\n───────────────────────────────────────────────────────────────────────────────\nProcessed 205618 bytes, 0.206 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 19260, + "TypeScript": 16670, + "Shell": 1969 + }, + "average_issue_resolution_time": [ + [ + "macpro-appian-connector", + "16 days 29:08:11.3" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/macpro-security-hub-sync", + 0.1698630137, + "2025-01-01T18:40:53.000" + ], + [ + "@enterprise-cmcs/macpro-serverless-running-stages", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@stratiformdigital/serverless-iam-helper", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@stratiformdigital/serverless-idempotency-helper", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@stratiformdigital/serverless-online", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@stratiformdigital/serverless-s3-security-helper", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@vitest/coverage-c8", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@vitest/ui", + 1.1671232877, + "2025-01-01T18:40:53.000" + ], + [ + "aws-sdk-client-mock", + 1.304109589, + "2025-01-01T18:40:53.000" + ], + [ + "prettier", + 2.4712328767, + "2025-01-01T18:40:53.000" + ], + [ + "semantic-release", + 2.1753424658, + "2025-01-01T18:40:53.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-disable-functions", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-plugin-warmup", + 1.3561643836, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:40:53.000" ], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/macpro-security-hub-sync", - 0.1698630137, - "2025-01-01T18:40:53.000" - ], - [ - "@enterprise-cmcs/macpro-serverless-running-stages", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@stratiformdigital/serverless-iam-helper", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@stratiformdigital/serverless-idempotency-helper", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@stratiformdigital/serverless-online", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@stratiformdigital/serverless-s3-security-helper", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@vitest/coverage-c8", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@vitest/ui", - 1.1671232877, - "2025-01-01T18:40:53.000" - ], - [ - "aws-sdk-client-mock", - 1.304109589, - "2025-01-01T18:40:53.000" - ], - [ - "prettier", - 2.4712328767, - "2025-01-01T18:40:53.000" - ], - [ - "semantic-release", - 2.1753424658, - "2025-01-01T18:40:53.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-disable-functions", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-plugin-warmup", - 1.3561643836, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "vitest", - 1.1780821918, - "2025-01-01T18:40:53.000" - ] + [ + "vitest", + 1.1780821918, + "2025-01-01T18:40:53.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json b/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json index 912a429d4f..11316d65ea 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-auth/macpro-auth_data.json @@ -1,304 +1,304 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-auth", - "owner": "Enterprise-CMCS", - "name": "macpro-auth", - "description": "An npm package that will bootstrap new applications with IDM authentication", - "commits_count": 12, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 42, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 35, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 6, - "total_project_lines": 369, - "average_project_lines": 34, - "total_project_comment_lines": 11, - "average_project_comment_lines": 1, - "total_project_blank_lines": 65, - "average_blank_lines": 6, - "commits_by_month": { - "2023/1": 11, - "2022/12": 1 + "url": "https://github.com/Enterprise-CMCS/macpro-auth", + "owner": "Enterprise-CMCS", + "name": "macpro-auth", + "description": "An npm package that will bootstrap new applications with IDM authentication", + "commits_count": 12, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 42, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 35, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 6, + "total_project_lines": 369, + "average_project_lines": 34, + "total_project_comment_lines": 11, + "average_project_comment_lines": 1, + "total_project_blank_lines": 65, + "average_blank_lines": 6, + "commits_by_month": { + "2023/1": 11, + "2022/12": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2022-12-22T20:07:38Z", + "ossf_scorecard": { + "date": "2025-01-19T13:32:11Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-auth", + "commit": "b85736a39ee9be4525ed7728be3224f9be809fb1" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2022-12-22T20:07:38Z", - "ossf_scorecard": { - "date": "2025-01-19T13:32:11Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-auth", - "commit": "b85736a39ee9be4525ed7728be3224f9be809fb1" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 2/4 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "11 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 3438, - "CodeBytes": 0, - "Lines": 122, - "Code": 74, - "Comment": 0, - "Blank": 48, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 12559, - "CodeBytes": 0, - "Lines": 157, - "Code": 151, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1451, - "CodeBytes": 0, - "Lines": 56, - "Code": 43, - "Comment": 11, - "Blank": 2, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1373, - "CodeBytes": 0, - "Lines": 34, - "Code": 25, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6788.483004543454, - "estimatedScheduleMonths_low": 2.1364880156586867, - "estimatedPeople_low": 0.3095435664276062, - "estimatedCost_high": 21155.87794425057, - "estimatedScheduleMonths_high": 2.1364880156586867, - "estimatedPeople_high": 0.3095435664276062, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 6 122 48 0 74 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nJSON 2 157 6 0 151 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nYAML 2 56 2 11 43 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 34 9 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 11 369 65 11 293 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 271\nDRYness % 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,443\nEstimated Schedule Effort (organic) 2.14 months\nEstimated People Required (organic) 0.31\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 18821 bytes, 0.019 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 2/4 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "11 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 3438, + "CodeBytes": 0, + "Lines": 122, + "Code": 74, + "Comment": 0, + "Blank": 48, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 12559, + "CodeBytes": 0, + "Lines": 157, + "Code": 151, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1451, + "CodeBytes": 0, + "Lines": 56, + "Code": 43, + "Comment": 11, + "Blank": 2, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1373, + "CodeBytes": 0, + "Lines": 34, + "Code": 25, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 6788.483004543454, + "estimatedScheduleMonths_low": 2.1364880156586867, + "estimatedPeople_low": 0.3095435664276062, + "estimatedCost_high": 21155.87794425057, + "estimatedScheduleMonths_high": 2.1364880156586867, + "estimatedPeople_high": 0.3095435664276062, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 6 122 48 0 74 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nJSON 2 157 6 0 151 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nYAML 2 56 2 11 43 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 34 9 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 11 369 65 11 293 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 271\nDRYness % 0.73\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,443\nEstimated Schedule Effort (organic) 2.14 months\nEstimated People Required (organic) 0.31\n───────────────────────────────────────────────────────────────────────────────\nProcessed 18821 bytes, 0.019 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json b/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json index 06ab6be29d..19615c9fa5 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mako/macpro-mako_data.json @@ -1,926 +1,926 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mako", - "owner": "Enterprise-CMCS", - "name": "macpro-mako", - "description": "The macpro-mako project, a.k.a. MAKO, a.k.a. Micro, is a redesign of MACPRO Onemac. The mission to be a modern submission and review portal for select CMS data remains the same, but the architecture is different in some important ways.", - "commits_count": 1708, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1042, - "open_pull_requests_count": 12, - "merged_pull_requests_count": 848, - "closed_pull_requests_count": 182, - "forks_count": 3, - "stargazers_count": 9, - "watchers_count": 7, - "total_project_lines": 86173, - "average_project_lines": 99, - "total_project_comment_lines": 3592, - "average_project_comment_lines": 4, - "total_project_blank_lines": 4934, - "average_blank_lines": 6, - "commits_by_month": { - "2025/1": 30 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-30T00:00:00.000Z", - 1 - ], - [ - "2024-12-31T00:00:00.000Z", - 3 - ] - ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-08-16T00:00:00.000Z", - 3 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ], - [ - "2024-09-10T00:00:00.000Z", - 2 - ], - [ - "2024-10-22T00:00:00.000Z", - 1 - ], - [ - "2024-11-07T00:00:00.000Z", - 1 - ], - [ - "2024-11-15T00:00:00.000Z", - 1 - ], - [ - "2024-11-18T00:00:00.000Z", - 1 - ], - [ - "2024-12-10T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-01-23T21:43:54Z", - "ossf_scorecard": { - "date": "2025-01-19T13:23:58Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mako", - "commit": "8181a1c9d5fad3298be40dfbf76602665a3ef6c2" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 2817593, - "CodeBytes": 0, - "Lines": 79891, - "Code": 71566, - "Comment": 3156, - "Blank": 5169, - "Complexity": 3640, - "Count": 888, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 34167, - "CodeBytes": 0, - "Lines": 1213, - "Code": 1206, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 16766, - "CodeBytes": 0, - "Lines": 591, - "Code": 504, - "Comment": 11, - "Blank": 76, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 62736, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 5567, - "CodeBytes": 0, - "Lines": 208, - "Code": 166, - "Comment": 2, - "Blank": 40, - "Complexity": 27, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5510, - "CodeBytes": 0, - "Lines": 182, - "Code": 167, - "Comment": 9, - "Blank": 6, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 3420, - "CodeBytes": 0, - "Lines": 82, - "Code": 62, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 999, - "CodeBytes": 0, - "Lines": 36, - "Code": 20, - "Comment": 8, - "Blank": 8, - "Complexity": 5, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 2847, - "CodeBytes": 0, - "Lines": 148, - "Code": 114, - "Comment": 0, - "Blank": 34, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 349, - "CodeBytes": 0, - "Lines": 22, - "Code": 11, - "Comment": 6, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 360, - "CodeBytes": 0, - "Lines": 10, - "Code": 10, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 976, - "CodeBytes": 0, - "Lines": 30, - "Code": 29, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 70, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2257042.0655408823, - "estimatedScheduleMonths_low": 19.407602564290517, - "estimatedPeople_low": 11.329670287716198, - "estimatedCost_high": 7033928.850033767, - "estimatedScheduleMonths_high": 19.407602564290517, - "estimatedPeople_high": 11.329670287716198, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 888 79891 5169 3156 71566 3640\n(ULOC) 29557\n-------------------------------------------------------------------------------\nJSON 28 1213 7 0 1206 0\n(ULOC) 572\n-------------------------------------------------------------------------------\nYAML 12 591 76 11 504 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nSVG 4 4 0 0 4 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 4 208 40 2 166 27\n(ULOC) 143\n-------------------------------------------------------------------------------\nJavaScript 3 182 6 9 167 0\n(ULOC) 144\n-------------------------------------------------------------------------------\nMarkdown 2 82 20 0 62 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nBASH 1 36 8 8 20 5\n(ULOC) 23\n-------------------------------------------------------------------------------\nCSS 1 148 34 0 114 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nDocker ignore 1 22 5 6 11 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nDockerfile 1 10 0 0 10 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nHTML 1 30 1 0 29 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 948 82451 5375 3192 73884 3672\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 30920\nDRYness % 0.38\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,474,988\nEstimated Schedule Effort (organic) 19.41 months\nEstimated People Required (organic) 11.33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2952687 bytes, 2.953 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-mako", + "owner": "Enterprise-CMCS", + "name": "macpro-mako", + "description": "The macpro-mako project, a.k.a. MAKO, a.k.a. Micro, is a redesign of MACPRO Onemac. The mission to be a modern submission and review portal for select CMS data remains the same, but the architecture is different in some important ways.", + "commits_count": 1708, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1042, + "open_pull_requests_count": 12, + "merged_pull_requests_count": 848, + "closed_pull_requests_count": 182, + "forks_count": 3, + "stargazers_count": 9, + "watchers_count": 7, + "total_project_lines": 86173, + "average_project_lines": 99, + "total_project_comment_lines": 3592, + "average_project_comment_lines": 4, + "total_project_blank_lines": 4934, + "average_blank_lines": 6, + "commits_by_month": { + "2025/1": 30 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-30T00:00:00.000Z", + 1 + ], + [ + "2024-12-31T00:00:00.000Z", + 3 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-08-16T00:00:00.000Z", + 3 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-09-06T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ], + [ + "2024-09-10T00:00:00.000Z", + 2 + ], + [ + "2024-10-22T00:00:00.000Z", + 1 + ], + [ + "2024-11-07T00:00:00.000Z", + 1 + ], + [ + "2024-11-15T00:00:00.000Z", + 1 + ], + [ + "2024-11-18T00:00:00.000Z", + 1 + ], + [ + "2024-12-10T00:00:00.000Z", + 1 + ], + [ + "2024-12-17T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-01-23T21:43:54Z", + "ossf_scorecard": { + "date": "2025-01-19T13:23:58Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mako", + "commit": "8181a1c9d5fad3298be40dfbf76602665a3ef6c2" }, - "predominant_langs": { - "TypeScript": 2904002, - "JavaScript": 6898, - "CSS": 2847, - "Shell": 1624, - "HTML": 976, - "Dockerfile": 360 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@anatine/zod-mock", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@aws-sdk/client-cloudformation", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@aws-sdk/client-secrets-manager", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@aws-sdk/client-sqs", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@aws-sdk/credential-providers", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@enterprise-cmcs/macpro-serverless-running-stages", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@eslint/compat", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@eslint/js", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@eslint/js", - 0.1123287671, - "2024-10-16T21:33:14.000" - ], - [ - "@faker-js/faker", - 0.6328767123, - "2024-10-16T21:33:14.000" - ], - [ - "@faker-js/faker", - 0.8164383562, - "2025-01-01T23:28:24.000" - ], - [ - "@react-email/components", - 0.2684931507, - "2025-01-01T23:28:24.000" - ], - [ - "@semantic-release/changelog", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@semantic-release/git", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@serverless/compose", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@stratiformdigital/serverless-iam-helper", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@stratiformdigital/serverless-online", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@stratiformdigital/serverless-s3-security-helper", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "@testing-library/react", - 0.1424657534, - "2024-08-04T17:40:59.000" - ], - [ - "@types/aws-lambda", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@types/html-to-text", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@types/jest", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@types/luxon", - 0.0, - "2024-10-16T21:33:14.000" - ], - [ - "@types/node", - 0.098630137, - "2025-01-01T23:28:24.000" - ], - [ - "@types/node", - 0.3397260274, - "2024-10-16T21:33:14.000" - ], - [ - "@types/uuid", - 0.4, - "2024-08-04T17:40:59.000" - ], - [ - "@vitest/coverage-c8", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@vitest/coverage-istanbul", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@vitest/coverage-v8", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "@vitest/ui", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "aws-cdk", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "aws-cdk", - 0.1342465753, - "2024-10-16T21:33:14.000" - ], - [ - "aws-cdk-lib", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "aws-sdk-client-mock", - 0.9342465753, - "2024-08-04T17:40:59.000" - ], - [ - "cdk", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "cdk-serverless-clamscan", - 0.0, - "2024-10-16T21:33:14.000" - ], - [ - "constructs", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "esbuild", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "eslint", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "eslint-plugin-react-hooks", - 0.4575342466, - "2024-10-16T21:33:14.000" - ], - [ - "eslint-plugin-react-hooks", - 0.6109589041, - "2025-01-01T23:28:24.000" - ], - [ - "globals", - 0.1863013699, - "2024-10-16T21:33:14.000" - ], - [ - "globals", - 0.3808219178, - "2025-01-01T23:28:24.000" - ], - [ - "happy-dom", - 0.1561643836, - "2025-01-01T23:28:24.000" - ], - [ - "jest", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "luxon", - 0.0, - "2024-10-16T21:33:14.000" - ], - [ - "msw", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "npm-run-all", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "prettier", - 0.4383561644, - "2024-08-04T17:40:59.000" - ], - [ - "react-email", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "semantic-release", - 0.7068493151, - "2024-08-04T17:40:59.000" - ], - [ - "semantic-release", - 1.0328767123, - "2024-10-16T21:33:14.000" - ], - [ - "semantic-release", - 1.1095890411, - "2025-01-01T23:28:24.000" - ], - [ - "serverless", - 0.1589041096, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-disable-functions", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-esbuild", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-plugin-typescript", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-plugin-warmup", - 1.3561643836, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-scriptable-plugin", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2024-08-04T17:40:59.000" - ], - [ - "source-map-support", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "ts-jest", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "ts-node", - 0.0, - "2025-01-01T23:28:24.000" - ], - [ - "tsx", - 0.2273972603, - "2024-10-16T21:33:14.000" - ], - [ - "tsx", - 0.3479452055, - "2025-01-01T23:28:24.000" - ], - [ - "turbo", - -0.0630136986, - "2025-01-01T23:28:24.000" - ], - [ - "turbo", - -0.0465753425, - "2024-10-16T21:33:14.000" - ], - [ - "turbo", - 1.1917808219, - "2024-08-04T17:40:59.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T23:28:24.000" - ], - [ - "typescript", - 0.495890411, - "2024-10-16T21:33:14.000" - ], - [ - "typescript-eslint", - -0.0054794521, - "2024-10-16T21:33:14.000" - ], - [ - "typescript-eslint", - 0.202739726, - "2025-01-01T23:28:24.000" - ], - [ - "uuid", - 0.7424657534, - "2024-08-04T17:40:59.000" - ], - [ - "vitest", - 0.0, - "2024-10-16T21:33:14.000" - ], - [ - "vitest", - 0.0383561644, - "2025-01-01T23:28:24.000" - ] + "score": 6.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 2906832, + "CodeBytes": 0, + "Lines": 82799, + "Code": 74253, + "Comment": 3221, + "Blank": 5325, + "Complexity": 3739, + "Count": 907, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 34247, + "CodeBytes": 0, + "Lines": 1216, + "Code": 1209, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 16766, + "CodeBytes": 0, + "Lines": 591, + "Code": 504, + "Comment": 11, + "Blank": 76, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 62736, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 5567, + "CodeBytes": 0, + "Lines": 208, + "Code": 166, + "Comment": 2, + "Blank": 40, + "Complexity": 27, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5510, + "CodeBytes": 0, + "Lines": 182, + "Code": 167, + "Comment": 9, + "Blank": 6, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 3420, + "CodeBytes": 0, + "Lines": 82, + "Code": 62, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 999, + "CodeBytes": 0, + "Lines": 36, + "Code": 20, + "Comment": 8, + "Blank": 8, + "Complexity": 5, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 2847, + "CodeBytes": 0, + "Lines": 148, + "Code": 114, + "Comment": 0, + "Blank": 34, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 349, + "CodeBytes": 0, + "Lines": 22, + "Code": 11, + "Comment": 6, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 360, + "CodeBytes": 0, + "Lines": 10, + "Code": 10, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 976, + "CodeBytes": 0, + "Lines": 30, + "Code": 29, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 70, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2343403.824283701, + "estimatedScheduleMonths_low": 19.68651004497125, + "estimatedPeople_low": 11.596526094868704, + "estimatedCost_high": 7303069.809183412, + "estimatedScheduleMonths_high": 19.68651004497125, + "estimatedPeople_high": 11.596526094868704, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 907 82799 5325 3221 74253 3739\n(ULOC) 30559\n-------------------------------------------------------------------------------\nJSON 28 1216 7 0 1209 0\n(ULOC) 574\n-------------------------------------------------------------------------------\nYAML 12 591 76 11 504 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nSVG 4 4 0 0 4 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 4 208 40 2 166 27\n(ULOC) 143\n-------------------------------------------------------------------------------\nJavaScript 3 182 6 9 167 0\n(ULOC) 144\n-------------------------------------------------------------------------------\nMarkdown 2 82 20 0 62 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nBASH 1 36 8 8 20 5\n(ULOC) 23\n-------------------------------------------------------------------------------\nCSS 1 148 34 0 114 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nDocker ignore 1 22 5 6 11 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nDockerfile 1 10 0 0 10 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nHTML 1 30 1 0 29 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 967 85362 5531 3257 76574 3771\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 31924\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,569,689\nEstimated Schedule Effort (organic) 19.69 months\nEstimated People Required (organic) 11.60\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3042006 bytes, 3.042 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 2904002, + "JavaScript": 6898, + "CSS": 2847, + "Shell": 1624, + "HTML": 976, + "Dockerfile": 360 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@anatine/zod-mock", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@aws-sdk/client-cloudformation", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@aws-sdk/client-secrets-manager", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@aws-sdk/client-sqs", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@aws-sdk/credential-providers", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@enterprise-cmcs/macpro-serverless-running-stages", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@eslint/compat", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@eslint/js", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@eslint/js", + 0.1123287671, + "2024-10-16T21:33:14.000" + ], + [ + "@faker-js/faker", + 0.6328767123, + "2024-10-16T21:33:14.000" + ], + [ + "@faker-js/faker", + 0.8164383562, + "2025-01-01T23:28:24.000" + ], + [ + "@react-email/components", + 0.2684931507, + "2025-01-01T23:28:24.000" + ], + [ + "@semantic-release/changelog", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@semantic-release/git", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@serverless/compose", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@stratiformdigital/serverless-iam-helper", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@stratiformdigital/serverless-online", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@stratiformdigital/serverless-s3-security-helper", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "@testing-library/react", + 0.1424657534, + "2024-08-04T17:40:59.000" + ], + [ + "@types/aws-lambda", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@types/html-to-text", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@types/jest", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@types/luxon", + 0.0, + "2024-10-16T21:33:14.000" + ], + [ + "@types/node", + 0.098630137, + "2025-01-01T23:28:24.000" + ], + [ + "@types/node", + 0.3397260274, + "2024-10-16T21:33:14.000" + ], + [ + "@types/uuid", + 0.4, + "2024-08-04T17:40:59.000" + ], + [ + "@vitest/coverage-c8", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@vitest/coverage-istanbul", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@vitest/coverage-v8", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "@vitest/ui", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "aws-cdk", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "aws-cdk", + 0.1342465753, + "2024-10-16T21:33:14.000" + ], + [ + "aws-cdk-lib", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "aws-sdk-client-mock", + 0.9342465753, + "2024-08-04T17:40:59.000" + ], + [ + "cdk", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "cdk-serverless-clamscan", + 0.0, + "2024-10-16T21:33:14.000" + ], + [ + "constructs", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "esbuild", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "eslint", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "eslint-plugin-react-hooks", + 0.4575342466, + "2024-10-16T21:33:14.000" + ], + [ + "eslint-plugin-react-hooks", + 0.6109589041, + "2025-01-01T23:28:24.000" + ], + [ + "globals", + 0.1863013699, + "2024-10-16T21:33:14.000" + ], + [ + "globals", + 0.3808219178, + "2025-01-01T23:28:24.000" + ], + [ + "happy-dom", + 0.1561643836, + "2025-01-01T23:28:24.000" + ], + [ + "jest", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "luxon", + 0.0, + "2024-10-16T21:33:14.000" + ], + [ + "msw", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "npm-run-all", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "prettier", + 0.4383561644, + "2024-08-04T17:40:59.000" + ], + [ + "react-email", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "semantic-release", + 0.7068493151, + "2024-08-04T17:40:59.000" + ], + [ + "semantic-release", + 1.0328767123, + "2024-10-16T21:33:14.000" + ], + [ + "semantic-release", + 1.1095890411, + "2025-01-01T23:28:24.000" + ], + [ + "serverless", + 0.1589041096, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-disable-functions", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-esbuild", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-plugin-typescript", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-plugin-warmup", + 1.3561643836, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-scriptable-plugin", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2024-08-04T17:40:59.000" + ], + [ + "source-map-support", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "ts-jest", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "ts-node", + 0.0, + "2025-01-01T23:28:24.000" + ], + [ + "tsx", + 0.2273972603, + "2024-10-16T21:33:14.000" + ], + [ + "tsx", + 0.3479452055, + "2025-01-01T23:28:24.000" + ], + [ + "turbo", + -0.0630136986, + "2025-01-01T23:28:24.000" + ], + [ + "turbo", + -0.0465753425, + "2024-10-16T21:33:14.000" + ], + [ + "turbo", + 1.1917808219, + "2024-08-04T17:40:59.000" + ], + [ + "typescript", + -0.1095890411, + "2025-01-01T23:28:24.000" + ], + [ + "typescript", + 0.495890411, + "2024-10-16T21:33:14.000" + ], + [ + "typescript-eslint", + -0.0054794521, + "2024-10-16T21:33:14.000" + ], + [ + "typescript-eslint", + 0.202739726, + "2025-01-01T23:28:24.000" + ], + [ + "uuid", + 0.7424657534, + "2024-08-04T17:40:59.000" + ], + [ + "vitest", + 0.0, + "2024-10-16T21:33:14.000" + ], + [ + "vitest", + 0.0383561644, + "2025-01-01T23:28:24.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json index a5e14f3c23..062143a491 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-carts/macpro-mdct-carts_data.json @@ -1,920 +1,920 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-carts", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-carts", - "description": "CARTS is the CMCS MDCT application for collecting state data related to coverage of CHIP state plans on an annual basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 4053, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1754, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 1385, - "closed_pull_requests_count": 364, - "forks_count": 1, - "stargazers_count": 4, - "watchers_count": 11, - "total_project_lines": 114340, - "average_project_lines": 264, - "total_project_comment_lines": 1632, - "average_project_comment_lines": 4, - "total_project_blank_lines": 3398, - "average_blank_lines": 8, - "commits_by_month": { - "2025/1": 7, - "2024/12": 16, - "2024/11": 7 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-08-21T00:00:00.000Z", - 1 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ], - [ - "2024-10-09T00:00:00.000Z", - 1 - ], - [ - "2024-10-21T00:00:00.000Z", - 1 - ], - [ - "2024-12-13T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "created_at": "2019-12-06T19:56:57Z", - "ossf_scorecard": { - "date": "2025-01-19T13:26:49Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-carts", - "commit": "ab739a36a7b4d2c97cb06110626cf95955e3a46c" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 25/30 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 13 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "22 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSX", - "Bytes": 306041, - "CodeBytes": 0, - "Lines": 10329, - "Code": 8879, - "Comment": 417, - "Blank": 1033, - "Complexity": 276, - "Count": 123, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 240184, - "CodeBytes": 0, - "Lines": 8568, - "Code": 6931, - "Comment": 810, - "Blank": 827, - "Complexity": 363, - "Count": 99, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 383019, - "CodeBytes": 0, - "Lines": 307, - "Code": 305, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 57, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 125254, - "CodeBytes": 0, - "Lines": 4435, - "Code": 3807, - "Comment": 210, - "Blank": 418, - "Complexity": 251, - "Count": 49, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5745080, - "CodeBytes": 0, - "Lines": 116993, - "Code": 116989, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 51114, - "CodeBytes": 0, - "Lines": 901, - "Code": 602, - "Comment": 0, - "Blank": 299, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 41801, - "CodeBytes": 0, - "Lines": 2188, - "Code": 1797, - "Comment": 57, - "Blank": 334, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 35564, - "CodeBytes": 0, - "Lines": 963, - "Code": 866, - "Comment": 36, - "Blank": 61, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15465, - "CodeBytes": 0, - "Lines": 487, - "Code": 345, - "Comment": 58, - "Blank": 84, - "Complexity": 73, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 62173, - "CodeBytes": 0, - "Lines": 1750, - "Code": 1693, - "Comment": 10, - "Blank": 47, - "Complexity": 132, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1176, - "CodeBytes": 0, - "Lines": 31, - "Code": 24, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2599, - "CodeBytes": 0, - "Lines": 48, - "Code": 47, - "Comment": 0, - "Blank": 1, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2405, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 2678, - "CodeBytes": 0, - "Lines": 80, - "Code": 58, - "Comment": 17, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "ReStructuredText", - "Bytes": 59263, - "CodeBytes": 0, - "Lines": 1200, - "Code": 896, - "Comment": 0, - "Blank": 304, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 38, - "CodeBytes": 0, - "Lines": 1, - "Code": 0, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 326, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4525050.34839048, - "estimatedScheduleMonths_low": 25.27922292364124, - "estimatedPeople_low": 17.43850314862373, - "estimatedCost_high": 14102033.222748818, - "estimatedScheduleMonths_high": 25.27922292364124, - "estimatedPeople_high": 17.43850314862373, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSX 123 10329 1033 417 8879 276\n(ULOC) 5062\n-------------------------------------------------------------------------------\nJavaScript 99 8568 827 810 6931 363\n(ULOC) 4064\n-------------------------------------------------------------------------------\nSVG 57 307 0 2 305 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nTypeScript 49 4435 418 210 3807 251\n(ULOC) 2052\n-------------------------------------------------------------------------------\nJSON 31 116993 4 0 116989 0\n(ULOC) 8916\n-------------------------------------------------------------------------------\nMarkdown 16 901 299 0 602 0\n(ULOC) 481\n-------------------------------------------------------------------------------\nSass 15 2188 334 57 1797 0\n(ULOC) 1049\n-------------------------------------------------------------------------------\nYAML 15 963 61 36 866 0\n(ULOC) 606\n-------------------------------------------------------------------------------\nShell 12 487 84 58 345 73\n(ULOC) 313\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1750 47 10 1693 132\n(ULOC) 972\n-------------------------------------------------------------------------------\nPlain Text 2 31 7 0 24 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nSmarty Template 2 48 1 0 47 1\n(ULOC) 41\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 80 5 17 58 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nReStructuredText 1 1200 304 0 896 0\n(ULOC) 626\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 433 148373 3438 1634 143301 1105\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 23960\nDRYness % 0.16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,962,002\nEstimated Schedule Effort (organic) 25.28 months\nEstimated People Required (organic) 17.