diff --git a/app/site/_data/measureauthoringtool/bonnie-patient-conversion/bonnie-patient-conversion_data.json b/app/site/_data/measureauthoringtool/bonnie-patient-conversion/bonnie-patient-conversion_data.json index 5a4202803f..e2c26687e9 100644 --- a/app/site/_data/measureauthoringtool/bonnie-patient-conversion/bonnie-patient-conversion_data.json +++ b/app/site/_data/measureauthoringtool/bonnie-patient-conversion/bonnie-patient-conversion_data.json @@ -1,342 +1,342 @@ { - "url": "https://github.com/measureauthoringtool/bonnie-patient-conversion", - "owner": "measureauthoringtool", - "name": "bonnie-patient-conversion", - "description": "Patient conversion microservice for bonnie to go from QDM 5.5/5.6 -> FHIR 4.0.1", - "commits_count": 135, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 163, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 15, - "closed_pull_requests_count": 142, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 8, - "created_at": "2020-10-28T15:11:34Z", - "total_project_lines": 37548, - "average_project_lines": 182, - "total_project_comment_lines": 101, - "average_project_comment_lines": 0, - "total_project_blank_lines": 2197, - "average_blank_lines": 11, - "predominant_langs": { - "Java": 386207 + "url": "https://github.com/measureauthoringtool/bonnie-patient-conversion", + "owner": "measureauthoringtool", + "name": "bonnie-patient-conversion", + "description": "Patient conversion microservice for bonnie to go from QDM 5.5/5.6 -> FHIR 4.0.1", + "commits_count": 135, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 163, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 15, + "closed_pull_requests_count": 142, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 8, + "created_at": "2020-10-28T15:11:34Z", + "total_project_lines": 37548, + "average_project_lines": 182, + "total_project_comment_lines": 101, + "average_project_comment_lines": 0, + "total_project_blank_lines": 2197, + "average_blank_lines": 11, + "predominant_langs": { + "Java": 386207 + }, + "commits_by_month": { + "2024/3": 2, + "2024/1": 2, + "2023/4": 2, + "2021/8": 12, + "2021/7": 3, + "2021/6": 3, + "2021/5": 1, + "2021/2": 5 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 390999, + "CodeBytes": 0, + "Lines": 9845, + "Code": 7707, + "Comment": 100, + "Blank": 2038, + "Complexity": 457, + "Count": 155, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 76445, + "CodeBytes": 0, + "Lines": 2665, + "Code": 2524, + "Comment": 0, + "Blank": 141, + "Complexity": 0, + "Count": 40, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 783608, + "CodeBytes": 0, + "Lines": 24828, + "Code": 24828, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1280, + "CodeBytes": 0, + "Lines": 62, + "Code": 52, + "Comment": 0, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1316, + "CodeBytes": 0, + "Lines": 16, + "Code": 14, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 5081, + "CodeBytes": 0, + "Lines": 132, + "Code": 125, + "Comment": 1, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1037716.7123579641, + "estimatedScheduleMonths_low": 14.445639412318753, + "estimatedPeople_low": 6.998283780860307, + "estimatedCost_high": 3233978.5033947406, + "estimatedScheduleMonths_high": 14.445639412318753, + "estimatedPeople_high": 6.998283780860307, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 155 9845 2038 100 7707 457\n(ULOC) 3269\n-------------------------------------------------------------------------------\nMarkdown 40 2665 141 0 2524 0\n(ULOC) 891\n-------------------------------------------------------------------------------\nJSON 7 24828 0 0 24828 0\n(ULOC) 3372\n-------------------------------------------------------------------------------\nYAML 2 62 10 0 52 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nPlain Text 1 16 2 0 14 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nXML 1 132 6 1 125 0\n(ULOC) 86\n───────────────────────────────────────────────────────────────────────────────\nTotal 206 37548 2197 101 35250 457\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 7636\nDRYness % 0.20\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,137,921\nEstimated Schedule Effort (organic) 14.45 months\nEstimated People Required (organic) 7.00\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1258729 bytes, 1.259 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:37:04Z", + "repo": { + "name": "github.com/measureauthoringtool/bonnie-patient-conversion", + "commit": "2b49ce0f84ae0f01a8c17edcc95944def250ac6f" }, - "commits_by_month": { - "2024/3": 2, - "2024/1": 2, - "2023/4": 2, - "2021/8": 12, - "2021/7": 3, - "2021/6": 3, - "2021/5": 1, - "2021/2": 5 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 390999, - "CodeBytes": 0, - "Lines": 9845, - "Code": 7707, - "Comment": 100, - "Blank": 2038, - "Complexity": 457, - "Count": 155, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 76445, - "CodeBytes": 0, - "Lines": 2665, - "Code": 2524, - "Comment": 0, - "Blank": 141, - "Complexity": 0, - "Count": 40, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 783608, - "CodeBytes": 0, - "Lines": 24828, - "Code": 24828, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1280, - "CodeBytes": 0, - "Lines": 62, - "Code": 52, - "Comment": 0, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1316, - "CodeBytes": 0, - "Lines": 16, - "Code": 14, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 5081, - "CodeBytes": 0, - "Lines": 132, - "Code": 125, - "Comment": 1, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1037716.7123579641, - "estimatedScheduleMonths_low": 14.445639412318753, - "estimatedPeople_low": 6.998283780860307, - "estimatedCost_high": 3233978.5033947406, - "estimatedScheduleMonths_high": 14.445639412318753, - "estimatedPeople_high": 6.998283780860307, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 155 9845 2038 100 7707 457\n(ULOC) 3269\n-------------------------------------------------------------------------------\nMarkdown 40 2665 141 0 2524 0\n(ULOC) 891\n-------------------------------------------------------------------------------\nJSON 7 24828 0 0 24828 0\n(ULOC) 3372\n-------------------------------------------------------------------------------\nYAML 2 62 10 0 52 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nPlain Text 1 16 2 0 14 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nXML 1 132 6 1 125 0\n(ULOC) 86\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 206 37548 2197 101 35250 457\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 7636\nDRYness % 0.20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,137,921\nEstimated Schedule Effort (organic) 14.45 months\nEstimated People Required (organic) 7.00\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1258729 bytes, 1.259 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:37:04Z", - "repo": { - "name": "github.com/measureauthoringtool/bonnie-patient-conversion", - "commit": "2b49ce0f84ae0f01a8c17edcc95944def250ac6f" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 1, - "reason": "2 out of 12 merged PRs checked by a CI test -- score normalized to 1", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "45 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 1, + "reason": "2 out of 12 merged PRs checked by a CI test -- score normalized to 1", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "45 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/bonnie/bonnie_data.json b/app/site/_data/measureauthoringtool/bonnie/bonnie_data.json index 31c7775086..6e8a3d2d44 100644 --- a/app/site/_data/measureauthoringtool/bonnie/bonnie_data.json +++ b/app/site/_data/measureauthoringtool/bonnie/bonnie_data.json @@ -1,729 +1,729 @@ { - "url": "https://github.com/measureauthoringtool/bonnie", - "owner": "measureauthoringtool", - "name": "bonnie", - "description": "Clinical Quality Measure Testing Tool", - "commits_count": 3291, - "issues_count": 48, - "open_issues_count": 0, - "closed_issues_count": 48, - "pull_requests_count": 2182, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1669, - "closed_pull_requests_count": 513, - "forks_count": 27, - "stargazers_count": 35, - "watchers_count": 23, - "created_at": "2013-09-19T20:11:14Z", - "total_project_lines": 9472934, - "average_project_lines": 4244, - "total_project_comment_lines": 36657, - "average_project_comment_lines": 16, - "total_project_blank_lines": 56881, - "average_blank_lines": 25, - "predominant_langs": { - "CoffeeScript": 608377, - "Ruby": 547629, - "Handlebars": 119046, - "HTML": 52479, - "Less": 49741, - "JavaScript": 38502, - "Shell": 2621, - "Dockerfile": 1012, - "Procfile": 48 - }, - "commits_by_month": { - "2024/6": 3, - "2024/4": 6, - "2024/3": 1, - "2023/11": 3, - "2023/10": 4, - "2023/9": 13 - }, - "average_issue_resolution_time": [ - [ - "bonnie", - "94 days 22:23:22.375" - ] + "url": "https://github.com/measureauthoringtool/bonnie", + "owner": "measureauthoringtool", + "name": "bonnie", + "description": "Clinical Quality Measure Testing Tool", + "commits_count": 3291, + "issues_count": 48, + "open_issues_count": 0, + "closed_issues_count": 48, + "pull_requests_count": 2182, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1669, + "closed_pull_requests_count": 513, + "forks_count": 27, + "stargazers_count": 35, + "watchers_count": 23, + "created_at": "2013-09-19T20:11:14Z", + "total_project_lines": 9472934, + "average_project_lines": 4244, + "total_project_comment_lines": 36657, + "average_project_comment_lines": 16, + "total_project_blank_lines": 56881, + "average_blank_lines": 25, + "predominant_langs": { + "CoffeeScript": 608377, + "Ruby": 547629, + "Handlebars": 119046, + "HTML": 52479, + "Less": 49741, + "JavaScript": 38502, + "Shell": 2621, + "Dockerfile": 1012, + "Procfile": 48 + }, + "commits_by_month": { + "2024/6": 3, + "2024/4": 6, + "2024/3": 1, + "2023/11": 3, + "2023/10": 4, + "2023/9": 13 + }, + "average_issue_resolution_time": [ + [ + "bonnie", + "94 days 22:23:22.375" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "repo_dependency_libyear_list": [ + [ + "pygments", + 0.0, + "2024-12-17T15:53:28.000" + ], + [ + "sphinx", + 0.0, + "2024-12-17T15:53:28.000" ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "repo_dependency_libyear_list": [ - [ - "pygments", - 0.0, - "2024-12-17T15:53:28.000" - ], - [ - "sphinx", - 0.0, - "2024-12-17T15:53:28.000" - ], - [ - "sphinx_rtd_theme", - 0.0, - "2024-12-17T15:53:28.000" - ] + [ + "sphinx_rtd_theme", + 0.0, + "2024-12-17T15:53:28.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 15142235, + "CodeBytes": 0, + "Lines": 329645, + "Code": 260700, + "Comment": 30730, + "Blank": 38215, + "Complexity": 43846, + "Count": 756, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 345876709, + "CodeBytes": 0, + "Lines": 8825755, + "Code": 8818666, + "Comment": 0, + "Blank": 7089, + "Complexity": 0, + "Count": 641, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CoffeeScript", + "Bytes": 609249, + "CodeBytes": 0, + "Lines": 12796, + "Code": 9369, + "Comment": 1528, + "Blank": 1899, + "Complexity": 1389, + "Count": 139, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "LESS", + "Bytes": 383074, + "CodeBytes": 0, + "Lines": 14475, + "Code": 11094, + "Comment": 1760, + "Blank": 1621, + "Complexity": 0, + "Count": 114, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 437527, + "CodeBytes": 0, + "Lines": 10341, + "Code": 7561, + "Comment": 1329, + "Blank": 1451, + "Complexity": 346, + "Count": 100, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 22832957, + "CodeBytes": 0, + "Lines": 203530, + "Code": 202990, + "Comment": 352, + "Blank": 188, + "Complexity": 0, + "Count": 93, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Handlebars", + "Bytes": 119046, + "CodeBytes": 0, + "Lines": 2727, + "Code": 2595, + "Comment": 5, + "Blank": 127, + "Complexity": 18, + "Count": 87, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 270115, + "CodeBytes": 0, + "Lines": 6727, + "Code": 4636, + "Comment": 0, + "Blank": 2091, + "Complexity": 0, + "Count": 58, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 768400, + "CodeBytes": 0, + "Lines": 15102, + "Code": 13933, + "Comment": 25, + "Blank": 1144, + "Complexity": 0, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1073863, + "CodeBytes": 0, + "Lines": 23905, + "Code": 21940, + "Comment": 369, + "Blank": 1596, + "Complexity": 0, + "Count": 41, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby HTML", + "Bytes": 50609, + "CodeBytes": 0, + "Lines": 1303, + "Code": 1219, + "Comment": 3, + "Blank": 81, + "Complexity": 109, + "Count": 37, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 2033030, + "CodeBytes": 0, + "Lines": 14668, + "Code": 14668, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 41252, + "CodeBytes": 0, + "Lines": 732, + "Code": 602, + "Comment": 0, + "Blank": 130, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 100278, + "CodeBytes": 0, + "Lines": 2879, + "Code": 2540, + "Comment": 107, + "Blank": 232, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 38384, + "CodeBytes": 0, + "Lines": 828, + "Code": 748, + "Comment": 0, + "Blank": 80, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 9112, + "CodeBytes": 0, + "Lines": 264, + "Code": 194, + "Comment": 43, + "Blank": 27, + "Complexity": 13, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "ReStructuredText", + "Bytes": 54531, + "CodeBytes": 0, + "Lines": 1727, + "Code": 1111, + "Comment": 0, + "Blank": 616, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSV", + "Bytes": 1235, + "CodeBytes": 0, + "Lines": 12, + "Code": 12, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 283467, + "CodeBytes": 0, + "Lines": 3933, + "Code": 3786, + "Comment": 131, + "Blank": 16, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 2197, + "CodeBytes": 0, + "Lines": 69, + "Code": 52, + "Comment": 7, + "Blank": 10, + "Complexity": 4, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Makefile", + "Bytes": 5887, + "CodeBytes": 0, + "Lines": 165, + "Code": 133, + "Comment": 5, + "Blank": 27, + "Complexity": 6, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "nuspec", + "Bytes": 3759, + "CodeBytes": 0, + "Lines": 68, + "Code": 62, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 5124, + "CodeBytes": 0, + "Lines": 190, + "Code": 166, + "Comment": 1, + "Blank": 23, + "Complexity": 65, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 92, + "CodeBytes": 0, + "Lines": 8, + "Code": 5, + "Comment": 1, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1012, + "CodeBytes": 0, + "Lines": 29, + "Code": 22, + "Comment": 0, + "Blank": 7, + "Complexity": 14, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 2590, + "CodeBytes": 0, + "Lines": 98, + "Code": 66, + "Comment": 12, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Powershell", + "Bytes": 162, + "CodeBytes": 0, + "Lines": 2, + "Code": 1, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Python", + "Bytes": 8002, + "CodeBytes": 0, + "Lines": 249, + "Code": 31, + "Comment": 150, + "Blank": 68, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 5979, + "CodeBytes": 0, + "Lines": 171, + "Code": 134, + "Comment": 0, + "Blank": 37, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 17093, + "CodeBytes": 0, + "Lines": 536, + "Code": 360, + "Comment": 98, + "Blank": 78, + "Complexity": 69, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 15142235, - "CodeBytes": 0, - "Lines": 329645, - "Code": 260700, - "Comment": 30730, - "Blank": 38215, - "Complexity": 43846, - "Count": 756, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 345876709, - "CodeBytes": 0, - "Lines": 8825755, - "Code": 8818666, - "Comment": 0, - "Blank": 7089, - "Complexity": 0, - "Count": 641, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CoffeeScript", - "Bytes": 609249, - "CodeBytes": 0, - "Lines": 12796, - "Code": 9369, - "Comment": 1528, - "Blank": 1899, - "Complexity": 1389, - "Count": 139, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "LESS", - "Bytes": 383074, - "CodeBytes": 0, - "Lines": 14475, - "Code": 11094, - "Comment": 1760, - "Blank": 1621, - "Complexity": 0, - "Count": 114, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 437527, - "CodeBytes": 0, - "Lines": 10341, - "Code": 7561, - "Comment": 1329, - "Blank": 1451, - "Complexity": 346, - "Count": 100, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 22832957, - "CodeBytes": 0, - "Lines": 203530, - "Code": 202990, - "Comment": 352, - "Blank": 188, - "Complexity": 0, - "Count": 93, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Handlebars", - "Bytes": 119046, - "CodeBytes": 0, - "Lines": 2727, - "Code": 2595, - "Comment": 5, - "Blank": 127, - "Complexity": 18, - "Count": 87, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 270115, - "CodeBytes": 0, - "Lines": 6727, - "Code": 4636, - "Comment": 0, - "Blank": 2091, - "Complexity": 0, - "Count": 58, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 768400, - "CodeBytes": 0, - "Lines": 15102, - "Code": 13933, - "Comment": 25, - "Blank": 1144, - "Complexity": 0, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1073863, - "CodeBytes": 0, - "Lines": 23905, - "Code": 21940, - "Comment": 369, - "Blank": 1596, - "Complexity": 0, - "Count": 41, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby HTML", - "Bytes": 50609, - "CodeBytes": 0, - "Lines": 1303, - "Code": 1219, - "Comment": 3, - "Blank": 81, - "Complexity": 109, - "Count": 37, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 2033030, - "CodeBytes": 0, - "Lines": 14668, - "Code": 14668, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 41252, - "CodeBytes": 0, - "Lines": 732, - "Code": 602, - "Comment": 0, - "Blank": 130, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 100278, - "CodeBytes": 0, - "Lines": 2879, - "Code": 2540, - "Comment": 107, - "Blank": 232, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 38384, - "CodeBytes": 0, - "Lines": 828, - "Code": 748, - "Comment": 0, - "Blank": 80, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 9112, - "CodeBytes": 0, - "Lines": 264, - "Code": 194, - "Comment": 43, - "Blank": 27, - "Complexity": 13, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "ReStructuredText", - "Bytes": 54531, - "CodeBytes": 0, - "Lines": 1727, - "Code": 1111, - "Comment": 0, - "Blank": 616, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSV", - "Bytes": 1235, - "CodeBytes": 0, - "Lines": 12, - "Code": 12, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 283467, - "CodeBytes": 0, - "Lines": 3933, - "Code": 3786, - "Comment": 131, - "Blank": 16, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 2197, - "CodeBytes": 0, - "Lines": 69, - "Code": 52, - "Comment": 7, - "Blank": 10, - "Complexity": 4, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Makefile", - "Bytes": 5887, - "CodeBytes": 0, - "Lines": 165, - "Code": 133, - "Comment": 5, - "Blank": 27, - "Complexity": 6, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "nuspec", - "Bytes": 3759, - "CodeBytes": 0, - "Lines": 68, - "Code": 62, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 5124, - "CodeBytes": 0, - "Lines": 190, - "Code": 166, - "Comment": 1, - "Blank": 23, - "Complexity": 65, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 92, - "CodeBytes": 0, - "Lines": 8, - "Code": 5, - "Comment": 1, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1012, - "CodeBytes": 0, - "Lines": 29, - "Code": 22, - "Comment": 0, - "Blank": 7, - "Complexity": 14, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 2590, - "CodeBytes": 0, - "Lines": 98, - "Code": 66, - "Comment": 12, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Powershell", - "Bytes": 162, - "CodeBytes": 0, - "Lines": 2, - "Code": 1, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Python", - "Bytes": 8002, - "CodeBytes": 0, - "Lines": 249, - "Code": 31, - "Comment": 150, - "Blank": 68, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 5979, - "CodeBytes": 0, - "Lines": 171, - "Code": 134, - "Comment": 0, - "Blank": 37, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 17093, - "CodeBytes": 0, - "Lines": 536, - "Code": 360, - "Comment": 98, - "Blank": 78, - "Complexity": 69, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 365044113.41594106, - "estimatedScheduleMonths_low": 134.0658155862491, - "estimatedPeople_low": 265.2630769830609, - "estimatedCost_high": 1137636892.1489546, - "estimatedScheduleMonths_high": 134.0658155862491, - "estimatedPeople_high": 265.2630769830609, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 756 329645 38215 30730 260700 43846\n(ULOC) 88300\n-------------------------------------------------------------------------------\nJSON 641 8825755 7089 0 8818666 0\n(ULOC) 781774\n-------------------------------------------------------------------------------\nCoffeeScript 139 12796 1899 1528 9369 1389\n(ULOC) 7984\n-------------------------------------------------------------------------------\nLESS 114 14475 1621 1760 11094 0\n(ULOC) 8376\n-------------------------------------------------------------------------------\nRuby 100 10341 1451 1329 7561 346\n(ULOC) 5481\n-------------------------------------------------------------------------------\nYAML 93 203530 188 352 202990 0\n(ULOC) 31604\n-------------------------------------------------------------------------------\nHandlebars 87 2727 127 5 2595 18\n(ULOC) 1480\n-------------------------------------------------------------------------------\nMarkdown 58 6727 2091 0 4636 0\n(ULOC) 3560\n-------------------------------------------------------------------------------\nHTML 54 15102 1144 25 13933 0\n(ULOC) 8220\n-------------------------------------------------------------------------------\nCSS 41 23905 1596 369 21940 0\n(ULOC) 8353\n-------------------------------------------------------------------------------\nRuby HTML 37 1303 81 3 1219 109\n(ULOC) 843\n-------------------------------------------------------------------------------\nSVG 21 14668 0 0 14668 0\n(ULOC) 8099\n-------------------------------------------------------------------------------\nLicense 19 732 130 0 602 0\n(ULOC) 299\n-------------------------------------------------------------------------------\nSass 18 2879 232 107 2540 0\n(ULOC) 2301\n-------------------------------------------------------------------------------\nPlain Text 13 828 80 0 748 0\n(ULOC) 692\n-------------------------------------------------------------------------------\nShell 10 264 27 43 194 13\n(ULOC) 176\n-------------------------------------------------------------------------------\nReStructuredText 8 1727 616 0 1111 0\n(ULOC) 859\n-------------------------------------------------------------------------------\nCSV 4 12 0 0 12 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nXML 4 3933 16 131 3786 0\n(ULOC) 783\n-------------------------------------------------------------------------------\nRakefile 3 69 10 7 52 4\n(ULOC) 50\n-------------------------------------------------------------------------------\nMakefile 2 165 27 5 133 6\n(ULOC) 121\n-------------------------------------------------------------------------------\nnuspec 2 68 6 0 62 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nBatch 1 190 23 1 166 65\n(ULOC) 98\n-------------------------------------------------------------------------------\nDocker ignore 1 8 2 1 5 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nDockerfile 1 29 7 0 22 14\n(ULOC) 23\n-------------------------------------------------------------------------------\nGemfile 1 98 20 12 66 0\n(ULOC) 76\n-------------------------------------------------------------------------------\nPowershell 1 2 0 1 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nPython 1 249 68 150 31 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nTOML 1 171 37 0 134 1\n(ULOC) 100\n-------------------------------------------------------------------------------\nTypeScript Typings 1 536 78 98 360 69\n(ULOC) 372\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2232 9472934 56881 36657 9379396 45880\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 957464\nDRYness % 0.10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $400,293,872\nEstimated Schedule Effort (organic) 134.07 months\nEstimated People Required (organic) 265.26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 390176970 bytes, 390.177 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "estimatedCost_low": 365044113.41594106, + "estimatedScheduleMonths_low": 134.0658155862491, + "estimatedPeople_low": 265.2630769830609, + "estimatedCost_high": 1137636892.1489546, + "estimatedScheduleMonths_high": 134.0658155862491, + "estimatedPeople_high": 265.2630769830609, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 756 329645 38215 30730 260700 43846\n(ULOC) 88300\n-------------------------------------------------------------------------------\nJSON 641 8825755 7089 0 8818666 0\n(ULOC) 781774\n-------------------------------------------------------------------------------\nCoffeeScript 139 12796 1899 1528 9369 1389\n(ULOC) 7984\n-------------------------------------------------------------------------------\nLESS 114 14475 1621 1760 11094 0\n(ULOC) 8376\n-------------------------------------------------------------------------------\nRuby 100 10341 1451 1329 7561 346\n(ULOC) 5481\n-------------------------------------------------------------------------------\nYAML 93 203530 188 352 202990 0\n(ULOC) 31604\n-------------------------------------------------------------------------------\nHandlebars 87 2727 127 5 2595 18\n(ULOC) 1480\n-------------------------------------------------------------------------------\nMarkdown 58 6727 2091 0 4636 0\n(ULOC) 3560\n-------------------------------------------------------------------------------\nHTML 54 15102 1144 25 13933 0\n(ULOC) 8220\n-------------------------------------------------------------------------------\nCSS 41 23905 1596 369 21940 0\n(ULOC) 8353\n-------------------------------------------------------------------------------\nRuby HTML 37 1303 81 3 1219 109\n(ULOC) 843\n-------------------------------------------------------------------------------\nSVG 21 14668 0 0 14668 0\n(ULOC) 8099\n-------------------------------------------------------------------------------\nLicense 19 732 130 0 602 0\n(ULOC) 299\n-------------------------------------------------------------------------------\nSass 18 2879 232 107 2540 0\n(ULOC) 2301\n-------------------------------------------------------------------------------\nPlain Text 13 828 80 0 748 0\n(ULOC) 692\n-------------------------------------------------------------------------------\nShell 10 264 27 43 194 13\n(ULOC) 176\n-------------------------------------------------------------------------------\nReStructuredText 8 1727 616 0 1111 0\n(ULOC) 859\n-------------------------------------------------------------------------------\nCSV 4 12 0 0 12 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nXML 4 3933 16 131 3786 0\n(ULOC) 783\n-------------------------------------------------------------------------------\nRakefile 3 69 10 7 52 4\n(ULOC) 50\n-------------------------------------------------------------------------------\nMakefile 2 165 27 5 133 6\n(ULOC) 121\n-------------------------------------------------------------------------------\nnuspec 2 68 6 0 62 0\n(ULOC) 38\n-------------------------------------------------------------------------------\nBatch 1 190 23 1 166 65\n(ULOC) 98\n-------------------------------------------------------------------------------\nDocker ignore 1 8 2 1 5 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nDockerfile 1 29 7 0 22 14\n(ULOC) 23\n-------------------------------------------------------------------------------\nGemfile 1 98 20 12 66 0\n(ULOC) 76\n-------------------------------------------------------------------------------\nPowershell 1 2 0 1 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nPython 1 249 68 150 31 0\n(ULOC) 172\n-------------------------------------------------------------------------------\nTOML 1 171 37 0 134 1\n(ULOC) 100\n-------------------------------------------------------------------------------\nTypeScript Typings 1 536 78 98 360 69\n(ULOC) 372\n───────────────────────────────────────────────────────────────────────────────\nTotal 2232 9472934 56881 36657 9379396 45880\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 957464\nDRYness % 0.10\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $400,293,872\nEstimated Schedule Effort (organic) 134.07 months\nEstimated People Required (organic) 265.26\n───────────────────────────────────────────────────────────────────────────────\nProcessed 390176970 bytes, 390.177 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:32:06Z", + "repo": { + "name": "github.com/measureauthoringtool/bonnie", + "commit": "b4b5ac2a71159ca445182e18a128bf913242e1b5" }, - "ossf_scorecard": { - "date": "2025-01-19T14:32:06Z", - "repo": { - "name": "github.com/measureauthoringtool/bonnie", - "commit": "b4b5ac2a71159ca445182e18a128bf913242e1b5" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 5, - "reason": "8 out of 15 merged PRs checked by a CI test -- score normalized to 5", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 13/16 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 20 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "56 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" + }, + "score": 4.6, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 5, + "reason": "8 out of 15 merged PRs checked by a CI test -- score normalized to 5", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 13/16 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 20 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "56 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/bonnie_bundler/bonnie_bundler_data.json b/app/site/_data/measureauthoringtool/bonnie_bundler/bonnie_bundler_data.json index d7bac5f980..f0417a1a7d 100644 --- a/app/site/_data/measureauthoringtool/bonnie_bundler/bonnie_bundler_data.json +++ b/app/site/_data/measureauthoringtool/bonnie_bundler/bonnie_bundler_data.json @@ -1,368 +1,368 @@ { - "url": "https://github.com/measureauthoringtool/bonnie_bundler", - "owner": "measureauthoringtool", - "name": "bonnie_bundler", - "description": "Gem to create and manage bonnie bundles", - "commits_count": 320, - "issues_count": 23, - "open_issues_count": 0, - "closed_issues_count": 23, - "pull_requests_count": 251, - "open_pull_requests_count": 3, - "merged_pull_requests_count": 174, - "closed_pull_requests_count": 74, - "forks_count": 10, - "stargazers_count": 0, - "watchers_count": 21, - "created_at": "2013-10-29T10:56:36Z", - "total_project_lines": 106873, - "average_project_lines": 1257, - "total_project_comment_lines": 409, - "average_project_comment_lines": 5, - "total_project_blank_lines": 607, - "average_blank_lines": 7, - "predominant_langs": { - "Ruby": 174155 + "url": "https://github.com/measureauthoringtool/bonnie_bundler", + "owner": "measureauthoringtool", + "name": "bonnie_bundler", + "description": "Gem to create and manage bonnie bundles", + "commits_count": 320, + "issues_count": 23, + "open_issues_count": 0, + "closed_issues_count": 23, + "pull_requests_count": 251, + "open_pull_requests_count": 3, + "merged_pull_requests_count": 174, + "closed_pull_requests_count": 74, + "forks_count": 10, + "stargazers_count": 0, + "watchers_count": 21, + "created_at": "2013-10-29T10:56:36Z", + "total_project_lines": 106873, + "average_project_lines": 1257, + "total_project_comment_lines": 409, + "average_project_comment_lines": 5, + "total_project_blank_lines": 607, + "average_blank_lines": 7, + "predominant_langs": { + "Ruby": 174155 + }, + "commits_by_month": { + "2020/12": 4, + "2020/10": 2, + "2020/8": 2, + "2019/9": 1, + "2019/8": 1, + "2019/5": 2, + "2019/2": 1, + "2019/1": 2, + "2018/12": 3, + "2018/11": 3, + "2018/10": 1, + "2018/9": 1, + "2018/8": 4, + "2018/7": 3 + }, + "average_issue_resolution_time": [ + [ + "bonnie_bundler", + "00:40:20.521739" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 7781149, + "CodeBytes": 0, + "Lines": 102247, + "Code": 102234, + "Comment": 6, + "Blank": 7, + "Complexity": 0, + "Count": 46, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 164828, + "CodeBytes": 0, + "Lines": 4015, + "Code": 3156, + "Comment": 378, + "Blank": 481, + "Complexity": 272, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4712, + "CodeBytes": 0, + "Lines": 84, + "Code": 63, + "Comment": 0, + "Blank": 21, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 1131, + "CodeBytes": 0, + "Lines": 29, + "Code": 15, + "Comment": 10, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 594, + "CodeBytes": 0, + "Lines": 29, + "Code": 23, + "Comment": 1, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 8920, + "CodeBytes": 0, + "Lines": 268, + "Code": 197, + "Comment": 14, + "Blank": 57, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3292435.643392319, + "estimatedScheduleMonths_low": 22.401824661066808, + "estimatedPeople_low": 14.318034646751348, + "estimatedCost_high": 10260667.45166617, + "estimatedScheduleMonths_high": 22.401824661066808, + "estimatedPeople_high": 14.318034646751348, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 46 102247 7 6 102234 0\n(ULOC) 21601\n-------------------------------------------------------------------------------\nRuby 31 4015 481 378 3156 272\n(ULOC) 2318\n-------------------------------------------------------------------------------\nMarkdown 4 84 21 0 63 0\n(ULOC) 55\n-------------------------------------------------------------------------------\nGemfile 1 29 4 10 15 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nPlain Text 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nRakefile 1 29 5 1 23 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nTOML 1 268 57 14 197 1\n(ULOC) 164\n───────────────────────────────────────────────────────────────────────────────\nTotal 85 106873 607 409 105857 273\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 24341\nDRYness % 0.23\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,610,363\nEstimated Schedule Effort (organic) 22.40 months\nEstimated People Required (organic) 14.32\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7972691 bytes, 7.973 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:32:41Z", + "repo": { + "name": "github.com/measureauthoringtool/bonnie_bundler", + "commit": "c47c530c9d69556e0cde7a9685f47744d9e4a0f0" }, - "commits_by_month": { - "2020/12": 4, - "2020/10": 2, - "2020/8": 2, - "2019/9": 1, - "2019/8": 1, - "2019/5": 2, - "2019/2": 1, - "2019/1": 2, - "2018/12": 3, - "2018/11": 3, - "2018/10": 1, - "2018/9": 1, - "2018/8": 4, - "2018/7": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "bonnie_bundler", - "00:40:20.521739" - ] + "score": 4.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 23 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 18/24 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 12 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "67 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 7781149, - "CodeBytes": 0, - "Lines": 102247, - "Code": 102234, - "Comment": 6, - "Blank": 7, - "Complexity": 0, - "Count": 46, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 164828, - "CodeBytes": 0, - "Lines": 4015, - "Code": 3156, - "Comment": 378, - "Blank": 481, - "Complexity": 272, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4712, - "CodeBytes": 0, - "Lines": 84, - "Code": 63, - "Comment": 0, - "Blank": 21, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 1131, - "CodeBytes": 0, - "Lines": 29, - "Code": 15, - "Comment": 10, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 594, - "CodeBytes": 0, - "Lines": 29, - "Code": 23, - "Comment": 1, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 8920, - "CodeBytes": 0, - "Lines": 268, - "Code": 197, - "Comment": 14, - "Blank": 57, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3292435.643392319, - "estimatedScheduleMonths_low": 22.401824661066808, - "estimatedPeople_low": 14.318034646751348, - "estimatedCost_high": 10260667.45166617, - "estimatedScheduleMonths_high": 22.401824661066808, - "estimatedPeople_high": 14.318034646751348, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 46 102247 7 6 102234 0\n(ULOC) 21601\n-------------------------------------------------------------------------------\nRuby 31 4015 481 378 3156 272\n(ULOC) 2318\n-------------------------------------------------------------------------------\nMarkdown 4 84 21 0 63 0\n(ULOC) 55\n-------------------------------------------------------------------------------\nGemfile 1 29 4 10 15 0\n(ULOC) 25\n-------------------------------------------------------------------------------\nPlain Text 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nRakefile 1 29 5 1 23 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nTOML 1 268 57 14 197 1\n(ULOC) 164\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 85 106873 607 409 105857 273\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 24341\nDRYness % 0.23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,610,363\nEstimated Schedule Effort (organic) 22.40 months\nEstimated People Required (organic) 14.32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7972691 bytes, 7.973 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:32:41Z", - "repo": { - "name": "github.com/measureauthoringtool/bonnie_bundler", - "commit": "c47c530c9d69556e0cde7a9685f47744d9e4a0f0" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 23 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 18/24 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 12 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "67 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/clinical_quality_language/clinical_quality_language_data.json b/app/site/_data/measureauthoringtool/clinical_quality_language/clinical_quality_language_data.json index 9610f7f1c7..1b312c3ded 100644 --- a/app/site/_data/measureauthoringtool/clinical_quality_language/clinical_quality_language_data.json +++ b/app/site/_data/measureauthoringtool/clinical_quality_language/clinical_quality_language_data.json @@ -1,527 +1,527 @@ { - "url": "https://github.com/measureauthoringtool/clinical_quality_language", - "owner": "measureauthoringtool", - "name": "clinical_quality_language", - "description": "Clinical Quality Language (CQL) is an HL7 specification for the expression of clinical knowledge that can be used within both the Clinical Decision Support (CDS) and Clinical Quality Measurement (CQM) domains. This repository contains complementary tooling in support of that specification.", - "commits_count": 1254, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 7, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 2, - "stargazers_count": 3, - "watchers_count": 5, - "created_at": "2017-07-07T20:47:45Z", - "total_project_lines": 517187, - "average_project_lines": 559, - "total_project_comment_lines": 28731, - "average_project_comment_lines": 31, - "total_project_blank_lines": 25914, - "average_blank_lines": 28, - "predominant_langs": { - "CoffeeScript": 4302297, - "JavaScript": 1169808, - "Java": 1066581, - "C#": 276543, - "ANTLR": 29213, - "HTML": 3678, - "TSQL": 1292, - "Batchfile": 382 + "url": "https://github.com/measureauthoringtool/clinical_quality_language", + "owner": "measureauthoringtool", + "name": "clinical_quality_language", + "description": "Clinical Quality Language (CQL) is an HL7 specification for the expression of clinical knowledge that can be used within both the Clinical Decision Support (CDS) and Clinical Quality Measurement (CQM) domains. This repository contains complementary tooling in support of that specification.", + "commits_count": 1254, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 7, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 2, + "stargazers_count": 3, + "watchers_count": 5, + "created_at": "2017-07-07T20:47:45Z", + "total_project_lines": 517187, + "average_project_lines": 559, + "total_project_comment_lines": 28731, + "average_project_comment_lines": 31, + "total_project_blank_lines": 25914, + "average_blank_lines": 28, + "predominant_langs": { + "CoffeeScript": 4302297, + "JavaScript": 1169808, + "Java": 1066581, + "C#": 276543, + "ANTLR": 29213, + "HTML": 3678, + "TSQL": 1292, + "Batchfile": 382 + }, + "commits_by_month": { + "2020/6": 2, + "2020/3": 2, + "2019/12": 2, + "2017/10": 10, + "2017/9": 11, + "2017/8": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "XML Schema", + "Bytes": 12994030, + "CodeBytes": 0, + "Lines": 235640, + "Code": 232623, + "Comment": 0, + "Blank": 3017, + "Complexity": 0, + "Count": 381, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CoffeeScript", + "Bytes": 4312367, + "CodeBytes": 0, + "Lines": 114571, + "Code": 95169, + "Comment": 14227, + "Blank": 5175, + "Complexity": 2456, + "Count": 202, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 1066581, + "CodeBytes": 0, + "Lines": 28025, + "Code": 19593, + "Comment": 4233, + "Blank": 4199, + "Complexity": 2924, + "Count": 172, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 4653437, + "CodeBytes": 0, + "Lines": 71031, + "Code": 70830, + "Comment": 96, + "Blank": 105, + "Complexity": 0, + "Count": 62, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "C#", + "Bytes": 279336, + "CodeBytes": 0, + "Lines": 7654, + "Code": 6092, + "Comment": 526, + "Blank": 1036, + "Complexity": 180, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 521397, + "CodeBytes": 0, + "Lines": 12855, + "Code": 12837, + "Comment": 0, + "Blank": 18, + "Complexity": 0, + "Count": 23, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 17192, + "CodeBytes": 0, + "Lines": 510, + "Code": 413, + "Comment": 6, + "Blank": 91, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "MSBuild", + "Bytes": 73945, + "CodeBytes": 0, + "Lines": 1401, + "Code": 1157, + "Comment": 216, + "Blank": 28, + "Complexity": 132, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 46113, + "CodeBytes": 0, + "Lines": 782, + "Code": 561, + "Comment": 0, + "Blank": 221, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 6341, + "CodeBytes": 0, + "Lines": 124, + "Code": 73, + "Comment": 43, + "Blank": 8, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 5190, + "CodeBytes": 0, + "Lines": 184, + "Code": 136, + "Comment": 0, + "Blank": 48, + "Complexity": 46, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 3374, + "CodeBytes": 0, + "Lines": 84, + "Code": 70, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 10160, + "CodeBytes": 0, + "Lines": 328, + "Code": 244, + "Comment": 44, + "Blank": 40, + "Complexity": 40, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 31992, + "CodeBytes": 0, + "Lines": 706, + "Code": 703, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1621, + "CodeBytes": 0, + "Lines": 42, + "Code": 38, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1169808, + "CodeBytes": 0, + "Lines": 43089, + "Code": 21860, + "Comment": 9340, + "Blank": 11889, + "Complexity": 2837, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 1292, + "CodeBytes": 0, + "Lines": 40, + "Code": 34, + "Comment": 0, + "Blank": 6, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 15487112.969693106, + "estimatedScheduleMonths_low": 40.347404184212394, + "estimatedPeople_low": 37.39421109989613, + "estimatedCost_high": 48264608.083478935, + "estimatedScheduleMonths_high": 40.347404184212394, + "estimatedPeople_high": 37.39421109989613, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nXML Schema 381 235640 3017 0 232623 0\n(ULOC) 26893\n-------------------------------------------------------------------------------\nCoffeeScript 202 114571 5175 14227 95169 2456\n(ULOC) 14900\n-------------------------------------------------------------------------------\nJava 172 28025 4199 4233 19593 2924\n(ULOC) 11901\n-------------------------------------------------------------------------------\nXML 62 71031 105 96 70830 0\n(ULOC) 14358\n-------------------------------------------------------------------------------\nC# 30 7654 1036 526 6092 180\n(ULOC) 2644\n-------------------------------------------------------------------------------\nJSON 