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7074219 bytes, 7.074 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-carts", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-carts", + "description": "CARTS is the CMCS MDCT application for collecting state data related to coverage of CHIP state plans on an annual basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 4053, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1754, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 1385, + "closed_pull_requests_count": 364, + "forks_count": 1, + "stargazers_count": 4, + "watchers_count": 11, + "total_project_lines": 114340, + "average_project_lines": 264, + "total_project_comment_lines": 1632, + "average_project_comment_lines": 4, + "total_project_blank_lines": 3398, + "average_blank_lines": 8, + "commits_by_month": { + "2025/1": 7, + "2024/12": 16, + "2024/11": 7 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-08-21T00:00:00.000Z", + 1 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-08-30T00:00:00.000Z", + 1 + ], + [ + "2024-10-09T00:00:00.000Z", + 1 + ], + [ + "2024-10-21T00:00:00.000Z", + 1 + ], + [ + "2024-12-13T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "created_at": "2019-12-06T19:56:57Z", + "ossf_scorecard": { + "date": "2025-01-19T13:26:49Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-carts", + "commit": "ab739a36a7b4d2c97cb06110626cf95955e3a46c" }, - "predominant_langs": { - "JavaScript": 546225, - "TypeScript": 125714, - "SCSS": 41801, - "Shell": 8664, - "HTML": 2678, - "Smarty": 2599 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "@types/dotenv", - 0.0, - "2024-06-08T15:59:49.000" - ], - [ - "@types/flat", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:40:22.000" - ], - [ - "@types/node", - 0.0, - "2024-06-18T20:35:24.000" - ], - [ - "@types/node", - 0.0136986301, - "2023-09-29T17:15:12.000" - ], - [ - "@types/node", - 0.698630137, - "2024-06-08T15:59:49.000" - ], - [ - "@types/yargs", - -0.002739726, - "2024-06-18T20:35:24.000" - ], - [ - "@types/yargs", - 0.0082191781, - "2023-09-29T17:15:12.000" - ], - [ - "@types/yargs", - 0.7095890411, - "2025-01-01T18:40:22.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4767123288, - "2023-09-29T17:15:12.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.1671232877, - "2024-06-08T15:59:49.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.2054794521, - "2024-06-18T20:35:24.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.7424657534, - "2025-01-01T18:40:22.000" - ], - [ - "@typescript-eslint/parser", - 1.4767123288, - "2023-09-29T17:15:12.000" - ], - [ - "@typescript-eslint/parser", - 2.1671232877, - "2024-06-08T15:59:49.000" - ], - [ - "@typescript-eslint/parser", - 2.2054794521, - "2024-06-18T20:35:24.000" - ], - [ - "@typescript-eslint/parser", - 2.7424657534, - "2025-01-01T18:40:22.000" - ], - [ - "aws-amplify", - 0.5917808219, - "2023-09-29T17:15:12.000" - ], - [ - "aws-sdk", - 1.9890410959, - "2023-09-29T17:15:12.000" - ], - [ - "dotenv", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "dotenv", - 2.1178082192, - "2023-09-29T17:15:12.000" - ], - [ - "dotenv", - 2.7945205479, - "2024-06-08T15:59:49.000" - ], - [ - "eslint", - 1.4931506849, - "2023-09-29T17:15:12.000" - ], - [ - "eslint", - 2.1835616438, - "2024-06-08T15:59:49.000" - ], - [ - "eslint", - 2.2219178082, - "2024-06-18T20:35:24.000" - ], - [ - "eslint", - 2.7205479452, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-config-airbnb", - 1.1315068493, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-plugin-cypress", - 0.0, - "2023-09-29T17:15:12.000" - ], - [ - "eslint-plugin-cypress", - 0.1178082192, - "2024-06-18T20:35:24.000" - ], - [ - "eslint-plugin-cypress", - 0.5397260274, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-plugin-jest", - 1.0493150685, - "2023-09-29T17:15:12.000" - ], - [ - "eslint-plugin-jest", - 1.7753424658, - "2024-06-18T20:35:24.000" - ], - [ - "eslint-plugin-jest", - 2.3123287671, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "eslint-plugin-react-hooks", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "prettier", - 0.3506849315, - "2023-09-29T17:15:12.000" - ], - [ - "prettier", - 1.1205479452, - "2024-06-08T15:59:49.000" - ], - [ - "prettier", - 1.1342465753, - "2024-06-18T20:35:24.000" - ], - [ - "prettier", - 1.6164383562, - "2025-01-01T18:40:22.000" - ], - [ - "serverless", - -0.0273972603, - "2023-09-29T17:15:12.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless", - 0.0164383562, - "2024-06-18T20:35:24.000" - ], - [ - "serverless-api-client-certificate", - 0.0, - "2024-06-18T20:35:24.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-bundle", - 0.3753424658, - "2023-09-29T17:15:12.000" - ], - [ - "serverless-cloudfront-invalidate", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-dotenv-plugin", - 1.202739726, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-iam-helper", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-idempotency-helper", - 0.0, - "2024-06-08T15:59:49.000" - ], - [ - "serverless-offline", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-offline", - 1.2164383562, - "2023-09-29T17:15:12.000" - ], - [ - "serverless-offline", - 1.8657534247, - "2024-06-08T15:59:49.000" - ], - [ - "serverless-offline-ssm", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-online", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-plugin-warmup", - 0.3068493151, - "2023-09-29T17:15:12.000" - ], - [ - "serverless-plugin-warmup", - 1.3561643836, - "2024-06-08T15:59:49.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-s3-sync", - 0.3780821918, - "2024-06-18T20:35:24.000" - ], - [ - "serverless-s3-sync", - 1.202739726, - "2025-01-01T18:40:22.000" - ], - [ - "serverless-s3-sync", - 1.5917808219, - "2023-09-29T17:15:12.000" - ], - [ - "serverless-s3-sync", - 1.9698630137, - "2024-06-08T15:59:49.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:40:22.000" - ], - [ - "typescript", - 0.5616438356, - "2023-09-29T17:15:12.000" - ], - [ - "typescript", - 1.1917808219, - "2024-06-18T20:35:24.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:22.000" - ], - [ - "yargs", - 2.3890410959, - "2025-01-01T18:40:22.000" - ] + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 25/30 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 13 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "22 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSX", + "Bytes": 306041, + "CodeBytes": 0, + "Lines": 10329, + "Code": 8879, + "Comment": 417, + "Blank": 1033, + "Complexity": 276, + "Count": 123, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 240184, + "CodeBytes": 0, + "Lines": 8568, + "Code": 6931, + "Comment": 810, + "Blank": 827, + "Complexity": 363, + "Count": 99, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 383019, + "CodeBytes": 0, + "Lines": 307, + "Code": 305, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 57, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 125254, + "CodeBytes": 0, + "Lines": 4435, + "Code": 3807, + "Comment": 210, + "Blank": 418, + "Complexity": 251, + "Count": 49, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5745175, + "CodeBytes": 0, + "Lines": 116995, + "Code": 116991, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 51114, + "CodeBytes": 0, + "Lines": 901, + "Code": 602, + "Comment": 0, + "Blank": 299, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 41801, + "CodeBytes": 0, + "Lines": 2188, + "Code": 1797, + "Comment": 57, + "Blank": 334, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 35890, + "CodeBytes": 0, + "Lines": 975, + "Code": 878, + "Comment": 36, + "Blank": 61, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 16542, + "CodeBytes": 0, + "Lines": 507, + "Code": 359, + "Comment": 58, + "Blank": 90, + "Complexity": 76, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 62173, + "CodeBytes": 0, + "Lines": 1750, + "Code": 1693, + "Comment": 10, + "Blank": 47, + "Complexity": 132, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1176, + "CodeBytes": 0, + "Lines": 31, + "Code": 24, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 2599, + "CodeBytes": 0, + "Lines": 48, + "Code": 47, + "Comment": 0, + "Blank": 1, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2405, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 2678, + "CodeBytes": 0, + "Lines": 80, + "Code": 58, + "Comment": 17, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "ReStructuredText", + "Bytes": 59263, + "CodeBytes": 0, + "Lines": 1200, + "Code": 896, + "Comment": 0, + "Blank": 304, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 38, + "CodeBytes": 0, + "Lines": 1, + "Code": 0, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 326, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4525978.723838398, + "estimatedScheduleMonths_low": 25.281193620969304, + "estimatedPeople_low": 17.440721264326093, + "estimatedCost_high": 14104926.446116908, + "estimatedScheduleMonths_high": 25.281193620969304, + "estimatedPeople_high": 17.440721264326093, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSX 123 10329 1033 417 8879 276\n(ULOC) 5062\n-------------------------------------------------------------------------------\nJavaScript 99 8568 827 810 6931 363\n(ULOC) 4064\n-------------------------------------------------------------------------------\nSVG 57 307 0 2 305 0\n(ULOC) 88\n-------------------------------------------------------------------------------\nTypeScript 49 4435 418 210 3807 251\n(ULOC) 2052\n-------------------------------------------------------------------------------\nJSON 31 116995 4 0 116991 0\n(ULOC) 8918\n-------------------------------------------------------------------------------\nMarkdown 16 901 299 0 602 0\n(ULOC) 481\n-------------------------------------------------------------------------------\nSass 15 2188 334 57 1797 0\n(ULOC) 1049\n-------------------------------------------------------------------------------\nYAML 15 975 61 36 878 0\n(ULOC) 615\n-------------------------------------------------------------------------------\nShell 14 507 90 58 359 76\n(ULOC) 326\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1750 47 10 1693 132\n(ULOC) 972\n-------------------------------------------------------------------------------\nPlain Text 2 31 7 0 24 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nSmarty Template 2 48 1 0 47 1\n(ULOC) 41\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 80 5 17 58 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nReStructuredText 1 1200 304 0 896 0\n(ULOC) 626\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 435 148407 3444 1634 143329 1108\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 23984\nDRYness % 0.16\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,963,020\nEstimated Schedule Effort (organic) 25.28 months\nEstimated People Required (organic) 17.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7075717 bytes, 7.076 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 546225, + "TypeScript": 125714, + "SCSS": 41801, + "Shell": 8664, + "HTML": 2678, + "Smarty": 2599 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "@types/dotenv", + 0.0, + "2024-06-08T15:59:49.000" + ], + [ + "@types/flat", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:40:22.000" + ], + [ + "@types/node", + 0.0, + "2024-06-18T20:35:24.000" + ], + [ + "@types/node", + 0.0136986301, + "2023-09-29T17:15:12.000" + ], + [ + "@types/node", + 0.698630137, + "2024-06-08T15:59:49.000" + ], + [ + "@types/yargs", + -0.002739726, + "2024-06-18T20:35:24.000" + ], + [ + "@types/yargs", + 0.0082191781, + "2023-09-29T17:15:12.000" + ], + [ + "@types/yargs", + 0.7095890411, + "2025-01-01T18:40:22.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4767123288, + "2023-09-29T17:15:12.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.1671232877, + "2024-06-08T15:59:49.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.2054794521, + "2024-06-18T20:35:24.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.7424657534, + "2025-01-01T18:40:22.000" + ], + [ + "@typescript-eslint/parser", + 1.4767123288, + "2023-09-29T17:15:12.000" + ], + [ + "@typescript-eslint/parser", + 2.1671232877, + "2024-06-08T15:59:49.000" + ], + [ + "@typescript-eslint/parser", + 2.2054794521, + "2024-06-18T20:35:24.000" + ], + [ + "@typescript-eslint/parser", + 2.7424657534, + "2025-01-01T18:40:22.000" + ], + [ + "aws-amplify", + 0.5917808219, + "2023-09-29T17:15:12.000" + ], + [ + "aws-sdk", + 1.9890410959, + "2023-09-29T17:15:12.000" + ], + [ + "dotenv", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "dotenv", + 2.1178082192, + "2023-09-29T17:15:12.000" + ], + [ + "dotenv", + 2.7945205479, + "2024-06-08T15:59:49.000" + ], + [ + "eslint", + 1.4931506849, + "2023-09-29T17:15:12.000" + ], + [ + "eslint", + 2.1835616438, + "2024-06-08T15:59:49.000" + ], + [ + "eslint", + 2.2219178082, + "2024-06-18T20:35:24.000" + ], + [ + "eslint", + 2.7205479452, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-config-airbnb", + 1.1315068493, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-plugin-cypress", + 0.0, + "2023-09-29T17:15:12.000" + ], + [ + "eslint-plugin-cypress", + 0.1178082192, + "2024-06-18T20:35:24.000" + ], + [ + "eslint-plugin-cypress", + 0.5397260274, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-plugin-jest", + 1.0493150685, + "2023-09-29T17:15:12.000" + ], + [ + "eslint-plugin-jest", + 1.7753424658, + "2024-06-18T20:35:24.000" + ], + [ + "eslint-plugin-jest", + 2.3123287671, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "eslint-plugin-react-hooks", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "prettier", + 0.3506849315, + "2023-09-29T17:15:12.000" + ], + [ + "prettier", + 1.1205479452, + "2024-06-08T15:59:49.000" + ], + [ + "prettier", + 1.1342465753, + "2024-06-18T20:35:24.000" + ], + [ + "prettier", + 1.6164383562, + "2025-01-01T18:40:22.000" + ], + [ + "serverless", + -0.0273972603, + "2023-09-29T17:15:12.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless", + 0.0164383562, + "2024-06-18T20:35:24.000" + ], + [ + "serverless-api-client-certificate", + 0.0, + "2024-06-18T20:35:24.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-bundle", + 0.3753424658, + "2023-09-29T17:15:12.000" + ], + [ + "serverless-cloudfront-invalidate", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-dotenv-plugin", + 1.202739726, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-iam-helper", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-idempotency-helper", + 0.0, + "2024-06-08T15:59:49.000" + ], + [ + "serverless-offline", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-offline", + 1.2164383562, + "2023-09-29T17:15:12.000" + ], + [ + "serverless-offline", + 1.8657534247, + "2024-06-08T15:59:49.000" + ], + [ + "serverless-offline-ssm", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-online", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-plugin-warmup", + 0.3068493151, + "2023-09-29T17:15:12.000" + ], + [ + "serverless-plugin-warmup", + 1.3561643836, + "2024-06-08T15:59:49.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-s3-sync", + 0.3780821918, + "2024-06-18T20:35:24.000" + ], + [ + "serverless-s3-sync", + 1.202739726, + "2025-01-01T18:40:22.000" + ], + [ + "serverless-s3-sync", + 1.5917808219, + "2023-09-29T17:15:12.000" + ], + [ + "serverless-s3-sync", + 1.9698630137, + "2024-06-08T15:59:49.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:40:22.000" + ], + [ + "typescript", + 0.5616438356, + "2023-09-29T17:15:12.000" + ], + [ + "typescript", + 1.1917808219, + "2024-06-18T20:35:24.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:22.000" + ], + [ + "yargs", + 2.3890410959, + "2025-01-01T18:40:22.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json index 120c73933c..55a3a9e288 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-core/macpro-mdct-core_data.json @@ -1,507 +1,507 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-core", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-core", - "description": "mdct-core is a CMCS MDCT repo currently being used for spiking consolidation of CI actions.", - "commits_count": 80, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 78, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 57, - "closed_pull_requests_count": 21, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 12, - "total_project_lines": 373, - "average_project_lines": 37, - "total_project_comment_lines": 5, - "average_project_comment_lines": 1, - "total_project_blank_lines": 66, - "average_blank_lines": 7, - "commits_by_month": { - "2024/7": 10, - "2024/6": 2, - "2024/4": 17, - "2024/3": 1 + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-core", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-core", + "description": "mdct-core is a CMCS MDCT repo currently being used for spiking consolidation of CI actions.", + "commits_count": 80, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 78, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 57, + "closed_pull_requests_count": 21, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 12, + "total_project_lines": 373, + "average_project_lines": 37, + "total_project_comment_lines": 5, + "average_project_comment_lines": 1, + "total_project_blank_lines": 66, + "average_blank_lines": 7, + "commits_by_month": { + "2024/7": 10, + "2024/6": 2, + "2024/4": 17, + "2024/3": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-07-24T14:47:20Z", + "ossf_scorecard": { + "date": "2025-01-19T13:28:09Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-core", + "commit": "d324e425febaafbf32a9d8af448b99b04d2ef828" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-07-24T14:47:20Z", - "ossf_scorecard": { - "date": "2025-01-19T13:28:09Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-core", - "commit": "d324e425febaafbf32a9d8af448b99b04d2ef828" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 7/30 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 6820, - "CodeBytes": 0, - "Lines": 236, - "Code": 209, - "Comment": 5, - "Blank": 22, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4615, - "CodeBytes": 0, - "Lines": 106, - "Code": 71, - "Comment": 0, - "Blank": 35, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7007.595479296463, - "estimatedScheduleMonths_low": 2.1624349440332704, - "estimatedPeople_low": 0.31570065362504834, - "estimatedCost_high": 21838.72811399171, - "estimatedScheduleMonths_high": 2.1624349440332704, - "estimatedPeople_high": 0.31570065362504834, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 7 236 22 5 209 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nMarkdown 2 106 35 0 71 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 373 66 5 302 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 240\nDRYness % 0.64\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,684\nEstimated Schedule Effort (organic) 2.16 months\nEstimated People Required (organic) 0.32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 12762 bytes, 0.013 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": {}, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@aws-sdk/types", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@semantic-release/changelog", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@semantic-release/git", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@types/dompurify", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@types/jest", - 0.197260274, - "2024-06-16T18:24:43.000" - ], - [ - "@types/jsdom", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@types/moment", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@types/react", - 0.1589041096, - "2024-06-16T18:24:43.000" - ], - [ - "@types/react-bootstrap", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@types/react-dom", - 0.4246575342, - "2024-06-16T18:24:43.000" - ], - [ - "@types/react-helmet", - 0.0739726027, - "2024-06-16T18:24:43.000" - ], - [ - "@types/react-router-dom", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.1863013699, - "2024-06-16T18:24:43.000" - ], - [ - "@typescript-eslint/parser", - 2.1863013699, - "2024-06-16T18:24:43.000" - ], - [ - "aws-amplify", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "date-fns", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "date-fns-tz", - 1.2109589041, - "2024-06-16T18:24:43.000" - ], - [ - "dompurify", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-config-airbnb", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-plugin-cypress", - 0.1178082192, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-plugin-jest", - 1.7753424658, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "eslint-plugin-react-hooks", - 1.6602739726, - "2024-06-16T18:24:43.000" - ], - [ - "jest", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "jsdom", - 0.997260274, - "2024-06-16T18:24:43.000" - ], - [ - "moment", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "pino", - 0.1315068493, - "2024-06-16T18:24:43.000" - ], - [ - "prettier", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "react-bootstrap", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "react-dom", - 3.095890411, - "2024-06-16T18:24:43.000" - ], - [ - "react-dropzone", - 0.6794520548, - "2024-06-16T18:24:43.000" - ], - [ - "react-error-boundary", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "react-hook-form", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "react-icons", - 0.4767123288, - "2024-06-16T18:24:43.000" - ], - [ - "react-router-dom", - 0.1945205479, - "2024-06-16T18:24:43.000" - ], - [ - "react-scripts", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "react-uuid", - 0.1671232877, - "2024-06-16T18:24:43.000" - ], - [ - "semantic-release", - 0.7068493151, - "2024-06-16T18:24:43.000" - ], - [ - "ts-jest", - 0.0, - "2024-06-16T18:24:43.000" - ], - [ - "typescript", - 1.1917808219, - "2024-06-16T18:24:43.000" - ], - [ - "yup", - 2.397260274, - "2024-06-16T18:24:43.000" - ] + "score": 5.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 7/30 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 6820, + "CodeBytes": 0, + "Lines": 236, + "Code": 209, + "Comment": 5, + "Blank": 22, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4615, + "CodeBytes": 0, + "Lines": 106, + "Code": 71, + "Comment": 0, + "Blank": 35, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7007.595479296463, + "estimatedScheduleMonths_low": 2.1624349440332704, + "estimatedPeople_low": 0.31570065362504834, + "estimatedCost_high": 21838.72811399171, + "estimatedScheduleMonths_high": 2.1624349440332704, + "estimatedPeople_high": 0.31570065362504834, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 7 236 22 5 209 0\n(ULOC) 149\n-------------------------------------------------------------------------------\nMarkdown 2 106 35 0 71 0\n(ULOC) 70\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 373 66 5 302 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 240\nDRYness % 0.64\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,684\nEstimated Schedule Effort (organic) 2.16 months\nEstimated People Required (organic) 0.32\n───────────────────────────────────────────────────────────────────────────────\nProcessed 12762 bytes, 0.013 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": {}, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@aws-sdk/types", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@semantic-release/changelog", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@semantic-release/git", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@types/dompurify", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@types/jest", + 0.197260274, + "2024-06-16T18:24:43.000" + ], + [ + "@types/jsdom", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@types/moment", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@types/react", + 0.1589041096, + "2024-06-16T18:24:43.000" + ], + [ + "@types/react-bootstrap", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@types/react-dom", + 0.4246575342, + "2024-06-16T18:24:43.000" + ], + [ + "@types/react-helmet", + 0.0739726027, + "2024-06-16T18:24:43.000" + ], + [ + "@types/react-router-dom", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.1863013699, + "2024-06-16T18:24:43.000" + ], + [ + "@typescript-eslint/parser", + 2.1863013699, + "2024-06-16T18:24:43.000" + ], + [ + "aws-amplify", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "date-fns", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "date-fns-tz", + 1.2109589041, + "2024-06-16T18:24:43.000" + ], + [ + "dompurify", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-config-airbnb", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-plugin-cypress", + 0.1178082192, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-plugin-jest", + 1.7753424658, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "eslint-plugin-react-hooks", + 1.6602739726, + "2024-06-16T18:24:43.000" + ], + [ + "jest", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "jsdom", + 0.997260274, + "2024-06-16T18:24:43.000" + ], + [ + "moment", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "pino", + 0.1315068493, + "2024-06-16T18:24:43.000" + ], + [ + "prettier", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "react-bootstrap", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "react-dom", + 3.095890411, + "2024-06-16T18:24:43.000" + ], + [ + "react-dropzone", + 0.6794520548, + "2024-06-16T18:24:43.000" + ], + [ + "react-error-boundary", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "react-hook-form", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "react-icons", + 0.4767123288, + "2024-06-16T18:24:43.000" + ], + [ + "react-router-dom", + 0.1945205479, + "2024-06-16T18:24:43.000" + ], + [ + "react-scripts", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "react-uuid", + 0.1671232877, + "2024-06-16T18:24:43.000" + ], + [ + "semantic-release", + 0.7068493151, + "2024-06-16T18:24:43.000" + ], + [ + "ts-jest", + 0.0, + "2024-06-16T18:24:43.000" + ], + [ + "typescript", + 1.1917808219, + "2024-06-16T18:24:43.000" + ], + [ + "yup", + 2.397260274, + "2024-06-16T18:24:43.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json index e5995cb7db..b439fac49a 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-mcr/macpro-mdct-mcr_data.json @@ -1,923 +1,923 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mcr", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-mcr", - "description": "MCR is the CMCS MDCT application for collecting state data related to Managed Care plans and performance. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 1565, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1639, - "open_pull_requests_count": 7, - "merged_pull_requests_count": 1369, - "closed_pull_requests_count": 263, - "forks_count": 3, - "stargazers_count": 5, - "watchers_count": 13, - "total_project_lines": 73937, - "average_project_lines": 150, - "total_project_comment_lines": 2525, - "average_project_comment_lines": 5, - "total_project_blank_lines": 4653, - "average_blank_lines": 9, - "commits_by_month": { - "2025/1": 30 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 2 - ], - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 2 - ], - [ - "2024-10-25T00:00:00.000Z", - 1 - ], - [ - "2024-10-28T00:00:00.000Z", - 1 - ], - [ - "2024-11-14T00:00:00.000Z", - 1 - ], - [ - "2024-11-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-03-04T14:51:19Z", - "ossf_scorecard": { - "date": "2025-01-19T13:26:01Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-mcr", - "commit": "4083aaf32ac6deccea563c1bb4731243e2211b95" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "19 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 1361223, - "CodeBytes": 0, - "Lines": 46815, - "Code": 40685, - "Comment": 2150, - "Blank": 3980, - "Complexity": 2089, - "Count": 372, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 831432, - "CodeBytes": 0, - "Lines": 18263, - "Code": 18261, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 53, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 80041, - "CodeBytes": 0, - "Lines": 2647, - "Code": 1993, - "Comment": 326, - "Blank": 328, - "Complexity": 109, - "Count": 35, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 42615, - "CodeBytes": 0, - "Lines": 1150, - "Code": 1038, - "Comment": 35, - "Blank": 77, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 57260, - "CodeBytes": 0, - "Lines": 943, - "Code": 632, - "Comment": 0, - "Blank": 311, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15461, - "CodeBytes": 0, - "Lines": 471, - "Code": 344, - "Comment": 49, - "Blank": 78, - "Complexity": 68, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 62130, - "CodeBytes": 0, - "Lines": 1766, - "Code": 1713, - "Comment": 11, - "Blank": 42, - "Complexity": 126, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 288472, - "CodeBytes": 0, - "Lines": 60, - "Code": 60, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 3266, - "CodeBytes": 0, - "Lines": 69, - "Code": 66, - "Comment": 0, - "Blank": 3, - "Complexity": 3, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 164, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 572, - "CodeBytes": 0, - "Lines": 20, - "Code": 20, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2443, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1492, - "CodeBytes": 0, - "Lines": 38, - "Code": 36, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 4110, - "CodeBytes": 0, - "Lines": 113, - "Code": 74, - "Comment": 30, - "Blank": 9, - "Complexity": 16, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 2283, - "CodeBytes": 0, - "Lines": 135, - "Code": 108, - "Comment": 8, - "Blank": 19, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 60, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1975744.1323968468, - "estimatedScheduleMonths_low": 18.4503448584972, - "estimatedPeople_low": 10.432195587832311, - "estimatedCost_high": 6157281.632152811, - "estimatedScheduleMonths_high": 18.4503448584972, - "estimatedPeople_high": 10.432195587832311, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 372 46815 3980 2150 40685 2089\n(ULOC) 19538\n-------------------------------------------------------------------------------\nJSON 53 18263 2 0 18261 0\n(ULOC) 4317\n-------------------------------------------------------------------------------\nJavaScript 35 2647 328 326 1993 109\n(ULOC) 1422\n-------------------------------------------------------------------------------\nYAML 16 1150 77 35 1038 0\n(ULOC) 706\n-------------------------------------------------------------------------------\nMarkdown 14 943 311 0 632 0\n(ULOC) 519\n-------------------------------------------------------------------------------\nShell 9 471 78 49 344 68\n(ULOC) 322\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1766 42 11 1713 126\n(ULOC) 956\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nSmarty Template 2 69 3 0 66 3\n(ULOC) 62\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 38 1 1 36 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 113 9 30 74 16\n(ULOC) 86\n-------------------------------------------------------------------------------\nSass 1 135 19 8 108 0\n(ULOC) 67\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 520 72578 4864 2627 65087 2420\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 27972\nDRYness % 0.39\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,166,527\nEstimated Schedule Effort (organic) 18.45 months\nEstimated People Required (organic) 10.43\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2753091 bytes, 2.753 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mcr", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-mcr", + "description": "MCR is the CMCS MDCT application for collecting state data related to Managed Care plans and performance. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 1565, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1639, + "open_pull_requests_count": 7, + "merged_pull_requests_count": 1369, + "closed_pull_requests_count": 263, + "forks_count": 3, + "stargazers_count": 5, + "watchers_count": 13, + "total_project_lines": 73937, + "average_project_lines": 150, + "total_project_comment_lines": 2525, + "average_project_comment_lines": 5, + "total_project_blank_lines": 4653, + "average_blank_lines": 9, + "commits_by_month": { + "2025/1": 30 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 2 + ], + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-08-30T00:00:00.000Z", + 2 + ], + [ + "2024-10-25T00:00:00.000Z", + 1 + ], + [ + "2024-10-28T00:00:00.000Z", + 1 + ], + [ + "2024-11-14T00:00:00.000Z", + 1 + ], + [ + "2024-11-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-03-04T14:51:19Z", + "ossf_scorecard": { + "date": "2025-01-19T13:26:01Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-mcr", + "commit": "4083aaf32ac6deccea563c1bb4731243e2211b95" }, - "predominant_langs": { - "TypeScript": 1390229, - "JavaScript": 80570, - "Shell": 7760, - "Python": 4110, - "Smarty": 3266, - "SCSS": 2283, - "HTML": 1492 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@types/dotenv", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@types/flat", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:40:53.000" - ], - [ - "@types/node", - 0.0, - "2024-07-01T09:41:38.000" - ], - [ - "@types/node", - 0.002739726, - "2024-06-08T14:44:06.000" - ], - [ - "@types/yargs", - -0.002739726, - "2024-07-01T09:41:38.000" - ], - [ - "@types/yargs", - 0.7095890411, - "2025-01-01T18:40:53.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.9178082192, - "2024-03-10T22:59:37.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.1671232877, - "2024-06-08T14:44:06.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.2246575342, - "2024-07-01T09:41:38.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.7424657534, - "2025-01-01T18:40:53.000" - ], - [ - "@typescript-eslint/parser", - 1.9178082192, - "2024-03-10T22:59:37.000" - ], - [ - "@typescript-eslint/parser", - 2.1671232877, - "2024-06-08T14:44:06.000" - ], - [ - "@typescript-eslint/parser", - 2.2246575342, - "2024-07-01T09:41:38.000" - ], - [ - "@typescript-eslint/parser", - 2.7424657534, - "2025-01-01T18:40:53.000" - ], - [ - "aws-sdk", - 0.0, - "2024-03-10T22:59:37.000" - ], - [ - "dotenv", - 2.7945205479, - "2024-07-01T09:41:38.000" - ], - [ - "dotenv", - 3.5835616438, - "2025-01-01T18:40:53.000" - ], - [ - "eslint", - 0.0, - "2024-03-10T22:59:37.000" - ], - [ - "eslint", - 0.2410958904, - "2025-01-01T18:40:53.000" - ], - [ - "eslint", - 0.2657534247, - "2024-06-08T14:44:06.000" - ], - [ - "eslint", - 0.3424657534, - "2024-07-01T09:41:38.000" - ], - [ - "eslint-config-airbnb", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "eslint-plugin-cypress", - 0.0, - "2024-03-10T22:59:37.000" - ], - [ - "eslint-plugin-cypress", - 0.1178082192, - "2024-07-01T09:41:38.000" - ], - [ - "eslint-plugin-cypress", - 0.5397260274, - "2025-01-01T18:40:53.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "eslint-plugin-jest", - 1.4712328767, - "2024-03-10T22:59:37.000" - ], - [ - "eslint-plugin-jest", - 1.7753424658, - "2024-07-01T09:41:38.000" - ], - [ - "eslint-plugin-jest", - 2.3123287671, - "2025-01-01T18:40:53.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "eslint-plugin-react-hooks", - -0.2082191781, - "2024-03-10T22:59:37.000" - ], - [ - "eslint-plugin-react-hooks", - 1.6602739726, - "2024-07-01T09:41:38.000" - ], - [ - "eslint-plugin-react-hooks", - 2.2712328767, - "2025-01-01T18:40:53.000" - ], - [ - "fast-xml-parser", - 0.0, - "2024-07-01T09:41:38.000" - ], - [ - "fast-xml-parser", - 0.2821917808, - "2025-01-01T18:40:53.000" - ], - [ - "fast-xml-parser", - 0.3534246575, - "2024-06-08T14:44:06.000" - ], - [ - "fast-xml-parser", - 0.6739726027, - "2024-03-10T22:59:37.000" - ], - [ - "jest-environment-jsdom", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "loader-utils", - 0.0575342466, - "2024-03-10T22:59:37.000" - ], - [ - "loader-utils", - 1.5671232877, - "2025-01-01T18:40:53.000" - ], - [ - "loader-utils", - 1.6246575342, - "2024-06-08T14:44:06.000" - ], - [ - "prettier", - 0.7835616438, - "2024-03-10T22:59:37.000" - ], - [ - "prettier", - 1.1205479452, - "2024-06-08T14:44:06.000" - ], - [ - "prettier", - 1.1342465753, - "2024-07-01T09:41:38.000" - ], - [ - "prettier", - 1.6164383562, - "2025-01-01T18:40:53.000" - ], - [ - "serverless", - -0.2712328767, - "2024-03-10T22:59:37.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless", - 0.0630136986, - "2024-07-01T09:41:38.000" - ], - [ - "serverless-api-client-certificate", - 0.0, - "2024-07-01T09:41:38.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-cloudfront-invalidate", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-dotenv-plugin", - 1.202739726, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-iam-helper", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-idempotency-helper", - 0.0, - "2024-06-08T14:44:06.000" - ], - [ - "serverless-offline", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-offline", - 1.0410958904, - "2024-03-10T22:59:37.000" - ], - [ - "serverless-offline", - 1.3780821918, - "2024-06-08T14:44:06.000" - ], - [ - "serverless-online", - 0.0, - "2024-06-08T14:44:06.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-plugin-warmup", - 0.0, - "2024-06-08T14:44:06.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-s3-sync", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "serverless-s3-sync", - 1.9698630137, - "2024-06-08T14:44:06.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "typescript", - 1.095890411, - "2024-03-10T22:59:37.000" - ], - [ - "typescript", - 1.1917808219, - "2024-06-08T14:44:06.000" - ], - [ - "typescript", - 1.3863013699, - "2024-07-01T09:41:38.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:53.000" - ], - [ - "util", - 0.0, - "2025-01-01T18:40:53.000" - ], - [ - "yargs", - 2.3890410959, - "2025-01-01T18:40:53.000" - ] + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "19 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 1389765, + "CodeBytes": 0, + "Lines": 47753, + "Code": 41462, + "Comment": 2257, + "Blank": 4034, + "Complexity": 2148, + "Count": 380, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 831376, + "CodeBytes": 0, + "Lines": 18260, + "Code": 18258, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 53, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 80570, + "CodeBytes": 0, + "Lines": 2666, + "Code": 2008, + "Comment": 327, + "Blank": 331, + "Complexity": 109, + "Count": 35, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 42941, + "CodeBytes": 0, + "Lines": 1162, + "Code": 1050, + "Comment": 35, + "Blank": 77, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 57260, + "CodeBytes": 0, + "Lines": 943, + "Code": 632, + "Comment": 0, + "Blank": 311, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 16538, + "CodeBytes": 0, + "Lines": 491, + "Code": 358, + "Comment": 49, + "Blank": 84, + "Complexity": 71, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 62130, + "CodeBytes": 0, + "Lines": 1766, + "Code": 1713, + "Comment": 11, + "Blank": 42, + "Complexity": 126, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 288472, + "CodeBytes": 0, + "Lines": 60, + "Code": 60, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 3266, + "CodeBytes": 0, + "Lines": 69, + "Code": 66, + "Comment": 0, + "Blank": 3, + "Complexity": 3, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 164, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 572, + "CodeBytes": 0, + "Lines": 20, + "Code": 20, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2443, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1492, + "CodeBytes": 0, + "Lines": 38, + "Code": 36, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 4110, + "CodeBytes": 0, + "Lines": 113, + "Code": 74, + "Comment": 30, + "Blank": 9, + "Complexity": 16, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 2283, + "CodeBytes": 0, + "Lines": 135, + "Code": 108, + "Comment": 8, + "Blank": 19, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 60, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2001728.8947892583, + "estimatedScheduleMonths_low": 18.54218115842077, + "estimatedPeople_low": 10.517050188058516, + "estimatedCost_high": 6238261.500735568, + "estimatedScheduleMonths_high": 18.54218115842077, + "estimatedPeople_high": 10.517050188058516, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 380 47753 4034 2257 41462 2148\n(ULOC) 19942\n-------------------------------------------------------------------------------\nJSON 53 18260 2 0 18258 0\n(ULOC) 4316\n-------------------------------------------------------------------------------\nJavaScript 35 2666 331 327 2008 109\n(ULOC) 1425\n-------------------------------------------------------------------------------\nYAML 16 1162 77 35 1050 0\n(ULOC) 715\n-------------------------------------------------------------------------------\nMarkdown 14 943 311 0 632 0\n(ULOC) 519\n-------------------------------------------------------------------------------\nShell 11 491 84 49 358 71\n(ULOC) 335\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1766 42 11 1713 126\n(ULOC) 956\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nSmarty Template 2 69 3 0 66 3\n(ULOC) 62\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 38 1 1 36 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 113 9 30 74 16\n(ULOC) 86\n-------------------------------------------------------------------------------\nSass 1 135 19 8 108 0\n(ULOC) 67\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 530 73564 4927 2735 65902 2482\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 28394\nDRYness % 0.39\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,195,021\nEstimated Schedule Effort (organic) 18.54 months\nEstimated People Required (organic) 10.52\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2783509 bytes, 2.784 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1390229, + "JavaScript": 80570, + "Shell": 7760, + "Python": 4110, + "Smarty": 3266, + "SCSS": 2283, + "HTML": 1492 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@types/dotenv", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@types/flat", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:40:53.000" + ], + [ + "@types/node", + 0.0, + "2024-07-01T09:41:38.000" + ], + [ + "@types/node", + 0.002739726, + "2024-06-08T14:44:06.000" + ], + [ + "@types/yargs", + -0.002739726, + "2024-07-01T09:41:38.000" + ], + [ + "@types/yargs", + 0.7095890411, + "2025-01-01T18:40:53.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.9178082192, + "2024-03-10T22:59:37.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.1671232877, + "2024-06-08T14:44:06.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.2246575342, + "2024-07-01T09:41:38.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.7424657534, + "2025-01-01T18:40:53.000" + ], + [ + "@typescript-eslint/parser", + 1.9178082192, + "2024-03-10T22:59:37.000" + ], + [ + "@typescript-eslint/parser", + 2.1671232877, + "2024-06-08T14:44:06.000" + ], + [ + "@typescript-eslint/parser", + 2.2246575342, + "2024-07-01T09:41:38.000" + ], + [ + "@typescript-eslint/parser", + 2.7424657534, + "2025-01-01T18:40:53.000" + ], + [ + "aws-sdk", + 0.0, + "2024-03-10T22:59:37.000" + ], + [ + "dotenv", + 2.7945205479, + "2024-07-01T09:41:38.000" + ], + [ + "dotenv", + 3.5835616438, + "2025-01-01T18:40:53.000" + ], + [ + "eslint", + 0.0, + "2024-03-10T22:59:37.000" + ], + [ + "eslint", + 0.2410958904, + "2025-01-01T18:40:53.000" + ], + [ + "eslint", + 0.2657534247, + "2024-06-08T14:44:06.000" + ], + [ + "eslint", + 0.3424657534, + "2024-07-01T09:41:38.000" + ], + [ + "eslint-config-airbnb", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "eslint-plugin-cypress", + 0.0, + "2024-03-10T22:59:37.000" + ], + [ + "eslint-plugin-cypress", + 0.1178082192, + "2024-07-01T09:41:38.000" + ], + [ + "eslint-plugin-cypress", + 0.5397260274, + "2025-01-01T18:40:53.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "eslint-plugin-jest", + 1.4712328767, + "2024-03-10T22:59:37.000" + ], + [ + "eslint-plugin-jest", + 1.7753424658, + "2024-07-01T09:41:38.000" + ], + [ + "eslint-plugin-jest", + 2.3123287671, + "2025-01-01T18:40:53.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "eslint-plugin-react-hooks", + -0.2082191781, + "2024-03-10T22:59:37.000" + ], + [ + "eslint-plugin-react-hooks", + 1.6602739726, + "2024-07-01T09:41:38.000" + ], + [ + "eslint-plugin-react-hooks", + 2.2712328767, + "2025-01-01T18:40:53.000" + ], + [ + "fast-xml-parser", + 0.0, + "2024-07-01T09:41:38.000" + ], + [ + "fast-xml-parser", + 0.2821917808, + "2025-01-01T18:40:53.000" + ], + [ + "fast-xml-parser", + 0.3534246575, + "2024-06-08T14:44:06.000" + ], + [ + "fast-xml-parser", + 0.6739726027, + "2024-03-10T22:59:37.000" + ], + [ + "jest-environment-jsdom", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "loader-utils", + 0.0575342466, + "2024-03-10T22:59:37.000" + ], + [ + "loader-utils", + 1.5671232877, + "2025-01-01T18:40:53.000" + ], + [ + "loader-utils", + 1.6246575342, + "2024-06-08T14:44:06.000" + ], + [ + "prettier", + 0.7835616438, + "2024-03-10T22:59:37.000" + ], + [ + "prettier", + 1.1205479452, + "2024-06-08T14:44:06.000" + ], + [ + "prettier", + 1.1342465753, + "2024-07-01T09:41:38.000" + ], + [ + "prettier", + 1.6164383562, + "2025-01-01T18:40:53.000" + ], + [ + "serverless", + -0.2712328767, + "2024-03-10T22:59:37.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless", + 0.0630136986, + "2024-07-01T09:41:38.000" + ], + [ + "serverless-api-client-certificate", + 0.0, + "2024-07-01T09:41:38.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-cloudfront-invalidate", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-dotenv-plugin", + 1.202739726, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-iam-helper", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-idempotency-helper", + 0.0, + "2024-06-08T14:44:06.000" + ], + [ + "serverless-offline", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-offline", + 1.0410958904, + "2024-03-10T22:59:37.000" + ], + [ + "serverless-offline", + 1.3780821918, + "2024-06-08T14:44:06.000" + ], + [ + "serverless-online", + 0.0, + "2024-06-08T14:44:06.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-plugin-warmup", + 0.0, + "2024-06-08T14:44:06.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-s3-sync", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "serverless-s3-sync", + 1.9698630137, + "2024-06-08T14:44:06.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "typescript", + 1.095890411, + "2024-03-10T22:59:37.000" + ], + [ + "typescript", + 1.1917808219, + "2024-06-08T14:44:06.000" + ], + [ + "typescript", + 1.3863013699, + "2024-07-01T09:41:38.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:53.000" + ], + [ + "util", + 0.0, + "2025-01-01T18:40:53.000" + ], + [ + "yargs", + 2.3890410959, + "2025-01-01T18:40:53.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json index ccb40f504a..36f12eddd8 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-mfp/macpro-mdct-mfp_data.json @@ -1,907 +1,907 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mfp", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-mfp", - "description": "MFP is the CMCS MDCT application for collecting state data related to the Money Follows the Person program. The collected data assists CMCS in monitoring and managing grantee progress and identifying challenges and improvement opportunities.", - "commits_count": 708, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 860, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 707, - "closed_pull_requests_count": 144, - "forks_count": 3, - "stargazers_count": 3, - "watchers_count": 13, - "total_project_lines": 66753, - "average_project_lines": 118, - "total_project_comment_lines": 2735, - "average_project_comment_lines": 5, - "total_project_blank_lines": 5562, - "average_blank_lines": 10, - "commits_by_month": { - "2025/1": 14, - "2024/12": 12, - "2024/11": 4 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-16T00:00:00.000Z", - 1 - ], - [ - "2024-08-19T00:00:00.000Z", - 3 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ], - [ - "2024-11-14T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-02-02T15:07:39Z", - "ossf_scorecard": { - "date": "2025-01-19T13:20:45Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-mfp", - "commit": "65a62195f282a5184998cd64639f281982434639" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "16 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 1616332, - "CodeBytes": 0, - "Lines": 55858, - "Code": 48755, - "Comment": 2291, - "Blank": 4812, - "Complexity": 2835, - "Count": 452, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 66520, - "CodeBytes": 0, - "Lines": 2196, - "Code": 1616, - "Comment": 297, - "Blank": 283, - "Complexity": 85, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 157569, - "CodeBytes": 0, - "Lines": 4099, - "Code": 4094, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 23, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 43180, - "CodeBytes": 0, - "Lines": 1155, - "Code": 1039, - "Comment": 40, - "Blank": 76, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 41567, - "CodeBytes": 0, - "Lines": 632, - "Code": 418, - "Comment": 0, - "Blank": 214, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15463, - "CodeBytes": 0, - "Lines": 471, - "Code": 345, - "Comment": 49, - "Blank": 77, - "Complexity": 68, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 59392, - "CodeBytes": 0, - "Lines": 1701, - "Code": 1649, - "Comment": 11, - "Blank": 41, - "Complexity": 122, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 256, - "CodeBytes": 0, - "Lines": 6, - "Code": 5, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 277703, - "CodeBytes": 0, - "Lines": 60, - "Code": 60, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 898, - "CodeBytes": 0, - "Lines": 31, - "Code": 31, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2910, - "CodeBytes": 0, - "Lines": 61, - "Code": 58, - "Comment": 0, - "Blank": 3, - "Complexity": 2, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2404, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1661, - "CodeBytes": 0, - "Lines": 52, - "Code": 47, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 4110, - "CodeBytes": 0, - "Lines": 113, - "Code": 74, - "Comment": 30, - "Blank": 9, - "Complexity": 16, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 2387, - "CodeBytes": 0, - "Lines": 138, - "Code": 111, - "Comment": 8, - "Blank": 19, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1765234.8195825573, - "estimatedScheduleMonths_low": 17.67713042257523, - "estimatedPeople_low": 9.728373302926624, - "estimatedCost_high": 5501242.67248443, - "estimatedScheduleMonths_high": 17.67713042257523, - "estimatedPeople_high": 9.728373302926624, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 452 55858 4812 2291 48755 2835\n(ULOC) 23869\n-------------------------------------------------------------------------------\nJavaScript 30 2196 283 297 1616 85\n(ULOC) 1234\n-------------------------------------------------------------------------------\nJSON 23 4099 5 0 4094 0\n(ULOC) 1559\n-------------------------------------------------------------------------------\nYAML 16 1155 76 40 1039 0\n(ULOC) 706\n-------------------------------------------------------------------------------\nMarkdown 13 632 214 0 418 0\n(ULOC) 333\n-------------------------------------------------------------------------------\nShell 9 471 77 49 345 68\n(ULOC) 323\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1701 41 11 1649 122\n(ULOC) 926\n-------------------------------------------------------------------------------\nTypeScript Typings 4 6 0 1 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nXML 3 31 0 0 31 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nSmarty Template 2 61 3 0 58 2\n(ULOC) 55\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 52 3 2 47 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 113 9 30 74 16\n(ULOC) 86\n-------------------------------------------------------------------------------\nSass 1 138 19 8 111 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 568 66778 5568 2745 58465 3137\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 29244\nDRYness % 0.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,935,691\nEstimated Schedule Effort (organic) 17.68 months\nEstimated People Required (organic) 9.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2299506 bytes, 2.300 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-mfp", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-mfp", + "description": "MFP is the CMCS MDCT application for collecting state data related to the Money Follows the Person program. The collected data assists CMCS in monitoring and managing grantee progress and identifying challenges and improvement opportunities.", + "commits_count": 708, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 860, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 707, + "closed_pull_requests_count": 144, + "forks_count": 3, + "stargazers_count": 3, + "watchers_count": 13, + "total_project_lines": 66753, + "average_project_lines": 118, + "total_project_comment_lines": 2735, + "average_project_comment_lines": 5, + "total_project_blank_lines": 5562, + "average_blank_lines": 10, + "commits_by_month": { + "2025/1": 14, + "2024/12": 12, + "2024/11": 4 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-16T00:00:00.000Z", + 1 + ], + [ + "2024-08-19T00:00:00.000Z", + 3 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-09-04T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ], + [ + "2024-11-14T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-02-02T15:07:39Z", + "ossf_scorecard": { + "date": "2025-01-19T13:20:45Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-mfp", + "commit": "65a62195f282a5184998cd64639f281982434639" }, - "predominant_langs": { - "TypeScript": 1622449, - "JavaScript": 66517, - "Shell": 7771, - "Python": 4110, - "Smarty": 3151, - "SCSS": 2387, - "HTML": 1661 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@axe-core/playwright", - -0.002739726, - "2025-01-01T18:41:23.000" - ], - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "@faker-js/faker", - 0.8164383562, - "2025-01-01T18:41:23.000" - ], - [ - "@playwright/test", - -0.0602739726, - "2025-01-01T18:41:23.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "@types/dotenv", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "@types/flat", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:41:23.000" - ], - [ - "@types/node", - 0.0, - "2024-07-01T06:51:08.000" - ], - [ - "@types/node", - 0.002739726, - "2024-06-08T11:53:05.000" - ], - [ - "@types/yargs", - -0.002739726, - "2024-07-01T06:51:08.000" - ], - [ - "@types/yargs", - 0.7095890411, - "2025-01-01T18:41:23.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.9945205479, - "2024-04-04T16:19:22.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.1671232877, - "2024-06-08T11:53:05.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.2246575342, - "2024-07-01T06:51:08.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.7424657534, - "2025-01-01T18:41:23.000" - ], - [ - "@typescript-eslint/parser", - 1.9945205479, - "2024-04-04T16:19:22.000" - ], - [ - "@typescript-eslint/parser", - 2.1671232877, - "2024-06-08T11:53:05.000" - ], - [ - "@typescript-eslint/parser", - 2.2246575342, - "2024-07-01T06:51:08.000" - ], - [ - "@typescript-eslint/parser", - 2.7424657534, - "2025-01-01T18:41:23.000" - ], - [ - "amazon-user-pool-srp-client", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "aws-sdk", - 0.0, - "2024-04-04T16:19:22.000" - ], - [ - "dotenv", - 2.7945205479, - "2024-07-01T06:51:08.000" - ], - [ - "dotenv", - 3.5835616438, - "2025-01-01T18:41:23.000" - ], - [ - "eslint", - 0.0, - "2024-04-04T16:19:22.000" - ], - [ - "eslint", - 0.2410958904, - "2025-01-01T18:41:23.000" - ], - [ - "eslint", - 0.2657534247, - "2024-06-08T11:53:05.000" - ], - [ - "eslint", - 0.3424657534, - "2024-07-01T06:51:08.000" - ], - [ - "eslint-config-airbnb", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "eslint-plugin-cypress", - 0.0, - "2024-04-04T16:19:22.000" - ], - [ - "eslint-plugin-cypress", - 0.1178082192, - "2024-07-01T06:51:08.000" - ], - [ - "eslint-plugin-cypress", - 0.5397260274, - "2025-01-01T18:41:23.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "eslint-plugin-jest", - 1.4712328767, - "2024-04-04T16:19:22.000" - ], - [ - "eslint-plugin-jest", - 1.7753424658, - "2024-07-01T06:51:08.000" - ], - [ - "eslint-plugin-jest", - 2.3123287671, - "2025-01-01T18:41:23.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "eslint-plugin-react-hooks", - -0.2082191781, - "2024-04-04T16:19:22.000" - ], - [ - "eslint-plugin-react-hooks", - 1.6602739726, - "2024-07-01T06:51:08.000" - ], - [ - "eslint-plugin-react-hooks", - 2.2712328767, - "2025-01-01T18:41:23.000" - ], - [ - "prettier", - 0.7835616438, - "2024-04-04T16:19:22.000" - ], - [ - "prettier", - 1.1205479452, - "2024-06-08T11:53:05.000" - ], - [ - "prettier", - 1.1342465753, - "2024-07-01T06:51:08.000" - ], - [ - "prettier", - 1.6164383562, - "2025-01-01T18:41:23.000" - ], - [ - "serverless", - -0.3260273973, - "2024-04-04T16:19:22.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "serverless", - 0.0630136986, - "2024-07-01T06:51:08.000" - ], - [ - "serverless-api-client-certificate", - 0.0, - "2024-07-01T06:51:08.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "serverless-cloudfront-invalidate", - 0.0, - "2024-06-08T11:53:05.000" - ], - [ - "serverless-dotenv-plugin", - 1.202739726, - "2025-01-01T18:41:23.000" - ], - [ - "serverless-iam-helper", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "serverless-idempotency-helper", - 0.0, - "2024-06-08T11:53:05.000" - ], - [ - "serverless-offline", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "serverless-offline", - 1.0410958904, - "2024-04-04T16:19:22.000" - ], - [ - "serverless-offline", - 1.3780821918, - "2024-06-08T11:53:05.000" - ], - [ - "serverless-online", - 0.0, - "2024-06-08T11:53:05.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "serverless-plugin-warmup", - 0.0, - "2024-06-08T11:53:05.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:41:23.000" - ], - [ - "serverless-s3-sync", - 1.9698630137, - "2024-06-08T11:53:05.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "typescript", - 1.1342465753, - "2024-04-04T16:19:22.000" - ], - [ - "typescript", - 1.1917808219, - "2024-06-08T11:53:05.000" - ], - [ - "typescript", - 1.3863013699, - "2024-07-01T06:51:08.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:41:23.000" - ], - [ - "util", - 0.0, - "2025-01-01T18:41:23.000" - ], - [ - "yargs", - 2.3890410959, - "2025-01-01T18:41:23.000" - ] + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "30 out of 30 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "16 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 1621985, + "CodeBytes": 0, + "Lines": 56051, + "Code": 48938, + "Comment": 2291, + "Blank": 4822, + "Complexity": 2839, + "Count": 452, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 66517, + "CodeBytes": 0, + "Lines": 2194, + "Code": 1615, + "Comment": 297, + "Blank": 282, + "Complexity": 85, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 157571, + "CodeBytes": 0, + "Lines": 4101, + "Code": 4096, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 23, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 39615, + "CodeBytes": 0, + "Lines": 1083, + "Code": 974, + "Comment": 39, + "Blank": 70, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 41567, + "CodeBytes": 0, + "Lines": 632, + "Code": 418, + "Comment": 0, + "Blank": 214, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 16588, + "CodeBytes": 0, + "Lines": 491, + "Code": 359, + "Comment": 49, + "Blank": 83, + "Complexity": 72, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 63389, + "CodeBytes": 0, + "Lines": 1814, + "Code": 1759, + "Comment": 12, + "Blank": 43, + "Complexity": 128, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 256, + "CodeBytes": 0, + "Lines": 6, + "Code": 5, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 277703, + "CodeBytes": 0, + "Lines": 60, + "Code": 60, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 898, + "CodeBytes": 0, + "Lines": 31, + "Code": 31, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 3151, + "CodeBytes": 0, + "Lines": 69, + "Code": 64, + "Comment": 0, + "Blank": 5, + "Complexity": 2, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2404, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1661, + "CodeBytes": 0, + "Lines": 52, + "Code": 47, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 4110, + "CodeBytes": 0, + "Lines": 113, + "Code": 74, + "Comment": 30, + "Blank": 9, + "Complexity": 16, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 2387, + "CodeBytes": 0, + "Lines": 138, + "Code": 111, + "Comment": 8, + "Blank": 19, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1773129.6236084453, + "estimatedScheduleMonths_low": 17.70713124379511, + "estimatedPeople_low": 9.755326007024737, + "estimatedCost_high": 5525846.329922134, + "estimatedScheduleMonths_high": 17.70713124379511, + "estimatedPeople_high": 9.755326007024737, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 452 56051 4822 2291 48938 2839\n(ULOC) 23923\n-------------------------------------------------------------------------------\nJavaScript 30 2194 282 297 1615 85\n(ULOC) 1233\n-------------------------------------------------------------------------------\nJSON 23 4101 5 0 4096 0\n(ULOC) 1558\n-------------------------------------------------------------------------------\nYAML 15 1083 70 39 974 0\n(ULOC) 639\n-------------------------------------------------------------------------------\nMarkdown 13 632 214 0 418 0\n(ULOC) 333\n-------------------------------------------------------------------------------\nShell 11 491 83 49 359 72\n(ULOC) 336\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 7 1814 43 12 1759 128\n(ULOC) 976\n-------------------------------------------------------------------------------\nTypeScript Typings 4 6 0 1 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nSVG 3 60 0 0 60 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nXML 3 31 0 0 31 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nSmarty Template 2 69 5 0 64 2\n(ULOC) 61\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 52 3 2 47 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nPython 1 113 9 30 74 16\n(ULOC) 86\n-------------------------------------------------------------------------------\nSass 1 138 19 8 111 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 570 67040 5581 2745 58714 3151\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 29323\nDRYness % 0.44\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,944,348\nEstimated Schedule Effort (organic) 17.71 months\nEstimated People Required (organic) 9.76\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2306956 bytes, 2.307 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 1622449, + "JavaScript": 66517, + "Shell": 7771, + "Python": 4110, + "Smarty": 3151, + "SCSS": 2387, + "HTML": 1661 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@axe-core/playwright", + -0.002739726, + "2025-01-01T18:41:23.000" + ], + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "@faker-js/faker", + 0.8164383562, + "2025-01-01T18:41:23.000" + ], + [ + "@playwright/test", + -0.0602739726, + "2025-01-01T18:41:23.