23 12855 18 0 12837 0\n(ULOC) 2328\n-------------------------------------------------------------------------------\nGradle 13 510 91 6 413 0\n(ULOC) 283\n-------------------------------------------------------------------------------\nMSBuild 13 1401 28 216 1157 132\n(ULOC) 568\n-------------------------------------------------------------------------------\nMarkdown 9 782 221 0 561 0\n(ULOC) 471\n-------------------------------------------------------------------------------\nProperties File 5 124 8 43 73 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nBatch 4 184 48 0 136 46\n(ULOC) 63\n-------------------------------------------------------------------------------\nPlain Text 3 84 14 0 70 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nBASH 2 328 40 44 244 40\n(ULOC) 121\n-------------------------------------------------------------------------------\nHTML 2 706 3 0 703 0\n(ULOC) 320\n-------------------------------------------------------------------------------\nYAML 2 42 4 0 38 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nJavaScript 1 43089 11889 9340 21860 2837\n(ULOC) 10895\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSQL 1 40 6 0 34 1\n(ULOC) 35\n───────────────────────────────────────────────────────────────────────────────\nTotal 926 517187 25914 28731 462542 8616\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 85432\nDRYness % 0.17\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,982,595\nEstimated Schedule Effort (organic) 40.35 months\nEstimated People Required (organic) 37.39\n───────────────────────────────────────────────────────────────────────────────\nProcessed 25201224 bytes, 25.201 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:43Z", + "repo": { + "name": "github.com/measureauthoringtool/clinical_quality_language", + "commit": "9c5b948e77dbd5fa1fd6ab315431b40d26fa6c24" }, - "commits_by_month": { - "2020/6": 2, - "2020/3": 2, - "2019/12": 2, - "2017/10": 10, - "2017/9": 11, - "2017/8": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "XML Schema", - "Bytes": 12994030, - "CodeBytes": 0, - "Lines": 235640, - "Code": 232623, - "Comment": 0, - "Blank": 3017, - "Complexity": 0, - "Count": 381, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CoffeeScript", - "Bytes": 4312367, - "CodeBytes": 0, - "Lines": 114571, - "Code": 95169, - "Comment": 14227, - "Blank": 5175, - "Complexity": 2456, - "Count": 202, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 1066581, - "CodeBytes": 0, - "Lines": 28025, - "Code": 19593, - "Comment": 4233, - "Blank": 4199, - "Complexity": 2924, - "Count": 172, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 4653437, - "CodeBytes": 0, - "Lines": 71031, - "Code": 70830, - "Comment": 96, - "Blank": 105, - "Complexity": 0, - "Count": 62, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "C#", - "Bytes": 279336, - "CodeBytes": 0, - "Lines": 7654, - "Code": 6092, - "Comment": 526, - "Blank": 1036, - "Complexity": 180, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 521397, - "CodeBytes": 0, - "Lines": 12855, - "Code": 12837, - "Comment": 0, - "Blank": 18, - "Complexity": 0, - "Count": 23, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 17192, - "CodeBytes": 0, - "Lines": 510, - "Code": 413, - "Comment": 6, - "Blank": 91, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "MSBuild", - "Bytes": 73945, - "CodeBytes": 0, - "Lines": 1401, - "Code": 1157, - "Comment": 216, - "Blank": 28, - "Complexity": 132, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 46113, - "CodeBytes": 0, - "Lines": 782, - "Code": 561, - "Comment": 0, - "Blank": 221, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 6341, - "CodeBytes": 0, - "Lines": 124, - "Code": 73, - "Comment": 43, - "Blank": 8, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 5190, - "CodeBytes": 0, - "Lines": 184, - "Code": 136, - "Comment": 0, - "Blank": 48, - "Complexity": 46, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 3374, - "CodeBytes": 0, - "Lines": 84, - "Code": 70, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 10160, - "CodeBytes": 0, - "Lines": 328, - "Code": 244, - "Comment": 44, - "Blank": 40, - "Complexity": 40, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 31992, - "CodeBytes": 0, - "Lines": 706, - "Code": 703, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1621, - "CodeBytes": 0, - "Lines": 42, - "Code": 38, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1169808, - "CodeBytes": 0, - "Lines": 43089, - "Code": 21860, - "Comment": 9340, - "Blank": 11889, - "Complexity": 2837, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 1292, - "CodeBytes": 0, - "Lines": 40, - "Code": 34, - "Comment": 0, - "Blank": 6, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 15487112.969693106, - "estimatedScheduleMonths_low": 40.347404184212394, - "estimatedPeople_low": 37.39421109989613, - "estimatedCost_high": 48264608.083478935, - "estimatedScheduleMonths_high": 40.347404184212394, - "estimatedPeople_high": 37.39421109989613, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nXML Schema 381 235640 3017 0 232623 0\n(ULOC) 26893\n-------------------------------------------------------------------------------\nCoffeeScript 202 114571 5175 14227 95169 2456\n(ULOC) 14900\n-------------------------------------------------------------------------------\nJava 172 28025 4199 4233 19593 2924\n(ULOC) 11901\n-------------------------------------------------------------------------------\nXML 62 71031 105 96 70830 0\n(ULOC) 14358\n-------------------------------------------------------------------------------\nC# 30 7654 1036 526 6092 180\n(ULOC) 2644\n-------------------------------------------------------------------------------\nJSON 23 12855 18 0 12837 0\n(ULOC) 2328\n-------------------------------------------------------------------------------\nGradle 13 510 91 6 413 0\n(ULOC) 283\n-------------------------------------------------------------------------------\nMSBuild 13 1401 28 216 1157 132\n(ULOC) 568\n-------------------------------------------------------------------------------\nMarkdown 9 782 221 0 561 0\n(ULOC) 471\n-------------------------------------------------------------------------------\nProperties File 5 124 8 43 73 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nBatch 4 184 48 0 136 46\n(ULOC) 63\n-------------------------------------------------------------------------------\nPlain Text 3 84 14 0 70 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nBASH 2 328 40 44 244 40\n(ULOC) 121\n-------------------------------------------------------------------------------\nHTML 2 706 3 0 703 0\n(ULOC) 320\n-------------------------------------------------------------------------------\nYAML 2 42 4 0 38 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nJavaScript 1 43089 11889 9340 21860 2837\n(ULOC) 10895\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSQL 1 40 6 0 34 1\n(ULOC) 35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 926 517187 25914 28731 462542 8616\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 85432\nDRYness % 0.17\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,982,595\nEstimated Schedule Effort (organic) 40.35 months\nEstimated People Required (organic) 37.39\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 25201224 bytes, 25.201 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:43Z", - "repo": { - "name": "github.com/measureauthoringtool/clinical_quality_language", - "commit": "9c5b948e77dbd5fa1fd6ab315431b40d26fa6c24" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.4, - "checks": [ - { - "details": null, - "score": 8, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 3/27 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 8 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "26 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.4, + "checks": [ + { + "details": null, + "score": 8, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 3/27 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 8 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "26 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/clyde/clyde_data.json b/app/site/_data/measureauthoringtool/clyde/clyde_data.json index 986a580da5..510e3630c3 100644 --- a/app/site/_data/measureauthoringtool/clyde/clyde_data.json +++ b/app/site/_data/measureauthoringtool/clyde/clyde_data.json @@ -1,538 +1,538 @@ { - "url": "https://github.com/measureauthoringtool/clyde", - "owner": "measureauthoringtool", - "name": "clyde", - "description": "FHIR Measure Authoring Tool 2.0", - "commits_count": 90, - "issues_count": 3, - "open_issues_count": 1, - "closed_issues_count": 2, - "pull_requests_count": 53, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 36, - "closed_pull_requests_count": 13, - "forks_count": 1, - "stargazers_count": 1, - "watchers_count": 9, - "created_at": "2021-01-29T20:15:18Z", - "total_project_lines": 173098, - "average_project_lines": 5409, - "total_project_comment_lines": 251, - "average_project_comment_lines": 8, - "total_project_blank_lines": 38317, - "average_blank_lines": 1197, - "predominant_langs": { - "CSS": 3562657, - "TypeScript": 21571, - "HTML": 1566, - "JavaScript": 556 - }, - "commits_by_month": { - "2021/10": 1, - "2021/6": 13, - "2021/5": 5, - "2021/4": 2, - "2021/2": 9 - }, - "average_issue_resolution_time": [ - [ - "clyde", - "13 days 24:44:23.5" - ] + "url": "https://github.com/measureauthoringtool/clyde", + "owner": "measureauthoringtool", + "name": "clyde", + "description": "FHIR Measure Authoring Tool 2.0", + "commits_count": 90, + "issues_count": 3, + "open_issues_count": 1, + "closed_issues_count": 2, + "pull_requests_count": 53, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 36, + "closed_pull_requests_count": 13, + "forks_count": 1, + "stargazers_count": 1, + "watchers_count": 9, + "created_at": "2021-01-29T20:15:18Z", + "total_project_lines": 173098, + "average_project_lines": 5409, + "total_project_comment_lines": 251, + "average_project_comment_lines": 8, + "total_project_blank_lines": 38317, + "average_blank_lines": 1197, + "predominant_langs": { + "CSS": 3562657, + "TypeScript": 21571, + "HTML": 1566, + "JavaScript": 556 + }, + "commits_by_month": { + "2021/10": 1, + "2021/6": 13, + "2021/5": 5, + "2021/4": 2, + "2021/2": 9 + }, + "average_issue_resolution_time": [ + [ + "clyde", + "13 days 24:44:23.5" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:49:39.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:49:39.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:49:39.000" + ], + [ + "@types/draft-js", + 2.0657534247, + "2024-12-17T15:49:39.000" + ], + [ + "@types/jest", + 3.298630137, + "2024-12-17T15:49:39.000" + ], + [ + "@types/node", + 3.5260273973, + "2024-12-17T15:49:39.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:49:39.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:49:39.000" + ], + [ + "@types/styled-components", + 2.7260273973, + "2024-12-17T15:49:39.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:49:39.000" + ], + [ + "babel-plugin-macros", + 0.0, + "2024-12-17T15:49:39.000" + ], + [ + "cql-antlr-parser", + 0.0, + "2024-12-17T15:49:39.000" + ], + [ + "draft-js", + 0.0, + "2024-12-17T15:49:39.000" ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:49:39.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:49:39.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:49:39.000" - ], - [ - "@types/draft-js", - 2.0657534247, - "2024-12-17T15:49:39.000" - ], - [ - "@types/jest", - 3.298630137, - "2024-12-17T15:49:39.000" - ], - [ - "@types/node", - 3.5260273973, - "2024-12-17T15:49:39.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:49:39.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:49:39.000" - ], - [ - "@types/styled-components", - 2.7260273973, - "2024-12-17T15:49:39.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "babel-plugin-macros", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "cql-antlr-parser", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "draft-js", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "postcss", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "postcss-cli", - 1.9863013699, - "2024-12-17T15:49:39.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:49:39.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:49:39.000" - ], - [ - "react-scripts", - 1.1315068493, - "2024-12-17T15:49:39.000" - ], - [ - "rxjs", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "rxjs-compat", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "styled-components", - 1.2630136986, - "2024-12-17T15:49:39.000" - ], - [ - "tailwind.macro", - 0.0, - "2024-12-17T15:49:39.000" - ], - [ - "tailwindcss", - 3.098630137, - "2024-12-17T15:49:39.000" - ], - [ - "twin.macro", - 2.1150684932, - "2024-12-17T15:49:39.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:49:39.000" - ], - [ - "web-vitals", - 2.7534246575, - "2024-12-17T15:49:39.000" - ] + [ + "postcss", + 0.0, + "2024-12-17T15:49:39.000" ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 21571, - "CodeBytes": 0, - "Lines": 646, - "Code": 552, - "Comment": 9, - "Blank": 85, - "Complexity": 8, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 3562657, - "CodeBytes": 0, - "Lines": 171986, - "Code": 133590, - "Comment": 212, - "Blank": 38184, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2830, - "CodeBytes": 0, - "Lines": 117, - "Code": 117, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 556, - "CodeBytes": 0, - "Lines": 28, - "Code": 28, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1806, - "CodeBytes": 0, - "Lines": 46, - "Code": 28, - "Comment": 0, - "Blank": 18, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 760, - "CodeBytes": 0, - "Lines": 32, - "Code": 21, - "Comment": 7, - "Blank": 4, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2510, - "CodeBytes": 0, - "Lines": 79, - "Code": 66, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1566, - "CodeBytes": 0, - "Lines": 40, - "Code": 16, - "Comment": 23, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 67, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4234692.0440671565, - "estimatedScheduleMonths_low": 24.650124565550517, - "estimatedPeople_low": 16.736021409518123, - "estimatedCost_high": 13197149.931113193, - "estimatedScheduleMonths_high": 24.650124565550517, - "estimatedPeople_high": 16.736021409518123, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 13 646 85 9 552 8\n(ULOC) 383\n-------------------------------------------------------------------------------\nCSS 4 171986 38184 212 133590 0\n(ULOC) 44862\n-------------------------------------------------------------------------------\nJSON 3 117 0 0 117 0\n(ULOC) 105\n-------------------------------------------------------------------------------\nJavaScript 3 28 0 0 28 0\n(ULOC) 24\n-------------------------------------------------------------------------------\nMarkdown 2 46 18 0 28 0\n(ULOC) 29\n-------------------------------------------------------------------------------\nTypeScript Typings 2 32 4 7 21 1\n(ULOC) 24\n-------------------------------------------------------------------------------\nYAML 2 79 13 0 66 0\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 40 1 23 16 0\n(ULOC) 35\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 32 173098 38317 251 134530 9\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 45608\nDRYness % 0.26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,643,606\nEstimated Schedule Effort (organic) 24.65 months\nEstimated People Required (organic) 16.74\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3601371 bytes, 3.601 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "postcss-cli", + 1.9863013699, + "2024-12-17T15:49:39.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:49:39.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:49:39.000" + ], + [ + "react-scripts", + 1.1315068493, + "2024-12-17T15:49:39.000" + ], + [ + "rxjs", + 0.0, + "2024-12-17T15:49:39.000" + ], + [ + "rxjs-compat", + 0.0, + "2024-12-17T15:49:39.000" + ], + [ + "styled-components", + 1.2630136986, + "2024-12-17T15:49:39.000" + ], + [ + "tailwind.macro", + 0.0, + "2024-12-17T15:49:39.000" + ], + [ + "tailwindcss", + 3.098630137, + "2024-12-17T15:49:39.000" + ], + [ + "twin.macro", + 2.1150684932, + "2024-12-17T15:49:39.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:49:39.000" + ], + [ + "web-vitals", + 2.7534246575, + "2024-12-17T15:49:39.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 21571, + "CodeBytes": 0, + "Lines": 646, + "Code": 552, + "Comment": 9, + "Blank": 85, + "Complexity": 8, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 3562657, + "CodeBytes": 0, + "Lines": 171986, + "Code": 133590, + "Comment": 212, + "Blank": 38184, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2830, + "CodeBytes": 0, + "Lines": 117, + "Code": 117, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 556, + "CodeBytes": 0, + "Lines": 28, + "Code": 28, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1806, + "CodeBytes": 0, + "Lines": 46, + "Code": 28, + "Comment": 0, + "Blank": 18, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 760, + "CodeBytes": 0, + "Lines": 32, + "Code": 21, + "Comment": 7, + "Blank": 4, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2510, + "CodeBytes": 0, + "Lines": 79, + "Code": 66, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1566, + "CodeBytes": 0, + "Lines": 40, + "Code": 16, + "Comment": 23, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 67, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4234692.0440671565, + "estimatedScheduleMonths_low": 24.650124565550517, + "estimatedPeople_low": 16.736021409518123, + "estimatedCost_high": 13197149.931113193, + "estimatedScheduleMonths_high": 24.650124565550517, + "estimatedPeople_high": 16.736021409518123, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 13 646 85 9 552 8\n(ULOC) 383\n-------------------------------------------------------------------------------\nCSS 4 171986 38184 212 133590 0\n(ULOC) 44862\n-------------------------------------------------------------------------------\nJSON 3 117 0 0 117 0\n(ULOC) 105\n-------------------------------------------------------------------------------\nJavaScript 3 28 0 0 28 0\n(ULOC) 24\n-------------------------------------------------------------------------------\nMarkdown 2 46 18 0 28 0\n(ULOC) 29\n-------------------------------------------------------------------------------\nTypeScript Typings 2 32 4 7 21 1\n(ULOC) 24\n-------------------------------------------------------------------------------\nYAML 2 79 13 0 66 0\n(ULOC) 58\n-------------------------------------------------------------------------------\nHTML 1 40 1 23 16 0\n(ULOC) 35\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 3 0 0 3 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 32 173098 38317 251 134530 9\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 45608\nDRYness % 0.26\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,643,606\nEstimated Schedule Effort (organic) 24.65 months\nEstimated People Required (organic) 16.74\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3601371 bytes, 3.601 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:37:27Z", + "repo": { + "name": "github.com/measureauthoringtool/clyde", + "commit": "664fd7605a7634b4b298548bea514830207ee3e0" + }, + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:37:27Z", - "repo": { - "name": "github.com/measureauthoringtool/clyde", - "commit": "664fd7605a7634b4b298548bea514830207ee3e0" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 16 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "86 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 16 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "86 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql-antlr-parser/cql-antlr-parser_data.json b/app/site/_data/measureauthoringtool/cql-antlr-parser/cql-antlr-parser_data.json index 1ba3d2f556..ab2f039128 100644 --- a/app/site/_data/measureauthoringtool/cql-antlr-parser/cql-antlr-parser_data.json +++ b/app/site/_data/measureauthoringtool/cql-antlr-parser/cql-antlr-parser_data.json @@ -1,472 +1,472 @@ { - "url": "https://github.com/measureauthoringtool/cql-antlr-parser", - "owner": "measureauthoringtool", - "name": "cql-antlr-parser", - "description": "A CQL ANTLR parser written in TypeScript", - "commits_count": 166, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 238, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 71, - "closed_pull_requests_count": 152, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 7, - "created_at": "2021-03-24T16:03:58Z", - "total_project_lines": 21011, - "average_project_lines": 382, - "total_project_comment_lines": 3524, - "average_project_comment_lines": 64, - "total_project_blank_lines": 1129, - "average_blank_lines": 21, - "predominant_langs": { - "TypeScript": 702141, - "ANTLR": 28800, - "JavaScript": 2074 - }, - "commits_by_month": { - "2024/12": 18, - "2024/11": 9, - "2024/10": 3 - }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-09-19T00:00:00.000Z", - 1 - ], - [ - "2024-10-28T00:00:00.000Z", - 1 - ], - [ - "2024-10-31T00:00:00.000Z", - 1 - ], - [ - "2024-11-08T00:00:00.000Z", - 1 - ], - [ - "2024-12-02T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-16T00:00:00.000Z", - 1 - ], - [ - "2024-12-17T00:00:00.000Z", - 1 - ] + "url": "https://github.com/measureauthoringtool/cql-antlr-parser", + "owner": "measureauthoringtool", + "name": "cql-antlr-parser", + "description": "A CQL ANTLR parser written in TypeScript", + "commits_count": 166, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 238, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 71, + "closed_pull_requests_count": 152, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 7, + "created_at": "2021-03-24T16:03:58Z", + "total_project_lines": 21011, + "average_project_lines": 382, + "total_project_comment_lines": 3524, + "average_project_comment_lines": 64, + "total_project_blank_lines": 1129, + "average_blank_lines": 21, + "predominant_langs": { + "TypeScript": 702141, + "ANTLR": 28800, + "JavaScript": 2074 + }, + "commits_by_month": { + "2024/12": 18, + "2024/11": 9, + "2024/10": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-09-19T00:00:00.000Z", + 1 + ], + [ + "2024-10-28T00:00:00.000Z", + 1 + ], + [ + "2024-10-31T00:00:00.000Z", + 1 + ], + [ + "2024-11-08T00:00:00.000Z", + 1 + ], + [ + "2024-12-02T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-16T00:00:00.000Z", + 1 + ], + [ + "2024-12-17T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:49:33.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4356164384, + "2024-12-17T15:49:33.000" + ], + [ + "@typescript-eslint/parser", + 1.4356164384, + "2024-12-17T15:49:33.000" + ], + [ + "antlr4ts", + 0.0, + "2024-12-17T15:49:33.000" + ], + [ + "antlr4ts-cli", + 0.0, + "2024-12-17T15:49:33.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:49:33.000" ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:49:33.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4356164384, - "2024-12-17T15:49:33.000" - ], - [ - "@typescript-eslint/parser", - 1.4356164384, - "2024-12-17T15:49:33.000" - ], - [ - "antlr4ts", - 0.0, - "2024-12-17T15:49:33.000" - ], - [ - "antlr4ts-cli", - 0.0, - "2024-12-17T15:49:33.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:49:33.000" - ], - [ - "eslint-config-airbnb-typescript", - 0.6356164384, - "2024-12-17T15:49:33.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:49:33.000" - ], - [ - "eslint-plugin-eslint-comments", - 0.0, - "2024-12-17T15:49:33.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-12-17T15:49:33.000" - ], - [ - "eslint-plugin-jest", - 2.1917808219, - "2024-12-17T15:49:33.000" - ], - [ - "eslint-plugin-promise", - 0.3506849315, - "2024-12-17T15:49:33.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:49:33.000" - ], - [ - "jest-extended", - 1.2520547945, - "2024-12-17T15:49:33.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:49:33.000" - ], - [ - "ts-jest", - 2.2657534247, - "2024-12-17T15:49:33.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:49:33.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:49:33.000" - ], - [ - "typescript-eslint", - 0.0, - "2024-12-17T15:49:33.000" - ] + [ + "eslint-config-airbnb-typescript", + 0.6356164384, + "2024-12-17T15:49:33.000" ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 702141, - "CodeBytes": 0, - "Lines": 20691, - "Code": 16090, - "Comment": 3516, - "Blank": 1085, - "Complexity": 4091, - "Count": 44, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5476, - "CodeBytes": 0, - "Lines": 181, - "Code": 147, - "Comment": 7, - "Blank": 27, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1942, - "CodeBytes": 0, - "Lines": 73, - "Code": 73, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2074, - "CodeBytes": 0, - "Lines": 77, - "Code": 76, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1612, - "CodeBytes": 0, - "Lines": 44, - "Code": 29, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 468363.1080394469, - "estimatedScheduleMonths_low": 10.676975344878848, - "estimatedPeople_low": 4.273502353538031, - "estimatedCost_high": 1459624.0044558775, - "estimatedScheduleMonths_high": 10.676975344878848, - "estimatedPeople_high": 4.273502353538031, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 44 20691 1085 3516 16090 4091\n(ULOC) 7689\n-------------------------------------------------------------------------------\nYAML 4 181 27 7 147 0\n(ULOC) 100\n-------------------------------------------------------------------------------\nJSON 2 73 0 0 73 0\n(ULOC) 66\n-------------------------------------------------------------------------------\nJavaScript 2 77 0 1 76 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nMarkdown 2 44 15 0 29 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 55 21187 1139 3524 16524 4091\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 8045\nDRYness % 0.38\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $513,589\nEstimated Schedule Effort (organic) 10.68 months\nEstimated People Required (organic) 4.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 720293 bytes, 0.720 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:49:33.000" + ], + [ + "eslint-plugin-eslint-comments", + 0.0, + "2024-12-17T15:49:33.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2024-12-17T15:49:33.000" + ], + [ + "eslint-plugin-jest", + 2.1917808219, + "2024-12-17T15:49:33.000" + ], + [ + "eslint-plugin-promise", + 0.3506849315, + "2024-12-17T15:49:33.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:49:33.000" + ], + [ + "jest-extended", + 1.2520547945, + "2024-12-17T15:49:33.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:49:33.000" + ], + [ + "ts-jest", + 2.2657534247, + "2024-12-17T15:49:33.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:49:33.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:49:33.000" + ], + [ + "typescript-eslint", + 0.0, + "2024-12-17T15:49:33.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 702141, + "CodeBytes": 0, + "Lines": 20691, + "Code": 16090, + "Comment": 3516, + "Blank": 1085, + "Complexity": 4091, + "Count": 44, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5476, + "CodeBytes": 0, + "Lines": 181, + "Code": 147, + "Comment": 7, + "Blank": 27, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1942, + "CodeBytes": 0, + "Lines": 73, + "Code": 73, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2074, + "CodeBytes": 0, + "Lines": 77, + "Code": 76, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1612, + "CodeBytes": 0, + "Lines": 44, + "Code": 29, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 468363.1080394469, + "estimatedScheduleMonths_low": 10.676975344878848, + "estimatedPeople_low": 4.273502353538031, + "estimatedCost_high": 1459624.0044558775, + "estimatedScheduleMonths_high": 10.676975344878848, + "estimatedPeople_high": 4.273502353538031, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 44 20691 1085 3516 16090 4091\n(ULOC) 7689\n-------------------------------------------------------------------------------\nYAML 4 181 27 7 147 0\n(ULOC) 100\n-------------------------------------------------------------------------------\nJSON 2 73 0 0 73 0\n(ULOC) 66\n-------------------------------------------------------------------------------\nJavaScript 2 77 0 1 76 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nMarkdown 2 44 15 0 29 0\n(ULOC) 30\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 55 21187 1139 3524 16524 4091\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 8045\nDRYness % 0.38\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $513,589\nEstimated Schedule Effort (organic) 10.68 months\nEstimated People Required (organic) 4.27\n───────────────────────────────────────────────────────────────────────────────\nProcessed 720293 bytes, 0.720 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:37:47Z", + "repo": { + "name": "github.com/measureauthoringtool/cql-antlr-parser", + "commit": "aef9f1cc18c9164895d64f1ef6a84d015e789f5e" + }, + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:37:47Z", - "repo": { - "name": "github.com/measureauthoringtool/cql-antlr-parser", - "commit": "aef9f1cc18c9164895d64f1ef6a84d015e789f5e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 6.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql-exec-fhir/cql-exec-fhir_data.json b/app/site/_data/measureauthoringtool/cql-exec-fhir/cql-exec-fhir_data.json index 4ad296a0dc..afe2f89c8a 100644 --- a/app/site/_data/measureauthoringtool/cql-exec-fhir/cql-exec-fhir_data.json +++ b/app/site/_data/measureauthoringtool/cql-exec-fhir/cql-exec-fhir_data.json @@ -1,384 +1,384 @@ { - "url": "https://github.com/measureauthoringtool/cql-exec-fhir", - "owner": "measureauthoringtool", - "name": "cql-exec-fhir", - "description": "A FHIR data source for the CoffeeScript CQL Execution project", - "commits_count": 39, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 10, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 10, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 2, - "created_at": "2020-08-19T22:35:04Z", - "total_project_lines": 152098, - "average_project_lines": 5070, - "total_project_comment_lines": 164, - "average_project_comment_lines": 5, - "total_project_blank_lines": 309, - "average_blank_lines": 10, - "predominant_langs": { - "JavaScript": 2456605 + "url": "https://github.com/measureauthoringtool/cql-exec-fhir", + "owner": "measureauthoringtool", + "name": "cql-exec-fhir", + "description": "A FHIR data source for the CoffeeScript CQL Execution project", + "commits_count": 39, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 10, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 10, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 2, + "created_at": "2020-08-19T22:35:04Z", + "total_project_lines": 152098, + "average_project_lines": 5070, + "total_project_comment_lines": 164, + "average_project_comment_lines": 5, + "total_project_blank_lines": 309, + "average_blank_lines": 10, + "predominant_langs": { + "JavaScript": 2456605 + }, + "commits_by_month": { + "2021/3": 2, + "2020/12": 2, + "2020/9": 2, + "2020/8": 1, + "2020/1": 4, + "2019/4": 10, + "2019/1": 3, + "2018/12": 3, + "2018/11": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/cli", + 0.0, + "2024-12-17T15:49:43.000" + ], + [ + "@babel/core", + 0.0, + "2024-12-17T15:49:43.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:49:43.000" + ], + [ + "chai", + 8.7397260274, + "2024-12-17T15:49:43.000" + ], + [ + "cql-execution", + 0.0, + "2024-12-17T15:49:43.000" + ], + [ + "eslint", + 4.2547945205, + "2024-12-17T15:49:43.000" + ], + [ + "mocha", + 3.5753424658, + "2024-12-17T15:49:43.000" + ], + [ + "xml2js", + 3.6, + "2024-12-17T15:49:43.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 2323237, + "CodeBytes": 0, + "Lines": 76983, + "Code": 76983, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2456605, + "CodeBytes": 0, + "Lines": 38540, + "Code": 38117, + "Comment": 164, + "Blank": 259, + "Complexity": 247, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 2361761, + "CodeBytes": 0, + "Lines": 36316, + "Code": 36316, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11323, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2180, + "CodeBytes": 0, + "Lines": 54, + "Code": 37, + "Comment": 0, + "Blank": 17, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 35, + "CodeBytes": 0, + "Lines": 4, + "Code": 3, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4801435.379456554, + "estimatedScheduleMonths_low": 25.855196052973994, + "estimatedPeople_low": 18.091424371627355, + "estimatedCost_high": 14963369.692021603, + "estimatedScheduleMonths_high": 25.855196052973994, + "estimatedPeople_high": 18.091424371627355, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 12 76983 0 0 76983 0\n(ULOC) 5615\n-------------------------------------------------------------------------------\nJavaScript 11 38540 259 164 38117 247\n(ULOC) 11462\n-------------------------------------------------------------------------------\nXML 4 36316 0 0 36316 0\n(ULOC) 10592\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 1 54 17 0 37 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nYAML 1 4 1 0 3 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 30 152098 309 164 151625 247\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 17270\nDRYness % 0.11\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,265,076\nEstimated Schedule Effort (organic) 25.86 months\nEstimated People Required (organic) 18.09\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7155141 bytes, 7.155 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:36:56Z", + "repo": { + "name": "github.com/measureauthoringtool/cql-exec-fhir", + "commit": "f8ae7229e150fadd56009f971da01a9573a26e4d" }, - "commits_by_month": { - "2021/3": 2, - "2020/12": 2, - "2020/9": 2, - "2020/8": 1, - "2020/1": 4, - "2019/4": 10, - "2019/1": 3, - "2018/12": 3, - "2018/11": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/cli", - 0.0, - "2024-12-17T15:49:43.000" - ], - [ - "@babel/core", - 0.0, - "2024-12-17T15:49:43.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:49:43.000" - ], - [ - "chai", - 8.7397260274, - "2024-12-17T15:49:43.000" - ], - [ - "cql-execution", - 0.0, - "2024-12-17T15:49:43.000" - ], - [ - "eslint", - 4.2547945205, - "2024-12-17T15:49:43.000" - ], - [ - "mocha", - 3.5753424658, - "2024-12-17T15:49:43.000" - ], - [ - "xml2js", - 3.6, - "2024-12-17T15:49:43.000" - ] + "score": 2.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "22 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 2323237, - "CodeBytes": 0, - "Lines": 76983, - "Code": 76983, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2456605, - "CodeBytes": 0, - "Lines": 38540, - "Code": 38117, - "Comment": 164, - "Blank": 259, - "Complexity": 247, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 2361761, - "CodeBytes": 0, - "Lines": 36316, - "Code": 36316, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11323, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2180, - "CodeBytes": 0, - "Lines": 54, - "Code": 37, - "Comment": 0, - "Blank": 17, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 35, - "CodeBytes": 0, - "Lines": 4, - "Code": 3, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4801435.379456554, - "estimatedScheduleMonths_low": 25.855196052973994, - "estimatedPeople_low": 18.091424371627355, - "estimatedCost_high": 14963369.692021603, - "estimatedScheduleMonths_high": 25.855196052973994, - "estimatedPeople_high": 18.091424371627355, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 12 76983 0 0 76983 0\n(ULOC) 5615\n-------------------------------------------------------------------------------\nJavaScript 11 38540 259 164 38117 247\n(ULOC) 11462\n-------------------------------------------------------------------------------\nXML 4 36316 0 0 36316 0\n(ULOC) 10592\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 1 54 17 0 37 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nYAML 1 4 1 0 3 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 30 152098 309 164 151625 247\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 17270\nDRYness % 0.11\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,265,076\nEstimated Schedule Effort (organic) 25.86 months\nEstimated People Required (organic) 18.09\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7155141 bytes, 7.155 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:36:56Z", - "repo": { - "name": "github.com/measureauthoringtool/cql-exec-fhir", - "commit": "f8ae7229e150fadd56009f971da01a9573a26e4d" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "22 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql-execution/cql-execution_data.json b/app/site/_data/measureauthoringtool/cql-execution/cql-execution_data.json index 145d9b8751..a6e68c8d60 100644 --- a/app/site/_data/measureauthoringtool/cql-execution/cql-execution_data.json +++ b/app/site/_data/measureauthoringtool/cql-execution/cql-execution_data.json @@ -1,490 +1,490 @@ { - "url": "https://github.com/measureauthoringtool/cql-execution", - "owner": "measureauthoringtool", - "name": "cql-execution", - "description": "A coffeescript (compiles-to-javascript) framework for executing CQL", - "commits_count": 533, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 18, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 18, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 2, - "created_at": "2020-05-12T14:12:29Z", - "total_project_lines": 364995, - "average_project_lines": 1560, - "total_project_comment_lines": 25927, - "average_project_comment_lines": 111, - "total_project_blank_lines": 20330, - "average_blank_lines": 87, - "predominant_langs": { - "CoffeeScript": 11370796, - "JavaScript": 1727818, - "Java": 10811, - "HTML": 3678, - "Shell": 1396 + "url": "https://github.com/measureauthoringtool/cql-execution", + "owner": "measureauthoringtool", + "name": "cql-execution", + "description": "A coffeescript (compiles-to-javascript) framework for executing CQL", + "commits_count": 533, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 18, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 18, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 2, + "created_at": "2020-05-12T14:12:29Z", + "total_project_lines": 364995, + "average_project_lines": 1560, + "total_project_comment_lines": 25927, + "average_project_comment_lines": 111, + "total_project_blank_lines": 20330, + "average_blank_lines": 87, + "predominant_langs": { + "CoffeeScript": 11370796, + "JavaScript": 1727818, + "Java": 10811, + "HTML": 3678, + "Shell": 1396 + }, + "commits_by_month": { + "2020/4": 1, + "2020/2": 3, + "2020/1": 1, + "2019/10": 2, + "2019/8": 4, + "2019/7": 19 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "babel-core", + 0.0, + "2024-12-17T15:53:32.000" + ], + [ + "babel-plugin-transform-es2015-arrow-functions", + 0.0, + "2024-12-17T15:53:32.000" + ], + [ + "babelify", + 0.8684931507, + "2024-12-17T15:53:32.000" + ], + [ + "browserify", + 6.9589041096, + "2024-12-17T15:53:32.000" + ], + [ + "coffeescript", + 4.7698630137, + "2024-12-17T15:53:32.000" + ], + [ + "coveralls", + 0.0, + "2024-12-17T15:53:32.000" + ], + [ + "mocha", + 6.5452054795, + "2024-12-17T15:53:32.000" + ], + [ + "moment", + 0.0, + "2024-12-17T15:53:32.000" + ], + [ + "nyc", + 5.3671232877, + "2024-12-17T15:53:32.000" + ], + [ + "should", + 1.3917808219, + "2024-12-17T15:53:32.000" + ], + [ + "ucum", + 0.0, + "2024-12-17T15:53:32.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "CoffeeScript", + "Bytes": 11391201, + "CodeBytes": 0, + "Lines": 302018, + "Code": 278972, + "Comment": 16088, + "Blank": 6958, + "Complexity": 3306, + "Count": 215, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 9054, + "CodeBytes": 0, + "Lines": 359, + "Code": 357, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 20167, + "CodeBytes": 0, + "Lines": 433, + "Code": 332, + "Comment": 0, + "Blank": 101, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 6692, + "CodeBytes": 0, + "Lines": 218, + "Code": 164, + "Comment": 26, + "Blank": 28, + "Complexity": 29, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 2260, + "CodeBytes": 0, + "Lines": 84, + "Code": 61, + "Comment": 0, + "Blank": 23, + "Complexity": 20, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gradle", + "Bytes": 760, + "CodeBytes": 0, + "Lines": 27, + "Code": 22, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 3678, + "CodeBytes": 0, + "Lines": 134, + "Code": 134, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 10811, + "CodeBytes": 0, + "Lines": 232, + "Code": 210, + "Comment": 2, + "Blank": 20, + "Complexity": 47, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1727818, + "CodeBytes": 0, + "Lines": 61266, + "Code": 38294, + "Comment": 9811, + "Blank": 13161, + "Complexity": 5428, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11323, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 200, + "CodeBytes": 0, + "Lines": 5, + "Code": 5, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 576, + "CodeBytes": 0, + "Lines": 18, + "Code": 18, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 10475319.286036039, + "estimatedScheduleMonths_low": 34.77686135708457, + "estimatedPeople_low": 29.344478320437318, + "estimatedCost_high": 32645670.0405832, + "estimatedScheduleMonths_high": 34.77686135708457, + "estimatedPeople_high": 29.344478320437318, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nCoffeeScript 215 302018 6958 16088 278972 3306\n(ULOC) 33745\n-------------------------------------------------------------------------------\nJSON 4 359 2 0 357 0\n(ULOC) 208\n-------------------------------------------------------------------------------\nMarkdown 4 433 101 0 332 0\n(ULOC) 266\n-------------------------------------------------------------------------------\nShell 3 218 28 26 164 29\n(ULOC) 153\n-------------------------------------------------------------------------------\nBatch 1 84 23 0 61 20\n(ULOC) 55\n-------------------------------------------------------------------------------\nGradle 1 27 5 0 22 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nHTML 1 134 0 0 134 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nJava 1 232 20 2 210 47\n(ULOC) 175\n-------------------------------------------------------------------------------\nJavaScript 1 61266 13161 9811 38294 5428\n(ULOC) 18583\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nProperties File 1 5 0 0 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nYAML 1 18 0 0 18 0\n(ULOC) 19\n───────────────────────────────────────────────────────────────────────────────\nTotal 234 364995 20330 25927 318738 8830\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 53280\nDRYness % 0.15\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $11,486,847\nEstimated Schedule Effort (organic) 34.78 months\nEstimated People Required (organic) 29.34\n───────────────────────────────────────────────────────────────────────────────\nProcessed 13184540 bytes, 13.185 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:36:06Z", + "repo": { + "name": "github.com/measureauthoringtool/cql-execution", + "commit": "3d6fab9df2809ea032999c4ed516b2843f920506" }, - "commits_by_month": { - "2020/4": 1, - "2020/2": 3, - "2020/1": 1, - "2019/10": 2, - "2019/8": 4, - "2019/7": 19 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "babel-core", - 0.0, - "2024-12-17T15:53:32.000" - ], - [ - "babel-plugin-transform-es2015-arrow-functions", - 0.0, - "2024-12-17T15:53:32.000" - ], - [ - "babelify", - 0.8684931507, - "2024-12-17T15:53:32.000" - ], - [ - "browserify", - 6.9589041096, - "2024-12-17T15:53:32.000" - ], - [ - "coffeescript", - 4.7698630137, - "2024-12-17T15:53:32.000" - ], - [ - "coveralls", - 0.0, - "2024-12-17T15:53:32.000" - ], - [ - "mocha", - 6.5452054795, - "2024-12-17T15:53:32.000" - ], - [ - "moment", - 0.0, - "2024-12-17T15:53:32.000" - ], - [ - "nyc", - 5.3671232877, - "2024-12-17T15:53:32.000" - ], - [ - "should", - 1.3917808219, - "2024-12-17T15:53:32.000" - ], - [ - "ucum", - 0.0, - "2024-12-17T15:53:32.000" - ] + "score": 2.4, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/30 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 10 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "36 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "CoffeeScript", - "Bytes": 11391201, - "CodeBytes": 0, - "Lines": 302018, - "Code": 278972, - "Comment": 16088, - "Blank": 6958, - "Complexity": 3306, - "Count": 215, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 9054, - "CodeBytes": 0, - "Lines": 359, - "Code": 357, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 20167, - "CodeBytes": 0, - "Lines": 433, - "Code": 332, - "Comment": 0, - "Blank": 101, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 6692, - "CodeBytes": 0, - "Lines": 218, - "Code": 164, - "Comment": 26, - "Blank": 28, - "Complexity": 29, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 2260, - "CodeBytes": 0, - "Lines": 84, - "Code": 61, - "Comment": 0, - "Blank": 23, - "Complexity": 20, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gradle", - "Bytes": 760, - "CodeBytes": 0, - "Lines": 27, - "Code": 22, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 3678, - "CodeBytes": 0, - "Lines": 134, - "Code": 134, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 10811, - "CodeBytes": 0, - "Lines": 232, - "Code": 210, - "Comment": 2, - "Blank": 20, - "Complexity": 47, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1727818, - "CodeBytes": 0, - "Lines": 61266, - "Code": 38294, - "Comment": 9811, - "Blank": 13161, - "Complexity": 5428, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11323, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 200, - "CodeBytes": 0, - "Lines": 5, - "Code": 5, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 576, - "CodeBytes": 0, - "Lines": 18, - "Code": 18, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 10475319.286036039, - "estimatedScheduleMonths_low": 34.77686135708457, - "estimatedPeople_low": 29.344478320437318, - "estimatedCost_high": 32645670.0405832, - "estimatedScheduleMonths_high": 34.77686135708457, - "estimatedPeople_high": 29.344478320437318, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nCoffeeScript 215 302018 6958 16088 278972 3306\n(ULOC) 33745\n-------------------------------------------------------------------------------\nJSON 4 359 2 0 357 0\n(ULOC) 208\n-------------------------------------------------------------------------------\nMarkdown 4 433 101 0 332 0\n(ULOC) 266\n-------------------------------------------------------------------------------\nShell 3 218 28 26 164 29\n(ULOC) 153\n-------------------------------------------------------------------------------\nBatch 1 84 23 0 61 20\n(ULOC) 55\n-------------------------------------------------------------------------------\nGradle 1 27 5 0 22 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nHTML 1 134 0 0 134 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nJava 1 232 20 2 210 47\n(ULOC) 175\n-------------------------------------------------------------------------------\nJavaScript 1 61266 13161 9811 38294 5428\n(ULOC) 18583\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nProperties File 1 5 0 0 5 0\n(ULOC) 6\n-------------------------------------------------------------------------------\nYAML 1 18 0 0 18 0\n(ULOC) 19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 234 364995 20330 25927 318738 8830\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 53280\nDRYness % 0.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $11,486,847\nEstimated Schedule Effort (organic) 34.78 months\nEstimated People Required (organic) 29.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 13184540 bytes, 13.185 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:36:06Z", - "repo": { - "name": "github.com/measureauthoringtool/cql-execution", - "commit": "3d6fab9df2809ea032999c4ed516b2843f920506" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.4, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/30 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 10 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "36 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql-library-service/cql-library-service_data.json b/app/site/_data/measureauthoringtool/cql-library-service/cql-library-service_data.json index 76fb0c9101..70c24cd78b 100644 --- a/app/site/_data/measureauthoringtool/cql-library-service/cql-library-service_data.json +++ b/app/site/_data/measureauthoringtool/cql-library-service/cql-library-service_data.json @@ -1,424 +1,424 @@ { - "url": "https://github.com/measureauthoringtool/cql-library-service", - "owner": "measureauthoringtool", - "name": "cql-library-service", - "description": "Service layer for CQL Library application", - "commits_count": 289, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 94, - "open_pull_requests_count": 7, - "merged_pull_requests_count": 81, - "closed_pull_requests_count": 6, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-03-04T18:16:47Z", - "total_project_lines": 7925, - "average_project_lines": 97, - "total_project_comment_lines": 167, - "average_project_comment_lines": 2, - "total_project_blank_lines": 885, - "average_blank_lines": 11, - "predominant_langs": { - "Java": 263923, - "Dockerfile": 666, - "JavaScript": 558 + "url": "https://github.com/measureauthoringtool/cql-library-service", + "owner": "measureauthoringtool", + "name": "cql-library-service", + "description": "Service layer for CQL Library application", + "commits_count": 289, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 94, + "open_pull_requests_count": 7, + "merged_pull_requests_count": 81, + "closed_pull_requests_count": 6, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-03-04T18:16:47Z", + "total_project_lines": 7925, + "average_project_lines": 97, + "total_project_comment_lines": 167, + "average_project_comment_lines": 2, + "total_project_blank_lines": 885, + "average_blank_lines": 11, + "predominant_langs": { + "Java": 263923, + "Dockerfile": 666, + "JavaScript": 558 + }, + "commits_by_month": { + "2025/1": 2, + "2024/12": 2, + "2024/11": 6, + "2024/10": 7, + "2024/9": 4, + "2024/8": 9 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-15T00:00:00.000Z", + 2 + ], + [ + "2024-08-26T00:00:00.000Z", + 2 + ], + [ + "2024-09-16T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-11-01T00:00:00.000Z", + 2 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-11-26T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 263923, + "CodeBytes": 0, + "Lines": 6591, + "Code": 5775, + "Comment": 83, + "Blank": 733, + "Complexity": 99, + "Count": 63, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4762, + "CodeBytes": 0, + "Lines": 162, + "Code": 132, + "Comment": 3, + "Blank": 27, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 19788, + "CodeBytes": 0, + "Lines": 564, + "Code": 509, + "Comment": 22, + "Blank": 33, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2581, + "CodeBytes": 0, + "Lines": 56, + "Code": 38, + "Comment": 0, + "Blank": 18, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 6734, + "CodeBytes": 0, + "Lines": 188, + "Code": 153, + "Comment": 0, + "Blank": 35, + "Complexity": 27, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 666, + "CodeBytes": 0, + "Lines": 19, + "Code": 9, + "Comment": 5, + "Blank": 5, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 558, + "CodeBytes": 0, + "Lines": 27, + "Code": 20, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 233, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10284, + "CodeBytes": 0, + "Lines": 316, + "Code": 235, + "Comment": 54, + "Blank": 27, + "Complexity": 35, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 186451.29099810094, + "estimatedScheduleMonths_low": 7.52387673376405, + "estimatedPeople_low": 2.414199919325084, + "estimatedCost_high": 581063.6562342034, + "estimatedScheduleMonths_high": 7.52387673376405, + "estimatedPeople_high": 2.414199919325084, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 63 6591 733 83 5775 99\n(ULOC) 2539\n-------------------------------------------------------------------------------\nYAML 8 162 27 3 132 0\n(ULOC) 117\n-------------------------------------------------------------------------------\nXML 4 564 33 22 509 0\n(ULOC) 351\n-------------------------------------------------------------------------------\nMarkdown 2 56 18 0 38 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nBatch 1 188 35 0 153 27\n(ULOC) 134\n-------------------------------------------------------------------------------\nDockerfile 1 19 5 5 9 1\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 27 7 0 20 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 316 27 54 235 35\n(ULOC) 216\n───────────────────────────────────────────────────────────────────────────────\nTotal 82 7925 885 167 6873 162\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3416\nDRYness % 0.43\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $204,455\nEstimated Schedule Effort (organic) 7.52 months\nEstimated People Required (organic) 2.41\n───────────────────────────────────────────────────────────────────────────────\nProcessed 309529 bytes, 0.310 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:42:17Z", + "repo": { + "name": "github.com/measureauthoringtool/cql-library-service", + "commit": "0a8da12dcec4259248c3b22032f177f49327a35d" }, - "commits_by_month": { - "2025/1": 2, - "2024/12": 2, - "2024/11": 6, - "2024/10": 7, - "2024/9": 4, - "2024/8": 9 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-15T00:00:00.000Z", - 2 - ], - [ - "2024-08-26T00:00:00.000Z", - 2 - ], - [ - "2024-09-16T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-11-01T00:00:00.000Z", - 2 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-11-26T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ] + "score": 5.4, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 9, + "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 263923, - "CodeBytes": 0, - "Lines": 6591, - "Code": 5775, - "Comment": 83, - "Blank": 733, - "Complexity": 99, - "Count": 63, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4762, - "CodeBytes": 0, - "Lines": 162, - "Code": 132, - "Comment": 3, - "Blank": 27, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 19788, - "CodeBytes": 0, - "Lines": 564, - "Code": 509, - "Comment": 22, - "Blank": 33, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2581, - "CodeBytes": 0, - "Lines": 56, - "Code": 38, - "Comment": 0, - "Blank": 18, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 6734, - "CodeBytes": 0, - "Lines": 188, - "Code": 153, - "Comment": 0, - "Blank": 35, - "Complexity": 27, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 666, - "CodeBytes": 0, - "Lines": 19, - "Code": 9, - "Comment": 5, - "Blank": 5, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 558, - "CodeBytes": 0, - "Lines": 27, - "Code": 20, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 233, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10284, - "CodeBytes": 0, - "Lines": 316, - "Code": 235, - "Comment": 54, - "Blank": 27, - "Complexity": 35, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 186451.29099810094, - "estimatedScheduleMonths_low": 7.52387673376405, - "estimatedPeople_low": 2.414199919325084, - "estimatedCost_high": 581063.6562342034, - "estimatedScheduleMonths_high": 7.52387673376405, - "estimatedPeople_high": 2.414199919325084, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 63 6591 733 83 5775 99\n(ULOC) 2539\n-------------------------------------------------------------------------------\nYAML 8 162 27 3 132 0\n(ULOC) 117\n-------------------------------------------------------------------------------\nXML 4 564 33 22 509 0\n(ULOC) 351\n-------------------------------------------------------------------------------\nMarkdown 2 56 18 0 38 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nBatch 1 188 35 0 153 27\n(ULOC) 134\n-------------------------------------------------------------------------------\nDockerfile 1 19 5 5 9 1\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 27 7 0 20 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 316 27 54 235 35\n(ULOC) 216\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 82 7925 885 167 6873 162\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3416\nDRYness % 0.43\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $204,455\nEstimated Schedule Effort (organic) 7.52 months\nEstimated People Required (organic) 2.41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 309529 bytes, 0.310 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:42:17Z", - "repo": { - "name": "github.com/measureauthoringtool/cql-library-service", - "commit": "0a8da12dcec4259248c3b22032f177f49327a35d" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.4, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 9, - "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql-validation-service/cql-validation-service_data.json b/app/site/_data/measureauthoringtool/cql-validation-service/cql-validation-service_data.json index 647f03681e..a947bead0b 100644 --- a/app/site/_data/measureauthoringtool/cql-validation-service/cql-validation-service_data.json +++ b/app/site/_data/measureauthoringtool/cql-validation-service/cql-validation-service_data.json @@ -1,273 +1,273 @@ { - "url": "https://github.com/measureauthoringtool/cql-validation-service", - "owner": "measureauthoringtool", - "name": "cql-validation-service", - "description": "CQL Validation Rules", - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 1, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2023-06-27T20:06:15Z", - "total_project_lines": 123, - "average_project_lines": 62, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 12, - "average_blank_lines": 6, - "predominant_langs": {}, - "commits_by_month": { - "2023/6": 1 + "url": "https://github.com/measureauthoringtool/cql-validation-service", + "owner": "measureauthoringtool", + "name": "cql-validation-service", + "description": "CQL Validation Rules", + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 1, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2023-06-27T20:06:15Z", + "total_project_lines": 123, + "average_project_lines": 62, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 12, + "average_blank_lines": 6, + "predominant_langs": {}, + "commits_by_month": { + "2023/6": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 46, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2449.914123719557, + "estimatedScheduleMonths_low": 1.4504546312439293, + "estimatedPeople_low": 0.16454936867469586, + "estimatedCost_high": 7635.002421103105, + "estimatedScheduleMonths_high": 1.4504546312439293, + "estimatedPeople_high": 0.16454936867469586, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 2 123 12 0 111 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 112\nDRYness % 0.91\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,686\nEstimated Schedule Effort (organic) 1.45 months\nEstimated People Required (organic) 0.16\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7094 bytes, 0.007 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:59Z", + "repo": { + "name": "github.com/measureauthoringtool/cql-validation-service", + "commit": "b9e11016034f9da054fabc0c7bdc0400dd10bc5e" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 46, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2449.914123719557, - "estimatedScheduleMonths_low": 1.4504546312439293, - "estimatedPeople_low": 0.16454936867469586, - "estimatedCost_high": 7635.002421103105, - "estimatedScheduleMonths_high": 1.4504546312439293, - "estimatedPeople_high": 0.16454936867469586, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2 123 12 0 111 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 112\nDRYness % 0.91\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,686\nEstimated Schedule Effort (organic) 1.45 months\nEstimated People Required (organic) 0.16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7094 bytes, 0.007 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:59Z", - "repo": { - "name": "github.com/measureauthoringtool/cql-validation-service", - "commit": "b9e11016034f9da054fabc0c7bdc0400dd10bc5e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql_poc/cql_poc_data.json b/app/site/_data/measureauthoringtool/cql_poc/cql_poc_data.json index 2c2e053ff3..dbe7b819b1 100644 --- a/app/site/_data/measureauthoringtool/cql_poc/cql_poc_data.json +++ b/app/site/_data/measureauthoringtool/cql_poc/cql_poc_data.json @@ -1,404 +1,404 @@ { - "url": "https://github.com/measureauthoringtool/cql_poc", - "owner": "measureauthoringtool", - "name": "cql_poc", - "description": "This is a POC/reference implementation of ACE editor based CQL Editor.", - "commits_count": 19, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 3, - "created_at": "2016-04-05T13:40:05Z", - "total_project_lines": 519288, - "average_project_lines": 784, - "total_project_comment_lines": 42392, - "average_project_comment_lines": 64, - "total_project_blank_lines": 30887, - "average_blank_lines": 47, - "predominant_langs": { - "JavaScript": 28303872, - "HTML": 1566010, - "CSS": 193343, - "Java": 149135 + "url": "https://github.com/measureauthoringtool/cql_poc", + "owner": "measureauthoringtool", + "name": "cql_poc", + "description": "This is a POC/reference implementation of ACE editor based CQL Editor.", + "commits_count": 19, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 3, + "created_at": "2016-04-05T13:40:05Z", + "total_project_lines": 519288, + "average_project_lines": 784, + "total_project_comment_lines": 42392, + "average_project_comment_lines": 64, + "total_project_blank_lines": 30887, + "average_blank_lines": 47, + "predominant_langs": { + "JavaScript": 28303872, + "HTML": 1566010, + "CSS": 193343, + "Java": 149135 + }, + "commits_by_month": { + "2020/3": 2, + "2019/12": 2, + "2016/4": 3, + "2016/3": 3, + "2015/12": 3, + "2015/11": 2, + "2015/10": 4 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 28995624, + "CodeBytes": 0, + "Lines": 462384, + "Code": 433005, + "Comment": 470, + "Blank": 28909, + "Complexity": 75709, + "Count": 611, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 149135, + "CodeBytes": 0, + "Lines": 4375, + "Code": 1848, + "Comment": 2020, + "Blank": 507, + "Complexity": 133, + "Count": 30, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1566010, + "CodeBytes": 0, + "Lines": 42611, + "Code": 2637, + "Comment": 39793, + "Blank": 181, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 4147, + "CodeBytes": 0, + "Lines": 99, + "Code": 42, + "Comment": 50, + "Blank": 7, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 193343, + "CodeBytes": 0, + "Lines": 9643, + "Code": 8332, + "Comment": 48, + "Blank": 1263, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 549, + "CodeBytes": 0, + "Lines": 12, + "Code": 8, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 73, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 457, + "CodeBytes": 0, + "Lines": 13, + "Code": 1, + "Comment": 11, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1198, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14906391.977190787, + "estimatedScheduleMonths_low": 39.76567748222778, + "estimatedPeople_low": 36.51856128504371, + "estimatedCost_high": 46454827.838198744, + "estimatedScheduleMonths_high": 39.76567748222778, + "estimatedPeople_high": 36.51856128504371, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 611 462384 28909 470 433005 75709\n(ULOC) 63629\n-------------------------------------------------------------------------------\nJava 30 4375 507 2020 1848 133\n(ULOC) 2363\n-------------------------------------------------------------------------------\nHTML 7 42611 181 39793 2637 0\n(ULOC) 6632\n-------------------------------------------------------------------------------\nXML 5 99 7 50 42 0\n(ULOC) 87\n-------------------------------------------------------------------------------\nCSS 4 9643 1263 48 8332 0\n(ULOC) 3448\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 12 4 0 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nPlain Text 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nProperties File 1 13 1 11 1 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 662 519288 30887 42392 446009 75842\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 76217\nDRYness % 0.15\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,345,798\nEstimated Schedule Effort (organic) 39.77 months\nEstimated People Required (organic) 36.52\n───────────────────────────────────────────────────────────────────────────────\nProcessed 30917584 bytes, 30.918 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:23Z", + "repo": { + "name": "github.com/measureauthoringtool/cql_poc", + "commit": "e76e204b2756ad59d13356dffa92bf9f20532864" }, - "commits_by_month": { - "2020/3": 2, - "2019/12": 2, - "2016/4": 3, - "2016/3": 3, - "2015/12": 3, - "2015/11": 2, - "2015/10": 4 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 28995624, - "CodeBytes": 0, - "Lines": 462384, - "Code": 433005, - "Comment": 470, - "Blank": 28909, - "Complexity": 75709, - "Count": 611, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 149135, - "CodeBytes": 0, - "Lines": 4375, - "Code": 1848, - "Comment": 2020, - "Blank": 507, - "Complexity": 133, - "Count": 30, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1566010, - "CodeBytes": 0, - "Lines": 42611, - "Code": 2637, - "Comment": 39793, - "Blank": 181, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 4147, - "CodeBytes": 0, - "Lines": 99, - "Code": 42, - "Comment": 50, - "Blank": 7, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 193343, - "CodeBytes": 0, - "Lines": 9643, - "Code": 8332, - "Comment": 48, - "Blank": 1263, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 549, - "CodeBytes": 0, - "Lines": 12, - "Code": 8, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 73, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 457, - "CodeBytes": 0, - "Lines": 13, - "Code": 1, - "Comment": 11, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1198, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14906391.977190787, - "estimatedScheduleMonths_low": 39.76567748222778, - "estimatedPeople_low": 36.51856128504371, - "estimatedCost_high": 46454827.838198744, - "estimatedScheduleMonths_high": 39.76567748222778, - "estimatedPeople_high": 36.51856128504371, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 611 462384 28909 470 433005 75709\n(ULOC) 63629\n-------------------------------------------------------------------------------\nJava 30 4375 507 2020 1848 133\n(ULOC) 2363\n-------------------------------------------------------------------------------\nHTML 7 42611 181 39793 2637 0\n(ULOC) 6632\n-------------------------------------------------------------------------------\nXML 5 99 7 50 42 0\n(ULOC) 87\n-------------------------------------------------------------------------------\nCSS 4 9643 1263 48 8332 0\n(ULOC) 3448\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 12 4 0 8 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nPlain Text 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nProperties File 1 13 1 11 1 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 662 519288 30887 42392 446009 75842\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 76217\nDRYness % 0.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,345,798\nEstimated Schedule Effort (organic) 39.77 months\nEstimated People Required (organic) 36.52\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 30917584 bytes, 30.918 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:23Z", - "repo": { - "name": "github.com/measureauthoringtool/cql_poc", - "commit": "e76e204b2756ad59d13356dffa92bf9f20532864" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.3, - "checks": [ - { - "details": null, - "score": 1, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 2/17 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.3, + "checks": [ + { + "details": null, + "score": 1, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 2/17 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cql_qdm_patientapi/cql_qdm_patientapi_data.json b/app/site/_data/measureauthoringtool/cql_qdm_patientapi/cql_qdm_patientapi_data.json index 0f671f3299..3f24a15e59 100644 --- a/app/site/_data/measureauthoringtool/cql_qdm_patientapi/cql_qdm_patientapi_data.json +++ b/app/site/_data/measureauthoringtool/cql_qdm_patientapi/cql_qdm_patientapi_data.json @@ -1,468 +1,468 @@ { - "url": "https://github.com/measureauthoringtool/cql_qdm_patientapi", - "owner": "measureauthoringtool", - "name": "cql_qdm_patientapi", - "description": "Interface from HDS patient model to QDM CQL execution engine", - "commits_count": 285, - "issues_count": 1, - "open_issues_count": 1, - "closed_issues_count": 0, - "pull_requests_count": 276, - "open_pull_requests_count": 4, - "merged_pull_requests_count": 162, - "closed_pull_requests_count": 110, - "forks_count": 5, - "stargazers_count": 2, - "watchers_count": 16, - "created_at": "2016-05-12T14:08:00Z", - "total_project_lines": 190501, - "average_project_lines": 443, - "total_project_comment_lines": 16130, - "average_project_comment_lines": 38, - "total_project_blank_lines": 25269, - "average_blank_lines": 59, - "predominant_langs": { - "CoffeeScript": 214148, - "Ruby": 28863, - "HTML": 4883, - "CSS": 683, - "JavaScript": 624 + "url": "https://github.com/measureauthoringtool/cql_qdm_patientapi", + "owner": "measureauthoringtool", + "name": "cql_qdm_patientapi", + "description": "Interface from HDS patient model to QDM CQL execution engine", + "commits_count": 285, + "issues_count": 1, + "open_issues_count": 1, + "closed_issues_count": 0, + "pull_requests_count": 276, + "open_pull_requests_count": 4, + "merged_pull_requests_count": 162, + "closed_pull_requests_count": 110, + "forks_count": 5, + "stargazers_count": 2, + "watchers_count": 16, + "created_at": "2016-05-12T14:08:00Z", + "total_project_lines": 190501, + "average_project_lines": 443, + "total_project_comment_lines": 16130, + "average_project_comment_lines": 38, + "total_project_blank_lines": 25269, + "average_blank_lines": 59, + "predominant_langs": { + "CoffeeScript": 214148, + "Ruby": 28863, + "HTML": 4883, + "CSS": 683, + "JavaScript": 624 + }, + "commits_by_month": { + "2020/12": 1, + "2020/8": 2, + "2019/5": 2, + "2019/2": 1, + "2019/1": 2, + "2018/12": 4, + "2018/11": 4, + "2018/10": 5, + "2018/9": 6, + "2018/8": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 7463713, + "CodeBytes": 0, + "Lines": 181772, + "Code": 143700, + "Comment": 14010, + "Blank": 24062, + "Complexity": 16861, + "Count": 318, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CoffeeScript", + "Bytes": 214148, + "CodeBytes": 0, + "Lines": 5887, + "Code": 3593, + "Comment": 1642, + "Blank": 652, + "Complexity": 534, + "Count": 60, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 22953, + "CodeBytes": 0, + "Lines": 542, + "Code": 121, + "Comment": 314, + "Blank": 107, + "Complexity": 4, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 35380, + "CodeBytes": 0, + "Lines": 713, + "Code": 473, + "Comment": 0, + "Blank": 240, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3149, + "CodeBytes": 0, + "Lines": 89, + "Code": 49, + "Comment": 30, + "Blank": 10, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 4588, + "CodeBytes": 0, + "Lines": 200, + "Code": 182, + "Comment": 3, + "Blank": 15, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3495, + "CodeBytes": 0, + "Lines": 191, + "Code": 191, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 1032, + "CodeBytes": 0, + "Lines": 42, + "Code": 29, + "Comment": 4, + "Blank": 9, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 12454, + "CodeBytes": 0, + "Lines": 223, + "Code": 188, + "Comment": 0, + "Blank": 35, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 683, + "CodeBytes": 0, + "Lines": 15, + "Code": 0, + "Comment": 15, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 152, + "CodeBytes": 0, + "Lines": 9, + "Code": 7, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby HTML", + "Bytes": 295, + "CodeBytes": 0, + "Lines": 14, + "Code": 12, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 8920, + "CodeBytes": 0, + "Lines": 268, + "Code": 197, + "Comment": 14, + "Blank": 57, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 17093, + "CodeBytes": 0, + "Lines": 536, + "Code": 360, + "Comment": 98, + "Blank": 78, + "Complexity": 69, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 4717581.113305872, + "estimatedScheduleMonths_low": 25.682670776958737, + "estimatedPeople_low": 17.894876252490704, + "estimatedCost_high": 14702043.174948324, + "estimatedScheduleMonths_high": 25.682670776958737, + "estimatedPeople_high": 17.894876252490704, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 318 181772 24062 14010 143700 16861\n(ULOC) 43888\n-------------------------------------------------------------------------------\nCoffeeScript 60 5887 652 1642 3593 534\n(ULOC) 1857\n-------------------------------------------------------------------------------\nRuby 25 542 107 314 121 4\n(ULOC) 367\n-------------------------------------------------------------------------------\nMarkdown 7 713 240 0 473 0\n(ULOC) 449\n-------------------------------------------------------------------------------\nYAML 4 89 10 30 49 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nHTML 3 200 15 3 182 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nJSON 3 191 0 0 191 0\n(ULOC) 98\n-------------------------------------------------------------------------------\nRakefile 3 42 9 4 29 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nLicense 2 223 35 0 188 0\n(ULOC) 187\n-------------------------------------------------------------------------------\nCSS 1 15 0 15 0 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nGemfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nRuby HTML 1 14 2 0 12 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nTOML 1 268 57 14 197 1\n(ULOC) 164\n-------------------------------------------------------------------------------\nTypeScript Typings 1 536 78 98 360 69\n(ULOC) 372\n───────────────────────────────────────────────────────────────────────────────\nTotal 430 190501 25269 16130 149102 17469\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 47535\nDRYness % 0.25\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $5,173,124\nEstimated Schedule Effort (organic) 25.68 months\nEstimated People Required (organic) 17.89\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7788055 bytes, 7.788 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:33Z", + "repo": { + "name": "github.com/measureauthoringtool/cql_qdm_patientapi", + "commit": "5cd5d0d10d7cc6d6f068d177652814891fff50bd" }, - "commits_by_month": { - "2020/12": 1, - "2020/8": 2, - "2019/5": 2, - "2019/2": 1, - "2019/1": 2, - "2018/12": 4, - "2018/11": 4, - "2018/10": 5, - "2018/9": 6, - "2018/8": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 7463713, - "CodeBytes": 0, - "Lines": 181772, - "Code": 143700, - "Comment": 14010, - "Blank": 24062, - "Complexity": 16861, - "Count": 318, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CoffeeScript", - "Bytes": 214148, - "CodeBytes": 0, - "Lines": 5887, - "Code": 3593, - "Comment": 1642, - "Blank": 652, - "Complexity": 534, - "Count": 60, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 22953, - "CodeBytes": 0, - "Lines": 542, - "Code": 121, - "Comment": 314, - "Blank": 107, - "Complexity": 4, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 35380, - "CodeBytes": 0, - "Lines": 713, - "Code": 473, - "Comment": 0, - "Blank": 240, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3149, - "CodeBytes": 0, - "Lines": 89, - "Code": 49, - "Comment": 30, - "Blank": 10, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 4588, - "CodeBytes": 0, - "Lines": 200, - "Code": 182, - "Comment": 3, - "Blank": 15, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3495, - "CodeBytes": 0, - "Lines": 191, - "Code": 191, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 1032, - "CodeBytes": 0, - "Lines": 42, - "Code": 29, - "Comment": 4, - "Blank": 9, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 12454, - "CodeBytes": 0, - "Lines": 223, - "Code": 188, - "Comment": 0, - "Blank": 35, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 683, - "CodeBytes": 0, - "Lines": 15, - "Code": 0, - "Comment": 15, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 152, - "CodeBytes": 0, - "Lines": 9, - "Code": 7, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby HTML", - "Bytes": 295, - "CodeBytes": 0, - "Lines": 14, - "Code": 12, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 8920, - "CodeBytes": 0, - "Lines": 268, - "Code": 197, - "Comment": 14, - "Blank": 57, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 17093, - "CodeBytes": 0, - "Lines": 536, - "Code": 360, - "Comment": 98, - "Blank": 78, - "Complexity": 69, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 4717581.113305872, - "estimatedScheduleMonths_low": 25.682670776958737, - "estimatedPeople_low": 17.894876252490704, - "estimatedCost_high": 14702043.174948324, - "estimatedScheduleMonths_high": 25.682670776958737, - "estimatedPeople_high": 17.894876252490704, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 318 181772 24062 14010 143700 16861\n(ULOC) 43888\n-------------------------------------------------------------------------------\nCoffeeScript 60 5887 652 1642 3593 534\n(ULOC) 1857\n-------------------------------------------------------------------------------\nRuby 25 542 107 314 121 4\n(ULOC) 367\n-------------------------------------------------------------------------------\nMarkdown 7 713 240 0 473 0\n(ULOC) 449\n-------------------------------------------------------------------------------\nYAML 4 89 10 30 49 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nHTML 3 200 15 3 182 0\n(ULOC) 62\n-------------------------------------------------------------------------------\nJSON 3 191 0 0 191 0\n(ULOC) 98\n-------------------------------------------------------------------------------\nRakefile 3 42 9 4 29 0\n(ULOC) 31\n-------------------------------------------------------------------------------\nLicense 2 223 35 0 188 0\n(ULOC) 187\n-------------------------------------------------------------------------------\nCSS 1 15 0 15 0 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nGemfile 1 9 2 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nRuby HTML 1 14 2 0 12 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nTOML 1 268 57 14 197 1\n(ULOC) 164\n-------------------------------------------------------------------------------\nTypeScript Typings 1 536 78 98 360 69\n(ULOC) 372\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 430 190501 25269 16130 149102 17469\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 47535\nDRYness % 0.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $5,173,124\nEstimated Schedule Effort (organic) 25.68 months\nEstimated People Required (organic) 17.89\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7788055 bytes, 7.788 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:33Z", - "repo": { - "name": "github.com/measureauthoringtool/cql_qdm_patientapi", - "commit": "5cd5d0d10d7cc6d6f068d177652814891fff50bd" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 16 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 11/14 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "80 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 16 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 11/14 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "80 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/cqltoelm/cqltoelm_data.json b/app/site/_data/measureauthoringtool/cqltoelm/cqltoelm_data.json index 86d3e34a1e..a37b4bb5bf 100644 --- a/app/site/_data/measureauthoringtool/cqltoelm/cqltoelm_data.json +++ b/app/site/_data/measureauthoringtool/cqltoelm/cqltoelm_data.json @@ -1,291 +1,291 @@ { - "url": "https://github.com/measureauthoringtool/cqltoelm", - "owner": "measureauthoringtool", - "name": "cqltoelm", - "description": "Wrapper around the Clinical Quality Language", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 3, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-09-06T16:20:40Z", - "total_project_lines": 3434, - "average_project_lines": 191, - "total_project_comment_lines": 446, - "average_project_comment_lines": 25, - "total_project_blank_lines": 659, - "average_blank_lines": 37, - "predominant_langs": { - "Java": 110243 + "url": "https://github.com/measureauthoringtool/cqltoelm", + "owner": "measureauthoringtool", + "name": "cqltoelm", + "description": "Wrapper around the Clinical Quality Language", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 3, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-09-06T16:20:40Z", + "total_project_lines": 3434, + "average_project_lines": 191, + "total_project_comment_lines": 446, + "average_project_comment_lines": 25, + "total_project_blank_lines": 659, + "average_blank_lines": 37, + "predominant_langs": { + "Java": 110243 + }, + "commits_by_month": { + "2019/12": 2, + "2019/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 110243, + "CodeBytes": 0, + "Lines": 3199, + "Code": 2109, + "Comment": 446, + "Blank": 644, + "Complexity": 178, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 3221, + "CodeBytes": 0, + "Lines": 114, + "Code": 111, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 59853.520025404374, + "estimatedScheduleMonths_low": 4.885633742570711, + "estimatedPeople_low": 1.1934886636726807, + "estimatedCost_high": 186529.70970741523, + "estimatedScheduleMonths_high": 4.885633742570711, + "estimatedPeople_high": 1.1934886636726807, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 16 3199 644 446 2109 178\n(ULOC) 1393\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 114 3 0 111 0\n(ULOC) 77\n───────────────────────────────────────────────────────────────────────────────\nTotal 18 3434 659 446 2329 178\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1577\nDRYness % 0.46\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $65,633\nEstimated Schedule Effort (organic) 4.89 months\nEstimated People Required (organic) 1.19\n───────────────────────────────────────────────────────────────────────────────\nProcessed 120512 bytes, 0.121 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:17Z", + "repo": { + "name": "github.com/measureauthoringtool/cqltoelm", + "commit": "b32cfd59a61ea3442fb6205cbc1b58c8ffa82366" }, - "commits_by_month": { - "2019/12": 2, - "2019/9": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 110243, - "CodeBytes": 0, - "Lines": 3199, - "Code": 2109, - "Comment": 446, - "Blank": 644, - "Complexity": 178, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 3221, - "CodeBytes": 0, - "Lines": 114, - "Code": 111, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 59853.520025404374, - "estimatedScheduleMonths_low": 4.885633742570711, - "estimatedPeople_low": 1.1934886636726807, - "estimatedCost_high": 186529.70970741523, - "estimatedScheduleMonths_high": 4.885633742570711, - "estimatedPeople_high": 1.1934886636726807, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 16 3199 644 446 2109 178\n(ULOC) 1393\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 114 3 0 111 0\n(ULOC) 77\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 18 3434 659 446 2329 178\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1577\nDRYness % 0.46\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $65,633\nEstimated Schedule Effort (organic) 4.89 months\nEstimated People Required (organic) 1.19\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 120512 bytes, 0.121 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:17Z", - "repo": { - "name": "github.com/measureauthoringtool/cqltoelm", - "commit": "b32cfd59a61ea3442fb6205cbc1b58c8ffa82366" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.0, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "54 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.0, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "54 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/dynamicmoduleloading/dynamicmoduleloading_data.json b/app/site/_data/measureauthoringtool/dynamicmoduleloading/dynamicmoduleloading_data.json index 986539ebda..33db877fb4 100644 --- a/app/site/_data/measureauthoringtool/dynamicmoduleloading/dynamicmoduleloading_data.json +++ b/app/site/_data/measureauthoringtool/dynamicmoduleloading/dynamicmoduleloading_data.json @@ -1,408 +1,408 @@ { - "url": "https://github.com/measureauthoringtool/dynamicmoduleloading", - "owner": "measureauthoringtool", - "name": "dynamicmoduleloading", - "description": "Example for lazy loading react components", - "commits_count": 1, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 0, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 2, - "created_at": "2022-12-14T19:45:54Z", - "total_project_lines": 352, - "average_project_lines": 23, - "total_project_comment_lines": 2, - "average_project_comment_lines": 0, - "total_project_blank_lines": 35, - "average_blank_lines": 2, - "predominant_langs": { - "TypeScript": 4135, - "CSS": 1782, - "HTML": 366 + "url": "https://github.com/measureauthoringtool/dynamicmoduleloading", + "owner": "measureauthoringtool", + "name": "dynamicmoduleloading", + "description": "Example for lazy loading react components", + "commits_count": 1, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 0, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 2, + "created_at": "2022-12-14T19:45:54Z", + "total_project_lines": 352, + "average_project_lines": 23, + "total_project_comment_lines": 2, + "average_project_comment_lines": 0, + "total_project_blank_lines": 35, + "average_blank_lines": 2, + "predominant_langs": { + "TypeScript": 4135, + "CSS": 1782, + "HTML": 366 + }, + "commits_by_month": { + "2022/12": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [ + [ + "@emotion/react", + 0.0, + "2024-12-17T15:48:28.000" + ], + [ + "@emotion/styled", + 0.0, + "2024-12-17T15:48:28.000" + ], + [ + "@mui/material", + 0.0, + "2024-12-17T15:48:28.000" + ], + [ + "@types/react", + -0.0273972603, + "2024-12-17T15:48:28.000" + ], + [ + "@types/react-dom", + -0.0054794521, + "2024-12-17T15:48:28.000" + ], + [ + "@vitejs/plugin-react", + 1.8136986301, + "2024-12-17T15:48:28.000" + ], + [ + "formik", + 0.0, + "2024-12-17T15:48:28.000" + ], + [ + "react", + 0.6109589041, + "2024-12-17T15:48:28.000" + ], + [ + "react-dom", + 0.6109589041, + "2024-12-17T15:48:28.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:48:28.000" + ], + [ + "vite", + 0.2164383562, + "2024-12-17T15:48:28.