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "@types/dotenv", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "@types/flat", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:41:23.000" + ], + [ + "@types/node", + 0.0, + "2024-07-01T06:51:08.000" + ], + [ + "@types/node", + 0.002739726, + "2024-06-08T11:53:05.000" + ], + [ + "@types/yargs", + -0.002739726, + "2024-07-01T06:51:08.000" + ], + [ + "@types/yargs", + 0.7095890411, + "2025-01-01T18:41:23.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.9945205479, + "2024-04-04T16:19:22.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.1671232877, + "2024-06-08T11:53:05.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.2246575342, + "2024-07-01T06:51:08.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.7424657534, + "2025-01-01T18:41:23.000" + ], + [ + "@typescript-eslint/parser", + 1.9945205479, + "2024-04-04T16:19:22.000" + ], + [ + "@typescript-eslint/parser", + 2.1671232877, + "2024-06-08T11:53:05.000" + ], + [ + "@typescript-eslint/parser", + 2.2246575342, + "2024-07-01T06:51:08.000" + ], + [ + "@typescript-eslint/parser", + 2.7424657534, + "2025-01-01T18:41:23.000" + ], + [ + "amazon-user-pool-srp-client", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "aws-sdk", + 0.0, + "2024-04-04T16:19:22.000" + ], + [ + "dotenv", + 2.7945205479, + "2024-07-01T06:51:08.000" + ], + [ + "dotenv", + 3.5835616438, + "2025-01-01T18:41:23.000" + ], + [ + "eslint", + 0.0, + "2024-04-04T16:19:22.000" + ], + [ + "eslint", + 0.2410958904, + "2025-01-01T18:41:23.000" + ], + [ + "eslint", + 0.2657534247, + "2024-06-08T11:53:05.000" + ], + [ + "eslint", + 0.3424657534, + "2024-07-01T06:51:08.000" + ], + [ + "eslint-config-airbnb", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "eslint-plugin-cypress", + 0.0, + "2024-04-04T16:19:22.000" + ], + [ + "eslint-plugin-cypress", + 0.1178082192, + "2024-07-01T06:51:08.000" + ], + [ + "eslint-plugin-cypress", + 0.5397260274, + "2025-01-01T18:41:23.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "eslint-plugin-jest", + 1.4712328767, + "2024-04-04T16:19:22.000" + ], + [ + "eslint-plugin-jest", + 1.7753424658, + "2024-07-01T06:51:08.000" + ], + [ + "eslint-plugin-jest", + 2.3123287671, + "2025-01-01T18:41:23.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "eslint-plugin-react-hooks", + -0.2082191781, + "2024-04-04T16:19:22.000" + ], + [ + "eslint-plugin-react-hooks", + 1.6602739726, + "2024-07-01T06:51:08.000" + ], + [ + "eslint-plugin-react-hooks", + 2.2712328767, + "2025-01-01T18:41:23.000" + ], + [ + "prettier", + 0.7835616438, + "2024-04-04T16:19:22.000" + ], + [ + "prettier", + 1.1205479452, + "2024-06-08T11:53:05.000" + ], + [ + "prettier", + 1.1342465753, + "2024-07-01T06:51:08.000" + ], + [ + "prettier", + 1.6164383562, + "2025-01-01T18:41:23.000" + ], + [ + "serverless", + -0.3260273973, + "2024-04-04T16:19:22.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "serverless", + 0.0630136986, + "2024-07-01T06:51:08.000" + ], + [ + "serverless-api-client-certificate", + 0.0, + "2024-07-01T06:51:08.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "serverless-cloudfront-invalidate", + 0.0, + "2024-06-08T11:53:05.000" + ], + [ + "serverless-dotenv-plugin", + 1.202739726, + "2025-01-01T18:41:23.000" + ], + [ + "serverless-iam-helper", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "serverless-idempotency-helper", + 0.0, + "2024-06-08T11:53:05.000" + ], + [ + "serverless-offline", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "serverless-offline", + 1.0410958904, + "2024-04-04T16:19:22.000" + ], + [ + "serverless-offline", + 1.3780821918, + "2024-06-08T11:53:05.000" + ], + [ + "serverless-online", + 0.0, + "2024-06-08T11:53:05.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "serverless-plugin-warmup", + 0.0, + "2024-06-08T11:53:05.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:41:23.000" + ], + [ + "serverless-s3-sync", + 1.9698630137, + "2024-06-08T11:53:05.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "typescript", + 1.1342465753, + "2024-04-04T16:19:22.000" + ], + [ + "typescript", + 1.1917808219, + "2024-06-08T11:53:05.000" + ], + [ + "typescript", + 1.3863013699, + "2024-07-01T06:51:08.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:41:23.000" + ], + [ + "util", + 0.0, + "2025-01-01T18:41:23.000" + ], + [ + "yargs", + 2.3890410959, + "2025-01-01T18:41:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json index 41bcb6b2dd..108bfb6a46 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-qmr/macpro-mdct-qmr_data.json @@ -1,876 +1,876 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-qmr", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-qmr", - "description": "QMR is the CMCS MDCT application for collecting state data for related to measuring and quantifying healthcare processes and ensuring quality healthcare for Medicaid beneficiaries. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 4626, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1856, - "open_pull_requests_count": 7, - "merged_pull_requests_count": 1575, - "closed_pull_requests_count": 274, - "forks_count": 2, - "stargazers_count": 3, - "watchers_count": 13, - "total_project_lines": 216182, - "average_project_lines": 105, - "total_project_comment_lines": 5693, - "average_project_comment_lines": 3, - "total_project_blank_lines": 15265, - "average_blank_lines": 7, - "commits_by_month": { - "2025/1": 9, - "2024/12": 14, - "2024/11": 7 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 2 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 2 - ], - [ - "2024-08-20T00:00:00.000Z", - 1 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-11-19T00:00:00.000Z", - 1 - ], - [ - "2024-12-11T00:00:00.000Z", - 1 - ], - [ - "2024-12-13T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2021-02-25T16:57:16Z", - "ossf_scorecard": { - "date": "2025-01-19T13:24:17Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-qmr", - "commit": "7791707bd966679a8f0ebdc81de8ee932f40a543" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "29 out of 29 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "21 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 6793161, - "CodeBytes": 0, - "Lines": 204756, - "Code": 185258, - "Comment": 5284, - "Blank": 14214, - "Complexity": 6621, - "Count": 1898, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 60744, - "CodeBytes": 0, - "Lines": 2478, - "Code": 2102, - "Comment": 224, - "Blank": 152, - "Complexity": 37, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 18159, - "CodeBytes": 0, - "Lines": 642, - "Code": 642, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 33819, - "CodeBytes": 0, - "Lines": 940, - "Code": 852, - "Comment": 24, - "Blank": 64, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 67627, - "CodeBytes": 0, - "Lines": 1199, - "Code": 780, - "Comment": 0, - "Blank": 419, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 15090, - "CodeBytes": 0, - "Lines": 468, - "Code": 342, - "Comment": 49, - "Blank": 77, - "Complexity": 70, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 64324, - "CodeBytes": 0, - "Lines": 1849, - "Code": 1793, - "Comment": 12, - "Blank": 44, - "Complexity": 157, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 366107, - "CodeBytes": 0, - "Lines": 117, - "Code": 117, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 3388, - "CodeBytes": 0, - "Lines": 105, - "Code": 57, - "Comment": 24, - "Blank": 24, - "Complexity": 4, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5436, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 2909, - "CodeBytes": 0, - "Lines": 87, - "Code": 84, - "Comment": 2, - "Blank": 1, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 22833, - "CodeBytes": 0, - "Lines": 654, - "Code": 626, - "Comment": 3, - "Blank": 25, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 2121, - "CodeBytes": 0, - "Lines": 62, - "Code": 47, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2404, - "CodeBytes": 0, - "Lines": 79, - "Code": 49, - "Comment": 16, - "Blank": 14, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 326, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6178646.750703175, - "estimatedScheduleMonths_low": 28.455505224942875, - "estimatedPeople_low": 21.153224243485077, - "estimatedCost_high": 19255361.82841305, - "estimatedScheduleMonths_high": 28.455505224942875, - "estimatedPeople_high": 21.153224243485077, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 1898 204756 14214 5284 185258 6621\n(ULOC) 24129\n-------------------------------------------------------------------------------\nJavaScript 21 2478 152 224 2102 37\n(ULOC) 945\n-------------------------------------------------------------------------------\nJSON 18 642 0 0 642 0\n(ULOC) 428\n-------------------------------------------------------------------------------\nYAML 16 940 64 24 852 0\n(ULOC) 534\n-------------------------------------------------------------------------------\nMarkdown 13 1199 419 0 780 0\n(ULOC) 610\n-------------------------------------------------------------------------------\nShell 11 468 77 49 342 70\n(ULOC) 317\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 7 1849 44 12 1793 157\n(ULOC) 989\n-------------------------------------------------------------------------------\nSVG 7 117 0 0 117 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nTypeScript Typings 5 105 24 24 57 4\n(ULOC) 75\n-------------------------------------------------------------------------------\nPlain Text 4 28 3 0 25 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 87 1 2 84 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nSass 2 654 25 3 626 0\n(ULOC) 599\n-------------------------------------------------------------------------------\nSmarty Template 2 62 15 0 47 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2009 213477 15052 5638 192787 6898\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 28820\nDRYness % 0.14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,775,275\nEstimated Schedule Effort (organic) 28.46 months\nEstimated People Required (organic) 21.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7458487 bytes, 7.458 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-qmr", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-qmr", + "description": "QMR is the CMCS MDCT application for collecting state data for related to measuring and quantifying healthcare processes and ensuring quality healthcare for Medicaid beneficiaries. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 4626, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1856, + "open_pull_requests_count": 7, + "merged_pull_requests_count": 1575, + "closed_pull_requests_count": 274, + "forks_count": 2, + "stargazers_count": 3, + "watchers_count": 13, + "total_project_lines": 216182, + "average_project_lines": 105, + "total_project_comment_lines": 5693, + "average_project_comment_lines": 3, + "total_project_blank_lines": 15265, + "average_blank_lines": 7, + "commits_by_month": { + "2025/1": 9, + "2024/12": 14, + "2024/11": 7 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 2 + ], + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 2 + ], + [ + "2024-08-20T00:00:00.000Z", + 1 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-08-30T00:00:00.000Z", + 1 + ], + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-11-19T00:00:00.000Z", + 1 + ], + [ + "2024-12-11T00:00:00.000Z", + 1 + ], + [ + "2024-12-13T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2021-02-25T16:57:16Z", + "ossf_scorecard": { + "date": "2025-01-19T13:24:17Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-qmr", + "commit": "7791707bd966679a8f0ebdc81de8ee932f40a543" }, - "predominant_langs": { - "TypeScript": 4033844, - "JavaScript": 60744, - "SCSS": 22833, - "Shell": 7224, - "HTML": 2909, - "Smarty": 2121 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@types/dotenv", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@types/flat", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:40:23.000" - ], - [ - "@types/node", - 0.0, - "2024-04-13T02:28:05.000" - ], - [ - "@types/node", - 0.0082191781, - "2023-08-29T18:14:22.000" - ], - [ - "@types/yargs", - -0.002739726, - "2024-04-13T02:28:05.000" - ], - [ - "@types/yargs", - 0.2246575342, - "2023-08-29T18:14:22.000" - ], - [ - "@types/yargs", - 0.7095890411, - "2025-01-01T18:40:23.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4, - "2023-08-29T18:14:22.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.5342465753, - "2023-10-22T07:03:03.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.9178082192, - "2024-03-11T01:24:26.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.0136986301, - "2024-04-13T02:28:05.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 2.7424657534, - "2025-01-01T18:40:23.000" - ], - [ - "@typescript-eslint/parser", - 1.4, - "2023-08-29T18:14:22.000" - ], - [ - "@typescript-eslint/parser", - 1.5342465753, - "2023-10-22T07:03:03.000" - ], - [ - "@typescript-eslint/parser", - 1.9178082192, - "2024-03-11T01:24:26.000" - ], - [ - "@typescript-eslint/parser", - 2.0136986301, - "2024-04-13T02:28:05.000" - ], - [ - "@typescript-eslint/parser", - 2.7424657534, - "2025-01-01T18:40:23.000" - ], - [ - "aws-sdk", - 0.0, - "2024-03-11T01:24:26.000" - ], - [ - "cypress", - 1.8410958904, - "2023-08-29T18:14:22.000" - ], - [ - "cypress-file-upload", - 0.0, - "2023-08-29T18:14:22.000" - ], - [ - "cypress-image-snapshot", - 0.0, - "2023-08-29T18:14:22.000" - ], - [ - "cypress-tests", - -1.0, - "2023-10-22T07:03:03.000" - ], - [ - "cypress-xpath", - 0.0821917808, - "2023-08-29T18:14:22.000" - ], - [ - "dotenv", - 2.1178082192, - "2023-10-22T07:03:03.000" - ], - [ - "dotenv", - 2.7945205479, - "2024-04-13T02:28:05.000" - ], - [ - "dotenv", - 3.5835616438, - "2025-01-01T18:40:23.000" - ], - [ - "eslint", - 2.0684931507, - "2023-08-29T18:14:22.000" - ], - [ - "eslint", - 2.2219178082, - "2023-10-22T07:03:03.000" - ], - [ - "eslint", - 2.5671232877, - "2024-03-11T01:24:26.000" - ], - [ - "eslint", - 2.6821917808, - "2024-04-13T02:28:05.000" - ], - [ - "eslint", - 3.3726027397, - "2025-01-01T18:40:23.000" - ], - [ - "eslint-config-airbnb", - 1.1315068493, - "2025-01-01T18:40:23.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "eslint-plugin-react-hooks", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "prettier", - 0.3506849315, - "2023-10-22T07:03:03.000" - ], - [ - "prettier", - 0.7835616438, - "2024-04-13T02:28:05.000" - ], - [ - "prettier", - 1.6164383562, - "2025-01-01T18:40:23.000" - ], - [ - "serverless", - -0.3260273973, - "2024-04-13T02:28:05.000" - ], - [ - "serverless", - -0.2712328767, - "2024-03-11T01:24:26.000" - ], - [ - "serverless", - -0.0273972603, - "2023-10-22T07:03:03.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-dotenv-plugin", - 0.6273972603, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-iam-helper", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-idempotency-helper", - 0.0, - "2024-04-13T02:28:05.000" - ], - [ - "serverless-offline", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-offline", - 0.7479452055, - "2023-10-22T07:03:03.000" - ], - [ - "serverless-offline", - 1.0410958904, - "2024-04-13T02:28:05.000" - ], - [ - "serverless-offline-ssm", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-online", - 0.0, - "2024-04-13T02:28:05.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-plugin-warmup", - 0.0, - "2024-04-13T02:28:05.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-stack-termination-protection", - 1.9643835616, - "2025-01-01T18:40:23.000" - ], - [ - "typescript", - 0.5616438356, - "2023-10-22T07:03:03.000" - ], - [ - "typescript", - 1.095890411, - "2024-03-11T01:24:26.000" - ], - [ - "typescript", - 1.1917808219, - "2024-04-13T02:28:05.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:23.000" - ], - [ - "xml2js", - 0.1671232877, - "2025-01-01T18:40:23.000" - ], - [ - "yargs", - 2.3890410959, - "2025-01-01T18:40:23.000" - ] + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "29 out of 29 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "21 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 4033844, + "CodeBytes": 0, + "Lines": 127108, + "Code": 115588, + "Comment": 2858, + "Blank": 8662, + "Complexity": 5427, + "Count": 1421, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 60744, + "CodeBytes": 0, + "Lines": 2478, + "Code": 2102, + "Comment": 224, + "Blank": 152, + "Complexity": 37, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 18159, + "CodeBytes": 0, + "Lines": 642, + "Code": 642, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 33749, + "CodeBytes": 0, + "Lines": 937, + "Code": 850, + "Comment": 24, + "Blank": 63, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 67627, + "CodeBytes": 0, + "Lines": 1199, + "Code": 780, + "Comment": 0, + "Blank": 419, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 15103, + "CodeBytes": 0, + "Lines": 468, + "Code": 342, + "Comment": 49, + "Blank": 77, + "Complexity": 70, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 64420, + "CodeBytes": 0, + "Lines": 1850, + "Code": 1794, + "Comment": 12, + "Blank": 44, + "Complexity": 157, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 366107, + "CodeBytes": 0, + "Lines": 117, + "Code": 117, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 3388, + "CodeBytes": 0, + "Lines": 105, + "Code": 57, + "Comment": 24, + "Blank": 24, + "Complexity": 4, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5436, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 2909, + "CodeBytes": 0, + "Lines": 87, + "Code": 84, + "Comment": 2, + "Blank": 1, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 22833, + "CodeBytes": 0, + "Lines": 654, + "Code": 626, + "Comment": 3, + "Blank": 25, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 2121, + "CodeBytes": 0, + "Lines": 62, + "Code": 47, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2404, + "CodeBytes": 0, + "Lines": 79, + "Code": 49, + "Comment": 16, + "Blank": 14, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 326, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3858264.131114208, + "estimatedScheduleMonths_low": 23.79335940665117, + "estimatedPeople_low": 15.797403048878643, + "estimatedCost_high": 12024036.147678578, + "estimatedScheduleMonths_high": 23.79335940665117, + "estimatedPeople_high": 15.797403048878643, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 1421 127108 8662 2858 115588 5427\n(ULOC) 23618\n-------------------------------------------------------------------------------\nJavaScript 21 2478 152 224 2102 37\n(ULOC) 945\n-------------------------------------------------------------------------------\nJSON 18 642 0 0 642 0\n(ULOC) 428\n-------------------------------------------------------------------------------\nYAML 16 937 63 24 850 0\n(ULOC) 534\n-------------------------------------------------------------------------------\nMarkdown 13 1199 419 0 780 0\n(ULOC) 610\n-------------------------------------------------------------------------------\nShell 11 468 77 49 342 70\n(ULOC) 317\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 7 1850 44 12 1794 157\n(ULOC) 990\n-------------------------------------------------------------------------------\nSVG 7 117 0 0 117 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nTypeScript Typings 5 105 24 24 57 4\n(ULOC) 75\n-------------------------------------------------------------------------------\nPlain Text 4 28 3 0 25 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nHTML 2 87 1 2 84 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nSass 2 654 25 3 626 0\n(ULOC) 599\n-------------------------------------------------------------------------------\nSmarty Template 2 62 15 0 47 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nBASH 1 79 14 16 49 9\n(ULOC) 58\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 1532 135827 9499 3212 123116 5704\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 28310\nDRYness % 0.21\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,230,829\nEstimated Schedule Effort (organic) 23.79 months\nEstimated People Required (organic) 15.80\n───────────────────────────────────────────────────────────────────────────────\nProcessed 4699209 bytes, 4.699 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 4033844, + "JavaScript": 60744, + "SCSS": 22833, + "Shell": 7224, + "HTML": 2909, + "Smarty": 2121 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@types/dotenv", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@types/flat", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:40:23.000" + ], + [ + "@types/node", + 0.0, + "2024-04-13T02:28:05.000" + ], + [ + "@types/node", + 0.0082191781, + "2023-08-29T18:14:22.000" + ], + [ + "@types/yargs", + -0.002739726, + "2024-04-13T02:28:05.000" + ], + [ + "@types/yargs", + 0.2246575342, + "2023-08-29T18:14:22.000" + ], + [ + "@types/yargs", + 0.7095890411, + "2025-01-01T18:40:23.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4, + "2023-08-29T18:14:22.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.5342465753, + "2023-10-22T07:03:03.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.9178082192, + "2024-03-11T01:24:26.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.0136986301, + "2024-04-13T02:28:05.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 2.7424657534, + "2025-01-01T18:40:23.000" + ], + [ + "@typescript-eslint/parser", + 1.4, + "2023-08-29T18:14:22.000" + ], + [ + "@typescript-eslint/parser", + 1.5342465753, + "2023-10-22T07:03:03.000" + ], + [ + "@typescript-eslint/parser", + 1.9178082192, + "2024-03-11T01:24:26.000" + ], + [ + "@typescript-eslint/parser", + 2.0136986301, + "2024-04-13T02:28:05.000" + ], + [ + "@typescript-eslint/parser", + 2.7424657534, + "2025-01-01T18:40:23.000" + ], + [ + "aws-sdk", + 0.0, + "2024-03-11T01:24:26.000" + ], + [ + "cypress", + 1.8410958904, + "2023-08-29T18:14:22.000" + ], + [ + "cypress-file-upload", + 0.0, + "2023-08-29T18:14:22.000" + ], + [ + "cypress-image-snapshot", + 0.0, + "2023-08-29T18:14:22.000" + ], + [ + "cypress-tests", + -1.0, + "2023-10-22T07:03:03.000" + ], + [ + "cypress-xpath", + 0.0821917808, + "2023-08-29T18:14:22.000" + ], + [ + "dotenv", + 2.1178082192, + "2023-10-22T07:03:03.000" + ], + [ + "dotenv", + 2.7945205479, + "2024-04-13T02:28:05.000" + ], + [ + "dotenv", + 3.5835616438, + "2025-01-01T18:40:23.000" + ], + [ + "eslint", + 2.0684931507, + "2023-08-29T18:14:22.000" + ], + [ + "eslint", + 2.2219178082, + "2023-10-22T07:03:03.000" + ], + [ + "eslint", + 2.5671232877, + "2024-03-11T01:24:26.000" + ], + [ + "eslint", + 2.6821917808, + "2024-04-13T02:28:05.000" + ], + [ + "eslint", + 3.3726027397, + "2025-01-01T18:40:23.000" + ], + [ + "eslint-config-airbnb", + 1.1315068493, + "2025-01-01T18:40:23.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "eslint-plugin-react-hooks", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "prettier", + 0.3506849315, + "2023-10-22T07:03:03.000" + ], + [ + "prettier", + 0.7835616438, + "2024-04-13T02:28:05.000" + ], + [ + "prettier", + 1.6164383562, + "2025-01-01T18:40:23.000" + ], + [ + "serverless", + -0.3260273973, + "2024-04-13T02:28:05.000" + ], + [ + "serverless", + -0.2712328767, + "2024-03-11T01:24:26.000" + ], + [ + "serverless", + -0.0273972603, + "2023-10-22T07:03:03.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-dotenv-plugin", + 0.6273972603, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-iam-helper", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-idempotency-helper", + 0.0, + "2024-04-13T02:28:05.000" + ], + [ + "serverless-offline", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-offline", + 0.7479452055, + "2023-10-22T07:03:03.000" + ], + [ + "serverless-offline", + 1.0410958904, + "2024-04-13T02:28:05.000" + ], + [ + "serverless-offline-ssm", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-online", + 0.0, + "2024-04-13T02:28:05.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-plugin-warmup", + 0.0, + "2024-04-13T02:28:05.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-stack-termination-protection", + 1.9643835616, + "2025-01-01T18:40:23.000" + ], + [ + "typescript", + 0.5616438356, + "2023-10-22T07:03:03.000" + ], + [ + "typescript", + 1.095890411, + "2024-03-11T01:24:26.000" + ], + [ + "typescript", + 1.1917808219, + "2024-04-13T02:28:05.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:23.000" + ], + [ + "xml2js", + 0.1671232877, + "2025-01-01T18:40:23.000" + ], + [ + "yargs", + 2.3890410959, + "2025-01-01T18:40:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json b/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json index 52bba67fde..3b4eb9c9aa 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-mdct-seds/macpro-mdct-seds_data.json @@ -1,861 +1,861 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-mdct-seds", - "owner": "Enterprise-CMCS", - "name": "macpro-mdct-seds", - "description": "SEDS is the CMCS MDCT application for collecting state data related to Medicaid and CHIP quarterly enrollment data on a quarterly basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", - "commits_count": 2727, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1084, - "open_pull_requests_count": 23, - "merged_pull_requests_count": 878, - "closed_pull_requests_count": 183, - "forks_count": 4, - "stargazers_count": 3, - "watchers_count": 12, - "total_project_lines": 715640, - "average_project_lines": 1587, - "total_project_comment_lines": 1436, - "average_project_comment_lines": 3, - "total_project_blank_lines": 2828, - "average_blank_lines": 6, - "commits_by_month": { - "2025/1": 2, - "2024/12": 9, - "2024/10": 4, - "2024/9": 15 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 2 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-10-30T00:00:00.000Z", - 1 - ], - [ - "2024-12-13T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 1 - ], - [ - "2024-12-20T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-12-04T19:41:29Z", - "ossf_scorecard": { - "date": "2025-01-19T13:25:07Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-mdct-seds", - "commit": "5c799ac0b740e3ee3253ecc5505d8a51b68ae16f" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "28 out of 28 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 25/27 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 7 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 0, - "reason": "dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "12 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "20 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 14047569, - "CodeBytes": 0, - "Lines": 548319, - "Code": 548319, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 140, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 584673, - "CodeBytes": 0, - "Lines": 20947, - "Code": 19267, - "Comment": 766, - "Blank": 914, - "Complexity": 314, - "Count": 105, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSX", - "Bytes": 259053, - "CodeBytes": 0, - "Lines": 8430, - "Code": 7108, - "Comment": 321, - "Blank": 1001, - "Complexity": 267, - "Count": 82, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 20587, - "CodeBytes": 0, - "Lines": 1306, - "Code": 1087, - "Comment": 51, - "Blank": 168, - "Complexity": 0, - "Count": 55, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 34033, - "CodeBytes": 0, - "Lines": 932, - "Code": 835, - "Comment": 29, - "Blank": 68, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 35777, - "CodeBytes": 0, - "Lines": 826, - "Code": 538, - "Comment": 0, - "Blank": 288, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 11765, - "CodeBytes": 0, - "Lines": 365, - "Code": 251, - "Comment": 46, - "Blank": 68, - "Complexity": 60, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 65925, - "CodeBytes": 0, - "Lines": 1815, - "Code": 1717, - "Comment": 56, - "Blank": 42, - "Complexity": 102, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 18699, - "CodeBytes": 0, - "Lines": 560, - "Code": 384, - "Comment": 80, - "Blank": 96, - "Complexity": 90, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 48437356, - "CodeBytes": 0, - "Lines": 52079, - "Code": 52079, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 254436, - "CodeBytes": 0, - "Lines": 41, - "Code": 41, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 9422, - "CodeBytes": 0, - "Lines": 375, - "Code": 320, - "Comment": 24, - "Blank": 31, - "Complexity": 16, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 5534, - "CodeBytes": 0, - "Lines": 176, - "Code": 146, - "Comment": 20, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1937026, - "CodeBytes": 0, - "Lines": 78531, - "Code": 78531, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 2311, - "CodeBytes": 0, - "Lines": 79, - "Code": 41, - "Comment": 23, - "Blank": 15, - "Complexity": 8, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gherkin Specification", - "Bytes": 87, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 1887, - "CodeBytes": 0, - "Lines": 42, - "Code": 38, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 39, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 38, - "CodeBytes": 0, - "Lines": 1, - "Code": 0, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 246, - "CodeBytes": 0, - "Lines": 9, - "Code": 9, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 24313228.457571227, - "estimatedScheduleMonths_low": 47.89024087961624, - "estimatedPeople_low": 49.45897565894971, - "estimatedCost_high": 75770638.79143484, - "estimatedScheduleMonths_high": 47.89024087961624, - "estimatedPeople_high": 49.45897565894971, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 140 548319 0 0 548319 0\n(ULOC) 10766\n-------------------------------------------------------------------------------\nJavaScript 105 20947 914 766 19267 314\n(ULOC) 4772\n-------------------------------------------------------------------------------\nJSX 82 8430 1001 321 7108 267\n(ULOC) 4488\n-------------------------------------------------------------------------------\nSass 55 1306 168 51 1087 0\n(ULOC) 653\n-------------------------------------------------------------------------------\nYAML 16 932 68 29 835 0\n(ULOC) 557\n-------------------------------------------------------------------------------\nMarkdown 9 826 288 0 538 0\n(ULOC) 487\n-------------------------------------------------------------------------------\nShell 8 365 68 46 251 60\n(ULOC) 241\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 6 1815 42 56 1717 102\n(ULOC) 989\n-------------------------------------------------------------------------------\nPython 6 560 96 80 384 90\n(ULOC) 301\n-------------------------------------------------------------------------------\nCSV 5 52079 0 0 52079 0\n(ULOC) 52076\n-------------------------------------------------------------------------------\nSVG 4 41 0 0 41 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nTypeScript 3 375 31 24 320 16\n(ULOC) 251\n-------------------------------------------------------------------------------\nHTML 2 176 10 20 146 0\n(ULOC) 136\n-------------------------------------------------------------------------------\nPlain Text 2 78531 0 0 78531 0\n(ULOC) 78532\n-------------------------------------------------------------------------------\nBASH 1 79 15 23 41 8\n(ULOC) 59\n-------------------------------------------------------------------------------\nGherkin Specificati\u2026 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nSmarty Template 1 42 4 0 38 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 9 0 0 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 449 714838 2705 1417 710716 857\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 154066\nDRYness % 0.