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 4135, + "CodeBytes": 0, + "Lines": 167, + "Code": 143, + "Comment": 1, + "Blank": 23, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1327, + "CodeBytes": 0, + "Lines": 56, + "Code": 56, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 1782, + "CodeBytes": 0, + "Lines": 111, + "Code": 99, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 5623, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 366, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 25, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 38, + "CodeBytes": 0, + "Lines": 1, + "Code": 0, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7324.665818306704, + "estimatedScheduleMonths_low": 2.1991061418563334, + "estimatedPeople_low": 0.3244823896621213, + "estimatedCost_high": 22826.857772319396, + "estimatedScheduleMonths_high": 2.1991061418563334, + "estimatedPeople_high": 0.3244823896621213, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 5 167 23 1 143 0\n(ULOC) 131\n-------------------------------------------------------------------------------\nJSON 3 56 0 0 56 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nCSS 2 111 12 0 99 0\n(ULOC) 78\n-------------------------------------------------------------------------------\nSVG 2 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nHTML 1 13 0 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 352 35 2 315 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 269\nDRYness % 0.76\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,031\nEstimated Schedule Effort (organic) 2.20 months\nEstimated People Required (organic) 0.32\n───────────────────────────────────────────────────────────────────────────────\nProcessed 13296 bytes, 0.013 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:33Z", + "repo": { + "name": "github.com/measureauthoringtool/dynamicmoduleloading", + "commit": "df94f71fb938bfb6b5c8f56b7927d0d7ac5688fb" }, - "commits_by_month": { - "2022/12": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [ - [ - "@emotion/react", - 0.0, - "2024-12-17T15:48:28.000" - ], - [ - "@emotion/styled", - 0.0, - "2024-12-17T15:48:28.000" - ], - [ - "@mui/material", - 0.0, - "2024-12-17T15:48:28.000" - ], - [ - "@types/react", - -0.0273972603, - "2024-12-17T15:48:28.000" - ], - [ - "@types/react-dom", - -0.0054794521, - "2024-12-17T15:48:28.000" - ], - [ - "@vitejs/plugin-react", - 1.8136986301, - "2024-12-17T15:48:28.000" - ], - [ - "formik", - 0.0, - "2024-12-17T15:48:28.000" - ], - [ - "react", - 0.6109589041, - "2024-12-17T15:48:28.000" - ], - [ - "react-dom", - 0.6109589041, - "2024-12-17T15:48:28.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:48:28.000" - ], - [ - "vite", - 0.2164383562, - "2024-12-17T15:48:28.000" - ] + "score": 1.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": -1, + "reason": "no pull request found", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/1 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "no SAST tool detected", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "11 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 4135, - "CodeBytes": 0, - "Lines": 167, - "Code": 143, - "Comment": 1, - "Blank": 23, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1327, - "CodeBytes": 0, - "Lines": 56, - "Code": 56, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 1782, - "CodeBytes": 0, - "Lines": 111, - "Code": 99, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 5623, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 366, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 25, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 38, - "CodeBytes": 0, - "Lines": 1, - "Code": 0, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7324.665818306704, - "estimatedScheduleMonths_low": 2.1991061418563334, - "estimatedPeople_low": 0.3244823896621213, - "estimatedCost_high": 22826.857772319396, - "estimatedScheduleMonths_high": 2.1991061418563334, - "estimatedPeople_high": 0.3244823896621213, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 5 167 23 1 143 0\n(ULOC) 131\n-------------------------------------------------------------------------------\nJSON 3 56 0 0 56 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nCSS 2 111 12 0 99 0\n(ULOC) 78\n-------------------------------------------------------------------------------\nSVG 2 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nHTML 1 13 0 0 13 0\n(ULOC) 14\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 1 0 1 0 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 352 35 2 315 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 269\nDRYness % 0.76\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,031\nEstimated Schedule Effort (organic) 2.20 months\nEstimated People Required (organic) 0.32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 13296 bytes, 0.013 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:33Z", - "repo": { - "name": "github.com/measureauthoringtool/dynamicmoduleloading", - "commit": "df94f71fb938bfb6b5c8f56b7927d0d7ac5688fb" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 1.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": -1, - "reason": "no pull request found", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/1 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "no SAST tool detected", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "11 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/excel-export/excel-export_data.json b/app/site/_data/measureauthoringtool/excel-export/excel-export_data.json index 5267331c2a..6391ab138c 100644 --- a/app/site/_data/measureauthoringtool/excel-export/excel-export_data.json +++ b/app/site/_data/measureauthoringtool/excel-export/excel-export_data.json @@ -1,567 +1,567 @@ { - "url": "https://github.com/measureauthoringtool/excel-export", - "owner": "measureauthoringtool", - "name": "excel-export", - "description": "Node server for exporting Excel files from MADiE", - "commits_count": 82, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 29, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 19, - "closed_pull_requests_count": 1, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 2, - "created_at": "2024-02-29T19:17:07Z", - "total_project_lines": 1740, - "average_project_lines": 62, - "total_project_comment_lines": 46, - "average_project_comment_lines": 2, - "total_project_blank_lines": 169, - "average_blank_lines": 6, - "predominant_langs": { - "TypeScript": 41785, - "JavaScript": 663, - "Dockerfile": 410 - }, - "commits_by_month": { - "2025/1": 3, - "2024/12": 4, - "2024/10": 3, - "2024/7": 1, - "2024/5": 7, - "2024/4": 12 + "url": "https://github.com/measureauthoringtool/excel-export", + "owner": "measureauthoringtool", + "name": "excel-export", + "description": "Node server for exporting Excel files from MADiE", + "commits_count": 82, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 29, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 19, + "closed_pull_requests_count": 1, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 2, + "created_at": "2024-02-29T19:17:07Z", + "total_project_lines": 1740, + "average_project_lines": 62, + "total_project_comment_lines": 46, + "average_project_comment_lines": 2, + "total_project_blank_lines": 169, + "average_blank_lines": 6, + "predominant_langs": { + "TypeScript": 41785, + "JavaScript": 663, + "Dockerfile": 410 + }, + "commits_by_month": { + "2025/1": 3, + "2024/12": 4, + "2024/10": 3, + "2024/7": 1, + "2024/5": 7, + "2024/4": 12 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-10-24T00:00:00.000Z", + 1 + ], + [ + "2024-10-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@golevelup/ts-jest", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/cli", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/common", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/core", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/jwt", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/platform-express", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/schematics", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/terminus", + -0.4109589041, + "2024-12-17T15:54:58.000" + ], + [ + "@nestjs/testing", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@okta/jwt-verifier", + 0.2054794521, + "2024-12-17T15:54:58.000" + ], + [ + "@types/express", + 0.8849315068, + "2024-12-17T15:54:58.000" + ], + [ + "@types/jest", + 0.9232876712, + "2024-12-17T15:54:58.000" + ], + [ + "@types/node", + -0.002739726, + "2024-12-17T15:54:58.000" + ], + [ + "@types/supertest", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 0.8602739726, + "2024-12-17T15:54:58.000" + ], + [ + "@typescript-eslint/parser", + 0.8602739726, + "2024-12-17T15:54:58.000" + ], + [ + "cqm-models", + 0.9232876712, + "2024-12-17T15:54:58.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:54:58.000" + ], + [ + "eslint-config-prettier", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "eslint-plugin-prettier", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "exceljs", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "export-excel", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "express", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "husky", + 3.8410958904, + "2024-12-17T15:54:58.000" + ], + [ + "jest", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "jsonwebtoken", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "mongoose", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "node-mocks-http", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "prettier", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "reflect-metadata", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "rxjs", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "source-map-support", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "supertest", + 0.2739726027, + "2024-12-17T15:54:58.000" + ], + [ + "ts-jest", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "ts-loader", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "tsconfig-paths", + 0.0, + "2024-12-17T15:54:58.000" + ], + [ + "typescript", + -0.0684931507, + "2024-12-17T15:54:58.000" + ], + [ + "underscore", + 0.0, + "2024-12-17T15:54:58.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 41785, + "CodeBytes": 0, + "Lines": 1316, + "Code": 1171, + "Comment": 30, + "Blank": 115, + "Complexity": 42, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3639, + "CodeBytes": 0, + "Lines": 134, + "Code": 134, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4290, + "CodeBytes": 0, + "Lines": 145, + "Code": 115, + "Comment": 9, + "Blank": 21, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4412, + "CodeBytes": 0, + "Lines": 94, + "Code": 68, + "Comment": 0, + "Blank": 26, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 56, + "CodeBytes": 0, + "Lines": 5, + "Code": 5, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 410, + "CodeBytes": 0, + "Lines": 20, + "Code": 7, + "Comment": 7, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 663, + "CodeBytes": 0, + "Lines": 25, + "Code": 25, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 38370.28893701268, + "estimatedScheduleMonths_low": 4.126149392923783, + "estimatedPeople_low": 0.9059404045309458, + "estimatedCost_high": 119578.57873309375, + "estimatedScheduleMonths_high": 4.126149392923783, + "estimatedPeople_high": 0.9059404045309458, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 15 1316 115 30 1171 42\n(ULOC) 817\n-------------------------------------------------------------------------------\nJSON 5 134 0 0 134 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nYAML 3 145 21 9 115 0\n(ULOC) 102\n-------------------------------------------------------------------------------\nMarkdown 2 94 26 0 68 0\n(ULOC) 64\n-------------------------------------------------------------------------------\nDocker ignore 1 5 0 0 5 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nDockerfile 1 20 6 7 7 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 25 0 0 25 0\n(ULOC) 24\n───────────────────────────────────────────────────────────────────────────────\nTotal 28 1739 168 46 1525 42\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1133\nDRYness % 0.65\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $42,075\nEstimated Schedule Effort (organic) 4.13 months\nEstimated People Required (organic) 0.91\n───────────────────────────────────────────────────────────────────────────────\nProcessed 55255 bytes, 0.055 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:44:13Z", + "repo": { + "name": "github.com/measureauthoringtool/excel-export", + "commit": "5648016fe5c4d05819c2ec622cf2b243603bcd09" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-10-24T00:00:00.000Z", - 1 - ], - [ - "2024-10-25T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@golevelup/ts-jest", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/cli", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/common", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/core", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/jwt", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/platform-express", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/schematics", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/terminus", - -0.4109589041, - "2024-12-17T15:54:58.000" - ], - [ - "@nestjs/testing", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@okta/jwt-verifier", - 0.2054794521, - "2024-12-17T15:54:58.000" - ], - [ - "@types/express", - 0.8849315068, - "2024-12-17T15:54:58.000" - ], - [ - "@types/jest", - 0.9232876712, - "2024-12-17T15:54:58.000" - ], - [ - "@types/node", - -0.002739726, - "2024-12-17T15:54:58.000" - ], - [ - "@types/supertest", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 0.8602739726, - "2024-12-17T15:54:58.000" - ], - [ - "@typescript-eslint/parser", - 0.8602739726, - "2024-12-17T15:54:58.000" - ], - [ - "cqm-models", - 0.9232876712, - "2024-12-17T15:54:58.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:54:58.000" - ], - [ - "eslint-config-prettier", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "eslint-plugin-prettier", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "exceljs", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "export-excel", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "express", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "husky", - 3.8410958904, - "2024-12-17T15:54:58.000" - ], - [ - "jest", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "jsonwebtoken", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "mongoose", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "node-mocks-http", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "prettier", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "reflect-metadata", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "rxjs", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "source-map-support", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "supertest", - 0.2739726027, - "2024-12-17T15:54:58.000" - ], - [ - "ts-jest", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "ts-loader", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "tsconfig-paths", - 0.0, - "2024-12-17T15:54:58.000" - ], - [ - "typescript", - -0.0684931507, - "2024-12-17T15:54:58.000" - ], - [ - "underscore", - 0.0, - "2024-12-17T15:54:58.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 41785, - "CodeBytes": 0, - "Lines": 1316, - "Code": 1171, - "Comment": 30, - "Blank": 115, - "Complexity": 42, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3639, - "CodeBytes": 0, - "Lines": 134, - "Code": 134, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4247, - "CodeBytes": 0, - "Lines": 145, - "Code": 115, - "Comment": 9, - "Blank": 21, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4412, - "CodeBytes": 0, - "Lines": 94, - "Code": 68, - "Comment": 0, - "Blank": 26, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 56, - "CodeBytes": 0, - "Lines": 5, - "Code": 5, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 410, - "CodeBytes": 0, - "Lines": 20, - "Code": 7, - "Comment": 7, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 663, - "CodeBytes": 0, - "Lines": 25, - "Code": 25, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 38370.28893701268, - "estimatedScheduleMonths_low": 4.126149392923783, - "estimatedPeople_low": 0.9059404045309458, - "estimatedCost_high": 119578.57873309375, - "estimatedScheduleMonths_high": 4.126149392923783, - "estimatedPeople_high": 0.9059404045309458, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 15 1316 115 30 1171 42\n(ULOC) 817\n-------------------------------------------------------------------------------\nJSON 5 134 0 0 134 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nYAML 3 145 21 9 115 0\n(ULOC) 102\n-------------------------------------------------------------------------------\nMarkdown 2 94 26 0 68 0\n(ULOC) 64\n-------------------------------------------------------------------------------\nDocker ignore 1 5 0 0 5 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nDockerfile 1 20 6 7 7 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 25 0 0 25 0\n(ULOC) 24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 28 1739 168 46 1525 42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1133\nDRYness % 0.65\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $42,075\nEstimated Schedule Effort (organic) 4.13 months\nEstimated People Required (organic) 0.91\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 55212 bytes, 0.055 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:44:13Z", - "repo": { - "name": "github.com/measureauthoringtool/excel-export", - "commit": "5648016fe5c4d05819c2ec622cf2b243603bcd09" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "7 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 1, - "reason": "dependency not pinned by hash detected -- score normalized to 1", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "7 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 1, + "reason": "dependency not pinned by hash detected -- score normalized to 1", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/execution-lambda/execution-lambda_data.json b/app/site/_data/measureauthoringtool/execution-lambda/execution-lambda_data.json index afb73f0aeb..38eac1652e 100644 --- a/app/site/_data/measureauthoringtool/execution-lambda/execution-lambda_data.json +++ b/app/site/_data/measureauthoringtool/execution-lambda/execution-lambda_data.json @@ -1,447 +1,447 @@ { - "url": "https://github.com/measureauthoringtool/execution-lambda", - "owner": "measureauthoringtool", - "name": "execution-lambda", - "description": "PoC Test Case Execution using AWS Lambda", - "commits_count": 6, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 5, - "open_pull_requests_count": 3, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2023-06-06T20:33:58Z", - "total_project_lines": 1419, - "average_project_lines": 101, - "total_project_comment_lines": 76, - "average_project_comment_lines": 5, - "total_project_blank_lines": 164, - "average_blank_lines": 12, - "predominant_langs": { - "TypeScript": 35006, - "JavaScript": 877 + "url": "https://github.com/measureauthoringtool/execution-lambda", + "owner": "measureauthoringtool", + "name": "execution-lambda", + "description": "PoC Test Case Execution using AWS Lambda", + "commits_count": 6, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 5, + "open_pull_requests_count": 3, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2023-06-06T20:33:58Z", + "total_project_lines": 1419, + "average_project_lines": 101, + "total_project_comment_lines": 76, + "average_project_comment_lines": 5, + "total_project_blank_lines": 164, + "average_blank_lines": 12, + "predominant_langs": { + "TypeScript": 35006, + "JavaScript": 877 + }, + "commits_by_month": { + "2023/6": 6 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [ + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "@types/fhir", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "@types/jest", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "@types/node", + -0.002739726, + "2024-12-17T15:48:32.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4356164384, + "2024-12-17T15:48:32.000" + ], + [ + "@typescript-eslint/parser", + 1.4356164384, + "2024-12-17T15:48:32.000" + ], + [ + "cqm-execution", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "dompurify", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "esbuild", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "eslint", + 2.8356164384, + "2024-12-17T15:48:32.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:48:32.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:48:32.000" + ], + [ + "fhir", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "fqm-execution", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "jest", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:48:32.000" + ], + [ + "ts-jest", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:48:32.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:48:32.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 35006, + "CodeBytes": 0, + "Lines": 994, + "Code": 831, + "Comment": 68, + "Blank": 95, + "Complexity": 210, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 1487, + "CodeBytes": 0, + "Lines": 53, + "Code": 53, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 877, + "CodeBytes": 0, + "Lines": 22, + "Code": 20, + "Comment": 2, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 2384, + "CodeBytes": 0, + "Lines": 62, + "Code": 54, + "Comment": 4, + "Blank": 4, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 8429, + "CodeBytes": 0, + "Lines": 136, + "Code": 91, + "Comment": 0, + "Blank": 45, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 690, + "CodeBytes": 0, + "Lines": 31, + "Code": 21, + "Comment": 2, + "Blank": 8, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 29285.40463492373, + "estimatedScheduleMonths_low": 3.723525125892703, + "estimatedPeople_low": 0.7662075874352087, + "estimatedCost_high": 91266.11138155212, + "estimatedScheduleMonths_high": 3.723525125892703, + "estimatedPeople_high": 0.7662075874352087, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 6 994 95 68 831 210\n(ULOC) 713\n-------------------------------------------------------------------------------\nJSON 2 53 0 0 53 0\n(ULOC) 51\n-------------------------------------------------------------------------------\nJavaScript 2 22 0 2 20 0\n(ULOC) 20\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 1 62 4 4 54 4\n(ULOC) 56\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 136 45 0 91 0\n(ULOC) 79\n-------------------------------------------------------------------------------\nTOML 1 31 8 2 21 0\n(ULOC) 22\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 1419 164 76 1179 214\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1040\nDRYness % 0.73\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $32,113\nEstimated Schedule Effort (organic) 3.72 months\nEstimated People Required (organic) 0.77\n───────────────────────────────────────────────────────────────────────────────\nProcessed 55921 bytes, 0.056 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:53Z", + "repo": { + "name": "github.com/measureauthoringtool/execution-lambda", + "commit": "f9e766f5cad749db25c05d489f813fbfd1974cb1" }, - "commits_by_month": { - "2023/6": 6 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [ - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "@types/fhir", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "@types/jest", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "@types/node", - -0.002739726, - "2024-12-17T15:48:32.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4356164384, - "2024-12-17T15:48:32.000" - ], - [ - "@typescript-eslint/parser", - 1.4356164384, - "2024-12-17T15:48:32.000" - ], - [ - "cqm-execution", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "dompurify", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "esbuild", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "eslint", - 2.8356164384, - "2024-12-17T15:48:32.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:48:32.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:48:32.000" - ], - [ - "fhir", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "fqm-execution", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "jest", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:48:32.000" - ], - [ - "ts-jest", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:48:32.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:48:32.000" - ] + "score": 2.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 2/3 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "14 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 35006, - "CodeBytes": 0, - "Lines": 994, - "Code": 831, - "Comment": 68, - "Blank": 95, - "Complexity": 210, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 1487, - "CodeBytes": 0, - "Lines": 53, - "Code": 53, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 877, - "CodeBytes": 0, - "Lines": 22, - "Code": 20, - "Comment": 2, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 2384, - "CodeBytes": 0, - "Lines": 62, - "Code": 54, - "Comment": 4, - "Blank": 4, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 8429, - "CodeBytes": 0, - "Lines": 136, - "Code": 91, - "Comment": 0, - "Blank": 45, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 690, - "CodeBytes": 0, - "Lines": 31, - "Code": 21, - "Comment": 2, - "Blank": 8, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 29285.40463492373, - "estimatedScheduleMonths_low": 3.723525125892703, - "estimatedPeople_low": 0.7662075874352087, - "estimatedCost_high": 91266.11138155212, - "estimatedScheduleMonths_high": 3.723525125892703, - "estimatedPeople_high": 0.7662075874352087, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 6 994 95 68 831 210\n(ULOC) 713\n-------------------------------------------------------------------------------\nJSON 2 53 0 0 53 0\n(ULOC) 51\n-------------------------------------------------------------------------------\nJavaScript 2 22 0 2 20 0\n(ULOC) 20\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 1 62 4 4 54 4\n(ULOC) 56\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 136 45 0 91 0\n(ULOC) 79\n-------------------------------------------------------------------------------\nTOML 1 31 8 2 21 0\n(ULOC) 22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 1419 164 76 1179 214\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1040\nDRYness % 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $32,113\nEstimated Schedule Effort (organic) 3.72 months\nEstimated People Required (organic) 0.77\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 55921 bytes, 0.056 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:53Z", - "repo": { - "name": "github.com/measureauthoringtool/execution-lambda", - "commit": "f9e766f5cad749db25c05d489f813fbfd1974cb1" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 2/3 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "14 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/fhir-mongoid-models/fhir-mongoid-models_data.json b/app/site/_data/measureauthoringtool/fhir-mongoid-models/fhir-mongoid-models_data.json index 5f8c90ca16..62ab52284a 100644 --- a/app/site/_data/measureauthoringtool/fhir-mongoid-models/fhir-mongoid-models_data.json +++ b/app/site/_data/measureauthoringtool/fhir-mongoid-models/fhir-mongoid-models_data.json @@ -1,391 +1,391 @@ { - "url": "https://github.com/measureauthoringtool/fhir-mongoid-models", - "owner": "measureauthoringtool", - "name": "fhir-mongoid-models", - "description": "This is a library containing Ruby Mongoid models that conform to the FHIR specification. Its code is generated using the model-info-parser utility", - "commits_count": 120, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 47, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 41, - "closed_pull_requests_count": 4, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 9, - "created_at": "2020-06-03T14:02:43Z", - "total_project_lines": 76122, - "average_project_lines": 79, - "total_project_comment_lines": 1003, - "average_project_comment_lines": 1, - "total_project_blank_lines": 3778, - "average_blank_lines": 4, - "predominant_langs": { - "Ruby": 2811097, - "Shell": 131 + "url": "https://github.com/measureauthoringtool/fhir-mongoid-models", + "owner": "measureauthoringtool", + "name": "fhir-mongoid-models", + "description": "This is a library containing Ruby Mongoid models that conform to the FHIR specification. Its code is generated using the model-info-parser utility", + "commits_count": 120, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 47, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 41, + "closed_pull_requests_count": 4, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 9, + "created_at": "2020-06-03T14:02:43Z", + "total_project_lines": 76122, + "average_project_lines": 79, + "total_project_comment_lines": 1003, + "average_project_comment_lines": 1, + "total_project_blank_lines": 3778, + "average_blank_lines": 4, + "predominant_langs": { + "Ruby": 2811097, + "Shell": 131 + }, + "commits_by_month": { + "2021/3": 6, + "2020/12": 2, + "2020/11": 4, + "2020/9": 11, + "2020/8": 7 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "model-info-parser", + 0.0, + "2024-12-17T15:55:28.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "Ruby", + "Bytes": 2809206, + "CodeBytes": 0, + "Lines": 57911, + "Code": 53176, + "Comment": 999, + "Blank": 3736, + "Complexity": 1878, + "Count": 952, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 775869, + "CodeBytes": 0, + "Lines": 5725, + "Code": 5725, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2328, + "CodeBytes": 0, + "Lines": 105, + "Code": 88, + "Comment": 1, + "Blank": 16, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "BASH", + "Bytes": 131, + "CodeBytes": 0, + "Lines": 8, + "Code": 4, + "Comment": 2, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 175, + "CodeBytes": 0, + "Lines": 6, + "Code": 3, + "Comment": 1, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 977, + "CodeBytes": 0, + "Lines": 23, + "Code": 15, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 114, + "CodeBytes": 0, + "Lines": 6, + "Code": 4, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 808232, + "CodeBytes": 0, + "Lines": 12217, + "Code": 12217, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2175544.0736107174, + "estimatedScheduleMonths_low": 19.138267405658855, + "estimatedPeople_low": 11.074261529671423, + "estimatedCost_high": 6779945.512545534, + "estimatedScheduleMonths_high": 19.138267405658855, + "estimatedPeople_high": 11.074261529671423, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nRuby 952 57911 3736 999 53176 1878\n(ULOC) 15517\n-------------------------------------------------------------------------------\nJSON 8 5725 0 0 5725 0\n(ULOC) 2021\n-------------------------------------------------------------------------------\nYAML 3 105 16 1 88 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nBASH 1 8 2 2 4 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nGemfile 1 6 2 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 23 8 0 15 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nRakefile 1 6 2 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 1 12217 0 0 12217 0\n(ULOC) 3817\n───────────────────────────────────────────────────────────────────────────────\nTotal 969 76122 3778 1003 71341 1878\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 21560\nDRYness % 0.28\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,385,621\nEstimated Schedule Effort (organic) 19.14 months\nEstimated People Required (organic) 11.07\n───────────────────────────────────────────────────────────────────────────────\nProcessed 4404080 bytes, 4.404 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:36:25Z", + "repo": { + "name": "github.com/measureauthoringtool/fhir-mongoid-models", + "commit": "e0f8f341cd9d37332ef507f609ca8dbe3b4b41e8" }, - "commits_by_month": { - "2021/3": 6, - "2020/12": 2, - "2020/11": 4, - "2020/9": 11, - "2020/8": 7 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "model-info-parser", - 0.0, - "2024-12-17T15:55:28.000" - ] + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 17 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "Ruby", - "Bytes": 2809206, - "CodeBytes": 0, - "Lines": 57911, - "Code": 53176, - "Comment": 999, - "Blank": 3736, - "Complexity": 1878, - "Count": 952, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 775869, - "CodeBytes": 0, - "Lines": 5725, - "Code": 5725, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2328, - "CodeBytes": 0, - "Lines": 105, - "Code": 88, - "Comment": 1, - "Blank": 16, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "BASH", - "Bytes": 131, - "CodeBytes": 0, - "Lines": 8, - "Code": 4, - "Comment": 2, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 175, - "CodeBytes": 0, - "Lines": 6, - "Code": 3, - "Comment": 1, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 977, - "CodeBytes": 0, - "Lines": 23, - "Code": 15, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 114, - "CodeBytes": 0, - "Lines": 6, - "Code": 4, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 808232, - "CodeBytes": 0, - "Lines": 12217, - "Code": 12217, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2175544.0736107174, - "estimatedScheduleMonths_low": 19.138267405658855, - "estimatedPeople_low": 11.074261529671423, - "estimatedCost_high": 6779945.512545534, - "estimatedScheduleMonths_high": 19.138267405658855, - "estimatedPeople_high": 11.074261529671423, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nRuby 952 57911 3736 999 53176 1878\n(ULOC) 15517\n-------------------------------------------------------------------------------\nJSON 8 5725 0 0 5725 0\n(ULOC) 2021\n-------------------------------------------------------------------------------\nYAML 3 105 16 1 88 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nBASH 1 8 2 2 4 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nGemfile 1 6 2 1 3 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 23 8 0 15 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nRakefile 1 6 2 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 1 12217 0 0 12217 0\n(ULOC) 3817\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 969 76122 3778 1003 71341 1878\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 21560\nDRYness % 0.28\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,385,621\nEstimated Schedule Effort (organic) 19.14 months\nEstimated People Required (organic) 11.07\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 4404080 bytes, 4.404 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:36:25Z", - "repo": { - "name": "github.com/measureauthoringtool/fhir-mongoid-models", - "commit": "e0f8f341cd9d37332ef507f609ca8dbe3b4b41e8" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 17 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/fhir-mongoose-models/fhir-mongoose-models_data.json b/app/site/_data/measureauthoringtool/fhir-mongoose-models/fhir-mongoose-models_data.json index a1851f7144..fc67096b65 100644 --- a/app/site/_data/measureauthoringtool/fhir-mongoose-models/fhir-mongoose-models_data.json +++ b/app/site/_data/measureauthoringtool/fhir-mongoose-models/fhir-mongoose-models_data.json @@ -1,433 +1,433 @@ { - "url": "https://github.com/measureauthoringtool/fhir-mongoose-models", - "owner": "measureauthoringtool", - "name": "fhir-mongoose-models", - "description": "This is a library containing JavaScript Mongoose models that conform to the FHIR specification. Its code is generated using the model-info-parser utility ", - "commits_count": 15, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 5, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 1, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 10, - "created_at": "2020-06-23T14:35:20Z", - "total_project_lines": 164767, - "average_project_lines": 172, - "total_project_comment_lines": 23686, - "average_project_comment_lines": 25, - "total_project_blank_lines": 18669, - "average_blank_lines": 20, - "predominant_langs": { - "JavaScript": 869924 + "url": "https://github.com/measureauthoringtool/fhir-mongoose-models", + "owner": "measureauthoringtool", + "name": "fhir-mongoose-models", + "description": "This is a library containing JavaScript Mongoose models that conform to the FHIR specification. Its code is generated using the model-info-parser utility ", + "commits_count": 15, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 5, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 1, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 10, + "created_at": "2020-06-23T14:35:20Z", + "total_project_lines": 164767, + "average_project_lines": 172, + "total_project_comment_lines": 23686, + "average_project_comment_lines": 25, + "total_project_blank_lines": 18669, + "average_blank_lines": 20, + "predominant_langs": { + "JavaScript": 869924 + }, + "commits_by_month": { + "2020/8": 1, + "2020/7": 12, + "2020/6": 2 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [ + [ + "@types/faker", + 4.4410958904, + "2024-12-17T15:53:35.000" + ], + [ + "@types/jest", + 4.4328767123, + "2024-12-17T15:53:35.000" + ], + [ + "@types/lodash", + 0.0, + "2024-12-17T15:53:35.000" + ], + [ + "@types/node", + 1.2164383562, + "2024-12-17T15:53:35.000" + ], + [ + "@types/xml2js", + 2.3506849315, + "2024-12-17T15:53:35.000" + ], + [ + "browserify", + 4.1671232877, + "2024-12-17T15:53:35.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:53:35.000" + ], + [ + "eslint-config-airbnb-base", + 1.0054794521, + "2024-12-17T15:53:35.000" + ], + [ + "eslint-config-prettier", + 3.095890411, + "2024-12-17T15:53:35.000" + ], + [ + "eslint-plugin-eslint-comments", + 0.0, + "2024-12-17T15:53:35.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2024-12-17T15:53:35.000" + ], + [ + "eslint-plugin-jest", + 4.2712328767, + "2024-12-17T15:53:35.000" + ], + [ + "eslint-plugin-promise", + 3.7945205479, + "2024-12-17T15:53:35.000" + ], + [ + "faker", + 4.8712328767, + "2024-12-17T15:53:35.000" + ], + [ + "jest", + 2.8547945205, + "2024-12-17T15:53:35.000" + ], + [ + "jest-extended", + 3.701369863, + "2024-12-17T15:53:35.000" + ], + [ + "model-info-parser", + 0.3506849315, + "2024-12-17T15:53:35.000" + ], + [ + "mongoose", + 4.3452054795, + "2024-12-17T15:53:35.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:53:35.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 5898050, + "CodeBytes": 0, + "Lines": 152240, + "Code": 109926, + "Comment": 23672, + "Blank": 18642, + "Complexity": 12504, + "Count": 945, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4123017, + "CodeBytes": 0, + "Lines": 102, + "Code": 101, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 396, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 808232, + "CodeBytes": 0, + "Lines": 12217, + "Code": 12217, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2328, + "CodeBytes": 0, + "Lines": 83, + "Code": 55, + "Comment": 14, + "Blank": 14, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3835102.069361778, + "estimatedScheduleMonths_low": 23.73897996819362, + "estimatedPeople_low": 15.738537784429122, + "estimatedCost_high": 11951853.047117874, + "estimatedScheduleMonths_high": 23.73897996819362, + "estimatedPeople_high": 15.738537784429122, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 945 152240 18642 23672 109926 12504\n(ULOC) 32635\n-------------------------------------------------------------------------------\nJSON 8 102 1 0 101 0\n(ULOC) 90\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 1 12217 0 0 12217 0\n(ULOC) 3817\n-------------------------------------------------------------------------------\nYAML 1 83 14 14 55 0\n(ULOC) 62\n───────────────────────────────────────────────────────────────────────────────\nTotal 957 164767 18669 23686 122412 12504\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 36708\nDRYness % 0.22\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,205,431\nEstimated Schedule Effort (organic) 23.74 months\nEstimated People Required (organic) 15.74\n───────────────────────────────────────────────────────────────────────────────\nProcessed 10839071 bytes, 10.839 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:36:46Z", + "repo": { + "name": "github.com/measureauthoringtool/fhir-mongoose-models", + "commit": "37c5655cca2c240e2584163c882710386209d423" }, - "commits_by_month": { - "2020/8": 1, - "2020/7": 12, - "2020/6": 2 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [ - [ - "@types/faker", - 4.4410958904, - "2024-12-17T15:53:35.000" - ], - [ - "@types/jest", - 4.4328767123, - "2024-12-17T15:53:35.000" - ], - [ - "@types/lodash", - 0.0, - "2024-12-17T15:53:35.000" - ], - [ - "@types/node", - 1.2164383562, - "2024-12-17T15:53:35.000" - ], - [ - "@types/xml2js", - 2.3506849315, - "2024-12-17T15:53:35.000" - ], - [ - "browserify", - 4.1671232877, - "2024-12-17T15:53:35.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:53:35.000" - ], - [ - "eslint-config-airbnb-base", - 1.0054794521, - "2024-12-17T15:53:35.000" - ], - [ - "eslint-config-prettier", - 3.095890411, - "2024-12-17T15:53:35.000" - ], - [ - "eslint-plugin-eslint-comments", - 0.0, - "2024-12-17T15:53:35.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-12-17T15:53:35.000" - ], - [ - "eslint-plugin-jest", - 4.2712328767, - "2024-12-17T15:53:35.000" - ], - [ - "eslint-plugin-promise", - 3.7945205479, - "2024-12-17T15:53:35.000" - ], - [ - "faker", - 4.8712328767, - "2024-12-17T15:53:35.000" - ], - [ - "jest", - 2.8547945205, - "2024-12-17T15:53:35.000" - ], - [ - "jest-extended", - 3.701369863, - "2024-12-17T15:53:35.000" - ], - [ - "model-info-parser", - 0.3506849315, - "2024-12-17T15:53:35.000" - ], - [ - "mongoose", - 4.3452054795, - "2024-12-17T15:53:35.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:53:35.000" - ] + "score": 3.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 1/5 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "47 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 5898050, - "CodeBytes": 0, - "Lines": 152240, - "Code": 109926, - "Comment": 23672, - "Blank": 18642, - "Complexity": 12504, - "Count": 945, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4123017, - "CodeBytes": 0, - "Lines": 102, - "Code": 101, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 396, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 808232, - "CodeBytes": 0, - "Lines": 12217, - "Code": 12217, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2328, - "CodeBytes": 0, - "Lines": 83, - "Code": 55, - "Comment": 14, - "Blank": 14, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3835102.069361778, - "estimatedScheduleMonths_low": 23.73897996819362, - "estimatedPeople_low": 15.738537784429122, - "estimatedCost_high": 11951853.047117874, - "estimatedScheduleMonths_high": 23.73897996819362, - "estimatedPeople_high": 15.738537784429122, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 945 152240 18642 23672 109926 12504\n(ULOC) 32635\n-------------------------------------------------------------------------------\nJSON 8 102 1 0 101 0\n(ULOC) 90\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nXML 1 12217 0 0 12217 0\n(ULOC) 3817\n-------------------------------------------------------------------------------\nYAML 1 83 14 14 55 0\n(ULOC) 62\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 957 164767 18669 23686 122412 12504\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 36708\nDRYness % 0.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,205,431\nEstimated Schedule Effort (organic) 23.74 months\nEstimated People Required (organic) 15.74\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 10839071 bytes, 10.839 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:36:46Z", - "repo": { - "name": "github.com/measureauthoringtool/fhir-mongoose-models", - "commit": "37c5655cca2c240e2584163c882710386209d423" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 1/5 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "47 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/fhir-typescript-models/fhir-typescript-models_data.json b/app/site/_data/measureauthoringtool/fhir-typescript-models/fhir-typescript-models_data.json index afd8884cbe..2b719f3293 100644 --- a/app/site/_data/measureauthoringtool/fhir-typescript-models/fhir-typescript-models_data.json +++ b/app/site/_data/measureauthoringtool/fhir-typescript-models/fhir-typescript-models_data.json @@ -1,463 +1,463 @@ { - "url": "https://github.com/measureauthoringtool/fhir-typescript-models", - "owner": "measureauthoringtool", - "name": "fhir-typescript-models", - "description": "TypeScript FHIR models generated from the model-info-parser utility", - "commits_count": 224, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 328, - "open_pull_requests_count": 26, - "merged_pull_requests_count": 115, - "closed_pull_requests_count": 187, - "forks_count": 3, - "stargazers_count": 6, - "watchers_count": 7, - "created_at": "2020-06-03T18:07:36Z", - "total_project_lines": 152760, - "average_project_lines": 79, - "total_project_comment_lines": 3876, - "average_project_comment_lines": 2, - "total_project_blank_lines": 26474, - "average_blank_lines": 14, - "predominant_langs": { - "TypeScript": 4201549, - "JavaScript": 1912 - }, - "commits_by_month": { - "2021/9": 3, - "2021/8": 1, - "2021/7": 5, - "2021/6": 7, - "2021/5": 6, - "2021/4": 4, - "2021/3": 4 - }, - "average_issue_resolution_time": [ - [ - "fhir-typescript-models", - "2 days 20:17:09" - ] + "url": "https://github.com/measureauthoringtool/fhir-typescript-models", + "owner": "measureauthoringtool", + "name": "fhir-typescript-models", + "description": "TypeScript FHIR models generated from the model-info-parser utility", + "commits_count": 224, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 328, + "open_pull_requests_count": 26, + "merged_pull_requests_count": 115, + "closed_pull_requests_count": 187, + "forks_count": 3, + "stargazers_count": 6, + "watchers_count": 7, + "created_at": "2020-06-03T18:07:36Z", + "total_project_lines": 152760, + "average_project_lines": 79, + "total_project_comment_lines": 3876, + "average_project_comment_lines": 2, + "total_project_blank_lines": 26474, + "average_blank_lines": 14, + "predominant_langs": { + "TypeScript": 4201549, + "JavaScript": 1912 + }, + "commits_by_month": { + "2021/9": 3, + "2021/8": 1, + "2021/7": 5, + "2021/6": 7, + "2021/5": 6, + "2021/4": 4, + "2021/3": 4 + }, + "average_issue_resolution_time": [ + [ + "fhir-typescript-models", + "2 days 20:17:09" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:55:12.000" + ], + [ + "@types/node", + -0.002739726, + "2024-12-17T15:55:12.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 3.1945205479, + "2024-12-17T15:55:12.000" + ], + [ + "@typescript-eslint/parser", + 3.1945205479, + "2024-12-17T15:55:12.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:55:12.000" + ], + [ + "eslint-config-airbnb", + 1.1315068493, + "2024-12-17T15:55:12.000" + ], + [ + "eslint-config-airbnb-typescript", + 2.3205479452, + "2024-12-17T15:55:12.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:55:12.000" + ], + [ + "eslint-plugin-eslint-comments", + 0.0, + "2024-12-17T15:55:12.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2024-12-17T15:55:12.000" ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:55:12.000" - ], - [ - "@types/node", - -0.002739726, - "2024-12-17T15:55:12.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 3.1945205479, - "2024-12-17T15:55:12.000" - ], - [ - "@typescript-eslint/parser", - 3.1945205479, - "2024-12-17T15:55:12.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-config-airbnb", - 1.1315068493, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-config-airbnb-typescript", - 2.3205479452, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-plugin-eslint-comments", - 0.0, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-plugin-jest", - 3.0739726027, - "2024-12-17T15:55:12.000" - ], - [ - "eslint-plugin-promise", - 2.9890410959, - "2024-12-17T15:55:12.000" - ], - [ - "jest", - 2.8547945205, - "2024-12-17T15:55:12.000" - ], - [ - "jest-extended", - 3.701369863, - "2024-12-17T15:55:12.000" - ], - [ - "model-info-parser", - 0.0, - "2024-12-17T15:55:12.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:55:12.000" - ], - [ - "reflect-metadata", - 0.0, - "2024-12-17T15:55:12.000" - ], - [ - "ts-jest", - 3.304109589, - "2024-12-17T15:55:12.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:55:12.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:55:12.000" - ] + [ + "eslint-plugin-jest", + 3.0739726027, + "2024-12-17T15:55:12.000" ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 4201549, - "CodeBytes": 0, - "Lines": 134499, - "Code": 104198, - "Comment": 3866, - "Blank": 26435, - "Complexity": 22739, - "Count": 1909, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 776799, - "CodeBytes": 0, - "Lines": 5679, - "Code": 5679, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5195, - "CodeBytes": 0, - "Lines": 169, - "Code": 133, - "Comment": 9, - "Blank": 27, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1912, - "CodeBytes": 0, - "Lines": 73, - "Code": 72, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 93, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 808256, - "CodeBytes": 0, - "Lines": 12217, - "Code": 12217, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3835036.2775190165, - "estimatedScheduleMonths_low": 23.73882521376576, - "estimatedPeople_low": 15.738370385525275, - "estimatedCost_high": 11951648.01100093, - "estimatedScheduleMonths_high": 23.73882521376576, - "estimatedPeople_high": 15.738370385525275, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 1909 134499 26435 3866 104198 22739\n(ULOC) 36236\n-------------------------------------------------------------------------------\nJSON 5 5679 0 0 5679 0\n(ULOC) 2004\n-------------------------------------------------------------------------------\nYAML 3 169 27 9 133 0\n(ULOC) 99\n-------------------------------------------------------------------------------\nJavaScript 2 73 0 1 72 0\n(ULOC) 61\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nXML 1 12217 0 0 12217 0\n(ULOC) 3817\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1922 152760 26474 3876 122410 22739\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 42298\nDRYness % 0.28\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,205,358\nEstimated Schedule Effort (organic) 23.74 months\nEstimated People Required (organic) 15.74\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5800852 bytes, 5.801 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "eslint-plugin-promise", + 2.9890410959, + "2024-12-17T15:55:12.000" + ], + [ + "jest", + 2.8547945205, + "2024-12-17T15:55:12.000" + ], + [ + "jest-extended", + 3.701369863, + "2024-12-17T15:55:12.000" + ], + [ + "model-info-parser", + 0.0, + "2024-12-17T15:55:12.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:55:12.000" + ], + [ + "reflect-metadata", + 0.0, + "2024-12-17T15:55:12.000" + ], + [ + "ts-jest", + 3.304109589, + "2024-12-17T15:55:12.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:55:12.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:55:12.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 4201549, + "CodeBytes": 0, + "Lines": 134499, + "Code": 104198, + "Comment": 3866, + "Blank": 26435, + "Complexity": 22739, + "Count": 1909, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 776799, + "CodeBytes": 0, + "Lines": 5679, + "Code": 5679, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5195, + "CodeBytes": 0, + "Lines": 169, + "Code": 133, + "Comment": 9, + "Blank": 27, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1912, + "CodeBytes": 0, + "Lines": 73, + "Code": 72, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 93, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 808256, + "CodeBytes": 0, + "Lines": 12217, + "Code": 12217, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3835036.2775190165, + "estimatedScheduleMonths_low": 23.73882521376576, + "estimatedPeople_low": 15.738370385525275, + "estimatedCost_high": 11951648.01100093, + "estimatedScheduleMonths_high": 23.73882521376576, + "estimatedPeople_high": 15.738370385525275, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 1909 134499 26435 3866 104198 22739\n(ULOC) 36236\n-------------------------------------------------------------------------------\nJSON 5 5679 0 0 5679 0\n(ULOC) 2004\n-------------------------------------------------------------------------------\nYAML 3 169 27 9 133 0\n(ULOC) 99\n-------------------------------------------------------------------------------\nJavaScript 2 73 0 1 72 0\n(ULOC) 61\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nXML 1 12217 0 0 12217 0\n(ULOC) 3817\n───────────────────────────────────────────────────────────────────────────────\nTotal 1922 152760 26474 3876 122410 22739\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 42298\nDRYness % 0.28\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,205,358\nEstimated Schedule Effort (organic) 23.74 months\nEstimated People Required (organic) 15.74\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5800852 bytes, 5.801 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:36:34Z", + "repo": { + "name": "github.com/measureauthoringtool/fhir-typescript-models", + "commit": "e32cd39a0d450c89a6c52702d3267133d44fa399" }, - "ossf_scorecard": { - "date": "2025-01-19T14:36:34Z", - "repo": { - "name": "github.com/measureauthoringtool/fhir-typescript-models", - "commit": "e32cd39a0d450c89a6c52702d3267133d44fa399" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 22 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "15 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" + }, + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 22 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "15 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/hapi-fhir-jpaserver-starter/hapi-fhir-jpaserver-starter_data.json b/app/site/_data/measureauthoringtool/hapi-fhir-jpaserver-starter/hapi-fhir-jpaserver-starter_data.json index aa6090120b..13be43ab69 100644 --- a/app/site/_data/measureauthoringtool/hapi-fhir-jpaserver-starter/hapi-fhir-jpaserver-starter_data.json +++ b/app/site/_data/measureauthoringtool/hapi-fhir-jpaserver-starter/hapi-fhir-jpaserver-starter_data.json @@ -1,535 +1,535 @@ { - "url": "https://github.com/measureauthoringtool/hapi-fhir-jpaserver-starter", - "owner": "measureauthoringtool", - "name": "hapi-fhir-jpaserver-starter", - "description": null, - "commits_count": 901, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 38, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 10, - "closed_pull_requests_count": 23, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 1, - "created_at": "2022-01-26T18:51:54Z", - "total_project_lines": 28564, - "average_project_lines": 314, - "total_project_comment_lines": 833, - "average_project_comment_lines": 9, - "total_project_blank_lines": 1876, - "average_blank_lines": 21, - "predominant_langs": { - "Java": 267143, - "HTML": 7484, - "Smarty": 5060, - "Dockerfile": 2859, - "Batchfile": 132, - "Shell": 68 + "url": "https://github.com/measureauthoringtool/hapi-fhir-jpaserver-starter", + "owner": "measureauthoringtool", + "name": "hapi-fhir-jpaserver-starter", + "description": null, + "commits_count": 901, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 38, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 10, + "closed_pull_requests_count": 23, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 1, + "created_at": "2022-01-26T18:51:54Z", + "total_project_lines": 28564, + "average_project_lines": 314, + "total_project_comment_lines": 833, + "average_project_comment_lines": 9, + "total_project_blank_lines": 1876, + "average_blank_lines": 21, + "predominant_langs": { + "Java": 267143, + "HTML": 7484, + "Smarty": 5060, + "Dockerfile": 2859, + "Batchfile": 132, + "Shell": 68 + }, + "commits_by_month": { + "2024/12": 6, + "2024/11": 3, + "2024/10": 5, + "2024/9": 5, + "2024/8": 11 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-24T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-09-25T00:00:00.000Z", + 1 + ], + [ + "2024-10-04T00:00:00.000Z", + 1 + ], + [ + "2024-10-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-01T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ], + [ + "2024-12-09T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 267143, + "CodeBytes": 0, + "Lines": 6374, + "Code": 4986, + "Comment": 299, + "Blank": 1089, + "Complexity": 245, + "Count": 78, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 71414, + "CodeBytes": 0, + "Lines": 1997, + "Code": 1177, + "Comment": 701, + "Blank": 119, + "Complexity": 0, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 47035318, + "CodeBytes": 0, + "Lines": 188142, + "Code": 188141, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 7484, + "CodeBytes": 0, + "Lines": 232, + "Code": 208, + "Comment": 1, + "Blank": 23, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 166630, + "CodeBytes": 0, + "Lines": 4942, + "Code": 4031, + "Comment": 0, + "Blank": 911, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 37943, + "CodeBytes": 0, + "Lines": 787, + "Code": 593, + "Comment": 0, + "Blank": 194, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 34178, + "CodeBytes": 0, + "Lines": 799, + "Code": 564, + "Comment": 179, + "Blank": 56, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 132, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 201, + "CodeBytes": 0, + "Lines": 12, + "Code": 12, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 2859, + "CodeBytes": 0, + "Lines": 60, + "Code": 36, + "Comment": 9, + "Blank": 15, + "Complexity": 9, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 336451, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1791, + "CodeBytes": 0, + "Lines": 22, + "Code": 22, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 7395, + "CodeBytes": 0, + "Lines": 209, + "Code": 96, + "Comment": 105, + "Blank": 8, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 68, + "CodeBytes": 0, + "Lines": 4, + "Code": 1, + "Comment": 1, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 5060, + "CodeBytes": 0, + "Lines": 152, + "Code": 139, + "Comment": 0, + "Blank": 13, + "Complexity": 24, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 6427600.81022787, + "estimatedScheduleMonths_low": 28.88586668310071, + "estimatedPeople_low": 21.67769004667746, + "estimatedCost_high": 20031211.409756202, + "estimatedScheduleMonths_high": 28.88586668310071, + "estimatedPeople_high": 21.67769004667746, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 78 6374 1089 299 4986 245\n(ULOC) 3305\n-------------------------------------------------------------------------------\nYAML 27 1997 119 701 1177 0\n(ULOC) 1142\n-------------------------------------------------------------------------------\nJSON 25 188142 1 0 188141 0\n(ULOC) 16709\n-------------------------------------------------------------------------------\nHTML 7 232 23 1 208 0\n(ULOC) 152\n-------------------------------------------------------------------------------\nXML Schema 5 4942 911 0 4031 0\n(ULOC) 1805\n-------------------------------------------------------------------------------\nMarkdown 3 787 194 0 593 0\n(ULOC) 420\n-------------------------------------------------------------------------------\nXML 3 799 56 179 564 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nBatch 2 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nDocker ignore 1 12 0 0 12 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nDockerfile 1 60 15 9 36 9\n(ULOC) 46\n-------------------------------------------------------------------------------\nJavaScript 1 1 0 0 1 4\n(ULOC) 1\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nPlain Text 1 22 0 0 22 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nProperties File 1 209 8 105 96 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nShell 1 4 2 1 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nSmarty Template 1 152 13 0 139 24\n(ULOC) 78\n───────────────────────────────────────────────────────────────────────────────\nTotal 158 203936 2463 1295 200178 282\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 24417\nDRYness % 0.12\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,048,269\nEstimated Schedule Effort (organic) 28.89 months\nEstimated People Required (organic) 21.68\n───────────────────────────────────────────────────────────────────────────────\nProcessed 47985424 bytes, 47.985 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:41:15Z", + "repo": { + "name": "github.com/measureauthoringtool/hapi-fhir-jpaserver-starter", + "commit": "0b00729c756cbb17affe4f2fc12346128a296bc8" }, - "commits_by_month": { - "2024/12": 6, - "2024/11": 3, - "2024/10": 5, - "2024/9": 5, - "2024/8": 11 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-24T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ], - [ - "2024-10-04T00:00:00.000Z", - 1 - ], - [ - "2024-10-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-01T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ], - [ - "2024-12-09T00:00:00.000Z", - 1 - ] + "score": 4.0, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "2 out of 2 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 2/23 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 12 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 9, + "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "18 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 267143, - "CodeBytes": 0, - "Lines": 6374, - "Code": 4986, - "Comment": 299, - "Blank": 1089, - "Complexity": 245, - "Count": 78, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 71414, - "CodeBytes": 0, - "Lines": 1997, - "Code": 1177, - "Comment": 701, - "Blank": 119, - "Complexity": 0, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 47035318, - "CodeBytes": 0, - "Lines": 188142, - "Code": 188141, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 7484, - "CodeBytes": 0, - "Lines": 232, - "Code": 208, - "Comment": 1, - "Blank": 23, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 166630, - "CodeBytes": 0, - "Lines": 4942, - "Code": 4031, - "Comment": 0, - "Blank": 911, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 37943, - "CodeBytes": 0, - "Lines": 787, - "Code": 593, - "Comment": 0, - "Blank": 194, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 34178, - "CodeBytes": 0, - "Lines": 799, - "Code": 564, - "Comment": 179, - "Blank": 56, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 132, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 201, - "CodeBytes": 0, - "Lines": 12, - "Code": 12, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 2859, - "CodeBytes": 0, - "Lines": 60, - "Code": 36, - "Comment": 9, - "Blank": 15, - "Complexity": 9, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 336451, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1791, - "CodeBytes": 0, - "Lines": 22, - "Code": 22, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 7395, - "CodeBytes": 0, - "Lines": 209, - "Code": 96, - "Comment": 105, - "Blank": 8, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 68, - "CodeBytes": 0, - "Lines": 4, - "Code": 1, - "Comment": 1, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 5060, - "CodeBytes": 0, - "Lines": 152, - "Code": 139, - "Comment": 0, - "Blank": 13, - "Complexity": 24, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6427600.81022787, - "estimatedScheduleMonths_low": 28.88586668310071, - "estimatedPeople_low": 21.67769004667746, - "estimatedCost_high": 20031211.409756202, - "estimatedScheduleMonths_high": 28.88586668310071, - "estimatedPeople_high": 21.67769004667746, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 78 6374 1089 299 4986 245\n(ULOC) 3305\n-------------------------------------------------------------------------------\nYAML 27 1997 119 701 1177 0\n(ULOC) 1142\n-------------------------------------------------------------------------------\nJSON 25 188142 1 0 188141 0\n(ULOC) 16709\n-------------------------------------------------------------------------------\nHTML 7 232 23 1 208 0\n(ULOC) 152\n-------------------------------------------------------------------------------\nXML Schema 5 4942 911 0 4031 0\n(ULOC) 1805\n-------------------------------------------------------------------------------\nMarkdown 3 787 194 0 593 0\n(ULOC) 420\n-------------------------------------------------------------------------------\nXML 3 799 56 179 564 0\n(ULOC) 464\n-------------------------------------------------------------------------------\nBatch 2 2 0 0 2 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nDocker ignore 1 12 0 0 12 0\n(ULOC) 12\n-------------------------------------------------------------------------------\nDockerfile 1 60 15 9 36 9\n(ULOC) 46\n-------------------------------------------------------------------------------\nJavaScript 1 1 0 0 1 4\n(ULOC) 1\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nPlain Text 1 22 0 0 22 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nProperties File 1 209 8 105 96 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nShell 1 4 2 1 1 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nSmarty Template 1 152 13 0 139 24\n(ULOC) 78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 158 203936 2463 1295 200178 282\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 24417\nDRYness % 0.12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,048,269\nEstimated Schedule Effort (organic) 28.89 months\nEstimated People Required (organic) 21.68\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 47985424 bytes, 47.985 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:41:15Z", - "repo": { - "name": "github.com/measureauthoringtool/hapi-fhir-jpaserver-starter", - "commit": "0b00729c756cbb17affe4f2fc12346128a296bc8" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.0, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "2 out of 2 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 2/23 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 12 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 9, - "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "18 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/health-data-standards/health-data-standards_data.json b/app/site/_data/measureauthoringtool/health-data-standards/health-data-standards_data.json index 70dc9618c4..476f9940b1 100644 --- a/app/site/_data/measureauthoringtool/health-data-standards/health-data-standards_data.json +++ b/app/site/_data/measureauthoringtool/health-data-standards/health-data-standards_data.json @@ -1,442 +1,442 @@ { - "url": "https://github.com/measureauthoringtool/health-data-standards", - "owner": "measureauthoringtool", - "name": "health-data-standards", - "description": null, - "commits_count": 1690, - "issues_count": 50, - "open_issues_count": 20, - "closed_issues_count": 30, - "pull_requests_count": 596, - "open_pull_requests_count": 11, - "merged_pull_requests_count": 432, - "closed_pull_requests_count": 153, - "forks_count": 93, - "stargazers_count": 94, - "watchers_count": 47, - "created_at": "2011-12-14T13:26:30Z", - "total_project_lines": 740489, - "average_project_lines": 625, - "total_project_comment_lines": 12202, - "average_project_comment_lines": 10, - "total_project_blank_lines": 12287, - "average_blank_lines": 10, - "predominant_langs": { - "Ruby": 853170, - "HTML": 574368, - "XSLT": 364843 + "url": "https://github.com/measureauthoringtool/health-data-standards", + "owner": "measureauthoringtool", + "name": "health-data-standards", + "description": null, + "commits_count": 1690, + "issues_count": 50, + "open_issues_count": 20, + "closed_issues_count": 30, + "pull_requests_count": 596, + "open_pull_requests_count": 11, + "merged_pull_requests_count": 432, + "closed_pull_requests_count": 153, + "forks_count": 93, + "stargazers_count": 94, + "watchers_count": 47, + "created_at": "2011-12-14T13:26:30Z", + "total_project_lines": 740489, + "average_project_lines": 625, + "total_project_comment_lines": 12202, + "average_project_comment_lines": 10, + "total_project_blank_lines": 12287, + "average_blank_lines": 10, + "predominant_langs": { + "Ruby": 853170, + "HTML": 574368, + "XSLT": 364843 + }, + "commits_by_month": { + "2020/6": 2, + "2020/5": 10, + "2017/12": 1, + "2017/10": 3, + "2017/5": 2, + "2017/4": 1, + "2017/2": 2, + "2017/3": 4, + "2017/1": 2, + "2016/12": 2, + "2016/7": 1 + }, + "average_issue_resolution_time": [ + [ + "health-data-standards", + "196 days 24:52:55.433333" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", + "nadia_color": "ff69b4", + "nadia_badge_name": "club", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "XML", + "Bytes": 42466650, + "CodeBytes": 0, + "Lines": 596048, + "Code": 579744, + "Comment": 9724, + "Blank": 6580, + "Complexity": 0, + "Count": 407, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 833351, + "CodeBytes": 0, + "Lines": 20238, + "Code": 15806, + "Comment": 1583, + "Blank": 2849, + "Complexity": 1426, + "Count": 318, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby HTML", + "Bytes": 493980, + "CodeBytes": 0, + "Lines": 10308, + "Code": 9108, + "Comment": 891, + "Blank": 309, + "Complexity": 810, + "Count": 295, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2324001, + "CodeBytes": 0, + "Lines": 51325, + "Code": 51147, + "Comment": 0, + "Blank": 178, + "Complexity": 0, + "Count": 85, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 1918925, + "CodeBytes": 0, + "Lines": 44765, + "Code": 44686, + "Comment": 0, + "Blank": 79, + "Complexity": 0, + "Count": 31, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 171031, + "CodeBytes": 0, + "Lines": 3421, + "Code": 2906, + "Comment": 0, + "Blank": 515, + "Complexity": 0, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 422400, + "CodeBytes": 0, + "Lines": 11217, + "Code": 9746, + "Comment": 0, + "Blank": 1471, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 43061, + "CodeBytes": 0, + "Lines": 890, + "Code": 706, + "Comment": 0, + "Blank": 184, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2557, + "CodeBytes": 0, + "Lines": 123, + "Code": 95, + "Comment": 4, + "Blank": 24, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 86659, + "CodeBytes": 0, + "Lines": 2113, + "Code": 2027, + "Comment": 0, + "Blank": 86, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 544, + "CodeBytes": 0, + "Lines": 23, + "Code": 17, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 302, + "CodeBytes": 0, + "Lines": 18, + "Code": 12, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 24503064.718514245, + "estimatedScheduleMonths_low": 48.031989588339044, + "estimatedPeople_low": 49.69804885974108, + "estimatedCost_high": 76362251.49241908, + "estimatedScheduleMonths_high": 48.031989588339044, + "estimatedPeople_high": 49.69804885974108, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nXML 407 596048 6580 9724 579744 0\n(ULOC) 72620\n-------------------------------------------------------------------------------\nRuby 318 20238 2849 1583 15806 1426\n(ULOC) 11510\n-------------------------------------------------------------------------------\nRuby HTML 295 10308 309 891 9108 810\n(ULOC) 3117\n-------------------------------------------------------------------------------\nJSON 85 51325 178 0 51147 0\n(ULOC) 6275\n-------------------------------------------------------------------------------\nXML Schema 31 44765 79 0 44686 0\n(ULOC) 7953\n-------------------------------------------------------------------------------\nMarkdown 16 3421 515 0 2906 0\n(ULOC) 1519\n-------------------------------------------------------------------------------\nExtensible Styleshe… 15 11217 1471 0 9746 0\n(ULOC) 4597\n-------------------------------------------------------------------------------\nPlain Text 8 890 184 0 706 0\n(ULOC) 681\n-------------------------------------------------------------------------------\nYAML 5 123 24 4 95 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nHTML 3 2113 86 0 2027 0\n(ULOC) 843\n-------------------------------------------------------------------------------\nGemfile 1 23 6 0 17 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nRakefile 1 18 6 0 12 0\n(ULOC) 12\n───────────────────────────────────────────────────────────────────────────────\nTotal 1185 740489 12287 12202 716000 2236\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 108428\nDRYness % 0.15\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $26,869,154\nEstimated Schedule Effort (organic) 48.03 months\nEstimated People Required (organic) 49.70\n───────────────────────────────────────────────────────────────────────────────\nProcessed 48763461 bytes, 48.763 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:32:27Z", + "repo": { + "name": "github.com/measureauthoringtool/health-data-standards", + "commit": "3bdd4093da47645f91aa7e3b80494de78cc9223a" }, - "commits_by_month": { - "2020/6": 2, - "2020/5": 10, - "2017/12": 1, - "2017/10": 3, - "2017/5": 2, - "2017/4": 1, - "2017/2": 2, - "2017/3": 4, - "2017/1": 2, - "2016/12": 2, - "2016/7": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "health-data-standards", - "196 days 24:52:55.433333" - ] + "score": 3.8, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 18 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 21 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "46 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=club&color=ff69b4", - "nadia_color": "ff69b4", - "nadia_badge_name": "club", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "XML", - "Bytes": 42466650, - "CodeBytes": 0, - "Lines": 596048, - "Code": 579744, - "Comment": 9724, - "Blank": 6580, - "Complexity": 0, - "Count": 407, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 833351, - "CodeBytes": 0, - "Lines": 20238, - "Code": 15806, - "Comment": 1583, - "Blank": 2849, - "Complexity": 1426, - "Count": 318, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby HTML", - "Bytes": 493980, - "CodeBytes": 0, - "Lines": 10308, - "Code": 9108, - "Comment": 891, - "Blank": 309, - "Complexity": 810, - "Count": 295, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2324001, - "CodeBytes": 0, - "Lines": 51325, - "Code": 51147, - "Comment": 0, - "Blank": 178, - "Complexity": 0, - "Count": 85, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 1918925, - "CodeBytes": 0, - "Lines": 44765, - "Code": 44686, - "Comment": 0, - "Blank": 79, - "Complexity": 0, - "Count": 31, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 171031, - "CodeBytes": 0, - "Lines": 3421, - "Code": 2906, - "Comment": 0, - "Blank": 515, - "Complexity": 0, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 422400, - "CodeBytes": 0, - "Lines": 11217, - "Code": 9746, - "Comment": 0, - "Blank": 1471, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 43061, - "CodeBytes": 0, - "Lines": 890, - "Code": 706, - "Comment": 0, - "Blank": 184, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2557, - "CodeBytes": 0, - "Lines": 123, - "Code": 95, - "Comment": 4, - "Blank": 24, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 86659, - "CodeBytes": 0, - "Lines": 2113, - "Code": 2027, - "Comment": 0, - "Blank": 86, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 544, - "CodeBytes": 0, - "Lines": 23, - "Code": 17, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 302, - "CodeBytes": 0, - "Lines": 18, - "Code": 12, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 24503064.718514245, - "estimatedScheduleMonths_low": 48.031989588339044, - "estimatedPeople_low": 49.69804885974108, - "estimatedCost_high": 76362251.49241908, - "estimatedScheduleMonths_high": 48.031989588339044, - "estimatedPeople_high": 49.69804885974108, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nXML 407 596048 6580 9724 579744 0\n(ULOC) 72620\n-------------------------------------------------------------------------------\nRuby 318 20238 2849 1583 15806 1426\n(ULOC) 11510\n-------------------------------------------------------------------------------\nRuby HTML 295 10308 309 891 9108 810\n(ULOC) 3117\n-------------------------------------------------------------------------------\nJSON 85 51325 178 0 51147 0\n(ULOC) 6275\n-------------------------------------------------------------------------------\nXML Schema 31 44765 79 0 44686 0\n(ULOC) 7953\n-------------------------------------------------------------------------------\nMarkdown 16 3421 515 0 2906 0\n(ULOC) 1519\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 15 11217 1471 0 9746 0\n(ULOC) 4597\n-------------------------------------------------------------------------------\nPlain Text 8 890 184 0 706 0\n(ULOC) 681\n-------------------------------------------------------------------------------\nYAML 5 123 24 4 95 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nHTML 3 2113 86 0 2027 0\n(ULOC) 843\n-------------------------------------------------------------------------------\nGemfile 1 23 6 0 17 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nRakefile 1 18 6 0 12 0\n(ULOC) 12\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1185 740489 12287 12202 716000 2236\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 108428\nDRYness % 0.15\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $26,869,154\nEstimated Schedule Effort (organic) 48.03 months\nEstimated People Required (organic) 49.70\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 48763461 bytes, 48.763 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:32:27Z", - "repo": { - "name": "github.com/measureauthoringtool/health-data-standards", - "commit": "3bdd4093da47645f91aa7e3b80494de78cc9223a" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.8, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 18 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 21 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "46 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-auth/madie-auth_data.json b/app/site/_data/measureauthoringtool/madie-auth/madie-auth_data.json index 8a44d0c63c..a8a303ba2b 100644 --- a/app/site/_data/measureauthoringtool/madie-auth/madie-auth_data.json +++ b/app/site/_data/measureauthoringtool/madie-auth/madie-auth_data.json @@ -1,706 +1,706 @@ { - "url": "https://github.com/measureauthoringtool/madie-auth", - "owner": "measureauthoringtool", - "name": "madie-auth", - "description": "The single-spa Application responsible for the MADiE application's authorization/authentication logic.", - "commits_count": 101, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 214, - "open_pull_requests_count": 49, - "merged_pull_requests_count": 45, - "closed_pull_requests_count": 120, - "forks_count": 1, - "stargazers_count": 1, - "watchers_count": 5, - "created_at": "2021-08-31T22:37:00Z", - "total_project_lines": 954, - "average_project_lines": 38, - "total_project_comment_lines": 34, - "average_project_comment_lines": 1, - "total_project_blank_lines": 80, - "average_blank_lines": 3, - "predominant_langs": { - "TypeScript": 8273, - "JavaScript": 2930, - "SCSS": 344, - "Shell": 116 - }, - "commits_by_month": { - "2024/8": 4, - "2024/2": 4, - "2023/11": 1, - "2023/10": 2, - "2022/12": 2, - "2022/11": 1, - "2022/10": 8, - "2022/6": 8 + "url": "https://github.com/measureauthoringtool/madie-auth", + "owner": "measureauthoringtool", + "name": "madie-auth", + "description": "The single-spa Application responsible for the MADiE application's authorization/authentication logic.", + "commits_count": 101, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 214, + "open_pull_requests_count": 49, + "merged_pull_requests_count": 45, + "closed_pull_requests_count": 120, + "forks_count": 1, + "stargazers_count": 1, + "watchers_count": 5, + "created_at": "2021-08-31T22:37:00Z", + "total_project_lines": 954, + "average_project_lines": 38, + "total_project_comment_lines": 34, + "average_project_comment_lines": 1, + "total_project_blank_lines": 80, + "average_blank_lines": 3, + "predominant_langs": { + "TypeScript": 8273, + "JavaScript": 2930, + "SCSS": 344, + "Shell": 116 + }, + "commits_by_month": { + "2024/8": 4, + "2024/2": 4, + "2023/11": 1, + "2023/10": 2, + "2022/12": 2, + "2022/11": 1, + "2022/10": 8, + "2022/6": 8 + }, + "average_issue_resolution_time": [ + [ + "madie-auth", + "4 days 17:41:37" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@emotion/react", + 2.4931506849, + "2024-12-17T15:54:30.000" + ], + [ + "@emotion/styled", + 2.4931506849, + "2024-12-17T15:54:30.000" + ], + [ + "@madie/madie-root", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@mui/material", + 2.3780821918, + "2024-12-17T15:54:30.000" + ], + [ + "@okta/okta-signin-widget", + 2.1095890411, + "2024-12-17T15:54:30.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:54:30.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:54:30.000" + ], + [ + "@testing-library/user-event", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:54:30.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:54:30.000" + ], + [ + "@types/react-dom", + -0.002739726, + "2024-12-17T15:54:30.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:54:30.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "@types/ws", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:54:30.000" + ], + [ + "concurrently", + 1.9561643836, + "2024-12-17T15:54:30.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:54:30.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:54:30.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:54:30.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:54:30.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:54:30.000" + ], + [ + "jest-canvas-mock", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:54:30.000" + ], + [ + "postcss", + 2.6630136986, + "2024-12-17T15:54:30.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:54:30.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:54:30.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:54:30.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:54:30.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:54:30.000" + ], + [ + "react-is", + 0.6109589041, + "2024-12-17T15:54:30.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "sass-loader", + 2.802739726, + "2024-12-17T15:54:30.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:54:30.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:54:30.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:54:30.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "typescript", + -0.0684931507, + "2024-12-17T15:54:30.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:54:30.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:54:30.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:54:30.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:54:30.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:54:30.000" + ], + [ + "webpack-dev-server", + 2.4520547945, + "2024-12-17T15:54:30.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:54:30.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 8273, + "CodeBytes": 0, + "Lines": 239, + "Code": 221, + "Comment": 1, + "Blank": 17, + "Complexity": 10, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4211, + "CodeBytes": 0, + "Lines": 160, + "Code": 160, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2930, + "CodeBytes": 0, + "Lines": 122, + "Code": 117, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5615, + "CodeBytes": 0, + "Lines": 186, + "Code": 149, + "Comment": 8, + "Blank": 29, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1429, + "CodeBytes": 0, + "Lines": 30, + "Code": 22, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 1297, + "CodeBytes": 0, + "Lines": 68, + "Code": 38, + "Comment": 22, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 344, + "CodeBytes": 0, + "Lines": 24, + "Code": 22, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 20514.21883560251, + "estimatedScheduleMonths_low": 3.252428182969255, + "estimatedPeople_low": 0.6144644707785274, + "estimatedCost_high": 63931.26557394105, + "estimatedScheduleMonths_high": 3.252428182969255, + "estimatedPeople_high": 0.6144644707785274, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 6 239 17 1 221 10\n(ULOC) 179\n-------------------------------------------------------------------------------\nJSON 5 160 0 0 160 0\n(ULOC) 137\n-------------------------------------------------------------------------------\nJavaScript 4 122 3 2 117 0\n(ULOC) 92\n-------------------------------------------------------------------------------\nYAML 3 186 29 8 149 0\n(ULOC) 102\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nTypeScript Typings 2 68 8 22 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSass 1 24 2 0 22 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 25 954 80 34 840 11\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 679\nDRYness % 0.71\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $22,495\nEstimated Schedule Effort (organic) 3.25 months\nEstimated People Required (organic) 0.61\n───────────────────────────────────────────────────────────────────────────────\nProcessed 31263 bytes, 0.031 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:38:47Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-auth", + "commit": "39125bc8ac00de4b3aee849f62f998a0dec33835" }, - "average_issue_resolution_time": [ - [ - "madie-auth", - "4 days 17:41:37" - ] - ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@emotion/react", - 2.4931506849, - "2024-12-17T15:54:30.000" - ], - [ - "@emotion/styled", - 2.4931506849, - "2024-12-17T15:54:30.000" - ], - [ - "@madie/madie-root", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@mui/material", - 2.3780821918, - "2024-12-17T15:54:30.000" - ], - [ - "@okta/okta-signin-widget", - 2.1095890411, - "2024-12-17T15:54:30.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:54:30.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:54:30.000" - ], - [ - "@testing-library/user-event", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:54:30.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:54:30.000" - ], - [ - "@types/react-dom", - -0.002739726, - "2024-12-17T15:54:30.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:54:30.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "@types/ws", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:54:30.000" - ], - [ - "concurrently", - 1.9561643836, - "2024-12-17T15:54:30.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:54:30.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:54:30.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:54:30.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:54:30.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:54:30.000" - ], - [ - "jest-canvas-mock", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:54:30.000" - ], - [ - "postcss", - 2.6630136986, - "2024-12-17T15:54:30.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:54:30.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:54:30.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:54:30.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:54:30.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:54:30.000" - ], - [ - "react-is", - 0.6109589041, - "2024-12-17T15:54:30.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "sass-loader", - 2.802739726, - "2024-12-17T15:54:30.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:54:30.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:54:30.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:54:30.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "typescript", - -0.0684931507, - "2024-12-17T15:54:30.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:54:30.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:54:30.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:54:30.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:54:30.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:54:30.000" - ], - [ - "webpack-dev-server", - 2.4520547945, - "2024-12-17T15:54:30.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:54:30.