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $26,660,987\nEstimated Schedule Effort (organic) 47.89 months\nEstimated People Required (organic) 49.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 65726463 bytes, 65.726 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-mdct-seds", + "owner": "Enterprise-CMCS", + "name": "macpro-mdct-seds", + "description": "SEDS is the CMCS MDCT application for collecting state data related to Medicaid and CHIP quarterly enrollment data on a quarterly basis. The collected data assists CMCS in monitoring, managing, and better understanding Medicaid and CHIP programs.", + "commits_count": 2727, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1084, + "open_pull_requests_count": 23, + "merged_pull_requests_count": 878, + "closed_pull_requests_count": 183, + "forks_count": 4, + "stargazers_count": 3, + "watchers_count": 12, + "total_project_lines": 715640, + "average_project_lines": 1587, + "total_project_comment_lines": 1436, + "average_project_comment_lines": 3, + "total_project_blank_lines": 2828, + "average_blank_lines": 6, + "commits_by_month": { + "2025/1": 2, + "2024/12": 9, + "2024/10": 4, + "2024/9": 15 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 2 + ], + [ + "2024-08-30T00:00:00.000Z", + 1 + ], + [ + "2024-09-06T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-10-30T00:00:00.000Z", + 1 + ], + [ + "2024-12-13T00:00:00.000Z", + 1 + ], + [ + "2024-12-17T00:00:00.000Z", + 1 + ], + [ + "2024-12-20T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-12-04T19:41:29Z", + "ossf_scorecard": { + "date": "2025-01-19T13:25:07Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-mdct-seds", + "commit": "5c799ac0b740e3ee3253ecc5505d8a51b68ae16f" }, - "predominant_langs": { - "JavaScript": 844592, - "SCSS": 20587, - "Python": 18699, - "TypeScript": 9422, - "HTML": 5534, - "Shell": 3815, - "Smarty": 1887, - "Gherkin": 87 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@types/dotenv", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:40:23.000" - ], - [ - "@types/node", - 0.0, - "2024-07-01T10:17:05.000" - ], - [ - "@types/node", - 0.698630137, - "2024-06-08T15:19:35.000" - ], - [ - "@types/yargs", - -0.002739726, - "2024-07-01T10:17:05.000" - ], - [ - "@types/yargs", - 0.2246575342, - "2023-09-08T23:05:36.000" - ], - [ - "@types/yargs", - 0.7095890411, - "2025-01-01T18:40:23.000" - ], - [ - "babel-plugin-transform-inline-environment-variables", - 1.7287671233, - "2025-01-01T18:40:23.000" - ], - [ - "chromedriver", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "cypress", - 1.8465753425, - "2023-09-08T23:05:36.000" - ], - [ - "cypress-cucumber-preprocessor", - 0.0, - "2023-09-08T23:05:36.000" - ], - [ - "cypress-file-upload", - 0.0, - "2023-09-08T23:05:36.000" - ], - [ - "cypress-xpath", - 0.0821917808, - "2023-09-08T23:05:36.000" - ], - [ - "dotenv", - 2.1178082192, - "2023-09-08T23:05:36.000" - ], - [ - "dotenv", - 2.7945205479, - "2024-07-01T10:17:05.000" - ], - [ - "dotenv", - 3.5835616438, - "2025-01-01T18:40:23.000" - ], - [ - "jsonpath", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "nightwatch", - 0.797260274, - "2024-07-01T10:17:05.000" - ], - [ - "nightwatch", - 1.4246575342, - "2025-01-01T18:40:23.000" - ], - [ - "nightwatch", - 1.6684931507, - "2023-09-08T23:05:36.000" - ], - [ - "prettier", - 2.7506849315, - "2023-09-08T23:05:36.000" - ], - [ - "prettier", - 3.5205479452, - "2024-06-08T15:19:35.000" - ], - [ - "prettier", - 3.5369863014, - "2024-07-01T10:17:05.000" - ], - [ - "prettier", - 4.0191780822, - "2025-01-01T18:40:23.000" - ], - [ - "serverless", - -0.095890411, - "2023-09-08T23:05:36.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless", - 0.0164383562, - "2024-06-18T20:04:57.000" - ], - [ - "serverless", - 0.0630136986, - "2024-07-01T10:17:05.000" - ], - [ - "serverless-api-client-certificate", - 0.0, - "2024-07-01T10:17:05.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-dotenv-plugin", - 0.6273972603, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-iam-helper", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-idempotency-helper", - 0.0, - "2024-06-18T20:04:57.000" - ], - [ - "serverless-offline", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-offline", - 1.3780821918, - "2024-06-08T15:19:35.000" - ], - [ - "serverless-offline-ssm", - 0.0, - "2024-06-08T15:19:35.000" - ], - [ - "serverless-online", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-plugin-warmup", - 0.0, - "2024-06-18T20:04:57.000" - ], - [ - "serverless-plugin-warmup", - 1.4438356164, - "2023-09-08T23:05:36.000" - ], - [ - "serverless-plugin-warmup", - 2.4931506849, - "2024-06-08T15:19:35.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:40:23.000" - ], - [ - "serverless-stack-termination-protection", - 1.9643835616, - "2024-06-08T15:19:35.000" - ], - [ - "typescript", - 0.5616438356, - "2023-09-08T23:05:36.000" - ], - [ - "typescript", - 1.1917808219, - "2024-06-18T20:04:57.000" - ], - [ - "typescript", - 1.3863013699, - "2024-07-01T10:17:05.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:23.000" - ], - [ - "yargs", - 2.3890410959, - "2025-01-01T18:40:23.000" - ] + "score": 5.1, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "28 out of 28 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 25/27 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 7 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 0, + "reason": "dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "12 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "20 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 14047569, + "CodeBytes": 0, + "Lines": 548319, + "Code": 548319, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 140, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 585396, + "CodeBytes": 0, + "Lines": 20974, + "Code": 19290, + "Comment": 766, + "Blank": 918, + "Complexity": 324, + "Count": 105, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSX", + "Bytes": 259127, + "CodeBytes": 0, + "Lines": 8432, + "Code": 7110, + "Comment": 321, + "Blank": 1001, + "Complexity": 267, + "Count": 82, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 20587, + "CodeBytes": 0, + "Lines": 1306, + "Code": 1087, + "Comment": 51, + "Blank": 168, + "Complexity": 0, + "Count": 55, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 34033, + "CodeBytes": 0, + "Lines": 932, + "Code": 835, + "Comment": 29, + "Blank": 68, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 35777, + "CodeBytes": 0, + "Lines": 826, + "Code": 538, + "Comment": 0, + "Blank": 288, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 11765, + "CodeBytes": 0, + "Lines": 365, + "Code": 251, + "Comment": 46, + "Blank": 68, + "Complexity": 60, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 65925, + "CodeBytes": 0, + "Lines": 1815, + "Code": 1717, + "Comment": 56, + "Blank": 42, + "Complexity": 102, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 18699, + "CodeBytes": 0, + "Lines": 560, + "Code": 384, + "Comment": 80, + "Blank": 96, + "Complexity": 90, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 48437356, + "CodeBytes": 0, + "Lines": 52079, + "Code": 52079, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 254436, + "CodeBytes": 0, + "Lines": 41, + "Code": 41, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 9422, + "CodeBytes": 0, + "Lines": 375, + "Code": 320, + "Comment": 24, + "Blank": 31, + "Complexity": 16, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 5534, + "CodeBytes": 0, + "Lines": 176, + "Code": 146, + "Comment": 20, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1937026, + "CodeBytes": 0, + "Lines": 78531, + "Code": 78531, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 2311, + "CodeBytes": 0, + "Lines": 79, + "Code": 41, + "Comment": 23, + "Blank": 15, + "Complexity": 8, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gherkin Specification", + "Bytes": 87, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 1887, + "CodeBytes": 0, + "Lines": 42, + "Code": 38, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 39, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 38, + "CodeBytes": 0, + "Lines": 1, + "Code": 0, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 246, + "CodeBytes": 0, + "Lines": 9, + "Code": 9, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 24314126.457346454, + "estimatedScheduleMonths_low": 47.89091301884397, + "estimatedPeople_low": 49.460108234954795, + "estimatedCost_high": 75773437.35094012, + "estimatedScheduleMonths_high": 47.89091301884397, + "estimatedPeople_high": 49.460108234954795, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 140 548319 0 0 548319 0\n(ULOC) 10766\n-------------------------------------------------------------------------------\nJavaScript 105 20974 918 766 19290 324\n(ULOC) 4786\n-------------------------------------------------------------------------------\nJSX 82 8432 1001 321 7110 267\n(ULOC) 4490\n-------------------------------------------------------------------------------\nSass 55 1306 168 51 1087 0\n(ULOC) 653\n-------------------------------------------------------------------------------\nYAML 16 932 68 29 835 0\n(ULOC) 557\n-------------------------------------------------------------------------------\nMarkdown 9 826 288 0 538 0\n(ULOC) 487\n-------------------------------------------------------------------------------\nShell 8 365 68 46 251 60\n(ULOC) 241\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 6 1815 42 56 1717 102\n(ULOC) 989\n-------------------------------------------------------------------------------\nPython 6 560 96 80 384 90\n(ULOC) 301\n-------------------------------------------------------------------------------\nCSV 5 52079 0 0 52079 0\n(ULOC) 52076\n-------------------------------------------------------------------------------\nSVG 4 41 0 0 41 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nTypeScript 3 375 31 24 320 16\n(ULOC) 251\n-------------------------------------------------------------------------------\nHTML 2 176 10 20 146 0\n(ULOC) 136\n-------------------------------------------------------------------------------\nPlain Text 2 78531 0 0 78531 0\n(ULOC) 78532\n-------------------------------------------------------------------------------\nBASH 1 79 15 23 41 8\n(ULOC) 59\n-------------------------------------------------------------------------------\nGherkin Specificati… 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nSmarty Template 1 42 4 0 38 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nTOML 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nXML 1 9 0 0 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 449 714867 2709 1417 710741 867\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 154082\nDRYness % 0.22\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $26,661,971\nEstimated Schedule Effort (organic) 47.89 months\nEstimated People Required (organic) 49.46\n───────────────────────────────────────────────────────────────────────────────\nProcessed 65727260 bytes, 65.727 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 844592, + "SCSS": 20587, + "Python": 18699, + "TypeScript": 9422, + "HTML": 5534, + "Shell": 3815, + "Smarty": 1887, + "Gherkin": 87 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@types/dotenv", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:40:23.000" + ], + [ + "@types/node", + 0.0, + "2024-07-01T10:17:05.000" + ], + [ + "@types/node", + 0.698630137, + "2024-06-08T15:19:35.000" + ], + [ + "@types/yargs", + -0.002739726, + "2024-07-01T10:17:05.000" + ], + [ + "@types/yargs", + 0.2246575342, + "2023-09-08T23:05:36.000" + ], + [ + "@types/yargs", + 0.7095890411, + "2025-01-01T18:40:23.000" + ], + [ + "babel-plugin-transform-inline-environment-variables", + 1.7287671233, + "2025-01-01T18:40:23.000" + ], + [ + "chromedriver", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "cypress", + 1.8465753425, + "2023-09-08T23:05:36.000" + ], + [ + "cypress-cucumber-preprocessor", + 0.0, + "2023-09-08T23:05:36.000" + ], + [ + "cypress-file-upload", + 0.0, + "2023-09-08T23:05:36.000" + ], + [ + "cypress-xpath", + 0.0821917808, + "2023-09-08T23:05:36.000" + ], + [ + "dotenv", + 2.1178082192, + "2023-09-08T23:05:36.000" + ], + [ + "dotenv", + 2.7945205479, + "2024-07-01T10:17:05.000" + ], + [ + "dotenv", + 3.5835616438, + "2025-01-01T18:40:23.000" + ], + [ + "jsonpath", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "nightwatch", + 0.797260274, + "2024-07-01T10:17:05.000" + ], + [ + "nightwatch", + 1.4246575342, + "2025-01-01T18:40:23.000" + ], + [ + "nightwatch", + 1.6684931507, + "2023-09-08T23:05:36.000" + ], + [ + "prettier", + 2.7506849315, + "2023-09-08T23:05:36.000" + ], + [ + "prettier", + 3.5205479452, + "2024-06-08T15:19:35.000" + ], + [ + "prettier", + 3.5369863014, + "2024-07-01T10:17:05.000" + ], + [ + "prettier", + 4.0191780822, + "2025-01-01T18:40:23.000" + ], + [ + "serverless", + -0.095890411, + "2023-09-08T23:05:36.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless", + 0.0164383562, + "2024-06-18T20:04:57.000" + ], + [ + "serverless", + 0.0630136986, + "2024-07-01T10:17:05.000" + ], + [ + "serverless-api-client-certificate", + 0.0, + "2024-07-01T10:17:05.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-dotenv-plugin", + 0.6273972603, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-iam-helper", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-idempotency-helper", + 0.0, + "2024-06-18T20:04:57.000" + ], + [ + "serverless-offline", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-offline", + 1.3780821918, + "2024-06-08T15:19:35.000" + ], + [ + "serverless-offline-ssm", + 0.0, + "2024-06-08T15:19:35.000" + ], + [ + "serverless-online", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-plugin-warmup", + 0.0, + "2024-06-18T20:04:57.000" + ], + [ + "serverless-plugin-warmup", + 1.4438356164, + "2023-09-08T23:05:36.000" + ], + [ + "serverless-plugin-warmup", + 2.4931506849, + "2024-06-08T15:19:35.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:40:23.000" + ], + [ + "serverless-stack-termination-protection", + 1.9643835616, + "2024-06-08T15:19:35.000" + ], + [ + "typescript", + 0.5616438356, + "2023-09-08T23:05:36.000" + ], + [ + "typescript", + 1.1917808219, + "2024-06-18T20:04:57.000" + ], + [ + "typescript", + 1.3863013699, + "2024-07-01T10:17:05.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:23.000" + ], + [ + "yargs", + 2.3890410959, + "2025-01-01T18:40:23.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json b/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json index 9b77d6a475..c12f5681a2 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-onemac/macpro-onemac_data.json @@ -1,616 +1,616 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-onemac", - "owner": "Enterprise-CMCS", - "name": "macpro-onemac", - "description": "An official submission system for email-based state plan amendments (SPAs) and section 1915 waivers.", - "commits_count": 2195, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1582, - "open_pull_requests_count": 41, - "merged_pull_requests_count": 1179, - "closed_pull_requests_count": 362, - "forks_count": 0, - "stargazers_count": 4, - "watchers_count": 12, - "total_project_lines": 241041, - "average_project_lines": 308, - "total_project_comment_lines": 2660, - "average_project_comment_lines": 3, - "total_project_blank_lines": 5142, - "average_blank_lines": 7, - "commits_by_month": { - "2025/1": 11, - "2024/12": 19 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 2 - ], - [ - "2024-09-04T00:00:00.000Z", - 1 - ], - [ - "2024-09-09T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/macpro-onemac", + "owner": "Enterprise-CMCS", + "name": "macpro-onemac", + "description": "An official submission system for email-based state plan amendments (SPAs) and section 1915 waivers.", + "commits_count": 2195, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1582, + "open_pull_requests_count": 41, + "merged_pull_requests_count": 1179, + "closed_pull_requests_count": 362, + "forks_count": 0, + "stargazers_count": 4, + "watchers_count": 12, + "total_project_lines": 241041, + "average_project_lines": 308, + "total_project_comment_lines": 2660, + "average_project_comment_lines": 3, + "total_project_blank_lines": 5142, + "average_blank_lines": 7, + "commits_by_month": { + "2025/1": 11, + "2024/12": 19 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-08-03T13:54:40Z", - "ossf_scorecard": { - "date": "2025-01-19T13:22:02Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-onemac", - "commit": "608b1e4b6d9ee2a63214f7636af832daa5d54d0a" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "14 out of 14 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "37 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 1051571, - "CodeBytes": 0, - "Lines": 33879, - "Code": 28568, - "Comment": 1986, - "Blank": 3325, - "Complexity": 755, - "Count": 444, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 365499, - "CodeBytes": 0, - "Lines": 10893, - "Code": 9850, - "Comment": 388, - "Blank": 655, - "Complexity": 853, - "Count": 96, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5550242, - "CodeBytes": 0, - "Lines": 179549, - "Code": 179547, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 81, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gherkin Specification", - "Bytes": 446225, - "CodeBytes": 0, - "Lines": 7813, - "Code": 7274, - "Comment": 147, - "Blank": 392, - "Complexity": 284, - "Count": 77, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 364705, - "CodeBytes": 0, - "Lines": 934, - "Code": 934, - "Comment": 0, - "Blank": 0, - "Complexity": 2, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 40751, - "CodeBytes": 0, - "Lines": 965, - "Code": 900, - "Comment": 18, - "Blank": 47, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 117606, - "CodeBytes": 0, - "Lines": 3498, - "Code": 3226, - "Comment": 83, - "Blank": 189, - "Complexity": 170, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 19800, - "CodeBytes": 0, - "Lines": 626, - "Code": 463, - "Comment": 64, - "Blank": 99, - "Complexity": 72, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 25413, - "CodeBytes": 0, - "Lines": 434, - "Code": 280, - "Comment": 0, - "Blank": 154, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 25229, - "CodeBytes": 0, - "Lines": 726, - "Code": 607, - "Comment": 53, - "Blank": 66, - "Complexity": 43, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 35135, - "CodeBytes": 0, - "Lines": 871, - "Code": 823, - "Comment": 4, - "Blank": 44, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 6128, - "CodeBytes": 0, - "Lines": 229, - "Code": 208, - "Comment": 9, - "Blank": 12, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 4162, - "CodeBytes": 0, - "Lines": 10, - "Code": 10, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 5848, - "CodeBytes": 0, - "Lines": 181, - "Code": 162, - "Comment": 2, - "Blank": 17, - "Complexity": 6, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 54357, - "CodeBytes": 0, - "Lines": 2989, - "Code": 2536, - "Comment": 28, - "Blank": 425, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7619654.307961662, - "estimatedScheduleMonths_low": 30.815003667741905, - "estimatedPeople_low": 24.089209730350532, - "estimatedCost_high": 23746170.743703764, - "estimatedScheduleMonths_high": 30.815003667741905, - "estimatedPeople_high": 24.089209730350532, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 444 33879 3325 1986 28568 755\n(ULOC) 15177\n-------------------------------------------------------------------------------\nTypeScript 96 10893 655 388 9850 853\n(ULOC) 6084\n-------------------------------------------------------------------------------\nJSON 81 179549 2 0 179547 0\n(ULOC) 10528\n-------------------------------------------------------------------------------\nGherkin Specificati\u2026 77 7813 392 147 7274 284\n(ULOC) 1148\n-------------------------------------------------------------------------------\nSVG 25 934 0 0 934 2\n(ULOC) 456\n-------------------------------------------------------------------------------\nYAML 19 965 47 18 900 0\n(ULOC) 532\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 16 3498 189 83 3226 170\n(ULOC) 1700\n-------------------------------------------------------------------------------\nShell 15 626 99 64 463 72\n(ULOC) 428\n-------------------------------------------------------------------------------\nMarkdown 14 434 154 0 280 0\n(ULOC) 240\n-------------------------------------------------------------------------------\nPython 5 726 66 53 607 43\n(ULOC) 461\n-------------------------------------------------------------------------------\nHTML 4 871 44 4 823 0\n(ULOC) 426\n-------------------------------------------------------------------------------\nCSS 3 229 12 9 208 0\n(ULOC) 181\n-------------------------------------------------------------------------------\nPlain Text 3 10 0 0 10 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nTypeScript Typings 2 181 17 2 162 6\n(ULOC) 148\n-------------------------------------------------------------------------------\nSass 1 2989 425 28 2536 0\n(ULOC) 1373\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 805 243597 5427 2782 235388 2185\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 38004\nDRYness % 0.16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,355,431\nEstimated Schedule Effort (organic) 30.82 months\nEstimated People Required (organic) 24.09\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 8112671 bytes, 8.113 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-30T00:00:00.000Z", + 2 + ], + [ + "2024-09-04T00:00:00.000Z", + 1 + ], + [ + "2024-09-09T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-08-03T13:54:40Z", + "ossf_scorecard": { + "date": "2025-01-19T13:22:02Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-onemac", + "commit": "608b1e4b6d9ee2a63214f7636af832daa5d54d0a" }, - "predominant_langs": { - "JavaScript": 1033981, - "Gherkin": 446225, - "TypeScript": 365499, - "SCSS": 54357, - "HTML": 35135, - "Python": 25229, - "Shell": 15779, - "CSS": 5452 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@badeball/cypress-cucumber-preprocessor", - 1.1616438356, - "2025-01-01T18:40:04.000" - ], - [ - "@bahmutov/cypress-esbuild-preprocessor", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 3.2328767123, - "2025-01-01T18:40:04.000" - ], - [ - "@typescript-eslint/parser", - 3.2328767123, - "2025-01-01T18:40:04.000" - ], - [ - "chai", - 0.2438356164, - "2025-01-01T18:40:04.000" - ], - [ - "chromedriver", - 1.1150684932, - "2025-01-01T18:40:04.000" - ], - [ - "cypress-axe", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "cypress-file-upload", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "cypress-xpath", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "dotenv", - 3.5835616438, - "2025-01-01T18:40:04.000" - ], - [ - "dynamodb-local", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "eslint", - 3.3726027397, - "2025-01-01T18:40:04.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "eslint-plugin-react-hooks", - 0.6109589041, - "2025-01-01T18:40:04.000" - ], - [ - "husky", - 3.6438356164, - "2025-01-01T18:40:04.000" - ], - [ - "lint-staged", - 3.1643835616, - "2025-01-01T18:40:04.000" - ], - [ - "lodash", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "prettier", - 1.6164383562, - "2025-01-01T18:40:04.000" - ], - [ - "selenium-server", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-esbuild", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:40:04.000" - ], - [ - "sinon", - 3.6410958904, - "2025-01-01T18:40:04.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:04.000" - ] + "score": 6.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "14 out of 14 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "37 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 1051571, + "CodeBytes": 0, + "Lines": 33879, + "Code": 28568, + "Comment": 1986, + "Blank": 3325, + "Complexity": 755, + "Count": 444, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 365499, + "CodeBytes": 0, + "Lines": 10893, + "Code": 9850, + "Comment": 388, + "Blank": 655, + "Complexity": 853, + "Count": 96, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5550242, + "CodeBytes": 0, + "Lines": 179549, + "Code": 179547, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 81, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gherkin Specification", + "Bytes": 446225, + "CodeBytes": 0, + "Lines": 7813, + "Code": 7274, + "Comment": 147, + "Blank": 392, + "Complexity": 284, + "Count": 77, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 364705, + "CodeBytes": 0, + "Lines": 934, + "Code": 934, + "Comment": 0, + "Blank": 0, + "Complexity": 2, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 40751, + "CodeBytes": 0, + "Lines": 965, + "Code": 900, + "Comment": 18, + "Blank": 47, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 117606, + "CodeBytes": 0, + "Lines": 3498, + "Code": 3226, + "Comment": 83, + "Blank": 189, + "Complexity": 170, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 19800, + "CodeBytes": 0, + "Lines": 626, + "Code": 463, + "Comment": 64, + "Blank": 99, + "Complexity": 72, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 25413, + "CodeBytes": 0, + "Lines": 434, + "Code": 280, + "Comment": 0, + "Blank": 154, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 25229, + "CodeBytes": 0, + "Lines": 726, + "Code": 607, + "Comment": 53, + "Blank": 66, + "Complexity": 43, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 35135, + "CodeBytes": 0, + "Lines": 871, + "Code": 823, + "Comment": 4, + "Blank": 44, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 6128, + "CodeBytes": 0, + "Lines": 229, + "Code": 208, + "Comment": 9, + "Blank": 12, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 4162, + "CodeBytes": 0, + "Lines": 10, + "Code": 10, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 5848, + "CodeBytes": 0, + "Lines": 181, + "Code": 162, + "Comment": 2, + "Blank": 17, + "Complexity": 6, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 54357, + "CodeBytes": 0, + "Lines": 2989, + "Code": 2536, + "Comment": 28, + "Blank": 425, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7619654.307961662, + "estimatedScheduleMonths_low": 30.815003667741905, + "estimatedPeople_low": 24.089209730350532, + "estimatedCost_high": 23746170.743703764, + "estimatedScheduleMonths_high": 30.815003667741905, + "estimatedPeople_high": 24.089209730350532, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 444 33879 3325 1986 28568 755\n(ULOC) 15177\n-------------------------------------------------------------------------------\nTypeScript 96 10893 655 388 9850 853\n(ULOC) 6084\n-------------------------------------------------------------------------------\nJSON 81 179549 2 0 179547 0\n(ULOC) 10528\n-------------------------------------------------------------------------------\nGherkin Specificati… 77 7813 392 147 7274 284\n(ULOC) 1148\n-------------------------------------------------------------------------------\nSVG 25 934 0 0 934 2\n(ULOC) 456\n-------------------------------------------------------------------------------\nYAML 19 965 47 18 900 0\n(ULOC) 532\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 16 3498 189 83 3226 170\n(ULOC) 1700\n-------------------------------------------------------------------------------\nShell 15 626 99 64 463 72\n(ULOC) 428\n-------------------------------------------------------------------------------\nMarkdown 14 434 154 0 280 0\n(ULOC) 240\n-------------------------------------------------------------------------------\nPython 5 726 66 53 607 43\n(ULOC) 461\n-------------------------------------------------------------------------------\nHTML 4 871 44 4 823 0\n(ULOC) 426\n-------------------------------------------------------------------------------\nCSS 3 229 12 9 208 0\n(ULOC) 181\n-------------------------------------------------------------------------------\nPlain Text 3 10 0 0 10 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nTypeScript Typings 2 181 17 2 162 6\n(ULOC) 148\n-------------------------------------------------------------------------------\nSass 1 2989 425 28 2536 0\n(ULOC) 1373\n───────────────────────────────────────────────────────────────────────────────\nTotal 805 243597 5427 2782 235388 2185\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 38004\nDRYness % 0.16\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,355,431\nEstimated Schedule Effort (organic) 30.82 months\nEstimated People Required (organic) 24.09\n───────────────────────────────────────────────────────────────────────────────\nProcessed 8112671 bytes, 8.113 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 1033981, + "Gherkin": 446225, + "TypeScript": 365499, + "SCSS": 54357, + "HTML": 35135, + "Python": 25229, + "Shell": 15779, + "CSS": 5452 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@badeball/cypress-cucumber-preprocessor", + 1.1616438356, + "2025-01-01T18:40:04.000" + ], + [ + "@bahmutov/cypress-esbuild-preprocessor", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 3.2328767123, + "2025-01-01T18:40:04.000" + ], + [ + "@typescript-eslint/parser", + 3.2328767123, + "2025-01-01T18:40:04.000" + ], + [ + "chai", + 0.2438356164, + "2025-01-01T18:40:04.000" + ], + [ + "chromedriver", + 1.1150684932, + "2025-01-01T18:40:04.000" + ], + [ + "cypress-axe", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "cypress-file-upload", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "cypress-xpath", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "dotenv", + 3.5835616438, + "2025-01-01T18:40:04.000" + ], + [ + "dynamodb-local", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "eslint", + 3.3726027397, + "2025-01-01T18:40:04.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "eslint-plugin-react-hooks", + 0.6109589041, + "2025-01-01T18:40:04.000" + ], + [ + "husky", + 3.6438356164, + "2025-01-01T18:40:04.000" + ], + [ + "lint-staged", + 3.1643835616, + "2025-01-01T18:40:04.000" + ], + [ + "lodash", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "prettier", + 1.6164383562, + "2025-01-01T18:40:04.000" + ], + [ + "selenium-server", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-esbuild", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:40:04.000" + ], + [ + "sinon", + 3.6410958904, + "2025-01-01T18:40:04.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:04.