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 8273, - "CodeBytes": 0, - "Lines": 239, - "Code": 221, - "Comment": 1, - "Blank": 17, - "Complexity": 10, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4211, - "CodeBytes": 0, - "Lines": 160, - "Code": 160, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2930, - "CodeBytes": 0, - "Lines": 122, - "Code": 117, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5615, - "CodeBytes": 0, - "Lines": 186, - "Code": 149, - "Comment": 8, - "Blank": 29, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1429, - "CodeBytes": 0, - "Lines": 30, - "Code": 22, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 1297, - "CodeBytes": 0, - "Lines": 68, - "Code": 38, - "Comment": 22, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 344, - "CodeBytes": 0, - "Lines": 24, - "Code": 22, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 20514.21883560251, - "estimatedScheduleMonths_low": 3.252428182969255, - "estimatedPeople_low": 0.6144644707785274, - "estimatedCost_high": 63931.26557394105, - "estimatedScheduleMonths_high": 3.252428182969255, - "estimatedPeople_high": 0.6144644707785274, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 6 239 17 1 221 10\n(ULOC) 179\n-------------------------------------------------------------------------------\nJSON 5 160 0 0 160 0\n(ULOC) 137\n-------------------------------------------------------------------------------\nJavaScript 4 122 3 2 117 0\n(ULOC) 92\n-------------------------------------------------------------------------------\nYAML 3 186 29 8 149 0\n(ULOC) 102\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nTypeScript Typings 2 68 8 22 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSass 1 24 2 0 22 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 25 954 80 34 840 11\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 679\nDRYness % 0.71\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $22,495\nEstimated Schedule Effort (organic) 3.25 months\nEstimated People Required (organic) 0.61\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 31263 bytes, 0.031 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:38:47Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-auth", - "commit": "39125bc8ac00de4b3aee849f62f998a0dec33835" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 4, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "3 out of 7 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "13 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 4, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "3 out of 7 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "13 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-components/madie-components_data.json b/app/site/_data/measureauthoringtool/madie-components/madie-components_data.json index d2e73eeb2a..43c87893ad 100644 --- a/app/site/_data/measureauthoringtool/madie-components/madie-components_data.json +++ b/app/site/_data/measureauthoringtool/madie-components/madie-components_data.json @@ -1,681 +1,681 @@ { - "url": "https://github.com/measureauthoringtool/madie-components", - "owner": "measureauthoringtool", - "name": "madie-components", - "description": "A collection of UI components, built with React and Tailwind CSS, for the MADiE application.", - "commits_count": 79, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 139, - "open_pull_requests_count": 34, - "merged_pull_requests_count": 30, - "closed_pull_requests_count": 75, - "forks_count": 1, - "stargazers_count": 2, - "watchers_count": 5, - "created_at": "2021-09-09T15:35:53Z", - "total_project_lines": 4277, - "average_project_lines": 60, - "total_project_comment_lines": 88, - "average_project_comment_lines": 1, - "total_project_blank_lines": 423, - "average_blank_lines": 6, - "predominant_langs": { - "TypeScript": 102480, - "JavaScript": 4364, - "Shell": 116 - }, - "commits_by_month": { - "2022/4": 1, - "2022/2": 8, - "2021/12": 3, - "2021/11": 18 + "url": "https://github.com/measureauthoringtool/madie-components", + "owner": "measureauthoringtool", + "name": "madie-components", + "description": "A collection of UI components, built with React and Tailwind CSS, for the MADiE application.", + "commits_count": 79, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 139, + "open_pull_requests_count": 34, + "merged_pull_requests_count": 30, + "closed_pull_requests_count": 75, + "forks_count": 1, + "stargazers_count": 2, + "watchers_count": 5, + "created_at": "2021-09-09T15:35:53Z", + "total_project_lines": 4277, + "average_project_lines": 60, + "total_project_comment_lines": 88, + "average_project_comment_lines": 1, + "total_project_blank_lines": 423, + "average_blank_lines": 6, + "predominant_langs": { + "TypeScript": 102480, + "JavaScript": 4364, + "Shell": 116 + }, + "commits_by_month": { + "2022/4": 1, + "2022/2": 8, + "2021/12": 3, + "2021/11": 18 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@headlessui/react", + 0.5260273973, + "2024-12-17T15:48:58.000" + ], + [ + "@heroicons/react", + 2.7178082192, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/addon-actions", + 1.7068493151, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/addon-essentials", + 1.7068493151, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/addon-links", + 1.7068493151, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/builder-webpack5", + 1.7068493151, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/manager-webpack5", + -0.1534246575, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/react", + 1.7068493151, + "2024-12-17T15:48:58.000" + ], + [ + "@storybook/storybook-deployer", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@tailwindcss/forms", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:48:58.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:48:58.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:48:58.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:48:58.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:48:58.000" + ], + [ + "@types/react-dom", + -0.002739726, + "2024-12-17T15:48:58.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:48:58.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:48:58.000" + ], + [ + "babel-loader", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:48:58.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:48:58.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:48:58.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:48:58.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:48:58.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:48:58.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:48:58.000" + ], + [ + "lodash", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "postcss", + 2.6630136986, + "2024-12-17T15:48:58.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:48:58.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:48:58.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:48:58.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "react-test-renderer", + 3.7068493151, + "2024-12-17T15:48:58.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:48:58.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:48:58.000" + ], + [ + "system-font-css", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "tailwindcss", + 3.098630137, + "2024-12-17T15:48:58.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "twin.macro", + 2.1150684932, + "2024-12-17T15:48:58.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:48:58.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:48:58.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:48:58.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:48:58.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:48:58.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:48:58.000" + ], + [ + "webpack-dev-server", + 2.4520547945, + "2024-12-17T15:48:58.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:48:58.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 102480, + "CodeBytes": 0, + "Lines": 3508, + "Code": 3095, + "Comment": 55, + "Blank": 358, + "Complexity": 125, + "Count": 55, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 4364, + "CodeBytes": 0, + "Lines": 185, + "Code": 179, + "Comment": 2, + "Blank": 4, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4502, + "CodeBytes": 0, + "Lines": 163, + "Code": 163, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5824, + "CodeBytes": 0, + "Lines": 191, + "Code": 153, + "Comment": 8, + "Blank": 30, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1523, + "CodeBytes": 0, + "Lines": 32, + "Code": 23, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 1369, + "CodeBytes": 0, + "Lines": 73, + "Code": 42, + "Comment": 22, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 99137.06679880571, + "estimatedScheduleMonths_low": 5.918293875968756, + "estimatedPeople_low": 1.6318831070069988, + "estimatedCost_high": 308954.39872838, + "estimatedScheduleMonths_high": 5.918293875968756, + "estimatedPeople_high": 1.6318831070069988, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 55 3508 358 55 3095 125\n(ULOC) 1918\n-------------------------------------------------------------------------------\nJavaScript 4 185 4 2 179 0\n(ULOC) 157\n-------------------------------------------------------------------------------\nJSON 3 163 0 0 163 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nYAML 3 191 30 8 153 0\n(ULOC) 104\n-------------------------------------------------------------------------------\nMarkdown 2 32 9 0 23 0\n(ULOC) 24\n-------------------------------------------------------------------------------\nTypeScript Typings 2 73 9 22 42 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 71 4277 423 88 3766 126\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 2481\nDRYness % 0.58\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $108,710\nEstimated Schedule Effort (organic) 5.92 months\nEstimated People Required (organic) 1.63\n───────────────────────────────────────────────────────────────────────────────\nProcessed 127226 bytes, 0.127 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:39:02Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-components", + "commit": "99b01af74693ea515cb0acb84316517a2355f716" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@headlessui/react", - 0.5260273973, - "2024-12-17T15:48:58.000" - ], - [ - "@heroicons/react", - 2.7178082192, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/addon-actions", - 1.7068493151, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/addon-essentials", - 1.7068493151, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/addon-links", - 1.7068493151, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/builder-webpack5", - 1.7068493151, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/manager-webpack5", - -0.1534246575, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/react", - 1.7068493151, - "2024-12-17T15:48:58.000" - ], - [ - "@storybook/storybook-deployer", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@tailwindcss/forms", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:48:58.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:48:58.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:48:58.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:48:58.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:48:58.000" - ], - [ - "@types/react-dom", - -0.002739726, - "2024-12-17T15:48:58.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:48:58.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:48:58.000" - ], - [ - "babel-loader", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:48:58.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:48:58.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:48:58.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:48:58.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:48:58.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:48:58.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:48:58.000" - ], - [ - "lodash", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "postcss", - 2.6630136986, - "2024-12-17T15:48:58.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:48:58.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:48:58.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:48:58.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "react-test-renderer", - 3.7068493151, - "2024-12-17T15:48:58.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:48:58.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:48:58.000" - ], - [ - "system-font-css", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "tailwindcss", - 3.098630137, - "2024-12-17T15:48:58.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "twin.macro", - 2.1150684932, - "2024-12-17T15:48:58.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:48:58.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:48:58.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:48:58.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:48:58.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:48:58.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:48:58.000" - ], - [ - "webpack-dev-server", - 2.4520547945, - "2024-12-17T15:48:58.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:48:58.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 102480, - "CodeBytes": 0, - "Lines": 3508, - "Code": 3095, - "Comment": 55, - "Blank": 358, - "Complexity": 125, - "Count": 55, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 4364, - "CodeBytes": 0, - "Lines": 185, - "Code": 179, - "Comment": 2, - "Blank": 4, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4502, - "CodeBytes": 0, - "Lines": 163, - "Code": 163, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5824, - "CodeBytes": 0, - "Lines": 191, - "Code": 153, - "Comment": 8, - "Blank": 30, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1523, - "CodeBytes": 0, - "Lines": 32, - "Code": 23, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 1369, - "CodeBytes": 0, - "Lines": 73, - "Code": 42, - "Comment": 22, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 99137.06679880571, - "estimatedScheduleMonths_low": 5.918293875968756, - "estimatedPeople_low": 1.6318831070069988, - "estimatedCost_high": 308954.39872838, - "estimatedScheduleMonths_high": 5.918293875968756, - "estimatedPeople_high": 1.6318831070069988, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 55 3508 358 55 3095 125\n(ULOC) 1918\n-------------------------------------------------------------------------------\nJavaScript 4 185 4 2 179 0\n(ULOC) 157\n-------------------------------------------------------------------------------\nJSON 3 163 0 0 163 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nYAML 3 191 30 8 153 0\n(ULOC) 104\n-------------------------------------------------------------------------------\nMarkdown 2 32 9 0 23 0\n(ULOC) 24\n-------------------------------------------------------------------------------\nTypeScript Typings 2 73 9 22 42 0\n(ULOC) 37\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 71 4277 423 88 3766 126\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 2481\nDRYness % 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $108,710\nEstimated Schedule Effort (organic) 5.92 months\nEstimated People Required (organic) 1.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 127226 bytes, 0.127 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:39:02Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-components", - "commit": "99b01af74693ea515cb0acb84316517a2355f716" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 19 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 9, - "reason": "Found 12/13 approved changesets -- score normalized to 9", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "56 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 19 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 9, + "reason": "Found 12/13 approved changesets -- score normalized to 9", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "56 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-cql-library/madie-cql-library_data.json b/app/site/_data/measureauthoringtool/madie-cql-library/madie-cql-library_data.json index bfd61e7086..6d2d32fc14 100644 --- a/app/site/_data/measureauthoringtool/madie-cql-library/madie-cql-library_data.json +++ b/app/site/_data/measureauthoringtool/madie-cql-library/madie-cql-library_data.json @@ -1,775 +1,775 @@ { - "url": "https://github.com/measureauthoringtool/madie-cql-library", - "owner": "measureauthoringtool", - "name": "madie-cql-library", - "description": "This is a single-spa Application for the MADIE application's Stand alone CQL library logic.", - "commits_count": 445, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 172, - "open_pull_requests_count": 16, - "merged_pull_requests_count": 131, - "closed_pull_requests_count": 25, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-03-04T14:34:49Z", - "total_project_lines": 8128, - "average_project_lines": 129, - "total_project_comment_lines": 89, - "average_project_comment_lines": 1, - "total_project_blank_lines": 601, - "average_blank_lines": 10, - "predominant_langs": { - "TypeScript": 209045, - "JavaScript": 5790, - "SCSS": 3752, - "Shell": 116 - }, - "commits_by_month": { - "2024/12": 7, - "2024/11": 13, - "2024/10": 9, - "2024/9": 1 + "url": "https://github.com/measureauthoringtool/madie-cql-library", + "owner": "measureauthoringtool", + "name": "madie-cql-library", + "description": "This is a single-spa Application for the MADIE application's Stand alone CQL library logic.", + "commits_count": 445, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 172, + "open_pull_requests_count": 16, + "merged_pull_requests_count": 131, + "closed_pull_requests_count": 25, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-03-04T14:34:49Z", + "total_project_lines": 8128, + "average_project_lines": 129, + "total_project_comment_lines": 89, + "average_project_comment_lines": 1, + "total_project_blank_lines": 601, + "average_blank_lines": 10, + "predominant_langs": { + "TypeScript": 209045, + "JavaScript": 5790, + "SCSS": 3752, + "Shell": 116 + }, + "commits_by_month": { + "2024/12": 7, + "2024/11": 13, + "2024/10": 9, + "2024/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 2 + ], + [ + "2024-08-19T00:00:00.000Z", + 2 + ], + [ + "2024-10-22T00:00:00.000Z", + 1 + ], + [ + "2024-10-31T00:00:00.000Z", + 1 + ], + [ + "2024-11-01T00:00:00.000Z", + 2 + ], + [ + "2024-11-06T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-12T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@madie/madie-design-system", + 0.7780821918, + "2024-12-17T15:55:29.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@material-ui/core", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@mui/icons-material", + 2.5123287671, + "2024-12-17T15:55:29.000" + ], + [ + "@mui/material", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:55:29.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:55:29.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:55:29.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:55:29.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:55:29.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:55:29.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:55:29.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "allotment", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:55:29.000" + ], + [ + "babel-plugin-dynamic-import-node", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "classnames", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:55:29.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:55:29.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:55:29.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:55:29.000" + ], + [ + "formik", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:55:29.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:55:29.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:55:29.000" + ], + [ + "postcss", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:55:29.000" + ], + [ + "postcss-preset-env", + 0.4328767123, + "2024-12-17T15:55:29.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:55:29.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "query-string", + 1.8520547945, + "2024-12-17T15:55:29.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:55:29.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:55:29.000" + ], + [ + "react-is", + 0.6109589041, + "2024-12-17T15:55:29.000" + ], + [ + "react-router", + 2.1698630137, + "2024-12-17T15:55:29.000" + ], + [ + "react-router-dom", + 2.1698630137, + "2024-12-17T15:55:29.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "sass-loader", + 2.802739726, + "2024-12-17T15:55:29.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:55:29.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:55:29.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:55:29.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:55:29.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:55:29.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:55:29.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:55:29.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:55:29.000" + ], + [ + "webpack-dev-server", + 0.0, + "2024-12-17T15:55:29.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:55:29.000" + ], + [ + "yup", + 3.1808219178, + "2024-12-17T15:55:29.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 209045, + "CodeBytes": 0, + "Lines": 6803, + "Code": 6277, + "Comment": 53, + "Blank": 473, + "Complexity": 213, + "Count": 38, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 4833, + "CodeBytes": 0, + "Lines": 173, + "Code": 173, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5790, + "CodeBytes": 0, + "Lines": 250, + "Code": 239, + "Comment": 4, + "Blank": 7, + "Complexity": 2, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 9081, + "CodeBytes": 0, + "Lines": 360, + "Code": 292, + "Comment": 23, + "Blank": 45, + "Complexity": 2, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5620, + "CodeBytes": 0, + "Lines": 187, + "Code": 148, + "Comment": 8, + "Blank": 31, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1425, + "CodeBytes": 0, + "Lines": 30, + "Code": 22, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 3752, + "CodeBytes": 0, + "Lines": 197, + "Code": 173, + "Comment": 0, + "Blank": 24, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 80, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 202577.27105751698, + "estimatedScheduleMonths_low": 7.764818236473174, + "estimatedPeople_low": 2.541610116565296, + "estimatedCost_high": 631319.2531974851, + "estimatedScheduleMonths_high": 7.764818236473174, + "estimatedPeople_high": 2.541610116565296, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 38 6803 473 53 6277 213\n(ULOC) 3010\n-------------------------------------------------------------------------------\nJSON 5 173 0 0 173 0\n(ULOC) 150\n-------------------------------------------------------------------------------\nJavaScript 5 250 7 4 239 2\n(ULOC) 204\n-------------------------------------------------------------------------------\nTypeScript Typings 5 360 45 23 292 2\n(ULOC) 238\n-------------------------------------------------------------------------------\nYAML 3 187 31 8 148 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nSass 2 197 24 0 173 0\n(ULOC) 127\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 63 8128 601 89 7438 218\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3931\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $222,138\nEstimated Schedule Effort (organic) 7.76 months\nEstimated People Required (organic) 2.54\n───────────────────────────────────────────────────────────────────────────────\nProcessed 246790 bytes, 0.247 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:42:04Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-cql-library", + "commit": "a2b3d0e1506148fd9f15455a6de76da1be506d4e" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 2 - ], - [ - "2024-08-19T00:00:00.000Z", - 2 - ], - [ - "2024-10-22T00:00:00.000Z", - 1 - ], - [ - "2024-10-31T00:00:00.000Z", - 1 - ], - [ - "2024-11-01T00:00:00.000Z", - 2 - ], - [ - "2024-11-06T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-12T00:00:00.000Z", - 2 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@madie/madie-design-system", - 0.7780821918, - "2024-12-17T15:55:29.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@material-ui/core", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@mui/icons-material", - 2.5123287671, - "2024-12-17T15:55:29.000" - ], - [ - "@mui/material", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:55:29.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:55:29.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:55:29.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:55:29.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:55:29.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:55:29.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:55:29.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "allotment", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:55:29.000" - ], - [ - "babel-plugin-dynamic-import-node", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "classnames", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:55:29.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:55:29.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:55:29.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:55:29.000" - ], - [ - "formik", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:55:29.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:55:29.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:55:29.000" - ], - [ - "postcss", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:55:29.000" - ], - [ - "postcss-preset-env", - 0.4328767123, - "2024-12-17T15:55:29.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:55:29.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "query-string", - 1.8520547945, - "2024-12-17T15:55:29.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:55:29.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:55:29.000" - ], - [ - "react-is", - 0.6109589041, - "2024-12-17T15:55:29.000" - ], - [ - "react-router", - 2.1698630137, - "2024-12-17T15:55:29.000" - ], - [ - "react-router-dom", - 2.1698630137, - "2024-12-17T15:55:29.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "sass-loader", - 2.802739726, - "2024-12-17T15:55:29.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:55:29.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:55:29.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:55:29.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:55:29.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:55:29.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:55:29.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:55:29.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:55:29.000" - ], - [ - "webpack-dev-server", - 0.0, - "2024-12-17T15:55:29.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:55:29.000" - ], - [ - "yup", - 3.1808219178, - "2024-12-17T15:55:29.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 209045, - "CodeBytes": 0, - "Lines": 6803, - "Code": 6277, - "Comment": 53, - "Blank": 473, - "Complexity": 213, - "Count": 38, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 4833, - "CodeBytes": 0, - "Lines": 173, - "Code": 173, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5790, - "CodeBytes": 0, - "Lines": 250, - "Code": 239, - "Comment": 4, - "Blank": 7, - "Complexity": 2, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 9081, - "CodeBytes": 0, - "Lines": 360, - "Code": 292, - "Comment": 23, - "Blank": 45, - "Complexity": 2, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5620, - "CodeBytes": 0, - "Lines": 187, - "Code": 148, - "Comment": 8, - "Blank": 31, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1425, - "CodeBytes": 0, - "Lines": 30, - "Code": 22, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 3752, - "CodeBytes": 0, - "Lines": 197, - "Code": 173, - "Comment": 0, - "Blank": 24, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 80, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 202577.27105751698, - "estimatedScheduleMonths_low": 7.764818236473174, - "estimatedPeople_low": 2.541610116565296, - "estimatedCost_high": 631319.2531974851, - "estimatedScheduleMonths_high": 7.764818236473174, - "estimatedPeople_high": 2.541610116565296, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 38 6803 473 53 6277 213\n(ULOC) 3010\n-------------------------------------------------------------------------------\nJSON 5 173 0 0 173 0\n(ULOC) 150\n-------------------------------------------------------------------------------\nJavaScript 5 250 7 4 239 2\n(ULOC) 204\n-------------------------------------------------------------------------------\nTypeScript Typings 5 360 45 23 292 2\n(ULOC) 238\n-------------------------------------------------------------------------------\nYAML 3 187 31 8 148 0\n(ULOC) 107\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nSass 2 197 24 0 173 0\n(ULOC) 127\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 63 8128 601 89 7438 218\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3931\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $222,138\nEstimated Schedule Effort (organic) 7.76 months\nEstimated People Required (organic) 2.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 246790 bytes, 0.247 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:42:04Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-cql-library", - "commit": "a2b3d0e1506148fd9f15455a6de76da1be506d4e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "29 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 5.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "29 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-cypress/madie-cypress_data.json b/app/site/_data/measureauthoringtool/madie-cypress/madie-cypress_data.json index f538589bf5..5114dcf503 100644 --- a/app/site/_data/measureauthoringtool/madie-cypress/madie-cypress_data.json +++ b/app/site/_data/measureauthoringtool/madie-cypress/madie-cypress_data.json @@ -1,569 +1,569 @@ { - "url": "https://github.com/measureauthoringtool/madie-cypress", - "owner": "measureauthoringtool", - "name": "madie-cypress", - "description": "automated cypress tests for MADiE", - "commits_count": 3564, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1679, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 1610, - "closed_pull_requests_count": 68, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 5, - "created_at": "2021-10-01T14:29:51Z", - "total_project_lines": 85922, - "average_project_lines": 258, - "total_project_comment_lines": 5914, - "average_project_comment_lines": 18, - "total_project_blank_lines": 13177, - "average_blank_lines": 40, - "predominant_langs": { - "TypeScript": 4360451, - "HTML": 666567, - "JavaScript": 2168, - "Dockerfile": 1116 - }, - "commits_by_month": { - "2025/1": 30 + "url": "https://github.com/measureauthoringtool/madie-cypress", + "owner": "measureauthoringtool", + "name": "madie-cypress", + "description": "automated cypress tests for MADiE", + "commits_count": 3564, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1679, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 1610, + "closed_pull_requests_count": 68, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 5, + "created_at": "2021-10-01T14:29:51Z", + "total_project_lines": 85922, + "average_project_lines": 258, + "total_project_comment_lines": 5914, + "average_project_comment_lines": 18, + "total_project_blank_lines": 13177, + "average_blank_lines": 40, + "predominant_langs": { + "TypeScript": 4360451, + "HTML": 666567, + "JavaScript": 2168, + "Dockerfile": 1116 + }, + "commits_by_month": { + "2025/1": 30 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-11T00:00:00.000Z", + 1 + ], + [ + "2024-08-12T00:00:00.000Z", + 3 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-10-09T00:00:00.000Z", + 1 + ], + [ + "2024-10-15T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@cypress-audit/lighthouse", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "@cypress/browserify-preprocessor", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "@types/node", + 2.4, + "2024-10-31T17:28:05.000" + ], + [ + "@types/node", + 2.5123287671, + "2024-12-17T15:50:34.000" + ], + [ + "adm-zip", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "axe-core", + 0.2547945205, + "2024-12-17T15:50:34.000" + ], + [ + "convert", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "cypress", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "cypress-audit", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "cypress-axe", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "cypress-commands", + 2.2191780822, + "2024-12-17T15:50:34.000" + ], + [ + "cypress-delete-downloads-folder", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "cypress-file-upload", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "cypress-visual-regression", + 2.4219178082, + "2024-10-31T17:28:05.000" + ], + [ + "decompress", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "excel-to-json", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "fs-extra", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "lighthouse", + -0.1506849315, + "2024-10-31T17:28:05.000" + ], + [ + "mocha", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "mochawesome", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "mochawesome-merge", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "mongodb", + 1.3369863014, + "2024-10-31T17:28:05.000" + ], + [ + "node", + 0.0739726027, + "2024-12-17T15:50:34.000" + ], + [ + "node", + 0.3068493151, + "2024-10-31T17:28:05.000" + ], + [ + "node-stream-zip", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "node-xlsx", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "npm", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "npm", + 0.0301369863, + "2024-12-17T15:50:34.000" + ], + [ + "tsify", + 0.0, + "2024-10-31T17:28:05.000" + ], + [ + "typescript", + 1.6904109589, + "2024-10-31T17:28:05.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:50:34.000" + ], + [ + "unzipper", + 0.0, + "2024-12-17T15:50:34.000" + ], + [ + "uuid", + 4.5780821918, + "2024-10-31T17:28:05.000" + ], + [ + "uuid", + 4.6164383562, + "2024-12-17T15:50:34.000" + ], + [ + "xlsx", + 0.0, + "2024-12-17T15:50:34.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 4360451, + "CodeBytes": 0, + "Lines": 79051, + "Code": 59828, + "Comment": 6128, + "Blank": 13095, + "Complexity": 2447, + "Count": 225, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 58193, + "CodeBytes": 0, + "Lines": 1357, + "Code": 1093, + "Comment": 0, + "Blank": 264, + "Complexity": 0, + "Count": 49, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 79536, + "CodeBytes": 0, + "Lines": 1626, + "Code": 1578, + "Comment": 7, + "Blank": 41, + "Complexity": 0, + "Count": 41, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 865437, + "CodeBytes": 0, + "Lines": 7217, + "Code": 7210, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 666567, + "CodeBytes": 0, + "Lines": 1409, + "Code": 1103, + "Comment": 17, + "Blank": 289, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3239, + "CodeBytes": 0, + "Lines": 67, + "Code": 64, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 1116, + "CodeBytes": 0, + "Lines": 33, + "Code": 21, + "Comment": 5, + "Blank": 7, + "Complexity": 8, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2168, + "CodeBytes": 0, + "Lines": 71, + "Code": 51, + "Comment": 12, + "Blank": 8, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2162962.046301809, + "estimatedScheduleMonths_low": 19.096131792550988, + "estimatedPeople_low": 11.034508756063499, + "estimatedCost_high": 6740734.420190979, + "estimatedScheduleMonths_high": 19.096131792550988, + "estimatedPeople_high": 11.034508756063499, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 225 79051 13095 6128 59828 2447\n(ULOC) 17226\n-------------------------------------------------------------------------------\nPlain Text 49 1357 264 0 1093 0\n(ULOC) 474\n-------------------------------------------------------------------------------\nXML 41 1626 41 7 1578 0\n(ULOC) 932\n-------------------------------------------------------------------------------\nJSON 28 7217 7 0 7210 0\n(ULOC) 901\n-------------------------------------------------------------------------------\nHTML 11 1409 289 17 1103 0\n(ULOC) 413\n-------------------------------------------------------------------------------\nYAML 2 67 3 0 64 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nDockerfile 1 33 7 5 21 8\n(ULOC) 26\n-------------------------------------------------------------------------------\nJavaScript 1 71 8 12 51 0\n(ULOC) 53\n───────────────────────────────────────────────────────────────────────────────\nTotal 358 90831 13714 6169 70948 2455\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 19995\nDRYness % 0.22\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,371,824\nEstimated Schedule Effort (organic) 19.10 months\nEstimated People Required (organic) 11.03\n───────────────────────────────────────────────────────────────────────────────\nProcessed 6036707 bytes, 6.037 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:39:59Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-cypress", + "commit": "111d34c1450b000f89cb66c278585d4894e31df2" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-11T00:00:00.000Z", - 1 - ], - [ - "2024-08-12T00:00:00.000Z", - 3 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-10-09T00:00:00.000Z", - 1 - ], - [ - "2024-10-15T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@cypress-audit/lighthouse", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "@cypress/browserify-preprocessor", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "@types/node", - 2.4, - "2024-10-31T17:28:05.000" - ], - [ - "@types/node", - 2.5123287671, - "2024-12-17T15:50:34.000" - ], - [ - "adm-zip", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "axe-core", - 0.2547945205, - "2024-12-17T15:50:34.000" - ], - [ - "convert", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "cypress", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "cypress-audit", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "cypress-axe", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "cypress-commands", - 2.2191780822, - "2024-12-17T15:50:34.000" - ], - [ - "cypress-delete-downloads-folder", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "cypress-file-upload", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "cypress-visual-regression", - 2.4219178082, - "2024-10-31T17:28:05.000" - ], - [ - "decompress", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "excel-to-json", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "fs-extra", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "lighthouse", - -0.1506849315, - "2024-10-31T17:28:05.000" - ], - [ - "mocha", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "mochawesome", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "mochawesome-merge", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "mongodb", - 1.3369863014, - "2024-10-31T17:28:05.000" - ], - [ - "node", - 0.0739726027, - "2024-12-17T15:50:34.000" - ], - [ - "node", - 0.3068493151, - "2024-10-31T17:28:05.000" - ], - [ - "node-stream-zip", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "node-xlsx", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "npm", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "npm", - 0.0301369863, - "2024-12-17T15:50:34.000" - ], - [ - "tsify", - 0.0, - "2024-10-31T17:28:05.000" - ], - [ - "typescript", - 1.6904109589, - "2024-10-31T17:28:05.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:50:34.000" - ], - [ - "unzipper", - 0.0, - "2024-12-17T15:50:34.000" - ], - [ - "uuid", - 4.5780821918, - "2024-10-31T17:28:05.000" - ], - [ - "uuid", - 4.6164383562, - "2024-12-17T15:50:34.000" - ], - [ - "xlsx", - 0.0, - "2024-12-17T15:50:34.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 4190346, - "CodeBytes": 0, - "Lines": 76870, - "Code": 57696, - "Comment": 6108, - "Blank": 13066, - "Complexity": 2386, - "Count": 224, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 57452, - "CodeBytes": 0, - "Lines": 1333, - "Code": 1076, - "Comment": 0, - "Blank": 257, - "Complexity": 0, - "Count": 47, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 79536, - "CodeBytes": 0, - "Lines": 1626, - "Code": 1578, - "Comment": 7, - "Blank": 41, - "Complexity": 0, - "Count": 41, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 865437, - "CodeBytes": 0, - "Lines": 7217, - "Code": 7210, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 666567, - "CodeBytes": 0, - "Lines": 1409, - "Code": 1103, - "Comment": 17, - "Blank": 289, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3239, - "CodeBytes": 0, - "Lines": 67, - "Code": 64, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 1116, - "CodeBytes": 0, - "Lines": 33, - "Code": 21, - "Comment": 5, - "Blank": 7, - "Complexity": 8, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2168, - "CodeBytes": 0, - "Lines": 71, - "Code": 51, - "Comment": 12, - "Blank": 8, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2094223.1966324674, - "estimatedScheduleMonths_low": 18.86320778605082, - "estimatedPeople_low": 10.815757093344585, - "estimatedCost_high": 6526514.142603263, - "estimatedScheduleMonths_high": 18.86320778605082, - "estimatedPeople_high": 10.815757093344585, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 224 76870 13066 6108 57696 2386\n(ULOC) 16863\n-------------------------------------------------------------------------------\nPlain Text 47 1333 257 0 1076 0\n(ULOC) 465\n-------------------------------------------------------------------------------\nXML 41 1626 41 7 1578 0\n(ULOC) 932\n-------------------------------------------------------------------------------\nJSON 28 7217 7 0 7210 0\n(ULOC) 901\n-------------------------------------------------------------------------------\nHTML 11 1409 289 17 1103 0\n(ULOC) 413\n-------------------------------------------------------------------------------\nYAML 2 67 3 0 64 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nDockerfile 1 33 7 5 21 8\n(ULOC) 26\n-------------------------------------------------------------------------------\nJavaScript 1 71 8 12 51 0\n(ULOC) 53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 355 88626 13678 6149 68799 2394\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 19623\nDRYness % 0.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,296,447\nEstimated Schedule Effort (organic) 18.86 months\nEstimated People Required (organic) 10.82\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5865861 bytes, 5.866 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:39:59Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-cypress", - "commit": "111d34c1450b000f89cb66c278585d4894e31df2" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "18 out of 18 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "18 out of 18 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-design-system/madie-design-system_data.json b/app/site/_data/measureauthoringtool/madie-design-system/madie-design-system_data.json index 516b75a50e..606ad4692c 100644 --- a/app/site/_data/measureauthoringtool/madie-design-system/madie-design-system_data.json +++ b/app/site/_data/measureauthoringtool/madie-design-system/madie-design-system_data.json @@ -1,863 +1,863 @@ { - "url": "https://github.com/measureauthoringtool/madie-design-system", - "owner": "measureauthoringtool", - "name": "madie-design-system", - "description": null, - "commits_count": 630, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 291, - "open_pull_requests_count": 11, - "merged_pull_requests_count": 151, - "closed_pull_requests_count": 129, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-02-07T15:33:33Z", - "total_project_lines": 30302, - "average_project_lines": 97, - "total_project_comment_lines": 1372, - "average_project_comment_lines": 4, - "total_project_blank_lines": 2800, - "average_blank_lines": 9, - "predominant_langs": { - "JavaScript": 453353, - "SCSS": 174465, - "HTML": 322 - }, - "commits_by_month": { - "2025/1": 2, - "2024/12": 28 + "url": "https://github.com/measureauthoringtool/madie-design-system", + "owner": "measureauthoringtool", + "name": "madie-design-system", + "description": null, + "commits_count": 630, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 291, + "open_pull_requests_count": 11, + "merged_pull_requests_count": 151, + "closed_pull_requests_count": 129, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-02-07T15:33:33Z", + "total_project_lines": 30302, + "average_project_lines": 97, + "total_project_comment_lines": 1372, + "average_project_comment_lines": 4, + "total_project_blank_lines": 2800, + "average_blank_lines": 9, + "predominant_langs": { + "JavaScript": 453353, + "SCSS": 174465, + "HTML": 322 + }, + "commits_by_month": { + "2025/1": 2, + "2024/12": 28 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 3 + ], + [ + "2024-08-15T00:00:00.000Z", + 4 + ], + [ + "2024-08-19T00:00:00.000Z", + 1 + ], + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-06T00:00:00.000Z", + 1 + ], + [ + "2024-09-16T00:00:00.000Z", + 2 + ], + [ + "2024-10-01T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/cli", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@babel/core", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@babel/register", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@cmsgov/design-system", + 1.9863013699, + "2024-12-17T15:55:32.000" + ], + [ + "@emotion/react", + 2.4931506849, + "2024-12-17T15:55:32.000" + ], + [ + "@emotion/styled", + 2.4931506849, + "2024-12-17T15:55:32.000" + ], + [ + "@mui/icons-material", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@mui/material", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@mui/styles", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@mui/system", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@mui/x-date-pickers", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@reach/portal", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@reach/tooltip", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-a11y", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-actions", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-backgrounds", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-docs", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-knobs", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-links", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-postcss", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-storysource", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-viewport", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addon-webpack5-compiler-babel", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/addons", + -0.3452054795, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/react", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@storybook/react-webpack5", + -0.0328767123, + "2024-12-17T15:55:32.000" + ], + [ + "@testing-library/jest-dom", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:55:32.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:55:32.000" + ], + [ + "@wojtekmaj/enzyme-adapter-react-17", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "babel-eslint", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:55:32.000" + ], + [ + "babel-loader", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "chai", + 0.2438356164, + "2024-12-17T15:55:32.000" + ], + [ + "cookie", + 0.1205479452, + "2024-12-17T15:55:32.000" + ], + [ + "copy-webpack-plugin", + 3.3890410959, + "2024-12-17T15:55:32.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "css-loader", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "d3-selection", + 0.8739726027, + "2024-12-17T15:55:32.000" + ], + [ + "d3-shape", + 3.095890411, + "2024-12-17T15:55:32.000" + ], + [ + "dayjs", + 1.1397260274, + "2024-12-17T15:55:32.000" + ], + [ + "enzyme", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "enzyme-to-json", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:55:32.000" + ], + [ + "eslint-config-prettier", + 3.095890411, + "2024-12-17T15:55:32.000" + ], + [ + "eslint-plugin-babel", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "eslint-plugin-prettier", + 2.9068493151, + "2024-12-17T15:55:32.000" + ], + [ + "eslint-plugin-react", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "feather-icons-react", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "file-loader", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "gh-pages", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "jest", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "jest-environment-jsdom", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "jwt-decode", + 2.9424657534, + "2024-12-17T15:55:32.000" + ], + [ + "mini-css-extract-plugin", + 4.0684931507, + "2024-12-17T15:55:32.000" + ], + [ + "moxios", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "node-fetch", + -0.0821917808, + "2024-12-17T15:55:32.000" + ], + [ + "preact", + 2.4356164384, + "2024-12-17T15:55:32.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:55:32.000" + ], + [ + "prop-types", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "raw-loader", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:55:32.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:55:32.000" + ], + [ + "react-draggable", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "react-modal", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "react-test-renderer", + 3.7068493151, + "2024-12-17T15:55:32.000" + ], + [ + "regenerator-runtime", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "retry", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "rimraf", + 4.4191780822, + "2024-12-17T15:55:32.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "sass-loader", + 0.9150684932, + "2024-12-17T15:55:32.000" + ], + [ + "sinon", + 2.8575342466, + "2024-12-17T15:55:32.000" + ], + [ + "style-loader", + 3.5150684932, + "2024-12-17T15:55:32.000" + ], + [ + "svgo", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "svgo-loader", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:55:32.000" + ], + [ + "what-input", + 0.0, + "2024-12-17T15:55:32.000" + ], + [ + "xss", + 0.0, + "2024-12-17T15:55:32.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "Sass", + "Bytes": 269658, + "CodeBytes": 0, + "Lines": 13708, + "Code": 10616, + "Comment": 1156, + "Blank": 1936, + "Complexity": 40, + "Count": 140, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 260591, + "CodeBytes": 0, + "Lines": 8218, + "Code": 7602, + "Comment": 112, + "Blank": 504, + "Complexity": 101, + "Count": 96, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSX", + "Bytes": 192762, + "CodeBytes": 0, + "Lines": 4827, + "Code": 4516, + "Comment": 89, + "Blank": 222, + "Complexity": 127, + "Count": 42, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 607801, + "CodeBytes": 0, + "Lines": 2899, + "Code": 2896, + "Comment": 3, + "Blank": 0, + "Complexity": 0, + "Count": 20, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 7661, + "CodeBytes": 0, + "Lines": 191, + "Code": 132, + "Comment": 0, + "Blank": 59, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6042, + "CodeBytes": 0, + "Lines": 206, + "Code": 169, + "Comment": 8, + "Blank": 29, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5368, + "CodeBytes": 0, + "Lines": 165, + "Code": 165, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 322, + "CodeBytes": 0, + "Lines": 9, + "Code": 5, + "Comment": 4, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 6555, + "CodeBytes": 0, + "Lines": 116, + "Code": 96, + "Comment": 0, + "Blank": 20, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 4436, + "CodeBytes": 0, + "Lines": 92, + "Code": 75, + "Comment": 0, + "Blank": 17, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 246, + "CodeBytes": 0, + "Lines": 9, + "Code": 9, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 762404.962087065, + "estimatedScheduleMonths_low": 12.848646867816578, + "estimatedPeople_low": 5.780665361744284, + "estimatedCost_high": 2375986.845840189, + "estimatedScheduleMonths_high": 12.848646867816578, + "estimatedPeople_high": 5.780665361744284, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nSass 140 13708 1936 1156 10616 40\n(ULOC) 6002\n-------------------------------------------------------------------------------\nJavaScript 96 8218 504 112 7602 101\n(ULOC) 3543\n-------------------------------------------------------------------------------\nJSX 42 4827 222 89 4516 127\n(ULOC) 2610\n-------------------------------------------------------------------------------\nSVG 20 2899 0 3 2896 0\n(ULOC) 2734\n-------------------------------------------------------------------------------\nMarkdown 6 191 59 0 132 0\n(ULOC) 119\n-------------------------------------------------------------------------------\nYAML 5 206 29 8 169 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nJSON 2 165 0 0 165 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nHTML 1 9 0 4 5 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 92 17 0 75 0\n(ULOC) 76\n-------------------------------------------------------------------------------\nXML 1 9 0 0 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 315 30440 2787 1372 26281 268\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 15236\nDRYness % 0.50\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $836,025\nEstimated Schedule Effort (organic) 12.85 months\nEstimated People Required (organic) 5.78\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1361442 bytes, 1.361 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:41:27Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-design-system", + "commit": "6ab6fe5f2cfb5d47855f970b891bcbf0df11f6bf" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 3 - ], - [ - "2024-08-15T00:00:00.000Z", - 4 - ], - [ - "2024-08-19T00:00:00.000Z", - 1 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-16T00:00:00.000Z", - 2 - ], - [ - "2024-10-01T00:00:00.000Z", - 2 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/cli", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@babel/core", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@babel/register", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@cmsgov/design-system", - 1.9863013699, - "2024-12-17T15:55:32.000" - ], - [ - "@emotion/react", - 2.4931506849, - "2024-12-17T15:55:32.000" - ], - [ - "@emotion/styled", - 2.4931506849, - "2024-12-17T15:55:32.000" - ], - [ - "@mui/icons-material", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@mui/material", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@mui/styles", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@mui/system", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@mui/x-date-pickers", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@reach/portal", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@reach/tooltip", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-a11y", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-actions", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-backgrounds", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-docs", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-knobs", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-links", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-postcss", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-storysource", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-viewport", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addon-webpack5-compiler-babel", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/addons", - -0.3452054795, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/react", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@storybook/react-webpack5", - -0.0328767123, - "2024-12-17T15:55:32.000" - ], - [ - "@testing-library/jest-dom", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:55:32.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:55:32.000" - ], - [ - "@wojtekmaj/enzyme-adapter-react-17", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "babel-eslint", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:55:32.000" - ], - [ - "babel-loader", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "chai", - 0.2438356164, - "2024-12-17T15:55:32.000" - ], - [ - "cookie", - 0.1205479452, - "2024-12-17T15:55:32.000" - ], - [ - "copy-webpack-plugin", - 3.3890410959, - "2024-12-17T15:55:32.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "css-loader", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "d3-selection", - 0.8739726027, - "2024-12-17T15:55:32.000" - ], - [ - "d3-shape", - 3.095890411, - "2024-12-17T15:55:32.000" - ], - [ - "dayjs", - 1.1397260274, - "2024-12-17T15:55:32.000" - ], - [ - "enzyme", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "enzyme-to-json", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:55:32.000" - ], - [ - "eslint-config-prettier", - 3.095890411, - "2024-12-17T15:55:32.000" - ], - [ - "eslint-plugin-babel", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "eslint-plugin-prettier", - 2.9068493151, - "2024-12-17T15:55:32.000" - ], - [ - "eslint-plugin-react", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "feather-icons-react", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "file-loader", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "gh-pages", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "jest", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "jest-environment-jsdom", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "jwt-decode", - 2.9424657534, - "2024-12-17T15:55:32.000" - ], - [ - "mini-css-extract-plugin", - 4.0684931507, - "2024-12-17T15:55:32.000" - ], - [ - "moxios", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "node-fetch", - -0.0821917808, - "2024-12-17T15:55:32.000" - ], - [ - "preact", - 2.4356164384, - "2024-12-17T15:55:32.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:55:32.000" - ], - [ - "prop-types", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "raw-loader", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:55:32.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:55:32.000" - ], - [ - "react-draggable", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "react-modal", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "react-test-renderer", - 3.7068493151, - "2024-12-17T15:55:32.000" - ], - [ - "regenerator-runtime", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "retry", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "rimraf", - 4.4191780822, - "2024-12-17T15:55:32.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "sass-loader", - 0.9150684932, - "2024-12-17T15:55:32.000" - ], - [ - "sinon", - 2.8575342466, - "2024-12-17T15:55:32.000" - ], - [ - "style-loader", - 3.5150684932, - "2024-12-17T15:55:32.000" - ], - [ - "svgo", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "svgo-loader", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:55:32.000" - ], - [ - "what-input", - 0.0, - "2024-12-17T15:55:32.000" - ], - [ - "xss", - 0.0, - "2024-12-17T15:55:32.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "Sass", - "Bytes": 269658, - "CodeBytes": 0, - "Lines": 13708, - "Code": 10616, - "Comment": 1156, - "Blank": 1936, - "Complexity": 40, - "Count": 140, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 260591, - "CodeBytes": 0, - "Lines": 8218, - "Code": 7602, - "Comment": 112, - "Blank": 504, - "Complexity": 101, - "Count": 96, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSX", - "Bytes": 192762, - "CodeBytes": 0, - "Lines": 4827, - "Code": 4516, - "Comment": 89, - "Blank": 222, - "Complexity": 127, - "Count": 42, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 607801, - "CodeBytes": 0, - "Lines": 2899, - "Code": 2896, - "Comment": 3, - "Blank": 0, - "Complexity": 0, - "Count": 20, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 7661, - "CodeBytes": 0, - "Lines": 191, - "Code": 132, - "Comment": 0, - "Blank": 59, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6042, - "CodeBytes": 0, - "Lines": 206, - "Code": 169, - "Comment": 8, - "Blank": 29, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5368, - "CodeBytes": 0, - "Lines": 165, - "Code": 165, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 322, - "CodeBytes": 0, - "Lines": 9, - "Code": 5, - "Comment": 4, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 6555, - "CodeBytes": 0, - "Lines": 116, - "Code": 96, - "Comment": 0, - "Blank": 20, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 4436, - "CodeBytes": 0, - "Lines": 92, - "Code": 75, - "Comment": 0, - "Blank": 17, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 246, - "CodeBytes": 0, - "Lines": 9, - "Code": 9, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 762404.962087065, - "estimatedScheduleMonths_low": 12.848646867816578, - "estimatedPeople_low": 5.780665361744284, - "estimatedCost_high": 2375986.845840189, - "estimatedScheduleMonths_high": 12.848646867816578, - "estimatedPeople_high": 5.780665361744284, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nSass 140 13708 1936 1156 10616 40\n(ULOC) 6002\n-------------------------------------------------------------------------------\nJavaScript 96 8218 504 112 7602 101\n(ULOC) 3543\n-------------------------------------------------------------------------------\nJSX 42 4827 222 89 4516 127\n(ULOC) 2610\n-------------------------------------------------------------------------------\nSVG 20 2899 0 3 2896 0\n(ULOC) 2734\n-------------------------------------------------------------------------------\nMarkdown 6 191 59 0 132 0\n(ULOC) 119\n-------------------------------------------------------------------------------\nYAML 5 206 29 8 169 0\n(ULOC) 142\n-------------------------------------------------------------------------------\nJSON 2 165 0 0 165 0\n(ULOC) 156\n-------------------------------------------------------------------------------\nHTML 1 9 0 4 5 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 116 20 0 96 0\n(ULOC) 97\n-------------------------------------------------------------------------------\nPlain Text 1 92 17 0 75 0\n(ULOC) 76\n-------------------------------------------------------------------------------\nXML 1 9 0 0 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 315 30440 2787 1372 26281 268\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 15236\nDRYness % 0.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $836,025\nEstimated Schedule Effort (organic) 12.85 months\nEstimated People Required (organic) 5.78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1361442 bytes, 1.361 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:41:27Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-design-system", - "commit": "6ab6fe5f2cfb5d47855f970b891bcbf0df11f6bf" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "8 out of 8 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 4, - "reason": "security policy file detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 6.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "8 out of 8 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 4, + "reason": "security policy file detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-editor/madie-editor_data.json b/app/site/_data/measureauthoringtool/madie-editor/madie-editor_data.json index 2af1e0ef35..31e4005d32 100644 --- a/app/site/_data/measureauthoringtool/madie-editor/madie-editor_data.json +++ b/app/site/_data/measureauthoringtool/madie-editor/madie-editor_data.json @@ -1,812 +1,812 @@ { - "url": "https://github.com/measureauthoringtool/madie-editor", - "owner": "measureauthoringtool", - "name": "madie-editor", - "description": "This is a single-spa Application responsible for the MADiE application's editor", - "commits_count": 1021, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 448, - "open_pull_requests_count": 24, - "merged_pull_requests_count": 241, - "closed_pull_requests_count": 183, - "forks_count": 1, - "stargazers_count": 2, - "watchers_count": 5, - "created_at": "2021-08-31T22:30:47Z", - "total_project_lines": 19953, - "average_project_lines": 134, - "total_project_comment_lines": 288, - "average_project_comment_lines": 2, - "total_project_blank_lines": 1440, - "average_blank_lines": 10, - "predominant_langs": { - "TypeScript": 615535, - "SCSS": 13386, - "JavaScript": 5900, - "CSS": 404, - "Shell": 116 - }, - "commits_by_month": { - "2025/1": 30 + "url": "https://github.com/measureauthoringtool/madie-editor", + "owner": "measureauthoringtool", + "name": "madie-editor", + "description": "This is a single-spa Application responsible for the MADiE application's editor", + "commits_count": 1021, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 448, + "open_pull_requests_count": 24, + "merged_pull_requests_count": 241, + "closed_pull_requests_count": 183, + "forks_count": 1, + "stargazers_count": 2, + "watchers_count": 5, + "created_at": "2021-08-31T22:30:47Z", + "total_project_lines": 19953, + "average_project_lines": 134, + "total_project_comment_lines": 288, + "average_project_comment_lines": 2, + "total_project_blank_lines": 1440, + "average_blank_lines": 10, + "predominant_langs": { + "TypeScript": 615535, + "SCSS": 13386, + "JavaScript": 5900, + "CSS": 404, + "Shell": 116 + }, + "commits_by_month": { + "2025/1": 30 + }, + "average_issue_resolution_time": [ + [ + "madie-editor", + "4 days 17:41:23" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 3 + ], + [ + "2024-08-13T00:00:00.000Z", + 3 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-08-29T00:00:00.000Z", + 2 + ], + [ + "2024-09-06T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-10-30T00:00:00.000Z", + 1 + ], + [ + "2024-11-05T00:00:00.000Z", + 1 + ], + [ + "2024-11-08T00:00:00.000Z", + 1 + ], + [ + "2024-11-11T00:00:00.000Z", + 1 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@madie/cql-antlr-parser", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@madie/madie-design-system", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@material-ui/core", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@mui/icons-material", + 2.5123287671, + "2024-12-17T15:54:00.000" + ], + [ + "@mui/lab", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@mui/material", + 2.3780821918, + "2024-12-17T15:54:00.000" + ], + [ + "@mui/styles", + 2.3780821918, + "2024-12-17T15:54:00.000" + ], + [ + "@tanstack/react-table", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:54:00.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:54:00.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:54:00.000" + ], + [ + "@types/fhir", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:54:00.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:54:00.000" + ], + [ + "@types/react-dom", + -0.002739726, + "2024-12-17T15:54:00.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:54:00.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "ace-builds", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "allotment", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:54:00.000" + ], + [ + "concurrently", + 1.9561643836, + "2024-12-17T15:54:00.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:54:00.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:54:00.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:54:00.000" + ], + [ + "formik", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "husky", + 1.8767123288, + "2024-12-17T15:54:00.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:54:00.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:54:00.000" + ], + [ + "lodash", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "moment", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "node-polyfill-webpack-plugin", + 3.4328767123, + "2024-12-17T15:54:00.000" + ], + [ + "postcss", + 2.6630136986, + "2024-12-17T15:54:00.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:54:00.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:54:00.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:54:00.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:54:00.000" + ], + [ + "react-ace", + 2.5232876712, + "2024-12-17T15:54:00.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:54:00.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "sass-loader", + 2.802739726, + "2024-12-17T15:54:00.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:54:00.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:54:00.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:54:00.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:54:00.000" + ], + [ + "util", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:54:00.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:54:00.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:54:00.000" + ], + [ + "webpack-dev-server", + 2.4520547945, + "2024-12-17T15:54:00.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:54:00.000" + ], + [ + "yup", + 0.0, + "2024-12-17T15:54:00.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 615535, + "CodeBytes": 0, + "Lines": 19427, + "Code": 17726, + "Comment": 277, + "Blank": 1424, + "Complexity": 767, + "Count": 117, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 13386, + "CodeBytes": 0, + "Lines": 688, + "Code": 628, + "Comment": 10, + "Blank": 50, + "Complexity": 0, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 35014, + "CodeBytes": 0, + "Lines": 684, + "Code": 684, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5900, + "CodeBytes": 0, + "Lines": 254, + "Code": 240, + "Comment": 4, + "Blank": 10, + "Complexity": 2, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 2322, + "CodeBytes": 0, + "Lines": 105, + "Code": 69, + "Comment": 22, + "Blank": 14, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5706, + "CodeBytes": 0, + "Lines": 187, + "Code": 150, + "Comment": 8, + "Blank": 29, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2019, + "CodeBytes": 0, + "Lines": 61, + "Code": 44, + "Comment": 0, + "Blank": 17, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 404, + "CodeBytes": 0, + "Lines": 24, + "Code": 20, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 562474.2887315251, + "estimatedScheduleMonths_low": 11.44631881837528, + "estimatedPeople_low": 4.787252613657618, + "estimatedCost_high": 1752915.5469961418, + "estimatedScheduleMonths_high": 11.44631881837528, + "estimatedPeople_high": 4.787252613657618, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 117 19427 1424 277 17726 767\n(ULOC) 8130\n-------------------------------------------------------------------------------\nSass 13 688 50 10 628 0\n(ULOC) 349\n-------------------------------------------------------------------------------\nJSON 6 684 0 0 684 0\n(ULOC) 393\n-------------------------------------------------------------------------------\nJavaScript 5 254 10 4 240 2\n(ULOC) 208\n-------------------------------------------------------------------------------\nTypeScript Typings 3 105 14 22 69 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nYAML 3 187 29 8 150 0\n(ULOC) 103\n-------------------------------------------------------------------------------\nMarkdown 2 61 17 0 44 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nCSS 1 24 4 0 20 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 152 21555 1561 322 19672 770\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 9367\nDRYness % 0.43\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $616,788\nEstimated Schedule Effort (organic) 11.45 months\nEstimated People Required (organic) 4.79\n───────────────────────────────────────────────────────────────────────────────\nProcessed 687450 bytes, 0.687 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:38:33Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-editor", + "commit": "81711855479935adea3353cfa78d172915558d78" }, - "average_issue_resolution_time": [ - [ - "madie-editor", - "4 days 17:41:23" - ] - ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 3 - ], - [ - "2024-08-13T00:00:00.000Z", - 3 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-29T00:00:00.000Z", - 2 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-10-30T00:00:00.000Z", - 1 - ], - [ - "2024-11-05T00:00:00.000Z", - 1 - ], - [ - "2024-11-08T00:00:00.000Z", - 1 - ], - [ - "2024-11-11T00:00:00.000Z", - 1 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@madie/cql-antlr-parser", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@madie/madie-design-system", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@material-ui/core", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@mui/icons-material", - 2.5123287671, - "2024-12-17T15:54:00.000" - ], - [ - "@mui/lab", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@mui/material", - 2.3780821918, - "2024-12-17T15:54:00.000" - ], - [ - "@mui/styles", - 2.3780821918, - "2024-12-17T15:54:00.000" - ], - [ - "@tanstack/react-table", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:54:00.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:54:00.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:54:00.000" - ], - [ - "@types/fhir", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:54:00.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:54:00.000" - ], - [ - "@types/react-dom", - -0.002739726, - "2024-12-17T15:54:00.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:54:00.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "ace-builds", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "allotment", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:54:00.000" - ], - [ - "concurrently", - 1.9561643836, - "2024-12-17T15:54:00.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:54:00.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:54:00.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:54:00.000" - ], - [ - "formik", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "husky", - 1.8767123288, - "2024-12-17T15:54:00.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:54:00.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:54:00.000" - ], - [ - "lodash", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "moment", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "node-polyfill-webpack-plugin", - 3.4328767123, - "2024-12-17T15:54:00.000" - ], - [ - "postcss", - 2.6630136986, - "2024-12-17T15:54:00.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:54:00.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:54:00.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:54:00.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:54:00.000" - ], - [ - "react-ace", - 2.5232876712, - "2024-12-17T15:54:00.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:54:00.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "sass-loader", - 2.802739726, - "2024-12-17T15:54:00.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:54:00.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:54:00.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:54:00.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:54:00.000" - ], - [ - "util", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:54:00.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:54:00.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:54:00.000" - ], - [ - "webpack-dev-server", - 2.4520547945, - "2024-12-17T15:54:00.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:54:00.000" - ], - [ - "yup", - 0.0, - "2024-12-17T15:54:00.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 615169, - "CodeBytes": 0, - "Lines": 19412, - "Code": 17712, - "Comment": 277, - "Blank": 1423, - "Complexity": 767, - "Count": 117, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 13386, - "CodeBytes": 0, - "Lines": 688, - "Code": 628, - "Comment": 10, - "Blank": 50, - "Complexity": 0, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 35014, - "CodeBytes": 0, - "Lines": 684, - "Code": 684, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5900, - "CodeBytes": 0, - "Lines": 254, - "Code": 240, - "Comment": 4, - "Blank": 10, - "Complexity": 2, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 2322, - "CodeBytes": 0, - "Lines": 105, - "Code": 69, - "Comment": 22, - "Blank": 14, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5706, - "CodeBytes": 0, - "Lines": 187, - "Code": 150, - "Comment": 8, - "Blank": 29, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2019, - "CodeBytes": 0, - "Lines": 61, - "Code": 44, - "Comment": 0, - "Blank": 17, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 404, - "CodeBytes": 0, - "Lines": 24, - "Code": 20, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 562053.9844969742, - "estimatedScheduleMonths_low": 11.443067861890748, - "estimatedPeople_low": 4.785034413146929, - "estimatedCost_high": 1751605.6954314164, - "estimatedScheduleMonths_high": 11.443067861890748, - "estimatedPeople_high": 4.785034413146929, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 117 19412 1423 277 17712 767\n(ULOC) 8122\n-------------------------------------------------------------------------------\nSass 13 688 50 10 628 0\n(ULOC) 349\n-------------------------------------------------------------------------------\nJSON 6 684 0 0 684 0\n(ULOC) 393\n-------------------------------------------------------------------------------\nJavaScript 5 254 10 4 240 2\n(ULOC) 208\n-------------------------------------------------------------------------------\nTypeScript Typings 3 105 14 22 69 0\n(ULOC) 65\n-------------------------------------------------------------------------------\nYAML 3 187 29 8 150 0\n(ULOC) 103\n-------------------------------------------------------------------------------\nMarkdown 2 61 17 0 44 0\n(ULOC) 45\n-------------------------------------------------------------------------------\nCSS 1 24 4 0 20 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 152 21540 1560 322 19658 770\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 9359\nDRYness % 0.43\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $616,327\nEstimated Schedule Effort (organic) 11.44 months\nEstimated People Required (organic) 4.79\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 687084 bytes, 0.687 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:38:33Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-editor", - "commit": "81711855479935adea3353cfa78d172915558d78" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "8 out of 8 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 6.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "8 out of 8 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-fhir-elm-translator/madie-fhir-elm-translator_data.json b/app/site/_data/measureauthoringtool/madie-fhir-elm-translator/madie-fhir-elm-translator_data.json index 89590dbb59..dc2222aa1f 100644 --- a/app/site/_data/measureauthoringtool/madie-fhir-elm-translator/madie-fhir-elm-translator_data.json +++ b/app/site/_data/measureauthoringtool/madie-fhir-elm-translator/madie-fhir-elm-translator_data.json @@ -1,398 +1,398 @@ { - "url": "https://github.com/measureauthoringtool/madie-fhir-elm-translator", - "owner": "measureauthoringtool", - "name": "madie-fhir-elm-translator", - "description": null, - "commits_count": 593, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 45, - "open_pull_requests_count": 5, - "merged_pull_requests_count": 38, - "closed_pull_requests_count": 2, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 0, - "created_at": "2024-05-08T19:55:54Z", - "total_project_lines": 90504, - "average_project_lines": 1293, - "total_project_comment_lines": 171, - "average_project_comment_lines": 2, - "total_project_blank_lines": 728, - "average_blank_lines": 10, - "predominant_langs": { - "Java": 165370, - "Dockerfile": 467 + "url": "https://github.com/measureauthoringtool/madie-fhir-elm-translator", + "owner": "measureauthoringtool", + "name": "madie-fhir-elm-translator", + "description": null, + "commits_count": 593, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 45, + "open_pull_requests_count": 5, + "merged_pull_requests_count": 38, + "closed_pull_requests_count": 2, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 0, + "created_at": "2024-05-08T19:55:54Z", + "total_project_lines": 90504, + "average_project_lines": 1293, + "total_project_comment_lines": 171, + "average_project_comment_lines": 2, + "total_project_blank_lines": 728, + "average_blank_lines": 10, + "predominant_langs": { + "Java": 165370, + "Dockerfile": 467 + }, + "commits_by_month": { + "2025/1": 12, + "2024/12": 13, + "2024/11": 5 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-08-16T00:00:00.000Z", + 1 + ], + [ + "2024-08-24T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 2 + ], + [ + "2024-08-30T00:00:00.000Z", + 1 + ], + [ + "2024-09-03T00:00:00.000Z", + 1 + ], + [ + "2024-10-22T00:00:00.000Z", + 1 + ], + [ + "2024-10-23T00:00:00.000Z", + 1 + ], + [ + "2024-11-01T00:00:00.000Z", + 1 + ], + [ + "2024-11-12T00:00:00.000Z", + 2 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 165370, + "CodeBytes": 0, + "Lines": 4317, + "Code": 3555, + "Comment": 146, + "Blank": 616, + "Complexity": 176, + "Count": 46, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3180828, + "CodeBytes": 0, + "Lines": 84933, + "Code": 84933, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4771, + "CodeBytes": 0, + "Lines": 174, + "Code": 145, + "Comment": 3, + "Blank": 26, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 38653, + "CodeBytes": 0, + "Lines": 943, + "Code": 854, + "Comment": 27, + "Blank": 62, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1899, + "CodeBytes": 0, + "Lines": 51, + "Code": 38, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 467, + "CodeBytes": 0, + "Lines": 13, + "Code": 6, + "Comment": 3, + "Blank": 4, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2764958.8609093023, + "estimatedScheduleMonths_low": 20.963728078828012, + "estimatedPeople_low": 12.849009912225132, + "estimatedCost_high": 8616819.419466937, + "estimatedScheduleMonths_high": 20.963728078828012, + "estimatedPeople_high": 12.849009912225132, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 46 4317 616 146 3555 176\n(ULOC) 2223\n-------------------------------------------------------------------------------\nJSON 8 84933 0 0 84933 0\n(ULOC) 9971\n-------------------------------------------------------------------------------\nYAML 7 174 26 3 145 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nXML 5 943 62 27 854 0\n(ULOC) 545\n-------------------------------------------------------------------------------\nMarkdown 2 51 13 0 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nDockerfile 1 13 4 3 6 1\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 70 90552 733 179 89640 177\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 12996\nDRYness % 0.14\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,031,951\nEstimated Schedule Effort (organic) 20.96 months\nEstimated People Required (organic) 12.85\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3399036 bytes, 3.399 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:44:32Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-fhir-elm-translator", + "commit": "54861cdd0d7534d147cef26b54071cc7960d818e" }, - "commits_by_month": { - "2025/1": 12, - "2024/12": 13, - "2024/11": 5 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-16T00:00:00.000Z", - 1 - ], - [ - "2024-08-24T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 2 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ], - [ - "2024-09-03T00:00:00.000Z", - 1 - ], - [ - "2024-10-22T00:00:00.000Z", - 1 - ], - [ - "2024-10-23T00:00:00.000Z", - 1 - ], - [ - "2024-11-01T00:00:00.000Z", - 1 - ], - [ - "2024-11-12T00:00:00.000Z", - 2 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ] + "score": 5.5, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 5, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 165370, - "CodeBytes": 0, - "Lines": 4317, - "Code": 3555, - "Comment": 146, - "Blank": 616, - "Complexity": 176, - "Count": 46, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3180828, - "CodeBytes": 0, - "Lines": 84933, - "Code": 84933, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4771, - "CodeBytes": 0, - "Lines": 174, - "Code": 145, - "Comment": 3, - "Blank": 26, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 38653, - "CodeBytes": 0, - "Lines": 943, - "Code": 854, - "Comment": 27, - "Blank": 62, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1899, - "CodeBytes": 0, - "Lines": 51, - "Code": 38, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 467, - "CodeBytes": 0, - "Lines": 13, - "Code": 6, - "Comment": 3, - "Blank": 4, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2764958.8609093023, - "estimatedScheduleMonths_low": 20.963728078828012, - "estimatedPeople_low": 12.849009912225132, - "estimatedCost_high": 8616819.419466937, - "estimatedScheduleMonths_high": 20.963728078828012, - "estimatedPeople_high": 12.849009912225132, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 46 4317 616 146 3555 176\n(ULOC) 2223\n-------------------------------------------------------------------------------\nJSON 8 84933 0 0 84933 0\n(ULOC) 9971\n-------------------------------------------------------------------------------\nYAML 7 174 26 3 145 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nXML 5 943 62 27 854 0\n(ULOC) 545\n-------------------------------------------------------------------------------\nMarkdown 2 51 13 0 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nDockerfile 1 13 4 3 6 1\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 70 90552 733 179 89640 177\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 12996\nDRYness % 0.14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,031,951\nEstimated Schedule Effort (organic) 20.96 months\nEstimated People Required (organic) 12.85\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3399036 bytes, 3.399 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:44:32Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-fhir-elm-translator", - "commit": "54861cdd0d7534d147cef26b54071cc7960d818e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.5, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 5, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-fhir-service/madie-fhir-service_data.json b/app/site/_data/measureauthoringtool/madie-fhir-service/madie-fhir-service_data.json index e7b98aa79e..e46fe86f78 100644 --- a/app/site/_data/measureauthoringtool/madie-fhir-service/madie-fhir-service_data.json +++ b/app/site/_data/measureauthoringtool/madie-fhir-service/madie-fhir-service_data.json @@ -1,472 +1,472 @@ { - "url": "https://github.com/measureauthoringtool/madie-fhir-service", - "owner": "measureauthoringtool", - "name": "madie-fhir-service", - "description": "FHIR Service for MADiE", - "commits_count": 719, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 281, - "open_pull_requests_count": 22, - "merged_pull_requests_count": 227, - "closed_pull_requests_count": 32, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 5, - "created_at": "2022-03-16T18:35:11Z", - "total_project_lines": 12752, - "average_project_lines": 116, - "total_project_comment_lines": 517, - "average_project_comment_lines": 5, - "total_project_blank_lines": 1305, - "average_blank_lines": 12, - "predominant_langs": { - "Java": 442840, - "Liquid": 53563, - "HTML": 24217, - "Dockerfile": 692 + "url": "https://github.com/measureauthoringtool/madie-fhir-service", + "owner": "measureauthoringtool", + "name": "madie-fhir-service", + "description": "FHIR Service for MADiE", + "commits_count": 719, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 281, + "open_pull_requests_count": 22, + "merged_pull_requests_count": 227, + "closed_pull_requests_count": 32, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 5, + "created_at": "2022-03-16T18:35:11Z", + "total_project_lines": 12752, + "average_project_lines": 116, + "total_project_comment_lines": 517, + "average_project_comment_lines": 5, + "total_project_blank_lines": 1305, + "average_blank_lines": 12, + "predominant_langs": { + "Java": 442840, + "Liquid": 53563, + "HTML": 24217, + "Dockerfile": 692 + }, + "commits_by_month": { + "2025/1": 17, + "2024/12": 13 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-08-29T00:00:00.000Z", + 1 + ], + [ + "2024-08-30T00:00:00.000Z", + 1 + ], + [ + "2024-09-03T00:00:00.000Z", + 3 + ], + [ + "2024-09-06T00:00:00.000Z", + 1 + ], + [ + "2024-09-26T00:00:00.000Z", + 1 + ], + [ + "2024-10-01T00:00:00.000Z", + 1 + ], + [ + "2024-10-02T00:00:00.000Z", + 1 + ], + [ + "2024-10-03T00:00:00.000Z", + 1 + ], + [ + "2024-10-18T00:00:00.000Z", + 1 + ], + [ + "2024-10-21T00:00:00.000Z", + 2 + ], + [ + "2024-11-13T00:00:00.000Z", + 1 + ], + [ + "2024-11-14T00:00:00.000Z", + 1 + ], + [ + "2024-11-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-19T00:00:00.000Z", + 1 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 442840, + "CodeBytes": 0, + "Lines": 10759, + "Code": 9124, + "Comment": 427, + "Blank": 1208, + "Complexity": 337, + "Count": 90, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 24217, + "CodeBytes": 0, + "Lines": 457, + "Code": 456, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 29, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3385438, + "CodeBytes": 0, + "Lines": 1301, + "Code": 1295, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 13411, + "CodeBytes": 0, + "Lines": 430, + "Code": 362, + "Comment": 24, + "Blank": 44, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2462, + "CodeBytes": 0, + "Lines": 97, + "Code": 79, + "Comment": 5, + "Blank": 13, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2103, + "CodeBytes": 0, + "Lines": 51, + "Code": 38, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 6734, + "CodeBytes": 0, + "Lines": 188, + "Code": 153, + "Comment": 0, + "Blank": 35, + "Complexity": 27, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 692, + "CodeBytes": 0, + "Lines": 20, + "Code": 9, + "Comment": 6, + "Blank": 5, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 233, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10284, + "CodeBytes": 0, + "Lines": 316, + "Code": 235, + "Comment": 54, + "Blank": 27, + "Complexity": 35, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 327504.97881910193, + "estimatedScheduleMonths_low": 9.319865100540117, + "estimatedPeople_low": 3.4234011200714574, + "estimatedCost_high": 1020648.5533504348, + "estimatedScheduleMonths_high": 9.319865100540117, + "estimatedPeople_high": 3.4234011200714574, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 90 10759 1208 427 9124 337\n(ULOC) 5014\n-------------------------------------------------------------------------------\nHTML 29 457 1 0 456 0\n(ULOC) 307\n-------------------------------------------------------------------------------\nJSON 10 1301 6 0 1295 0\n(ULOC) 638\n-------------------------------------------------------------------------------\nXML 4 430 44 24 362 0\n(ULOC) 301\n-------------------------------------------------------------------------------\nYAML 3 97 13 5 79 0\n(ULOC) 81\n-------------------------------------------------------------------------------\nMarkdown 2 51 13 0 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nBatch 1 188 35 0 153 27\n(ULOC) 134\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 6 9 1\n(ULOC) 16\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 316 27 54 235 35\n(ULOC) 216\n───────────────────────────────────────────────────────────────────────────────\nTotal 142 13621 1352 516 11753 400\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 6720\nDRYness % 0.49\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $359,129\nEstimated Schedule Effort (organic) 9.32 months\nEstimated People Required (organic) 3.42\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3888414 bytes, 3.888 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:42:27Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-fhir-service", + "commit": "db7b72af7a3a0bbdb0229c2ee8ce9a3821a68534" }, - "commits_by_month": { - "2025/1": 17, - "2024/12": 13 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-08-29T00:00:00.000Z", - 1 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ], - [ - "2024-09-03T00:00:00.000Z", - 3 - ], - [ - "2024-09-06T00:00:00.000Z", - 1 - ], - [ - "2024-09-26T00:00:00.000Z", - 1 - ], - [ - "2024-10-01T00:00:00.000Z", - 1 - ], - [ - "2024-10-02T00:00:00.000Z", - 1 - ], - [ - "2024-10-03T00:00:00.000Z", - 1 - ], - [ - "2024-10-18T00:00:00.000Z", - 1 - ], - [ - "2024-10-21T00:00:00.000Z", - 2 - ], - [ - "2024-11-13T00:00:00.000Z", - 1 - ], - [ - "2024-11-14T00:00:00.000Z", - 1 - ], - [ - "2024-11-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-19T00:00:00.000Z", - 1 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ] + "score": 5.4, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 441707, - "CodeBytes": 0, - "Lines": 10732, - "Code": 9100, - "Comment": 427, - "Blank": 1205, - "Complexity": 335, - "Count": 90, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 24217, - "CodeBytes": 0, - "Lines": 457, - "Code": 456, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 29, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3385133, - "CodeBytes": 0, - "Lines": 1295, - "Code": 1289, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 13426, - "CodeBytes": 0, - "Lines": 431, - "Code": 363, - "Comment": 24, - "Blank": 44, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2462, - "CodeBytes": 0, - "Lines": 97, - "Code": 79, - "Comment": 5, - "Blank": 13, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2103, - "CodeBytes": 0, - "Lines": 51, - "Code": 38, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 6734, - "CodeBytes": 0, - "Lines": 188, - "Code": 153, - "Comment": 0, - "Blank": 35, - "Complexity": 27, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 692, - "CodeBytes": 0, - "Lines": 20, - "Code": 9, - "Comment": 6, - "Blank": 5, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 233, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10284, - "CodeBytes": 0, - "Lines": 316, - "Code": 235, - "Comment": 54, - "Blank": 27, - "Complexity": 35, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 326656.522173586, - "estimatedScheduleMonths_low": 9.31068274498747, - "estimatedPeople_low": 3.4178996950197327, - "estimatedCost_high": 1018004.3918755503, - "estimatedScheduleMonths_high": 9.31068274498747, - "estimatedPeople_high": 3.4178996950197327, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 90 10732 1205 427 9100 335\n(ULOC) 4994\n-------------------------------------------------------------------------------\nHTML 29 457 1 0 456 0\n(ULOC) 307\n-------------------------------------------------------------------------------\nJSON 10 1295 6 0 1289 0\n(ULOC) 633\n-------------------------------------------------------------------------------\nXML 4 431 44 24 363 0\n(ULOC) 302\n-------------------------------------------------------------------------------\nYAML 3 97 13 5 79 0\n(ULOC) 81\n-------------------------------------------------------------------------------\nMarkdown 2 51 13 0 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nBatch 1 188 35 0 153 27\n(ULOC) 134\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 6 9 1\n(ULOC) 16\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 316 27 54 235 35\n(ULOC) 216\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 142 13589 1349 516 11724 398\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 6696\nDRYness % 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $358,199\nEstimated Schedule Effort (organic) 9.31 months\nEstimated People Required (organic) 3.