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json b/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json index 100141aaaa..df73ab53ea 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-platform-doc-conversion/macpro-platform-doc-conversion_data.json @@ -1,497 +1,497 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-platform-doc-conversion", - "owner": "Enterprise-CMCS", - "name": "macpro-platform-doc-conversion", - "description": null, - "commits_count": 120, - "issues_count": 2, - "open_issues_count": 0, - "closed_issues_count": 2, - "pull_requests_count": 110, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 81, - "closed_pull_requests_count": 27, - "forks_count": 0, - "stargazers_count": 2, - "watchers_count": 6, - "total_project_lines": 11009, - "average_project_lines": 180, - "total_project_comment_lines": 127, - "average_project_comment_lines": 2, - "total_project_blank_lines": 556, - "average_blank_lines": 9, - "commits_by_month": { - "2023/7": 2, - "2023/5": 1, - "2023/1": 1, - "2022/12": 3, - "2022/7": 9, - "2022/5": 14 + "url": "https://github.com/Enterprise-CMCS/macpro-platform-doc-conversion", + "owner": "Enterprise-CMCS", + "name": "macpro-platform-doc-conversion", + "description": null, + "commits_count": 120, + "issues_count": 2, + "open_issues_count": 0, + "closed_issues_count": 2, + "pull_requests_count": 110, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 81, + "closed_pull_requests_count": 27, + "forks_count": 0, + "stargazers_count": 2, + "watchers_count": 6, + "total_project_lines": 11009, + "average_project_lines": 180, + "total_project_comment_lines": 127, + "average_project_comment_lines": 2, + "total_project_blank_lines": 556, + "average_blank_lines": 9, + "commits_by_month": { + "2023/7": 2, + "2023/5": 1, + "2023/1": 1, + "2022/12": 3, + "2022/7": 9, + "2022/5": 14 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-01-14T15:00:20Z", + "ossf_scorecard": { + "date": "2025-01-19T13:31:53Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-platform-doc-conversion", + "commit": "3c47af732c4c17181a7ba183dd20a40e6fb938bf" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-01-14T15:00:20Z", - "ossf_scorecard": { - "date": "2025-01-19T13:31:53Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-platform-doc-conversion", - "commit": "3c47af732c4c17181a7ba183dd20a40e6fb938bf" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 19 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 15/16 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "26 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 19371, - "CodeBytes": 0, - "Lines": 685, - "Code": 560, - "Comment": 34, - "Blank": 91, - "Complexity": 43, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 35625, - "CodeBytes": 0, - "Lines": 595, - "Code": 409, - "Comment": 0, - "Blank": 186, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10750, - "CodeBytes": 0, - "Lines": 376, - "Code": 284, - "Comment": 24, - "Blank": 68, - "Complexity": 41, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 12855, - "CodeBytes": 0, - "Lines": 339, - "Code": 307, - "Comment": 10, - "Blank": 22, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4350, - "CodeBytes": 0, - "Lines": 147, - "Code": 147, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1614756, - "CodeBytes": 0, - "Lines": 7978, - "Code": 7920, - "Comment": 0, - "Blank": 58, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 15803, - "CodeBytes": 0, - "Lines": 444, - "Code": 417, - "Comment": 2, - "Blank": 25, - "Complexity": 10, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 7132, - "CodeBytes": 0, - "Lines": 229, - "Code": 100, - "Comment": 56, - "Blank": 73, - "Complexity": 3, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1334, - "CodeBytes": 0, - "Lines": 25, - "Code": 25, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 8816, - "CodeBytes": 0, - "Lines": 187, - "Code": 154, - "Comment": 0, - "Blank": 33, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 191106, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 285884.40183720394, - "estimatedScheduleMonths_low": 8.85073212569239, - "estimatedPeople_low": 3.1467393554425556, - "estimatedCost_high": 890940.6574907859, - "estimatedScheduleMonths_high": 8.85073212569239, - "estimatedPeople_high": 3.1467393554425556, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 11 685 91 34 560 43\n(ULOC) 448\n-------------------------------------------------------------------------------\nMarkdown 11 595 186 0 409 0\n(ULOC) 332\n-------------------------------------------------------------------------------\nShell 9 376 68 24 284 41\n(ULOC) 192\n-------------------------------------------------------------------------------\nYAML 8 339 22 10 307 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nJSON 7 147 0 0 147 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nPlain Text 6 7978 58 0 7920 0\n(ULOC) 7917\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 3 444 25 2 417 10\n(ULOC) 354\n-------------------------------------------------------------------------------\nPython 3 229 73 56 100 3\n(ULOC) 121\n-------------------------------------------------------------------------------\nHTML 1 25 0 0 25 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nLicense 1 187 33 0 154 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nSVG 1 4 0 1 3 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 61 11009 556 127 10326 97\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 9736\nDRYness % 0.88\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $313,490\nEstimated Schedule Effort (organic) 8.85 months\nEstimated People Required (organic) 3.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1921898 bytes, 1.922 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 19371, - "Shell": 6853 - }, - "average_issue_resolution_time": [ - [ - "macpro-platform-doc-conversion", - "4 days 23:42:35.5" - ] + "score": 4.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 19 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 15/16 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "26 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 19371, + "CodeBytes": 0, + "Lines": 685, + "Code": 560, + "Comment": 34, + "Blank": 91, + "Complexity": 43, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 35625, + "CodeBytes": 0, + "Lines": 595, + "Code": 409, + "Comment": 0, + "Blank": 186, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10750, + "CodeBytes": 0, + "Lines": 376, + "Code": 284, + "Comment": 24, + "Blank": 68, + "Complexity": 41, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 12855, + "CodeBytes": 0, + "Lines": 339, + "Code": 307, + "Comment": 10, + "Blank": 22, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4350, + "CodeBytes": 0, + "Lines": 147, + "Code": 147, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1614756, + "CodeBytes": 0, + "Lines": 7978, + "Code": 7920, + "Comment": 0, + "Blank": 58, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 15803, + "CodeBytes": 0, + "Lines": 444, + "Code": 417, + "Comment": 2, + "Blank": 25, + "Complexity": 10, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 7132, + "CodeBytes": 0, + "Lines": 229, + "Code": 100, + "Comment": 56, + "Blank": 73, + "Complexity": 3, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1334, + "CodeBytes": 0, + "Lines": 25, + "Code": 25, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 8816, + "CodeBytes": 0, + "Lines": 187, + "Code": 154, + "Comment": 0, + "Blank": 33, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 191106, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 285884.40183720394, + "estimatedScheduleMonths_low": 8.85073212569239, + "estimatedPeople_low": 3.1467393554425556, + "estimatedCost_high": 890940.6574907859, + "estimatedScheduleMonths_high": 8.85073212569239, + "estimatedPeople_high": 3.1467393554425556, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 11 685 91 34 560 43\n(ULOC) 448\n-------------------------------------------------------------------------------\nMarkdown 11 595 186 0 409 0\n(ULOC) 332\n-------------------------------------------------------------------------------\nShell 9 376 68 24 284 41\n(ULOC) 192\n-------------------------------------------------------------------------------\nYAML 8 339 22 10 307 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nJSON 7 147 0 0 147 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nPlain Text 6 7978 58 0 7920 0\n(ULOC) 7917\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 3 444 25 2 417 10\n(ULOC) 354\n-------------------------------------------------------------------------------\nPython 3 229 73 56 100 3\n(ULOC) 121\n-------------------------------------------------------------------------------\nHTML 1 25 0 0 25 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nLicense 1 187 33 0 154 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nSVG 1 4 0 1 3 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 61 11009 556 127 10326 97\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 9736\nDRYness % 0.88\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $313,490\nEstimated Schedule Effort (organic) 8.85 months\nEstimated People Required (organic) 3.15\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1921898 bytes, 1.922 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 19371, + "Shell": 6853 + }, + "average_issue_resolution_time": [ + [ + "macpro-platform-doc-conversion", + "4 days 23:42:35.5" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@stratiformdigital/serverless-iam-helper", + 0.0, + "2024-11-04T20:56:43.000" + ], + [ + "@stratiformdigital/serverless-idempotency-helper", + 0.0, + "2024-11-04T20:56:43.000" + ], + [ + "@stratiformdigital/serverless-online", + 0.0, + "2024-11-04T20:56:43.000" + ], + [ + "@types/node", + 1.1123287671, + "2024-11-04T20:56:43.000" + ], + [ + "aws-requests-auth", + 0.0, + "2025-01-01T18:40:33.000" + ], + [ + "aws-sdk", + 2.9315068493, + "2024-11-04T20:56:43.000" + ], + [ + "boto3", + 0.0, + "2025-01-01T18:40:33.000" + ], + [ + "botocore", + 0.0, + "2025-01-01T18:40:33.000" + ], + [ + "requests", + 0.0, + "2025-01-01T18:40:33.000" + ], + [ + "serverless", + 0.3808219178, + "2024-11-04T20:56:43.000" + ], + [ + "serverless-bundle", + 2.0767123288, + "2024-11-04T20:56:43.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2024-11-04T20:56:43.000" + ], + [ + "serverless-plugin-warmup", + 1.3561643836, + "2024-11-04T20:56:43.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2024-11-04T20:56:43.000" ], - "repo_dependency_libyear_list": [ - [ - "@stratiformdigital/serverless-iam-helper", - 0.0, - "2024-11-04T20:56:43.000" - ], - [ - "@stratiformdigital/serverless-idempotency-helper", - 0.0, - "2024-11-04T20:56:43.000" - ], - [ - "@stratiformdigital/serverless-online", - 0.0, - "2024-11-04T20:56:43.000" - ], - [ - "@types/node", - 1.1123287671, - "2024-11-04T20:56:43.000" - ], - [ - "aws-requests-auth", - 0.0, - "2025-01-01T18:40:33.000" - ], - [ - "aws-sdk", - 2.9315068493, - "2024-11-04T20:56:43.000" - ], - [ - "boto3", - 0.0, - "2025-01-01T18:40:33.000" - ], - [ - "botocore", - 0.0, - "2025-01-01T18:40:33.000" - ], - [ - "requests", - 0.0, - "2025-01-01T18:40:33.000" - ], - [ - "serverless", - 0.3808219178, - "2024-11-04T20:56:43.000" - ], - [ - "serverless-bundle", - 2.0767123288, - "2024-11-04T20:56:43.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2024-11-04T20:56:43.000" - ], - [ - "serverless-plugin-warmup", - 1.3561643836, - "2024-11-04T20:56:43.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2024-11-04T20:56:43.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2024-11-04T20:56:43.000" - ] + [ + "serverless-stack-termination-protection", + 0.0, + "2024-11-04T20:56:43.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json b/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json index a568ebf376..ff4c08974c 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-quickstart-serverless/macpro-quickstart-serverless_data.json @@ -1,575 +1,575 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-quickstart-serverless", - "owner": "Enterprise-CMCS", - "name": "macpro-quickstart-serverless", - "description": null, - "commits_count": 279, - "issues_count": 271, - "open_issues_count": 14, - "closed_issues_count": 257, - "pull_requests_count": 336, - "open_pull_requests_count": 13, - "merged_pull_requests_count": 237, - "closed_pull_requests_count": 86, - "forks_count": 14, - "stargazers_count": 18, - "watchers_count": 12, - "total_project_lines": 8280, - "average_project_lines": 52, - "total_project_comment_lines": 395, - "average_project_comment_lines": 2, - "total_project_blank_lines": 917, - "average_blank_lines": 6, - "commits_by_month": { - "2022/12": 1, - "2022/11": 3, - "2022/9": 5, - "2022/8": 20, - "2022/7": 1 + "url": "https://github.com/Enterprise-CMCS/macpro-quickstart-serverless", + "owner": "Enterprise-CMCS", + "name": "macpro-quickstart-serverless", + "description": null, + "commits_count": 279, + "issues_count": 271, + "open_issues_count": 14, + "closed_issues_count": 257, + "pull_requests_count": 336, + "open_pull_requests_count": 13, + "merged_pull_requests_count": 237, + "closed_pull_requests_count": 86, + "forks_count": 14, + "stargazers_count": 18, + "watchers_count": 12, + "total_project_lines": 8280, + "average_project_lines": 52, + "total_project_comment_lines": 395, + "average_project_comment_lines": 2, + "total_project_blank_lines": 917, + "average_blank_lines": 6, + "commits_by_month": { + "2022/12": 1, + "2022/11": 3, + "2022/9": 5, + "2022/8": 20, + "2022/7": 1 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-08-27T12:30:25Z", + "ossf_scorecard": { + "date": "2025-01-19T13:30:52Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-quickstart-serverless", + "commit": "ebfcf4622237dabd872df171ddb9896970ec3bee" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-08-27T12:30:25Z", - "ossf_scorecard": { - "date": "2025-01-19T13:30:52Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-quickstart-serverless", - "commit": "ebfcf4622237dabd872df171ddb9896970ec3bee" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 17 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "74 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 102526, - "CodeBytes": 0, - "Lines": 3654, - "Code": 3031, - "Comment": 243, - "Blank": 380, - "Complexity": 157, - "Count": 67, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 17963, - "CodeBytes": 0, - "Lines": 567, - "Code": 560, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 49850, - "CodeBytes": 0, - "Lines": 849, - "Code": 559, - "Comment": 0, - "Blank": 290, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 19535, - "CodeBytes": 0, - "Lines": 641, - "Code": 450, - "Comment": 86, - "Blank": 105, - "Complexity": 67, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 24121, - "CodeBytes": 0, - "Lines": 625, - "Code": 578, - "Comment": 13, - "Blank": 34, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 41782, - "CodeBytes": 0, - "Lines": 1217, - "Code": 1161, - "Comment": 11, - "Blank": 45, - "Complexity": 105, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1051, - "CodeBytes": 0, - "Lines": 62, - "Code": 56, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 215741, - "CodeBytes": 0, - "Lines": 116, - "Code": 116, - "Comment": 0, - "Blank": 0, - "Complexity": 4, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 3776, - "CodeBytes": 0, - "Lines": 215, - "Code": 189, - "Comment": 0, - "Blank": 26, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 3312, - "CodeBytes": 0, - "Lines": 101, - "Code": 78, - "Comment": 23, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 5609, - "CodeBytes": 0, - "Lines": 210, - "Code": 167, - "Comment": 19, - "Blank": 24, - "Complexity": 11, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 572, - "CodeBytes": 0, - "Lines": 20, - "Code": 20, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 189158.24795231767, - "estimatedScheduleMonths_low": 7.565200266423692, - "estimatedPeople_low": 2.435871429814394, - "estimatedCost_high": 589499.7163798087, - "estimatedScheduleMonths_high": 7.565200266423692, - "estimatedPeople_high": 2.435871429814394, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 67 3654 380 243 3031 157\n(ULOC) 2157\n-------------------------------------------------------------------------------\nJSON 21 567 7 0 560 0\n(ULOC) 315\n-------------------------------------------------------------------------------\nMarkdown 19 849 290 0 559 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nShell 13 641 105 86 450 67\n(ULOC) 363\n-------------------------------------------------------------------------------\nYAML 10 625 34 13 578 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 7 1217 45 11 1161 105\n(ULOC) 731\n-------------------------------------------------------------------------------\nCSS 6 62 6 0 56 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nSVG 5 116 0 0 116 4\n(ULOC) 114\n-------------------------------------------------------------------------------\nSass 4 215 26 0 189 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nHTML 2 101 0 23 78 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nTypeScript 2 210 24 19 167 11\n(ULOC) 145\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 159 8280 917 395 6968 344\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 4755\nDRYness % 0.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $207,423\nEstimated Schedule Effort (organic) 7.57 months\nEstimated People Required (organic) 2.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 485905 bytes, 0.486 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 102526, - "Shell": 16148, - "TypeScript": 5609, - "SCSS": 3776, - "HTML": 3312, - "CSS": 1051 - }, - "average_issue_resolution_time": [ - [ - "macpro-quickstart-serverless", - "17 days 11:30:46.424125" - ] + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 17 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "74 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 102526, + "CodeBytes": 0, + "Lines": 3654, + "Code": 3031, + "Comment": 243, + "Blank": 380, + "Complexity": 157, + "Count": 67, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 17963, + "CodeBytes": 0, + "Lines": 567, + "Code": 560, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 49850, + "CodeBytes": 0, + "Lines": 849, + "Code": 559, + "Comment": 0, + "Blank": 290, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 19535, + "CodeBytes": 0, + "Lines": 641, + "Code": 450, + "Comment": 86, + "Blank": 105, + "Complexity": 67, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 24121, + "CodeBytes": 0, + "Lines": 625, + "Code": 578, + "Comment": 13, + "Blank": 34, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 41782, + "CodeBytes": 0, + "Lines": 1217, + "Code": 1161, + "Comment": 11, + "Blank": 45, + "Complexity": 105, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1051, + "CodeBytes": 0, + "Lines": 62, + "Code": 56, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 215741, + "CodeBytes": 0, + "Lines": 116, + "Code": 116, + "Comment": 0, + "Blank": 0, + "Complexity": 4, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 3776, + "CodeBytes": 0, + "Lines": 215, + "Code": 189, + "Comment": 0, + "Blank": 26, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 3312, + "CodeBytes": 0, + "Lines": 101, + "Code": 78, + "Comment": 23, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 5609, + "CodeBytes": 0, + "Lines": 210, + "Code": 167, + "Comment": 19, + "Blank": 24, + "Complexity": 11, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 572, + "CodeBytes": 0, + "Lines": 20, + "Code": 20, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 189158.24795231767, + "estimatedScheduleMonths_low": 7.565200266423692, + "estimatedPeople_low": 2.435871429814394, + "estimatedCost_high": 589499.7163798087, + "estimatedScheduleMonths_high": 7.565200266423692, + "estimatedPeople_high": 2.435871429814394, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 67 3654 380 243 3031 157\n(ULOC) 2157\n-------------------------------------------------------------------------------\nJSON 21 567 7 0 560 0\n(ULOC) 315\n-------------------------------------------------------------------------------\nMarkdown 19 849 290 0 559 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nShell 13 641 105 86 450 67\n(ULOC) 363\n-------------------------------------------------------------------------------\nYAML 10 625 34 13 578 0\n(ULOC) 298\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 7 1217 45 11 1161 105\n(ULOC) 731\n-------------------------------------------------------------------------------\nCSS 6 62 6 0 56 0\n(ULOC) 41\n-------------------------------------------------------------------------------\nSVG 5 116 0 0 116 4\n(ULOC) 114\n-------------------------------------------------------------------------------\nSass 4 215 26 0 189 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nHTML 2 101 0 23 78 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nTypeScript 2 210 24 19 167 11\n(ULOC) 145\n-------------------------------------------------------------------------------\nXML 2 20 0 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 159 8280 917 395 6968 344\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 4755\nDRYness % 0.57\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $207,423\nEstimated Schedule Effort (organic) 7.57 months\nEstimated People Required (organic) 2.44\n───────────────────────────────────────────────────────────────────────────────\nProcessed 485905 bytes, 0.486 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 102526, + "Shell": 16148, + "TypeScript": 5609, + "SCSS": 3776, + "HTML": 3312, + "CSS": 1051 + }, + "average_issue_resolution_time": [ + [ + "macpro-quickstart-serverless", + "17 days 11:30:46.424125" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/serverless-waf-plugin", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "@types/dotenv", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "@types/node", + 1.2739726027, + "2025-01-01T18:40:04.000" + ], + [ + "@types/yargs", + 0.7095890411, + "2025-01-01T18:40:04.000" + ], + [ + "aws-sdk", + 3.101369863, + "2025-01-01T18:40:04.000" + ], + [ + "axe-core", + 0.2547945205, + "2025-01-01T18:40:04.000" + ], + [ + "cypress", + 2.5726027397, + "2025-01-01T18:40:04.000" + ], + [ + "cypress-axe", + 1.6575342466, + "2025-01-01T18:40:04.000" + ], + [ + "cypress-cucumber-preprocessor", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "dotenv", + 3.5835616438, + "2025-01-01T18:40:04.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-bundle", + 2.0767123288, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-dotenv-plugin", + 1.202739726, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-iam-helper", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-iam-roles-per-function", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-idempotency-helper", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-offline", + 2.4191780822, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-online", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-plugin-warmup", + 1.3561643836, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-s3-bucket-helper", + -1.0, + "2025-01-01T18:40:04.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:40:04.000" + ], + [ + "typescript", + 1.8109589041, + "2025-01-01T18:40:04.000" ], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/serverless-waf-plugin", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "@types/dotenv", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "@types/node", - 1.2739726027, - "2025-01-01T18:40:04.000" - ], - [ - "@types/yargs", - 0.7095890411, - "2025-01-01T18:40:04.000" - ], - [ - "aws-sdk", - 3.101369863, - "2025-01-01T18:40:04.000" - ], - [ - "axe-core", - 0.2547945205, - "2025-01-01T18:40:04.000" - ], - [ - "cypress", - 2.5726027397, - "2025-01-01T18:40:04.000" - ], - [ - "cypress-axe", - 1.6575342466, - "2025-01-01T18:40:04.000" - ], - [ - "cypress-cucumber-preprocessor", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "dotenv", - 3.5835616438, - "2025-01-01T18:40:04.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-bundle", - 2.0767123288, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-dotenv-plugin", - 1.202739726, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-iam-helper", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-iam-roles-per-function", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-idempotency-helper", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-offline", - 2.4191780822, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-online", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-plugin-warmup", - 1.3561643836, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-s3-bucket-helper", - -1.0, - "2025-01-01T18:40:04.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:40:04.000" - ], - [ - "typescript", - 1.8109589041, - "2025-01-01T18:40:04.000" - ], - [ - "yargs", - 2.3890410959, - "2025-01-01T18:40:04.000" - ] + [ + "yargs", + 2.3890410959, + "2025-01-01T18:40:04.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json b/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json index 51d1530944..36afd4ee6b 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-security-hub-sync/macpro-security-hub-sync_data.json @@ -1,436 +1,436 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-security-hub-sync", - "owner": "Enterprise-CMCS", - "name": "macpro-security-hub-sync", - "description": "Syncs AWS Security Hub findings to Atlassian Jira", - "commits_count": 72, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 234, - "open_pull_requests_count": 7, - "merged_pull_requests_count": 56, - "closed_pull_requests_count": 171, - "forks_count": 2, - "stargazers_count": 2, - "watchers_count": 8, - "total_project_lines": 2410, - "average_project_lines": 73, - "total_project_comment_lines": 48, - "average_project_comment_lines": 1, - "total_project_blank_lines": 341, - "average_blank_lines": 10, - "commits_by_month": { - "2024/8": 4, - "2024/7": 9, - "2024/6": 10, - "2024/5": 2, - "2024/3": 3, - "2023/11": 2 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-01-23T21:47:31Z", - "ossf_scorecard": { - "date": "2025-01-19T13:25:51Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-security-hub-sync", - "commit": "4da170b9cc489f5da1dc40b54cc07d2edd64b4f9" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "24 out of 24 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 4, - "reason": "Found 14/30 approved changesets -- score normalized to 4", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "19 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 49976, - "CodeBytes": 0, - "Lines": 1643, - "Code": 1465, - "Comment": 30, - "Blank": 148, - "Complexity": 135, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6333, - "CodeBytes": 0, - "Lines": 262, - "Code": 216, - "Comment": 18, - "Blank": 28, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3297, - "CodeBytes": 0, - "Lines": 126, - "Code": 126, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 13257, - "CodeBytes": 0, - "Lines": 345, - "Code": 190, - "Comment": 0, - "Blank": 155, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 122, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 51571.096195548205, - "estimatedScheduleMonths_low": 4.616801895585476, - "estimatedPeople_low": 1.0882148079214973, - "estimatedCost_high": 160718.0596657615, - "estimatedScheduleMonths_high": 4.616801895585476, - "estimatedPeople_high": 1.0882148079214973, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 13 1643 148 30 1465 135\n(ULOC) 1056\n-------------------------------------------------------------------------------\nYAML 10 262 28 18 216 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nJSON 4 126 0 0 126 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 4 345 155 0 190 0\n(ULOC) 151\n-------------------------------------------------------------------------------\nJavaScript 1 3 1 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 33 2410 341 48 2021 135\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1484\nDRYness % 0.62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $56,550\nEstimated Schedule Effort (organic) 4.62 months\nEstimated People Required (organic) 1.09\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 74312 bytes, 0.074 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "url": "https://github.com/Enterprise-CMCS/macpro-security-hub-sync", + "owner": "Enterprise-CMCS", + "name": "macpro-security-hub-sync", + "description": "Syncs AWS Security Hub findings to Atlassian Jira", + "commits_count": 72, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 234, + "open_pull_requests_count": 7, + "merged_pull_requests_count": 56, + "closed_pull_requests_count": 171, + "forks_count": 2, + "stargazers_count": 2, + "watchers_count": 8, + "total_project_lines": 2410, + "average_project_lines": 73, + "total_project_comment_lines": 48, + "average_project_comment_lines": 1, + "total_project_blank_lines": 341, + "average_blank_lines": 10, + "commits_by_month": { + "2024/8": 4, + "2024/7": 9, + "2024/6": 10, + "2024/5": 2, + "2024/3": 3, + "2023/11": 2 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-01-23T21:47:31Z", + "ossf_scorecard": { + "date": "2025-01-19T13:25:51Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-security-hub-sync", + "commit": "4da170b9cc489f5da1dc40b54cc07d2edd64b4f9" }, - "predominant_langs": { - "TypeScript": 49976 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@aws-sdk/client-iam", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@aws-sdk/client-securityhub", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@aws-sdk/client-sts", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@semantic-release/changelog", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@semantic-release/git", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@types/jira-client", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:40:25.000" - ], - [ - "@vitest/coverage-c8", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "@vitest/coverage-v8", - 1.1780821918, - "2025-01-01T18:40:25.000" - ], - [ - "@vitest/ui", - 1.1671232877, - "2025-01-01T18:40:25.000" - ], - [ - "aws-sdk-client-mock", - 1.304109589, - "2025-01-01T18:40:25.000" - ], - [ - "axios", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "dotenv", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "jira-client", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "semantic-release", - 1.1095890411, - "2025-01-01T18:40:25.000" - ], - [ - "tslint", - 0.0, - "2025-01-01T18:40:25.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T18:40:25.000" - ], - [ - "vitest", - 1.1780821918, - "2025-01-01T18:40:25.000" - ] + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "24 out of 24 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 4, + "reason": "Found 14/30 approved changesets -- score normalized to 4", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "19 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 49976, + "CodeBytes": 0, + "Lines": 1643, + "Code": 1465, + "Comment": 30, + "Blank": 148, + "Complexity": 135, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6333, + "CodeBytes": 0, + "Lines": 262, + "Code": 216, + "Comment": 18, + "Blank": 28, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3297, + "CodeBytes": 0, + "Lines": 126, + "Code": 126, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 13257, + "CodeBytes": 0, + "Lines": 345, + "Code": 190, + "Comment": 0, + "Blank": 155, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 122, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 51571.096195548205, + "estimatedScheduleMonths_low": 4.616801895585476, + "estimatedPeople_low": 1.0882148079214973, + "estimatedCost_high": 160718.0596657615, + "estimatedScheduleMonths_high": 4.616801895585476, + "estimatedPeople_high": 1.0882148079214973, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 13 1643 148 30 1465 135\n(ULOC) 1056\n-------------------------------------------------------------------------------\nYAML 10 262 28 18 216 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nJSON 4 126 0 0 126 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 4 345 155 0 190 0\n(ULOC) 151\n-------------------------------------------------------------------------------\nJavaScript 1 3 1 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n───────────────────────────────────────────────────────────────────────────────\nTotal 33 2410 341 48 2021 135\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1484\nDRYness % 0.62\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $56,550\nEstimated Schedule Effort (organic) 4.62 months\nEstimated People Required (organic) 1.09\n───────────────────────────────────────────────────────────────────────────────\nProcessed 74312 bytes, 0.074 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 49976 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@aws-sdk/client-iam", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@aws-sdk/client-securityhub", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@aws-sdk/client-sts", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@semantic-release/changelog", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@semantic-release/git", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@types/jira-client", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:40:25.000" + ], + [ + "@vitest/coverage-c8", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "@vitest/coverage-v8", + 1.1780821918, + "2025-01-01T18:40:25.000" + ], + [ + "@vitest/ui", + 1.1671232877, + "2025-01-01T18:40:25.000" + ], + [ + "aws-sdk-client-mock", + 1.304109589, + "2025-01-01T18:40:25.000" + ], + [ + "axios", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "dotenv", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "jira-client", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "semantic-release", + 1.1095890411, + "2025-01-01T18:40:25.000" + ], + [ + "tslint", + 0.0, + "2025-01-01T18:40:25.000" + ], + [ + "typescript", + -0.1095890411, + "2025-01-01T18:40:25.000" + ], + [ + "vitest", + 1.1780821918, + "2025-01-01T18:40:25.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json b/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json index cd8ef84969..0ef2133e10 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-serverless-running-stages/macpro-serverless-running-stages_data.json @@ -1,386 +1,386 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-serverless-running-stages", - "owner": "Enterprise-CMCS", - "name": "macpro-serverless-running-stages", - "description": "MACPro Platform is building an npm module to be consumed by other projects (not restricted to macpro)", - "commits_count": 34, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 138, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 14, - "closed_pull_requests_count": 118, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 4, - "total_project_lines": 769, - "average_project_lines": 35, - "total_project_comment_lines": 11, - "average_project_comment_lines": 1, - "total_project_blank_lines": 130, - "average_blank_lines": 6, - "commits_by_month": { - "2024/5": 8, - "2023/6": 1, - "2023/5": 4, - "2023/4": 3, - "2023/2": 2, - "2023/1": 12 + "url": "https://github.com/Enterprise-CMCS/macpro-serverless-running-stages", + "owner": "Enterprise-CMCS", + "name": "macpro-serverless-running-stages", + "description": "MACPro Platform is building an npm module to be consumed by other projects (not restricted to macpro)", + "commits_count": 34, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 138, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 14, + "closed_pull_requests_count": 118, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 4, + "total_project_lines": 769, + "average_project_lines": 35, + "total_project_comment_lines": 11, + "average_project_comment_lines": 1, + "total_project_blank_lines": 130, + "average_blank_lines": 6, + "commits_by_month": { + "2024/5": 8, + "2023/6": 1, + "2023/5": 4, + "2023/4": 3, + "2023/2": 2, + "2023/1": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2023-01-09T20:47:58Z", + "ossf_scorecard": { + "date": "2025-01-19T13:31:41Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-serverless-running-stages", + "commit": "83d291683b6102eeebbda7e9e47cf7772dc0f7c3" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2023-01-09T20:47:58Z", - "ossf_scorecard": { - "date": "2025-01-19T13:31:41Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-serverless-running-stages", - "commit": "83d291683b6102eeebbda7e9e47cf7772dc0f7c3" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 3, - "reason": "4 out of 13 merged PRs checked by a CI test -- score normalized to 3", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 2/17 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "13 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 7491, - "CodeBytes": 0, - "Lines": 284, - "Code": 244, - "Comment": 11, - "Blank": 29, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 8280, - "CodeBytes": 0, - "Lines": 235, - "Code": 150, - "Comment": 0, - "Blank": 85, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 3107, - "CodeBytes": 0, - "Lines": 110, - "Code": 98, - "Comment": 0, - "Blank": 12, - "Complexity": 8, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3060, - "CodeBytes": 0, - "Lines": 119, - "Code": 119, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1097, - "CodeBytes": 0, - "Lines": 21, - "Code": 17, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 15115.390086628171, - "estimatedScheduleMonths_low": 2.896050818446369, - "estimatedPeople_low": 0.5084669030827715, - "estimatedCost_high": 47106.15722811945, - "estimatedScheduleMonths_high": 2.896050818446369, - "estimatedPeople_high": 0.5084669030827715, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 9 284 29 11 244 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nMarkdown 5 235 85 0 150 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nTypeScript 4 110 12 0 98 8\n(ULOC) 83\n-------------------------------------------------------------------------------\nJSON 3 119 0 0 119 0\n(ULOC) 109\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 22 769 130 11 628 8\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 480\nDRYness % 0.62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,574\nEstimated Schedule Effort (organic) 2.90 months\nEstimated People Required (organic) 0.51\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 23035 bytes, 0.023 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "TypeScript": 3107 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@aws-sdk/client-cloudformation", - 0.0, - "2025-01-01T18:41:22.000" - ], - [ - "@semantic-release/changelog", - 0.0, - "2025-01-01T18:41:22.000" - ], - [ - "@semantic-release/git", - 0.0, - "2025-01-01T18:41:22.000" - ], - [ - "@types/node", - -0.002739726, - "2025-01-01T18:41:22.000" - ], - [ - "@vitest/coverage-c8", - 0.0, - "2025-01-01T18:41:22.000" - ], - [ - "@vitest/ui", - 1.1671232877, - "2025-01-01T18:41:22.000" - ], - [ - "aws-sdk-client-mock", - 1.304109589, - "2025-01-01T18:41:22.000" - ], - [ - "semantic-release", - 1.1095890411, - "2025-01-01T18:41:22.000" - ], - [ - "tslint", - 0.0, - "2025-01-01T18:41:22.000" - ], - [ - "tslog", - 0.0, - "2025-01-01T18:41:22.000" - ], - [ - "typescript", - -0.1095890411, - "2025-01-01T18:41:22.000" - ], - [ - "vitest", - 1.1780821918, - "2025-01-01T18:41:22.000" - ] + "score": 4.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 3, + "reason": "4 out of 13 merged PRs checked by a CI test -- score normalized to 3", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 2/17 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "13 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 7491, + "CodeBytes": 0, + "Lines": 284, + "Code": 244, + "Comment": 11, + "Blank": 29, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 8280, + "CodeBytes": 0, + "Lines": 235, + "Code": 150, + "Comment": 0, + "Blank": 85, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 3107, + "CodeBytes": 0, + "Lines": 110, + "Code": 98, + "Comment": 0, + "Blank": 12, + "Complexity": 8, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3060, + "CodeBytes": 0, + "Lines": 119, + "Code": 119, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1097, + "CodeBytes": 0, + "Lines": 21, + "Code": 17, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 15115.390086628171, + "estimatedScheduleMonths_low": 2.896050818446369, + "estimatedPeople_low": 0.5084669030827715, + "estimatedCost_high": 47106.15722811945, + "estimatedScheduleMonths_high": 2.896050818446369, + "estimatedPeople_high": 0.5084669030827715, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 9 284 29 11 244 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nMarkdown 5 235 85 0 150 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nTypeScript 4 110 12 0 98 8\n(ULOC) 83\n-------------------------------------------------------------------------------\nJSON 3 119 0 0 119 0\n(ULOC) 109\n-------------------------------------------------------------------------------\nLicense 1 21 4 0 17 0\n(ULOC) 18\n───────────────────────────────────────────────────────────────────────────────\nTotal 22 769 130 11 628 8\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 480\nDRYness % 0.62\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,574\nEstimated Schedule Effort (organic) 2.90 months\nEstimated People Required (organic) 0.51\n───────────────────────────────────────────────────────────────────────────────\nProcessed 23035 bytes, 0.023 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 3107 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@aws-sdk/client-cloudformation", + 0.0, + "2025-01-01T18:41:22.000" + ], + [ + "@semantic-release/changelog", + 0.0, + "2025-01-01T18:41:22.000" + ], + [ + "@semantic-release/git", + 0.0, + "2025-01-01T18:41:22.000" + ], + [ + "@types/node", + -0.002739726, + "2025-01-01T18:41:22.000" + ], + [ + "@vitest/coverage-c8", + 0.0, + "2025-01-01T18:41:22.000" + ], + [ + "@vitest/ui", + 1.1671232877, + "2025-01-01T18:41:22.000" + ], + [ + "aws-sdk-client-mock", + 1.304109589, + "2025-01-01T18:41:22.000" + ], + [ + "semantic-release", + 1.1095890411, + "2025-01-01T18:41:22.000" + ], + [ + "tslint", + 0.0, + "2025-01-01T18:41:22.000" + ], + [ + "tslog", + 0.0, + "2025-01-01T18:41:22.000" + ], + [ + "typescript", + -0.1095890411, + "2025-01-01T18:41:22.000" + ], + [ + "vitest", + 1.1780821918, + "2025-01-01T18:41:22.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json b/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json index 8e3c874612..13a68fcbc6 100644 --- a/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json +++ b/app/site/_data/Enterprise-CMCS/macpro-ux-lib/macpro-ux-lib_data.json @@ -1,450 +1,450 @@ { - "url": "https://github.com/Enterprise-CMCS/macpro-ux-lib", - "owner": "Enterprise-CMCS", - "name": "macpro-ux-lib", - "description": "Common React UX library packaged for easier distribution throughout CMS ", - "commits_count": 285, - "issues_count": 4, - "open_issues_count": 1, - "closed_issues_count": 3, - "pull_requests_count": 307, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 153, - "closed_pull_requests_count": 139, - "forks_count": 1, - "stargazers_count": 10, - "watchers_count": 7, - "total_project_lines": 25643, - "average_project_lines": 10, - "total_project_comment_lines": 1439, - "average_project_comment_lines": 1, - "total_project_blank_lines": 1953, - "average_blank_lines": 1, - "commits_by_month": { - "2023/9": 2, - "2023/8": 28 + "url": "https://github.com/Enterprise-CMCS/macpro-ux-lib", + "owner": "Enterprise-CMCS", + "name": "macpro-ux-lib", + "description": "Common React UX library packaged for easier distribution throughout CMS ", + "commits_count": 285, + "issues_count": 4, + "open_issues_count": 1, + "closed_issues_count": 3, + "pull_requests_count": 307, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 153, + "closed_pull_requests_count": 139, + "forks_count": 1, + "stargazers_count": 10, + "watchers_count": 7, + "total_project_lines": 25643, + "average_project_lines": 10, + "total_project_comment_lines": 1439, + "average_project_comment_lines": 1, + "total_project_blank_lines": 1953, + "average_blank_lines": 1, + "commits_by_month": { + "2023/9": 2, + "2023/8": 28 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-06-28T16:26:54Z", + "ossf_scorecard": { + "date": "2025-01-19T13:30:12Z", + "repo": { + "name": "github.com/Enterprise-CMCS/macpro-ux-lib", + "commit": "6a9a4142e9a78452840ce684d1497c9530cf477c" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-06-28T16:26:54Z", - "ossf_scorecard": { - "date": "2025-01-19T13:30:12Z", - "repo": { - "name": "github.com/Enterprise-CMCS/macpro-ux-lib", - "commit": "6a9a4142e9a78452840ce684d1497c9530cf477c" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 28 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 3/5 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 5 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "31 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "SVG", - "Bytes": 1119898, - "CodeBytes": 0, - "Lines": 2701, - "Code": 2697, - "Comment": 1, - "Blank": 3, - "Complexity": 0, - "Count": 2441, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 380027, - "CodeBytes": 0, - "Lines": 12649, - "Code": 10923, - "Comment": 645, - "Blank": 1081, - "Complexity": 538, - "Count": 126, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 18426, - "CodeBytes": 0, - "Lines": 891, - "Code": 724, - "Comment": 56, - "Blank": 111, - "Complexity": 0, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 889307, - "CodeBytes": 0, - "Lines": 7332, - "Code": 6369, - "Comment": 697, - "Blank": 266, - "Complexity": 360, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 34002, - "CodeBytes": 0, - "Lines": 566, - "Code": 552, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 44700, - "CodeBytes": 0, - "Lines": 1106, - "Code": 662, - "Comment": 0, - "Blank": 444, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6044, - "CodeBytes": 0, - "Lines": 217, - "Code": 190, - "Comment": 11, - "Blank": 16, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 475848, - "CodeBytes": 0, - "Lines": 63, - "Code": 54, - "Comment": 3, - "Blank": 6, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 2385, - "CodeBytes": 0, - "Lines": 63, - "Code": 40, - "Comment": 23, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 134, - "CodeBytes": 0, - "Lines": 6, - "Code": 6, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 143, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 896, - "CodeBytes": 0, - "Lines": 14, - "Code": 9, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 640145.5695717756, - "estimatedScheduleMonths_low": 12.022997158886742, - "estimatedPeople_low": 5.18699115768749, - "estimatedCost_high": 1994973.1813940136, - "estimatedScheduleMonths_high": 12.022997158886742, - "estimatedPeople_high": 5.18699115768749, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSVG 2441 2701 3 1 2697 0\n(ULOC) 2323\n-------------------------------------------------------------------------------\nTypeScript 126 12649 1081 645 10923 538\n(ULOC) 6166\n-------------------------------------------------------------------------------\nSass 30 891 111 56 724 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nJavaScript 11 7332 266 697 6369 360\n(ULOC) 4332\n-------------------------------------------------------------------------------\nJSON 10 566 14 0 552 0\n(ULOC) 378\n-------------------------------------------------------------------------------\nMarkdown 9 1106 444 0 662 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nYAML 6 217 16 11 190 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nCSS 4 63 6 3 54 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nHTML 3 63 0 23 40 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nPlain Text 2 6 0 0 6 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 14 3 2 9 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2646 25643 1953 1439 22251 898\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 14266\nDRYness % 0.56\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $701,959\nEstimated Schedule Effort (organic) 12.02 months\nEstimated People Required (organic) 5.19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 2973137 bytes, 2.973 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 801501, - "TypeScript": 357554, - "SCSS": 18426, - "Shell": 896, - "HTML": 79 - }, - "average_issue_resolution_time": [ - [ - "macpro-ux-lib", - "00:17:11.333333" - ] + "score": 4.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 28 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 3/5 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 5 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "31 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "SVG", + "Bytes": 1119898, + "CodeBytes": 0, + "Lines": 2701, + "Code": 2697, + "Comment": 1, + "Blank": 3, + "Complexity": 0, + "Count": 2441, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 380027, + "CodeBytes": 0, + "Lines": 12649, + "Code": 10923, + "Comment": 645, + "Blank": 1081, + "Complexity": 538, + "Count": 126, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 18426, + "CodeBytes": 0, + "Lines": 891, + "Code": 724, + "Comment": 56, + "Blank": 111, + "Complexity": 0, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 889307, + "CodeBytes": 0, + "Lines": 7332, + "Code": 6369, + "Comment": 697, + "Blank": 266, + "Complexity": 360, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 34002, + "CodeBytes": 0, + "Lines": 566, + "Code": 552, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 44700, + "CodeBytes": 0, + "Lines": 1106, + "Code": 662, + "Comment": 0, + "Blank": 444, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6044, + "CodeBytes": 0, + "Lines": 217, + "Code": 190, + "Comment": 11, + "Blank": 16, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 475848, + "CodeBytes": 0, + "Lines": 63, + "Code": 54, + "Comment": 3, + "Blank": 6, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 2385, + "CodeBytes": 0, + "Lines": 63, + "Code": 40, + "Comment": 23, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 134, + "CodeBytes": 0, + "Lines": 6, + "Code": 6, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 143, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 896, + "CodeBytes": 0, + "Lines": 14, + "Code": 9, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 640145.5695717756, + "estimatedScheduleMonths_low": 12.022997158886742, + "estimatedPeople_low": 5.18699115768749, + "estimatedCost_high": 1994973.1813940136, + "estimatedScheduleMonths_high": 12.022997158886742, + "estimatedPeople_high": 5.18699115768749, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSVG 2441 2701 3 1 2697 0\n(ULOC) 2323\n-------------------------------------------------------------------------------\nTypeScript 126 12649 1081 645 10923 538\n(ULOC) 6166\n-------------------------------------------------------------------------------\nSass 30 891 111 56 724 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nJavaScript 11 7332 266 697 6369 360\n(ULOC) 4332\n-------------------------------------------------------------------------------\nJSON 10 566 14 0 552 0\n(ULOC) 378\n-------------------------------------------------------------------------------\nMarkdown 9 1106 444 0 662 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nYAML 6 217 16 11 190 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nCSS 4 63 6 3 54 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nHTML 3 63 0 23 40 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nPlain Text 2 6 0 0 6 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nShell 1 14 3 2 9 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 2646 25643 1953 1439 22251 898\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 14266\nDRYness % 0.56\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $701,959\nEstimated Schedule Effort (organic) 12.02 months\nEstimated People Required (organic) 5.19\n───────────────────────────────────────────────────────────────────────────────\nProcessed 2973137 bytes, 2.973 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 801501, + "TypeScript": 357554, + "SCSS": 18426, + "Shell": 896, + "HTML": 79 + }, + "average_issue_resolution_time": [ + [ + "macpro-ux-lib", + "00:17:11.333333" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json b/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json index 20c0db880e..5814b05327 100644 --- a/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json +++ b/app/site/_data/Enterprise-CMCS/managed-care-review/managed-care-review_data.json @@ -1,659 +1,659 @@ { - "url": "https://github.com/Enterprise-CMCS/managed-care-review", - "owner": "Enterprise-CMCS", - "name": "managed-care-review", - "description": null, - "commits_count": 2296, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3106, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 2264, - "closed_pull_requests_count": 838, - "forks_count": 3, - "stargazers_count": 10, - "watchers_count": 14, - "total_project_lines": 172583, - "average_project_lines": 124, - "total_project_comment_lines": 7479, - "average_project_comment_lines": 5, - "total_project_blank_lines": 16306, - "average_blank_lines": 12, - "commits_by_month": { - "2025/1": 30 - }, - "new_commit_contributors_by_day_over_last_month": [ - [ - "2024-12-30T00:00:00.000Z", - 1 - ], - [ - "2024-12-31T00:00:00.000Z", - 2 - ] + "url": "https://github.com/Enterprise-CMCS/managed-care-review", + "owner": "Enterprise-CMCS", + "name": "managed-care-review", + "description": null, + "commits_count": 2296, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3106, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 2264, + "closed_pull_requests_count": 838, + "forks_count": 3, + "stargazers_count": 10, + "watchers_count": 14, + "total_project_lines": 172583, + "average_project_lines": 124, + "total_project_comment_lines": 7479, + "average_project_comment_lines": 5, + "total_project_blank_lines": 16306, + "average_blank_lines": 12, + "commits_by_month": { + "2025/1": 30 + }, + "new_commit_contributors_by_day_over_last_month": [ + [ + "2024-12-30T00:00:00.000Z", + 1 ], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 4 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ] + [ + "2024-12-31T00:00:00.000Z", + 2 + ] + ], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 4 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2020-07-27T19:02:24Z", - "ossf_scorecard": { - "date": "2025-01-19T13:21:30Z", - "repo": { - "name": "github.com/Enterprise-CMCS/managed-care-review", - "commit": "4684f98f0c09beb199117f4bc4613144d7f0b5aa" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "28 out of 28 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 20/22 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 6 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 10, - "reason": "SAST tool is run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "27 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 5619996, - "CodeBytes": 0, - "Lines": 152804, - "Code": 133939, - "Comment": 5802, - "Blank": 13063, - "Complexity": 10451, - "Count": 987, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 400202, - "CodeBytes": 0, - "Lines": 6276, - "Code": 4329, - "Comment": 0, - "Blank": 1947, - "Complexity": 0, - "Count": 84, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 63453, - "CodeBytes": 0, - "Lines": 2791, - "Code": 2298, - "Comment": 109, - "Blank": 384, - "Complexity": 0, - "Count": 66, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 56291, - "CodeBytes": 0, - "Lines": 1399, - "Code": 782, - "Comment": 349, - "Blank": 268, - "Complexity": 0, - "Count": 62, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 2286613, - "CodeBytes": 0, - "Lines": 509, - "Code": 508, - "Comment": 1, - "Blank": 0, - "Complexity": 3, - "Count": 59, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "GraphQL", - "Bytes": 121015, - "CodeBytes": 0, - "Lines": 4158, - "Code": 2861, - "Comment": 1034, - "Blank": 263, - "Complexity": 174, - "Count": 50, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 91722, - "CodeBytes": 0, - "Lines": 2687, - "Code": 2679, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 43, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 69943, - "CodeBytes": 0, - "Lines": 2160, - "Code": 1866, - "Comment": 39, - "Blank": 255, - "Complexity": 0, - "Count": 22, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 19047, - "CodeBytes": 0, - "Lines": 442, - "Code": 296, - "Comment": 61, - "Blank": 85, - "Complexity": 34, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 3704, - "CodeBytes": 0, - "Lines": 131, - "Code": 104, - "Comment": 13, - "Blank": 14, - "Complexity": 8, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 74076, - "CodeBytes": 0, - "Lines": 2172, - "Code": 1999, - "Comment": 34, - "Blank": 139, - "Complexity": 180, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 10820, - "CodeBytes": 0, - "Lines": 318, - "Code": 186, - "Comment": 88, - "Blank": 44, - "Complexity": 42, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 314, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 8393, - "CodeBytes": 0, - "Lines": 238, - "Code": 209, - "Comment": 12, - "Blank": 17, - "Complexity": 10, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Protocol Buffers", - "Bytes": 26551, - "CodeBytes": 0, - "Lines": 915, - "Code": 756, - "Comment": 49, - "Blank": 110, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 327, - "CodeBytes": 0, - "Lines": 17, - "Code": 14, - "Comment": 1, - "Blank": 2, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 631, - "CodeBytes": 0, - "Lines": 17, - "Code": 17, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Systemd", - "Bytes": 251, - "CodeBytes": 0, - "Lines": 11, - "Code": 9, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 126, - "CodeBytes": 0, - "Lines": 3, - "Code": 1, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 326, - "CodeBytes": 0, - "Lines": 11, - "Code": 11, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4842873.170617773, - "estimatedScheduleMonths_low": 25.939762653997654, - "estimatedPeople_low": 18.18806951965797, - "estimatedCost_high": 15092507.947431445, - "estimatedScheduleMonths_high": 25.939762653997654, - "estimatedPeople_high": 18.18806951965797, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 987 152804 13063 5802 133939 10451\n(ULOC) 53423\n-------------------------------------------------------------------------------\nMarkdown 84 6276 1947 0 4329 0\n(ULOC) 3576\n-------------------------------------------------------------------------------\nSass 66 2791 384 109 2298 0\n(ULOC) 1262\n-------------------------------------------------------------------------------\nSQL 62 1399 268 349 782 0\n(ULOC) 579\n-------------------------------------------------------------------------------\nSVG 59 509 0 1 508 3\n(ULOC) 437\n-------------------------------------------------------------------------------\nGraphQL 50 4158 263 1034 2861 174\n(ULOC) 1572\n-------------------------------------------------------------------------------\nJSON 43 2687 8 0 2679 0\n(ULOC) 1174\n-------------------------------------------------------------------------------\nYAML 22 2160 255 39 1866 0\n(ULOC) 1022\n-------------------------------------------------------------------------------\nShell 14 442 85 61 296 34\n(ULOC) 302\n-------------------------------------------------------------------------------\nTypeScript Typings 9 131 14 13 104 8\n(ULOC) 85\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 8 2172 139 34 1999 180\n(ULOC) 1143\n-------------------------------------------------------------------------------\nBASH 4 318 44 88 186 42\n(ULOC) 150\n-------------------------------------------------------------------------------\nCSV 3 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nJavaScript 3 238 17 12 209 10\n(ULOC) 137\n-------------------------------------------------------------------------------\nProtocol Buffers 3 915 110 49 756 0\n(ULOC) 276\n-------------------------------------------------------------------------------\nDockerfile 1 17 2 1 14 3\n(ULOC) 16\n-------------------------------------------------------------------------------\nHTML 1 17 0 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSystemd 1 11 2 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nTOML 1 3 0 2 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1423 177066 16601 7594 152871 10905\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 64902\nDRYness % 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,310,515\nEstimated Schedule Effort (organic) 25.94 months\nEstimated People Required (organic) 18.19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 8853868 bytes, 8.854 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2020-07-27T19:02:24Z", + "ossf_scorecard": { + "date": "2025-01-19T13:21:30Z", + "repo": { + "name": "github.com/Enterprise-CMCS/managed-care-review", + "commit": "4684f98f0c09beb199117f4bc4613144d7f0b5aa" }, - "predominant_langs": { - "TypeScript": 5626421, - "SCSS": 63453, - "PLpgSQL": 47090, - "Shell": 28041, - "JavaScript": 8393, - "HTML": 631, - "Dockerfile": 327 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [ - [ - "@bahmutov/cypress-esbuild-preprocessor", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "@cypress-audit/pa11y", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "c8", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "chromedriver", - 0.0739726027, - "2024-08-16T05:36:54.000" - ], - [ - "cypress", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "cypress-file-upload", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "cypress-pipe", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "danger", - 0.5342465753, - "2024-08-16T05:36:54.000" - ], - [ - "esbuild", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "husky", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "lerna", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "lint-staged", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "path-browserify", - 0.0, - "2024-08-16T05:36:54.000" - ], - [ - "prettier", - 0.0, - "2024-08-16T05:36:54.000" - ] + "score": 6.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "28 out of 28 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 20/22 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 6 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 10, + "reason": "SAST tool is run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "27 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 5626421, + "CodeBytes": 0, + "Lines": 153001, + "Code": 134108, + "Comment": 5812, + "Blank": 13081, + "Complexity": 10466, + "Count": 989, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 400202, + "CodeBytes": 0, + "Lines": 6276, + "Code": 4329, + "Comment": 0, + "Blank": 1947, + "Complexity": 0, + "Count": 84, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 63453, + "CodeBytes": 0, + "Lines": 2791, + "Code": 2298, + "Comment": 109, + "Blank": 384, + "Complexity": 0, + "Count": 66, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 59717, + "CodeBytes": 0, + "Lines": 1474, + "Code": 837, + "Comment": 357, + "Blank": 280, + "Complexity": 0, + "Count": 63, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 2286613, + "CodeBytes": 0, + "Lines": 509, + "Code": 508, + "Comment": 1, + "Blank": 0, + "Complexity": 3, + "Count": 59, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "GraphQL", + "Bytes": 121045, + "CodeBytes": 0, + "Lines": 4160, + "Code": 2863, + "Comment": 1034, + "Blank": 263, + "Complexity": 174, + "Count": 50, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 91722, + "CodeBytes": 0, + "Lines": 2687, + "Code": 2679, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 43, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 69943, + "CodeBytes": 0, + "Lines": 2160, + "Code": 1866, + "Comment": 39, + "Blank": 255, + "Complexity": 0, + "Count": 22, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 19047, + "CodeBytes": 0, + "Lines": 442, + "Code": 296, + "Comment": 61, + "Blank": 85, + "Complexity": 34, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 3704, + "CodeBytes": 0, + "Lines": 131, + "Code": 104, + "Comment": 13, + "Blank": 14, + "Complexity": 8, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 74076, + "CodeBytes": 0, + "Lines": 2172, + "Code": 1999, + "Comment": 34, + "Blank": 139, + "Complexity": 180, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 10820, + "CodeBytes": 0, + "Lines": 318, + "Code": 186, + "Comment": 88, + "Blank": 44, + "Complexity": 42, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 314, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 8393, + "CodeBytes": 0, + "Lines": 238, + "Code": 209, + "Comment": 12, + "Blank": 17, + "Complexity": 10, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Protocol Buffers", + "Bytes": 26551, + "CodeBytes": 0, + "Lines": 915, + "Code": 756, + "Comment": 49, + "Blank": 110, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 327, + "CodeBytes": 0, + "Lines": 17, + "Code": 14, + "Comment": 1, + "Blank": 2, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 631, + "CodeBytes": 0, + "Lines": 17, + "Code": 17, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Systemd", + "Bytes": 251, + "CodeBytes": 0, + "Lines": 11, + "Code": 9, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 126, + "CodeBytes": 0, + "Lines": 3, + "Code": 1, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 326, + "CodeBytes": 0, + "Lines": 11, + "Code": 11, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4850390.987977617, + "estimatedScheduleMonths_low": 25.955056946793754, + "estimatedPeople_low": 18.205569555948447, + "estimatedCost_high": 15115936.749767046, + "estimatedScheduleMonths_high": 25.955056946793754, + "estimatedPeople_high": 18.205569555948447, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 989 153001 13081 5812 134108 10466\n(ULOC) 53479\n-------------------------------------------------------------------------------\nMarkdown 84 6276 1947 0 4329 0\n(ULOC) 3576\n-------------------------------------------------------------------------------\nSass 66 2791 384 109 2298 0\n(ULOC) 1262\n-------------------------------------------------------------------------------\nSQL 63 1474 280 357 837 0\n(ULOC) 629\n-------------------------------------------------------------------------------\nSVG 59 509 0 1 508 3\n(ULOC) 437\n-------------------------------------------------------------------------------\nGraphQL 50 4160 263 1034 2863 174\n(ULOC) 1574\n-------------------------------------------------------------------------------\nJSON 43 2687 8 0 2679 0\n(ULOC) 1174\n-------------------------------------------------------------------------------\nYAML 22 2160 255 39 1866 0\n(ULOC) 1022\n-------------------------------------------------------------------------------\nShell 14 442 85 61 296 34\n(ULOC) 302\n-------------------------------------------------------------------------------\nTypeScript Typings 9 131 14 13 104 8\n(ULOC) 85\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 8 2172 139 34 1999 180\n(ULOC) 1143\n-------------------------------------------------------------------------------\nBASH 4 318 44 88 186 42\n(ULOC) 150\n-------------------------------------------------------------------------------\nCSV 3 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nJavaScript 3 238 17 12 209 10\n(ULOC) 137\n-------------------------------------------------------------------------------\nProtocol Buffers 3 915 110 49 756 0\n(ULOC) 276\n-------------------------------------------------------------------------------\nDockerfile 1 17 2 1 14 3\n(ULOC) 16\n-------------------------------------------------------------------------------\nHTML 1 17 0 0 17 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nSystemd 1 11 2 0 9 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nTOML 1 3 0 2 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nXML 1 11 0 0 11 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 1426 177340 16631 7612 153097 10920\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 65009\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,318,759\nEstimated Schedule Effort (organic) 25.96 months\nEstimated People Required (organic) 18.21\n───────────────────────────────────────────────────────────────────────────────\nProcessed 8863749 bytes, 8.864 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 5626421, + "SCSS": 63453, + "PLpgSQL": 47090, + "Shell": 28041, + "JavaScript": 8393, + "HTML": 631, + "Dockerfile": 327 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [ + [ + "@bahmutov/cypress-esbuild-preprocessor", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "@cypress-audit/pa11y", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "c8", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "chromedriver", + 0.0739726027, + "2024-08-16T05:36:54.000" + ], + [ + "cypress", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "cypress-file-upload", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "cypress-pipe", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "danger", + 0.5342465753, + "2024-08-16T05:36:54.000" + ], + [ + "esbuild", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "husky", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "lerna", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "lint-staged", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "path-browserify", + 0.0, + "2024-08-16T05:36:54.000" + ], + [ + "prettier", + 0.0, + "2024-08-16T05:36:54.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json b/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json index ae69bf8930..e5596c21ad 100644 --- a/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json +++ b/app/site/_data/Enterprise-CMCS/seatool-compare/seatool-compare_data.json @@ -1,465 +1,465 @@ { - "url": "https://github.com/Enterprise-CMCS/seatool-compare", - "owner": "Enterprise-CMCS", - "name": "seatool-compare", - "description": "Code repository", - "commits_count": 271, - "issues_count": 31, - "open_issues_count": 0, - "closed_issues_count": 31, - "pull_requests_count": 178, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 152, - "closed_pull_requests_count": 17, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 7, - "total_project_lines": 12851, - "average_project_lines": 63, - "total_project_comment_lines": 352, - "average_project_comment_lines": 2, - "total_project_blank_lines": 1677, - "average_blank_lines": 8, - "commits_by_month": { - "2023/12": 2, - "2023/8": 4, - "2023/7": 4, - "2023/6": 8, - "2023/5": 12 + "url": "https://github.com/Enterprise-CMCS/seatool-compare", + "owner": "Enterprise-CMCS", + "name": "seatool-compare", + "description": "Code repository", + "commits_count": 271, + "issues_count": 31, + "open_issues_count": 0, + "closed_issues_count": 31, + "pull_requests_count": 178, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 152, + "closed_pull_requests_count": 17, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 7, + "total_project_lines": 12851, + "average_project_lines": 63, + "total_project_comment_lines": 352, + "average_project_comment_lines": 2, + "total_project_blank_lines": 1677, + "average_blank_lines": 8, + "commits_by_month": { + "2023/12": 2, + "2023/8": 4, + "2023/7": 4, + "2023/6": 8, + "2023/5": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-09-16T18:46:05Z", + "ossf_scorecard": { + "date": "2025-01-19T13:29:09Z", + "repo": { + "name": "github.com/Enterprise-CMCS/seatool-compare", + "commit": "9ee31e2c2f8c5defba29f1cbf4cb501438c94a5d" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-09-16T18:46:05Z", - "ossf_scorecard": { - "date": "2025-01-19T13:29:09Z", - "repo": { - "name": "github.com/Enterprise-CMCS/seatool-compare", - "commit": "9ee31e2c2f8c5defba29f1cbf4cb501438c94a5d" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "1 out of 21 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 17/18 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "32 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 195375, - "CodeBytes": 0, - "Lines": 6944, - "Code": 5950, - "Comment": 194, - "Blank": 800, - "Complexity": 342, - "Count": 95, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 94122, - "CodeBytes": 0, - "Lines": 2123, - "Code": 1487, - "Comment": 0, - "Blank": 636, - "Complexity": 0, - "Count": 48, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 8944, - "CodeBytes": 0, - "Lines": 316, - "Code": 316, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 34264, - "CodeBytes": 0, - "Lines": 1079, - "Code": 866, - "Comment": 89, - "Blank": 124, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 65916, - "CodeBytes": 0, - "Lines": 1928, - "Code": 1821, - "Comment": 33, - "Blank": 74, - "Complexity": 53, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5380, - "CodeBytes": 0, - "Lines": 161, - "Code": 115, - "Comment": 23, - "Blank": 23, - "Complexity": 29, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 130850, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 176, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 1606, - "CodeBytes": 0, - "Lines": 48, - "Code": 29, - "Comment": 10, - "Blank": 9, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 170, - "CodeBytes": 0, - "Lines": 10, - "Code": 8, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 7463, - "CodeBytes": 0, - "Lines": 191, - "Code": 191, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 300320.2658721954, - "estimatedScheduleMonths_low": 9.017974124317655, - "estimatedPeople_low": 3.244331049653061, - "estimatedCost_high": 935929.1147557852, - "estimatedScheduleMonths_high": 9.017974124317655, - "estimatedPeople_high": 3.244331049653061, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 95 6944 800 194 5950 342\n(ULOC) 3356\n-------------------------------------------------------------------------------\nMarkdown 48 2123 636 0 1487 0\n(ULOC) 722\n-------------------------------------------------------------------------------\nJSON 19 316 0 0 316 0\n(ULOC) 190\n-------------------------------------------------------------------------------\nYAML 19 1079 124 89 866 0\n(ULOC) 606\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 11 1928 74 33 1821 53\n(ULOC) 855\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 48 9 10 29 9\n(ULOC) 33\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nJavaScript 1 10 1 1 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 191 0 0 191 0\n(ULOC) 98\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 205 12851 1677 352 10822 433\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 5982\nDRYness % 0.47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $329,320\nEstimated Schedule Effort (organic) 9.02 months\nEstimated People Required (organic) 3.24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 545721 bytes, 0.546 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "TypeScript": 167699, - "Shell": 2136 - }, - "average_issue_resolution_time": [ - [ - "seatool-compare", - "9 days 32:50:56.806452" - ] + "score": 4.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "1 out of 21 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 17/18 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "32 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 195375, + "CodeBytes": 0, + "Lines": 6944, + "Code": 5950, + "Comment": 194, + "Blank": 800, + "Complexity": 342, + "Count": 95, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 94122, + "CodeBytes": 0, + "Lines": 2123, + "Code": 1487, + "Comment": 0, + "Blank": 636, + "Complexity": 0, + "Count": 48, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 8944, + "CodeBytes": 0, + "Lines": 316, + "Code": 316, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 34264, + "CodeBytes": 0, + "Lines": 1079, + "Code": 866, + "Comment": 89, + "Blank": 124, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 65916, + "CodeBytes": 0, + "Lines": 1928, + "Code": 1821, + "Comment": 33, + "Blank": 74, + "Complexity": 53, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5380, + "CodeBytes": 0, + "Lines": 161, + "Code": 115, + "Comment": 23, + "Blank": 23, + "Complexity": 29, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 130850, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 176, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 1606, + "CodeBytes": 0, + "Lines": 48, + "Code": 29, + "Comment": 10, + "Blank": 9, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 170, + "CodeBytes": 0, + "Lines": 10, + "Code": 8, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 7463, + "CodeBytes": 0, + "Lines": 191, + "Code": 191, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "estimatedCost_low": 300320.2658721954, + "estimatedScheduleMonths_low": 9.017974124317655, + "estimatedPeople_low": 3.244331049653061, + "estimatedCost_high": 935929.1147557852, + "estimatedScheduleMonths_high": 9.017974124317655, + "estimatedPeople_high": 3.244331049653061, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 95 6944 800 194 5950 342\n(ULOC) 3356\n-------------------------------------------------------------------------------\nMarkdown 48 2123 636 0 1487 0\n(ULOC) 722\n-------------------------------------------------------------------------------\nJSON 19 316 0 0 316 0\n(ULOC) 190\n-------------------------------------------------------------------------------\nYAML 19 1079 124 89 866 0\n(ULOC) 606\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 11 1928 74 33 1821 53\n(ULOC) 855\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nTypeScript Typings 2 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 48 9 10 29 9\n(ULOC) 33\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nJavaScript 1 10 1 1 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 191 0 0 191 0\n(ULOC) 98\n───────────────────────────────────────────────────────────────────────────────\nTotal 205 12851 1677 352 10822 433\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 5982\nDRYness % 0.47\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $329,320\nEstimated Schedule Effort (organic) 9.02 months\nEstimated People Required (organic) 3.24\n───────────────────────────────────────────────────────────────────────────────\nProcessed 545721 bytes, 0.546 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "TypeScript": 167699, + "Shell": 2136 + }, + "average_issue_resolution_time": [ + [ + "seatool-compare", + "9 days 32:50:56.806452" + ] + ], + "repo_dependency_libyear_list": [] +} diff --git a/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json b/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json index 4077c85fdb..b37aa27b06 100644 --- a/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json +++ b/app/site/_data/Enterprise-CMCS/seatool-connectors/seatool-connectors_data.json @@ -1,594 +1,594 @@ { - "url": "https://github.com/Enterprise-CMCS/seatool-connectors", - "owner": "Enterprise-CMCS", - "name": "seatool-connectors", - "description": "Microservice streaming CMS SEA Tool data to CMS Bigmac.", - "commits_count": 196, - "issues_count": 31, - "open_issues_count": 0, - "closed_issues_count": 31, - "pull_requests_count": 104, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 73, - "closed_pull_requests_count": 25, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 6, - "total_project_lines": 12045, - "average_project_lines": 73, - "total_project_comment_lines": 186, - "average_project_comment_lines": 1, - "total_project_blank_lines": 1377, - "average_blank_lines": 8, - "commits_by_month": { - "2024/10": 1, - "2024/8": 5, - "2024/3": 1, - "2024/2": 5, - "2023/12": 3, - "2023/7": 2, - "2023/6": 1, - "2023/5": 12 - }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-10-07T00:00:00.000Z", - 1 - ] + "url": "https://github.com/Enterprise-CMCS/seatool-connectors", + "owner": "Enterprise-CMCS", + "name": "seatool-connectors", + "description": "Microservice streaming CMS SEA Tool data to CMS Bigmac.", + "commits_count": 196, + "issues_count": 31, + "open_issues_count": 0, + "closed_issues_count": 31, + "pull_requests_count": 104, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 73, + "closed_pull_requests_count": 25, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 6, + "total_project_lines": 12045, + "average_project_lines": 73, + "total_project_comment_lines": 186, + "average_project_comment_lines": 1, + "total_project_blank_lines": 1377, + "average_blank_lines": 8, + "commits_by_month": { + "2024/10": 1, + "2024/8": 5, + "2024/3": 1, + "2024/2": 5, + "2023/12": 3, + "2023/7": 2, + "2023/6": 1, + "2023/5": 12 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "created_at": "2022-09-16T18:48:38Z", - "ossf_scorecard": { - "date": "2025-01-19T13:28:40Z", - "repo": { - "name": "github.com/Enterprise-CMCS/seatool-connectors", - "commit": "5a4394b6b66eac5b32c1222b1927877eedb085e1" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 5, - "reason": "11 out of 20 merged PRs checked by a CI test -- score normalized to 5", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 9, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "30 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 106527, - "CodeBytes": 0, - "Lines": 2273, - "Code": 1650, - "Comment": 0, - "Blank": 623, - "Complexity": 0, - "Count": 47, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 44533, - "CodeBytes": 0, - "Lines": 1579, - "Code": 1431, - "Comment": 20, - "Blank": 128, - "Complexity": 80, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 51717, - "CodeBytes": 0, - "Lines": 1229, - "Code": 1094, - "Comment": 35, - "Blank": 100, - "Complexity": 97, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 32176, - "CodeBytes": 0, - "Lines": 1060, - "Code": 850, - "Comment": 87, - "Blank": 123, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 13172, - "CodeBytes": 0, - "Lines": 335, - "Code": 328, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 108932, - "CodeBytes": 0, - "Lines": 2419, - "Code": 2136, - "Comment": 0, - "Blank": 283, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 105602, - "CodeBytes": 0, - "Lines": 2604, - "Code": 2521, - "Comment": 11, - "Blank": 72, - "Complexity": 71, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 5379, - "CodeBytes": 0, - "Lines": 161, - "Code": 115, - "Comment": 23, - "Blank": 23, - "Complexity": 29, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 80919, - "CodeBytes": 0, - "Lines": 8, - "Code": 6, - "Comment": 2, - "Blank": 0, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 1439, - "CodeBytes": 0, - "Lines": 43, - "Code": 27, - "Comment": 8, - "Blank": 8, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 12, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 7, - "Code": 6, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 31, - "Code": 22, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 10077, - "CodeBytes": 0, - "Lines": 293, - "Code": 293, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 85, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 290421.05371797254, - "estimatedScheduleMonths_low": 8.90384310174569, - "estimatedPeople_low": 3.1776064351673567, - "estimatedCost_high": 905078.8461554493, - "estimatedScheduleMonths_high": 8.90384310174569, - "estimatedPeople_high": 3.1776064351673567, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 47 2273 623 0 1650 0\n(ULOC) 827\n-------------------------------------------------------------------------------\nTypeScript 28 1579 128 20 1431 80\n(ULOC) 1029\n-------------------------------------------------------------------------------\nJavaScript 25 1229 100 35 1094 97\n(ULOC) 471\n-------------------------------------------------------------------------------\nYAML 18 1060 123 87 850 0\n(ULOC) 553\n-------------------------------------------------------------------------------\nJSON 16 335 7 0 328 0\n(ULOC) 211\n-------------------------------------------------------------------------------\nSQL 12 2419 283 0 2136 0\n(ULOC) 940\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 8 2604 72 11 2521 71\n(ULOC) 948\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 1\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 293 0 0 293 0\n(ULOC) 116\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 165 12045 1377 186 10482 287\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 5215\nDRYness % 0.43\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $318,464\nEstimated Schedule Effort (organic) 8.90 months\nEstimated People Required (organic) 3.18\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 562013 bytes, 0.562 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "2024-10-07T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "created_at": "2022-09-16T18:48:38Z", + "ossf_scorecard": { + "date": "2025-01-19T13:28:40Z", + "repo": { + "name": "github.com/Enterprise-CMCS/seatool-connectors", + "commit": "5a4394b6b66eac5b32c1222b1927877eedb085e1" }, - "predominant_langs": { - "JavaScript": 35734, - "TypeScript": 16857, - "Shell": 2780 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "seatool-connectors", - "10 days 25:10:48.225807" - ] + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 5, + "reason": "11 out of 20 merged PRs checked by a CI test -- score normalized to 5", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 9, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "30 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 106527, + "CodeBytes": 0, + "Lines": 2273, + "Code": 1650, + "Comment": 0, + "Blank": 623, + "Complexity": 0, + "Count": 47, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 44533, + "CodeBytes": 0, + "Lines": 1579, + "Code": 1431, + "Comment": 20, + "Blank": 128, + "Complexity": 80, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 51717, + "CodeBytes": 0, + "Lines": 1229, + "Code": 1094, + "Comment": 35, + "Blank": 100, + "Complexity": 97, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 32176, + "CodeBytes": 0, + "Lines": 1060, + "Code": 850, + "Comment": 87, + "Blank": 123, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 13172, + "CodeBytes": 0, + "Lines": 335, + "Code": 328, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 108932, + "CodeBytes": 0, + "Lines": 2419, + "Code": 2136, + "Comment": 0, + "Blank": 283, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 105602, + "CodeBytes": 0, + "Lines": 2604, + "Code": 2521, + "Comment": 11, + "Blank": 72, + "Complexity": 71, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 5379, + "CodeBytes": 0, + "Lines": 161, + "Code": 115, + "Comment": 23, + "Blank": 23, + "Complexity": 29, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 80919, + "CodeBytes": 0, + "Lines": 8, + "Code": 6, + "Comment": 2, + "Blank": 0, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 1439, + "CodeBytes": 0, + "Lines": 43, + "Code": 27, + "Comment": 8, + "Blank": 8, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 12, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 7, + "Code": 6, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 31, + "Code": 22, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 10077, + "CodeBytes": 0, + "Lines": 293, + "Code": 293, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 85, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 290421.05371797254, + "estimatedScheduleMonths_low": 8.90384310174569, + "estimatedPeople_low": 3.1776064351673567, + "estimatedCost_high": 905078.8461554493, + "estimatedScheduleMonths_high": 8.90384310174569, + "estimatedPeople_high": 3.1776064351673567, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 47 2273 623 0 1650 0\n(ULOC) 827\n-------------------------------------------------------------------------------\nTypeScript 28 1579 128 20 1431 80\n(ULOC) 1029\n-------------------------------------------------------------------------------\nJavaScript 25 1229 100 35 1094 97\n(ULOC) 471\n-------------------------------------------------------------------------------\nYAML 18 1060 123 87 850 0\n(ULOC) 553\n-------------------------------------------------------------------------------\nJSON 16 335 7 0 328 0\n(ULOC) 211\n-------------------------------------------------------------------------------\nSQL 12 2419 283 0 2136 0\n(ULOC) 940\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 8 2604 72 11 2521 71\n(ULOC) 948\n-------------------------------------------------------------------------------\nShell 3 161 23 23 115 29\n(ULOC) 113\n-------------------------------------------------------------------------------\nSVG 2 8 0 2 6 1\n(ULOC) 5\n-------------------------------------------------------------------------------\nBASH 1 43 8 8 27 9\n(ULOC) 29\n-------------------------------------------------------------------------------\nDocker ignore 1 1 0 0 1 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nGemfile 1 7 1 0 6 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nLicense 1 31 9 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nPlain Text 1 293 0 0 293 0\n(ULOC) 116\n-------------------------------------------------------------------------------\nTypeScript Typings 1 2 0 0 2 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 165 12045 1377 186 10482 287\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 5215\nDRYness % 0.43\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $318,464\nEstimated Schedule Effort (organic) 8.90 months\nEstimated People Required (organic) 3.18\n───────────────────────────────────────────────────────────────────────────────\nProcessed 562013 bytes, 0.562 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 35734, + "TypeScript": 16857, + "Shell": 2780 + }, + "average_issue_resolution_time": [ + [ + "seatool-connectors", + "10 days 25:10:48.225807" + ] + ], + "repo_dependency_libyear_list": [ + [ + "@enterprise-cmcs/macpro-security-hub-sync", + 0.1698630137, + "2025-01-01T18:40:52.000" + ], + [ + "@enterprise-cmcs/macpro-serverless-running-stages", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@serverless/compose", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@stratiformdigital/serverless-iam-helper", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@stratiformdigital/serverless-idempotency-helper", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@stratiformdigital/serverless-online", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@stratiformdigital/serverless-s3-security-helper", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@stratiformdigital/serverless-stage-destroyer", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@vitest/coverage-c8", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "@vitest/ui", + 1.1671232877, + "2025-01-01T18:40:52.000" + ], + [ + "aws-sdk-client-mock", + 1.304109589, + "2025-01-01T18:40:52.000" + ], + [ + "prettier", + 2.4712328767, + "2025-01-01T18:40:52.000" + ], + [ + "semantic-release", + 2.1753424658, + "2025-01-01T18:40:52.000" + ], + [ + "serverless", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "serverless-bundle", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "serverless-disable-functions", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "serverless-plugin-scripts", + 0.0, + "2025-01-01T18:40:52.000" + ], + [ + "serverless-plugin-warmup", + 1.3561643836, + "2025-01-01T18:40:52.000" + ], + [ + "serverless-stack-termination-protection", + 0.0, + "2025-01-01T18:40:52.000" ], - "repo_dependency_libyear_list": [ - [ - "@enterprise-cmcs/macpro-security-hub-sync", - 0.1698630137, - "2025-01-01T18:40:52.000" - ], - [ - "@enterprise-cmcs/macpro-serverless-running-stages", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@serverless/compose", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@stratiformdigital/serverless-iam-helper", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@stratiformdigital/serverless-idempotency-helper", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@stratiformdigital/serverless-online", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@stratiformdigital/serverless-s3-security-helper", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@stratiformdigital/serverless-stage-destroyer", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@vitest/coverage-c8", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "@vitest/ui", - 1.1671232877, - "2025-01-01T18:40:52.000" - ], - [ - "aws-sdk-client-mock", - 1.304109589, - "2025-01-01T18:40:52.000" - ], - [ - "prettier", - 2.4712328767, - "2025-01-01T18:40:52.000" - ], - [ - "semantic-release", - 2.1753424658, - "2025-01-01T18:40:52.000" - ], - [ - "serverless", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "serverless-bundle", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "serverless-disable-functions", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "serverless-plugin-scripts", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "serverless-plugin-warmup", - 1.3561643836, - "2025-01-01T18:40:52.000" - ], - [ - "serverless-stack-termination-protection", - 0.0, - "2025-01-01T18:40:52.000" - ], - [ - "vitest", - 1.1780821918, - "2025-01-01T18:40:52.000" - ] + [ + "vitest", + 1.1780821918, + "2025-01-01T18:40:52.000" ] -} \ No newline at end of file + ] +} diff --git a/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json b/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json index e5ce519eb5..031116c836 100644 --- a/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json +++ b/app/site/_data/Enterprise-CMCS/serverless-s3-bucket-helper/serverless-s3-bucket-helper_data.json @@ -1,307 +1,307 @@ { - "url": "https://github.com/Enterprise-CMCS/serverless-s3-bucket-helper", - "owner": "Enterprise-CMCS", - "name": "serverless-s3-bucket-helper", - "description": null, - "commits_count": 7, - "issues_count": 3, - "open_issues_count": 1, - "closed_issues_count": 2, - "pull_requests_count": 7, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 6, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 11, - "total_project_lines": 333, - "average_project_lines": 33, - "total_project_comment_lines": 5, - "average_project_comment_lines": 1, - "total_project_blank_lines": 74, - "average_blank_lines": 7, - "commits_by_month": { - "2023/6": 1, - "2022/5": 1, - "2021/9": 5 + "url": "https://github.com/Enterprise-CMCS/serverless-s3-bucket-helper", + "owner": "Enterprise-CMCS", + "name": "serverless-s3-bucket-helper", + "description": null, + "commits_count": 7, + "issues_count": 3, + "open_issues_count": 1, + "closed_issues_count": 2, + "pull_requests_count": 7, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 6, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 11, + "total_project_lines": 333, + "average_project_lines": 33, + "total_project_comment_lines": 5, + "average_project_comment_lines": 1, + "total_project_blank_lines": 74, + "average_blank_lines": 7, + "commits_by_month": { + "2023/6": 1, + "2022/5": 1, + "2021/9": 5 + }, + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "created_at": "2021-08-26T16:41:01Z", + "ossf_scorecard": { + "date": "2025-01-19T13:32:18Z", + "repo": { + "name": "github.com/Enterprise-CMCS/serverless-s3-bucket-helper", + "commit": "3e519d15676de237ec8ede3ff9ae26abf3f3ef0a" }, - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "created_at": "2021-08-26T16:41:01Z", - "ossf_scorecard": { - "date": "2025-01-19T13:32:18Z", - "repo": { - "name": "github.com/Enterprise-CMCS/serverless-s3-bucket-helper", - "commit": "3e519d15676de237ec8ede3ff9ae26abf3f3ef0a" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 6 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 2/7 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 7, - "reason": "SAST tool detected but not run on all commits", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "cocomo": { - "languageSummary": [ - { - "Name": "Markdown", - "Bytes": 4628, - "CodeBytes": 0, - "Lines": 154, - "Code": 98, - "Comment": 0, - "Blank": 56, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1242, - "CodeBytes": 0, - "Lines": 60, - "Code": 52, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 433, - "CodeBytes": 0, - "Lines": 18, - "Code": 18, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2787, - "CodeBytes": 0, - "Lines": 101, - "Code": 86, - "Comment": 5, - "Blank": 10, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 5843.016815117637, - "estimatedScheduleMonths_low": 2.018129047888061, - "estimatedPeople_low": 0.2820575379696487, - "estimatedCost_high": 18209.392361165064, - "estimatedScheduleMonths_high": 2.018129047888061, - "estimatedPeople_high": 0.2820575379696487, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nMarkdown 5 154 56 0 98 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nYAML 3 60 8 0 52 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nJSON 1 18 0 0 18 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nJavaScript 1 101 10 5 86 4\n(ULOC) 78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 333 74 5 254 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 210\nDRYness % 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,407\nEstimated Schedule Effort (organic) 2.02 months\nEstimated People Required (organic) 0.28\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 9090 bytes, 0.009 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "predominant_langs": { - "JavaScript": 2787 - }, - "average_issue_resolution_time": [], - "repo_dependency_libyear_list": [] -} \ No newline at end of file + "score": 3.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 6 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 2/7 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 7, + "reason": "SAST tool detected but not run on all commits", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + }, + "cocomo": { + "languageSummary": [ + { + "Name": "Markdown", + "Bytes": 4628, + "CodeBytes": 0, + "Lines": 154, + "Code": 98, + "Comment": 0, + "Blank": 56, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1242, + "CodeBytes": 0, + "Lines": 60, + "Code": 52, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 433, + "CodeBytes": 0, + "Lines": 18, + "Code": 18, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2787, + "CodeBytes": 0, + "Lines": 101, + "Code": 86, + "Comment": 5, + "Blank": 10, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 5843.016815117637, + "estimatedScheduleMonths_low": 2.018129047888061, + "estimatedPeople_low": 0.2820575379696487, + "estimatedCost_high": 18209.392361165064, + "estimatedScheduleMonths_high": 2.018129047888061, + "estimatedPeople_high": 0.2820575379696487, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nMarkdown 5 154 56 0 98 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nYAML 3 60 8 0 52 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nJSON 1 18 0 0 18 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nJavaScript 1 101 10 5 86 4\n(ULOC) 78\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 333 74 5 254 4\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 210\nDRYness % 0.63\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $6,407\nEstimated Schedule Effort (organic) 2.02 months\nEstimated People Required (organic) 0.28\n───────────────────────────────────────────────────────────────────────────────\nProcessed 9090 bytes, 0.009 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "predominant_langs": { + "JavaScript": 2787 + }, + "average_issue_resolution_time": [], + "repo_dependency_libyear_list": [] +}