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3886991 bytes, 3.887 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:42:27Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-fhir-service", - "commit": "db7b72af7a3a0bbdb0229c2ee8ce9a3821a68534" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.4, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-frontend-template/madie-frontend-template_data.json b/app/site/_data/measureauthoringtool/madie-frontend-template/madie-frontend-template_data.json index aec29cda98..078fc4d8f9 100644 --- a/app/site/_data/measureauthoringtool/madie-frontend-template/madie-frontend-template_data.json +++ b/app/site/_data/measureauthoringtool/madie-frontend-template/madie-frontend-template_data.json @@ -1,637 +1,637 @@ { - "url": "https://github.com/measureauthoringtool/madie-frontend-template", - "owner": "measureauthoringtool", - "name": "madie-frontend-template", - "description": "A template project for creating MADiE Micro Front End projects", - "commits_count": 17, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 13, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 4, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "created_at": "2021-09-13T17:36:59Z", - "total_project_lines": 692, - "average_project_lines": 31, - "total_project_comment_lines": 35, - "average_project_comment_lines": 2, - "total_project_blank_lines": 64, - "average_blank_lines": 3, - "predominant_langs": { - "JavaScript": 2415, - "TypeScript": 1332, - "Shell": 116 - }, - "commits_by_month": { - "2024/7": 3, - "2024/5": 2, - "2024/2": 9, - "2021/11": 2, - "2021/9": 1 + "url": "https://github.com/measureauthoringtool/madie-frontend-template", + "owner": "measureauthoringtool", + "name": "madie-frontend-template", + "description": "A template project for creating MADiE Micro Front End projects", + "commits_count": 17, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 13, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 4, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "created_at": "2021-09-13T17:36:59Z", + "total_project_lines": 692, + "average_project_lines": 31, + "total_project_comment_lines": 35, + "average_project_comment_lines": 2, + "total_project_blank_lines": 64, + "average_blank_lines": 3, + "predominant_langs": { + "JavaScript": 2415, + "TypeScript": 1332, + "Shell": 116 + }, + "commits_by_month": { + "2024/7": 3, + "2024/5": 2, + "2024/2": 9, + "2021/11": 2, + "2021/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@madie/madie-auth", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@madie/madie-root", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:48:38.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:48:38.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:48:38.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:48:38.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:48:38.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:48:38.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:48:38.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:48:38.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:48:38.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:48:38.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:48:38.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:48:38.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:48:38.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:48:38.000" + ], + [ + "postcss", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:48:38.000" + ], + [ + "postcss-preset-env", + 0.4328767123, + "2024-12-17T15:48:38.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:48:38.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:48:38.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:48:38.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:48:38.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:48:38.000" + ], + [ + "styled-components", + 1.2630136986, + "2024-12-17T15:48:38.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:48:38.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:48:38.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:48:38.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:48:38.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:48:38.000" + ], + [ + "webpack-dev-server", + 0.0, + "2024-12-17T15:48:38.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:48:38.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 4052, + "CodeBytes": 0, + "Lines": 150, + "Code": 150, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2415, + "CodeBytes": 0, + "Lines": 104, + "Code": 97, + "Comment": 3, + "Blank": 4, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 1332, + "CodeBytes": 0, + "Lines": 53, + "Code": 45, + "Comment": 1, + "Blank": 7, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5627, + "CodeBytes": 0, + "Lines": 187, + "Code": 148, + "Comment": 8, + "Blank": 31, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 234, + "CodeBytes": 0, + "Lines": 5, + "Code": 4, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 1297, + "CodeBytes": 0, + "Lines": 68, + "Code": 38, + "Comment": 22, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14232.105738536924, + "estimatedScheduleMonths_low": 2.8305387397909247, + "estimatedPeople_low": 0.48983472162420894, + "estimatedCost_high": 44353.457420846076, + "estimatedScheduleMonths_high": 2.8305387397909247, + "estimatedPeople_high": 0.48983472162420894, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 5 150 0 0 150 0\n(ULOC) 128\n-------------------------------------------------------------------------------\nJavaScript 4 104 4 3 97 0\n(ULOC) 78\n-------------------------------------------------------------------------------\nTypeScript 4 53 7 1 45 0\n(ULOC) 43\n-------------------------------------------------------------------------------\nYAML 3 187 31 8 148 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nMarkdown 2 5 1 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nTypeScript Typings 2 68 8 22 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 22 692 64 35 593 1\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 499\nDRYness % 0.72\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $15,606\nEstimated Schedule Effort (organic) 2.83 months\nEstimated People Required (organic) 0.49\n───────────────────────────────────────────────────────────────────────────────\nProcessed 22121 bytes, 0.022 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:39:23Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-frontend-template", + "commit": "222983b50aa63d2322cc95a673755542ad59b15c" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@madie/madie-auth", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@madie/madie-root", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:48:38.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:48:38.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:48:38.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:48:38.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:48:38.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:48:38.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:48:38.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:48:38.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:48:38.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:48:38.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:48:38.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:48:38.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:48:38.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:48:38.000" - ], - [ - "postcss", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:48:38.000" - ], - [ - "postcss-preset-env", - 0.4328767123, - "2024-12-17T15:48:38.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:48:38.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:48:38.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:48:38.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:48:38.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:48:38.000" - ], - [ - "styled-components", - 1.2630136986, - "2024-12-17T15:48:38.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:48:38.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:48:38.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:48:38.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:48:38.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:48:38.000" - ], - [ - "webpack-dev-server", - 0.0, - "2024-12-17T15:48:38.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:48:38.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 4052, - "CodeBytes": 0, - "Lines": 150, - "Code": 150, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2415, - "CodeBytes": 0, - "Lines": 104, - "Code": 97, - "Comment": 3, - "Blank": 4, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 1332, - "CodeBytes": 0, - "Lines": 53, - "Code": 45, - "Comment": 1, - "Blank": 7, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5627, - "CodeBytes": 0, - "Lines": 187, - "Code": 148, - "Comment": 8, - "Blank": 31, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 234, - "CodeBytes": 0, - "Lines": 5, - "Code": 4, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 1297, - "CodeBytes": 0, - "Lines": 68, - "Code": 38, - "Comment": 22, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14232.105738536924, - "estimatedScheduleMonths_low": 2.8305387397909247, - "estimatedPeople_low": 0.48983472162420894, - "estimatedCost_high": 44353.457420846076, - "estimatedScheduleMonths_high": 2.8305387397909247, - "estimatedPeople_high": 0.48983472162420894, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 5 150 0 0 150 0\n(ULOC) 128\n-------------------------------------------------------------------------------\nJavaScript 4 104 4 3 97 0\n(ULOC) 78\n-------------------------------------------------------------------------------\nTypeScript 4 53 7 1 45 0\n(ULOC) 43\n-------------------------------------------------------------------------------\nYAML 3 187 31 8 148 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nMarkdown 2 5 1 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nTypeScript Typings 2 68 8 22 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 22 692 64 35 593 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 499\nDRYness % 0.72\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $15,606\nEstimated Schedule Effort (organic) 2.83 months\nEstimated People Required (organic) 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 22121 bytes, 0.022 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:39:23Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-frontend-template", - "commit": "222983b50aa63d2322cc95a673755542ad59b15c" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 7, - "reason": "3 out of 4 merged PRs checked by a CI test -- score normalized to 7", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 6, - "reason": "Found 3/5 approved changesets -- score normalized to 6", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "13 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 7, + "reason": "3 out of 4 merged PRs checked by a CI test -- score normalized to 7", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 6, + "reason": "Found 3/5 approved changesets -- score normalized to 6", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "13 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-java-models/madie-java-models_data.json b/app/site/_data/measureauthoringtool/madie-java-models/madie-java-models_data.json index a074e2be85..dfe4b84f16 100644 --- a/app/site/_data/measureauthoringtool/madie-java-models/madie-java-models_data.json +++ b/app/site/_data/measureauthoringtool/madie-java-models/madie-java-models_data.json @@ -1,345 +1,345 @@ { - "url": "https://github.com/measureauthoringtool/madie-java-models", - "owner": "measureauthoringtool", - "name": "madie-java-models", - "description": "Java models for any Java project associated with MADiE", - "commits_count": 674, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 261, - "open_pull_requests_count": 19, - "merged_pull_requests_count": 224, - "closed_pull_requests_count": 18, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 5, - "created_at": "2022-04-06T16:23:09Z", - "total_project_lines": 8476, - "average_project_lines": 44, - "total_project_comment_lines": 63, - "average_project_comment_lines": 0, - "total_project_blank_lines": 1177, - "average_blank_lines": 6, - "predominant_langs": { - "Java": 262942 + "url": "https://github.com/measureauthoringtool/madie-java-models", + "owner": "measureauthoringtool", + "name": "madie-java-models", + "description": "Java models for any Java project associated with MADiE", + "commits_count": 674, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 261, + "open_pull_requests_count": 19, + "merged_pull_requests_count": 224, + "closed_pull_requests_count": 18, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 5, + "created_at": "2022-04-06T16:23:09Z", + "total_project_lines": 8476, + "average_project_lines": 44, + "total_project_comment_lines": 63, + "average_project_comment_lines": 0, + "total_project_blank_lines": 1177, + "average_blank_lines": 6, + "predominant_langs": { + "Java": 262942 + }, + "commits_by_month": { + "2025/1": 14, + "2024/12": 5, + "2024/11": 5, + "2024/10": 6 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 2 + ], + [ + "2024-08-14T00:00:00.000Z", + 2 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 2 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-04T00:00:00.000Z", + 2 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 262942, + "CodeBytes": 0, + "Lines": 8255, + "Code": 7049, + "Comment": 43, + "Blank": 1163, + "Complexity": 176, + "Count": 191, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 10426, + "CodeBytes": 0, + "Lines": 282, + "Code": 239, + "Comment": 18, + "Blank": 25, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1670, + "CodeBytes": 0, + "Lines": 42, + "Code": 33, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2205, + "CodeBytes": 0, + "Lines": 79, + "Code": 67, + "Comment": 2, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 201147.65078500393, + "estimatedScheduleMonths_low": 7.743949431588172, + "estimatedPeople_low": 2.530474495711589, + "estimatedCost_high": 626863.9320349118, + "estimatedScheduleMonths_high": 7.743949431588172, + "estimatedPeople_high": 2.530474495711589, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 191 8255 1163 43 7049 176\n(ULOC) 2265\n-------------------------------------------------------------------------------\nXML 3 282 25 18 239 0\n(ULOC) 203\n-------------------------------------------------------------------------------\nMarkdown 2 42 9 0 33 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nYAML 2 79 10 2 67 0\n(ULOC) 47\n───────────────────────────────────────────────────────────────────────────────\nTotal 198 8658 1207 63 7388 176\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 2543\nDRYness % 0.29\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $220,571\nEstimated Schedule Effort (organic) 7.74 months\nEstimated People Required (organic) 2.53\n───────────────────────────────────────────────────────────────────────────────\nProcessed 277243 bytes, 0.277 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:42:49Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-java-models", + "commit": "caba776ad66bd7d1447c4a375340376f73fb3ccb" }, - "commits_by_month": { - "2025/1": 14, - "2024/12": 5, - "2024/11": 5, - "2024/10": 6 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 2 - ], - [ - "2024-08-14T00:00:00.000Z", - 2 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 2 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-04T00:00:00.000Z", - 2 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ] + "score": 6.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "25 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 257287, - "CodeBytes": 0, - "Lines": 8078, - "Code": 6901, - "Comment": 43, - "Blank": 1134, - "Complexity": 168, - "Count": 187, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 10426, - "CodeBytes": 0, - "Lines": 282, - "Code": 239, - "Comment": 18, - "Blank": 25, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1670, - "CodeBytes": 0, - "Lines": 42, - "Code": 33, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2205, - "CodeBytes": 0, - "Lines": 79, - "Code": 67, - "Comment": 2, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 196918.82159093887, - "estimatedScheduleMonths_low": 7.681675699673843, - "estimatedPeople_low": 2.497357794174791, - "estimatedCost_high": 613685.0533050325, - "estimatedScheduleMonths_high": 7.681675699673843, - "estimatedPeople_high": 2.497357794174791, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 187 8078 1134 43 6901 168\n(ULOC) 2207\n-------------------------------------------------------------------------------\nXML 3 282 25 18 239 0\n(ULOC) 203\n-------------------------------------------------------------------------------\nMarkdown 2 42 9 0 33 0\n(ULOC) 33\n-------------------------------------------------------------------------------\nYAML 2 79 10 2 67 0\n(ULOC) 47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 194 8481 1178 63 7240 168\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 2485\nDRYness % 0.29\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $215,933\nEstimated Schedule Effort (organic) 7.68 months\nEstimated People Required (organic) 2.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 271588 bytes, 0.272 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:42:49Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-java-models", - "commit": "caba776ad66bd7d1447c4a375340376f73fb3ccb" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "25 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-layout/madie-layout_data.json b/app/site/_data/measureauthoringtool/madie-layout/madie-layout_data.json index d5503cf8d2..9b5ae7ea53 100644 --- a/app/site/_data/measureauthoringtool/madie-layout/madie-layout_data.json +++ b/app/site/_data/measureauthoringtool/madie-layout/madie-layout_data.json @@ -1,869 +1,869 @@ { - "url": "https://github.com/measureauthoringtool/madie-layout", - "owner": "measureauthoringtool", - "name": "madie-layout", - "description": "This is a single-spa Application responsible for the MADiE application's layout", - "commits_count": 712, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 385, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 194, - "closed_pull_requests_count": 176, - "forks_count": 3, - "stargazers_count": 3, - "watchers_count": 5, - "created_at": "2021-08-24T21:29:42Z", - "total_project_lines": 6890, - "average_project_lines": 75, - "total_project_comment_lines": 116, - "average_project_comment_lines": 1, - "total_project_blank_lines": 520, - "average_blank_lines": 6, - "predominant_langs": { - "TypeScript": 174532, - "SCSS": 9383, - "JavaScript": 5332, - "Shell": 116 - }, - "commits_by_month": { - "2025/1": 2, - "2024/12": 7, - "2024/11": 20, - "2024/10": 1 + "url": "https://github.com/measureauthoringtool/madie-layout", + "owner": "measureauthoringtool", + "name": "madie-layout", + "description": "This is a single-spa Application responsible for the MADiE application's layout", + "commits_count": 712, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 385, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 194, + "closed_pull_requests_count": 176, + "forks_count": 3, + "stargazers_count": 3, + "watchers_count": 5, + "created_at": "2021-08-24T21:29:42Z", + "total_project_lines": 6890, + "average_project_lines": 75, + "total_project_comment_lines": 116, + "average_project_comment_lines": 1, + "total_project_blank_lines": 520, + "average_blank_lines": 6, + "predominant_langs": { + "TypeScript": 174532, + "SCSS": 9383, + "JavaScript": 5332, + "Shell": 116 + }, + "commits_by_month": { + "2025/1": 2, + "2024/12": 7, + "2024/11": 20, + "2024/10": 1 + }, + "average_issue_resolution_time": [ + [ + "madie-layout", + "4 days 17:40:42" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-14T00:00:00.000Z", + 2 + ], + [ + "2024-08-30T00:00:00.000Z", + 1 + ], + [ + "2024-10-09T00:00:00.000Z", + 1 + ], + [ + "2024-10-14T00:00:00.000Z", + 1 + ], + [ + "2024-10-16T00:00:00.000Z", + 1 + ], + [ + "2024-10-17T00:00:00.000Z", + 1 + ], + [ + "2024-10-29T00:00:00.000Z", + 1 + ], + [ + "2024-11-07T00:00:00.000Z", + 2 + ], + [ + "2024-11-08T00:00:00.000Z", + 1 + ], + [ + "2024-11-11T00:00:00.000Z", + 2 + ], + [ + "2024-11-13T00:00:00.000Z", + 2 + ], + [ + "2024-11-18T00:00:00.000Z", + 1 + ], + [ + "2024-11-21T00:00:00.000Z", + 1 + ], + [ + "2024-11-30T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@emotion/react", + 2.4931506849, + "2024-12-17T15:55:05.000" + ], + [ + "@emotion/styled", + 2.4931506849, + "2024-12-17T15:55:05.000" + ], + [ + "@madie/madie-auth", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@madie/madie-design-system", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@madie/madie-editor", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@madie/madie-root", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@mui/icons-material", + 2.5123287671, + "2024-12-17T15:55:05.000" + ], + [ + "@mui/lab", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@mui/material", + 2.3780821918, + "2024-12-17T15:55:05.000" + ], + [ + "@mui/styles", + 2.3780821918, + "2024-12-17T15:55:05.000" + ], + [ + "@okta/okta-auth-js", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@okta/okta-react", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@tailwindcss/forms", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:55:05.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:55:05.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:55:05.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:55:05.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:55:05.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:55:05.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:55:05.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:55:05.000" + ], + [ + "classnames", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "concurrently", + 1.9561643836, + "2024-12-17T15:55:05.000" + ], + [ + "copy-webpack-plugin", + 1.9616438356, + "2024-12-17T15:55:05.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:55:05.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:55:05.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:55:05.000" + ], + [ + "file-loader", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "formik", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:55:05.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:55:05.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:55:05.000" + ], + [ + "postcss", + 2.6630136986, + "2024-12-17T15:55:05.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:55:05.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:55:05.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:55:05.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "qs", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:55:05.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:55:05.000" + ], + [ + "react-router", + 0.0712328767, + "2024-12-17T15:55:05.000" + ], + [ + "react-router-dom", + 0.0712328767, + "2024-12-17T15:55:05.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "sass-loader", + 2.802739726, + "2024-12-17T15:55:05.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:55:05.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:55:05.000" + ], + [ + "style-loader", + 0.2465753425, + "2024-12-17T15:55:05.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:55:05.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:55:05.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:55:05.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:55:05.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:55:05.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:55:05.000" + ], + [ + "webpack-dev-server", + 0.0, + "2024-12-17T15:55:05.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:55:05.000" + ], + [ + "yup", + 3.1808219178, + "2024-12-17T15:55:05.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 174532, + "CodeBytes": 0, + "Lines": 5543, + "Code": 5065, + "Comment": 74, + "Blank": 404, + "Complexity": 204, + "Count": 56, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 7844, + "CodeBytes": 0, + "Lines": 298, + "Code": 242, + "Comment": 22, + "Blank": 34, + "Complexity": 2, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 5332, + "CodeBytes": 0, + "Lines": 215, + "Code": 204, + "Comment": 6, + "Blank": 5, + "Complexity": 2, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 9383, + "CodeBytes": 0, + "Lines": 487, + "Code": 428, + "Comment": 2, + "Blank": 57, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5472, + "CodeBytes": 0, + "Lines": 188, + "Code": 188, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 201222, + "CodeBytes": 0, + "Lines": 190, + "Code": 188, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5720, + "CodeBytes": 0, + "Lines": 187, + "Code": 150, + "Comment": 8, + "Blank": 29, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1407, + "CodeBytes": 0, + "Lines": 30, + "Code": 22, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 80, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 178711.27491915552, + "estimatedScheduleMonths_low": 7.403627568082658, + "estimatedPeople_low": 2.351564510276445, + "estimatedCost_high": 556942.3856435408, + "estimatedScheduleMonths_high": 7.403627568082658, + "estimatedPeople_high": 2.351564510276445, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 56 5543 404 74 5065 204\n(ULOC) 2799\n-------------------------------------------------------------------------------\nTypeScript Typings 8 298 34 22 242 2\n(ULOC) 179\n-------------------------------------------------------------------------------\nJavaScript 6 215 5 6 204 2\n(ULOC) 148\n-------------------------------------------------------------------------------\nSass 6 487 57 2 428 0\n(ULOC) 292\n-------------------------------------------------------------------------------\nJSON 5 188 0 0 188 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nSVG 5 190 1 1 188 0\n(ULOC) 162\n-------------------------------------------------------------------------------\nYAML 3 187 29 8 150 0\n(ULOC) 103\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 94 7266 551 114 6601 209\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3937\nDRYness % 0.54\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $195,968\nEstimated Schedule Effort (organic) 7.40 months\nEstimated People Required (organic) 2.35\n───────────────────────────────────────────────────────────────────────────────\nProcessed 418156 bytes, 0.418 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:38:18Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-layout", + "commit": "176e6b73c5ced6551d643e6a6bd597c4969ca212" }, - "average_issue_resolution_time": [ - [ - "madie-layout", - "4 days 17:40:42" - ] - ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-14T00:00:00.000Z", - 2 - ], - [ - "2024-08-30T00:00:00.000Z", - 1 - ], - [ - "2024-10-09T00:00:00.000Z", - 1 - ], - [ - "2024-10-14T00:00:00.000Z", - 1 - ], - [ - "2024-10-16T00:00:00.000Z", - 1 - ], - [ - "2024-10-17T00:00:00.000Z", - 1 - ], - [ - "2024-10-29T00:00:00.000Z", - 1 - ], - [ - "2024-11-07T00:00:00.000Z", - 2 - ], - [ - "2024-11-08T00:00:00.000Z", - 1 - ], - [ - "2024-11-11T00:00:00.000Z", - 2 - ], - [ - "2024-11-13T00:00:00.000Z", - 2 - ], - [ - "2024-11-18T00:00:00.000Z", - 1 - ], - [ - "2024-11-21T00:00:00.000Z", - 1 - ], - [ - "2024-11-30T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@emotion/react", - 2.4931506849, - "2024-12-17T15:55:05.000" - ], - [ - "@emotion/styled", - 2.4931506849, - "2024-12-17T15:55:05.000" - ], - [ - "@madie/madie-auth", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@madie/madie-design-system", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@madie/madie-editor", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@madie/madie-root", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@mui/icons-material", - 2.5123287671, - "2024-12-17T15:55:05.000" - ], - [ - "@mui/lab", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@mui/material", - 2.3780821918, - "2024-12-17T15:55:05.000" - ], - [ - "@mui/styles", - 2.3780821918, - "2024-12-17T15:55:05.000" - ], - [ - "@okta/okta-auth-js", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@okta/okta-react", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@tailwindcss/forms", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:55:05.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:55:05.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:55:05.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:55:05.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:55:05.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:55:05.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:55:05.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:55:05.000" - ], - [ - "classnames", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "concurrently", - 1.9561643836, - "2024-12-17T15:55:05.000" - ], - [ - "copy-webpack-plugin", - 1.9616438356, - "2024-12-17T15:55:05.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:55:05.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:55:05.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:55:05.000" - ], - [ - "file-loader", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "formik", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:55:05.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:55:05.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:55:05.000" - ], - [ - "postcss", - 2.6630136986, - "2024-12-17T15:55:05.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:55:05.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:55:05.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:55:05.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "qs", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:55:05.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:55:05.000" - ], - [ - "react-router", - 0.0712328767, - "2024-12-17T15:55:05.000" - ], - [ - "react-router-dom", - 0.0712328767, - "2024-12-17T15:55:05.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "sass-loader", - 2.802739726, - "2024-12-17T15:55:05.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:55:05.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:55:05.000" - ], - [ - "style-loader", - 0.2465753425, - "2024-12-17T15:55:05.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:55:05.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:55:05.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:55:05.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:55:05.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:55:05.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:55:05.000" - ], - [ - "webpack-dev-server", - 0.0, - "2024-12-17T15:55:05.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:55:05.000" - ], - [ - "yup", - 3.1808219178, - "2024-12-17T15:55:05.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 174532, - "CodeBytes": 0, - "Lines": 5543, - "Code": 5065, - "Comment": 74, - "Blank": 404, - "Complexity": 204, - "Count": 56, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 7844, - "CodeBytes": 0, - "Lines": 298, - "Code": 242, - "Comment": 22, - "Blank": 34, - "Complexity": 2, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 5332, - "CodeBytes": 0, - "Lines": 215, - "Code": 204, - "Comment": 6, - "Blank": 5, - "Complexity": 2, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 9383, - "CodeBytes": 0, - "Lines": 487, - "Code": 428, - "Comment": 2, - "Blank": 57, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5472, - "CodeBytes": 0, - "Lines": 188, - "Code": 188, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 201222, - "CodeBytes": 0, - "Lines": 190, - "Code": 188, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5720, - "CodeBytes": 0, - "Lines": 187, - "Code": 150, - "Comment": 8, - "Blank": 29, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1407, - "CodeBytes": 0, - "Lines": 30, - "Code": 22, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 80, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 178711.27491915552, - "estimatedScheduleMonths_low": 7.403627568082658, - "estimatedPeople_low": 2.351564510276445, - "estimatedCost_high": 556942.3856435408, - "estimatedScheduleMonths_high": 7.403627568082658, - "estimatedPeople_high": 2.351564510276445, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 56 5543 404 74 5065 204\n(ULOC) 2799\n-------------------------------------------------------------------------------\nTypeScript Typings 8 298 34 22 242 2\n(ULOC) 179\n-------------------------------------------------------------------------------\nJavaScript 6 215 5 6 204 2\n(ULOC) 148\n-------------------------------------------------------------------------------\nSass 6 487 57 2 428 0\n(ULOC) 292\n-------------------------------------------------------------------------------\nJSON 5 188 0 0 188 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nSVG 5 190 1 1 188 0\n(ULOC) 162\n-------------------------------------------------------------------------------\nYAML 3 187 29 8 150 0\n(ULOC) 103\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 94 7266 551 114 6601 209\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3937\nDRYness % 0.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $195,968\nEstimated Schedule Effort (organic) 7.40 months\nEstimated People Required (organic) 2.35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 418156 bytes, 0.418 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:38:18Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-layout", - "commit": "176e6b73c5ced6551d643e6a6bd597c4969ca212" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 6.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-measure/madie-measure_data.json b/app/site/_data/measureauthoringtool/madie-measure/madie-measure_data.json index ea9e3ee219..afa370829b 100644 --- a/app/site/_data/measureauthoringtool/madie-measure/madie-measure_data.json +++ b/app/site/_data/measureauthoringtool/madie-measure/madie-measure_data.json @@ -1,977 +1,977 @@ { - "url": "https://github.com/measureauthoringtool/madie-measure", - "owner": "measureauthoringtool", - "name": "madie-measure", - "description": "MADiE Measure front end", - "commits_count": 3155, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 762, - "open_pull_requests_count": 30, - "merged_pull_requests_count": 680, - "closed_pull_requests_count": 52, - "forks_count": 2, - "stargazers_count": 2, - "watchers_count": 4, - "created_at": "2021-11-01T15:16:07Z", - "total_project_lines": 266407, - "average_project_lines": 437, - "total_project_comment_lines": 1922, - "average_project_comment_lines": 3, - "total_project_blank_lines": 7687, - "average_blank_lines": 13, - "predominant_langs": { - "TypeScript": 6297687, - "SCSS": 33592, - "JavaScript": 19804, - "CSS": 301, - "Shell": 116 - }, - "commits_by_month": { - "2025/1": 30 + "url": "https://github.com/measureauthoringtool/madie-measure", + "owner": "measureauthoringtool", + "name": "madie-measure", + "description": "MADiE Measure front end", + "commits_count": 3155, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 762, + "open_pull_requests_count": 30, + "merged_pull_requests_count": 680, + "closed_pull_requests_count": 52, + "forks_count": 2, + "stargazers_count": 2, + "watchers_count": 4, + "created_at": "2021-11-01T15:16:07Z", + "total_project_lines": 266407, + "average_project_lines": 437, + "total_project_comment_lines": 1922, + "average_project_comment_lines": 3, + "total_project_blank_lines": 7687, + "average_blank_lines": 13, + "predominant_langs": { + "TypeScript": 6297687, + "SCSS": 33592, + "JavaScript": 19804, + "CSS": 301, + "Shell": 116 + }, + "commits_by_month": { + "2025/1": 30 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 3 + ], + [ + "2024-08-14T00:00:00.000Z", + 4 + ], + [ + "2024-08-15T00:00:00.000Z", + 1 + ], + [ + "2024-08-21T00:00:00.000Z", + 3 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-09-05T00:00:00.000Z", + 1 + ], + [ + "2024-09-16T00:00:00.000Z", + 1 + ], + [ + "2024-09-18T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 2 + ], + [ + "2024-09-24T00:00:00.000Z", + 1 + ], + [ + "2024-10-23T00:00:00.000Z", + 2 + ], + [ + "2024-11-08T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@date-io/date-fns", + 0.4684931507, + "2024-12-17T15:50:28.000" + ], + [ + "@emotion/react", + 2.4931506849, + "2024-12-17T15:50:28.000" + ], + [ + "@emotion/styled", + 2.4931506849, + "2024-12-17T15:50:28.000" + ], + [ + "@heroicons/react", + 2.7178082192, + "2024-12-17T15:50:28.000" + ], + [ + "@lhncbc/ucum-lhc", + 1.5123287671, + "2024-12-17T15:50:28.000" + ], + [ + "@madie/cql-antlr-parser", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@madie/madie-auth", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@madie/madie-design-system", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@madie/madie-editor", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@madie/madie-root", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@material-ui/core", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@mui/icons-material", + 0.0356164384, + "2024-12-17T15:50:28.000" + ], + [ + "@mui/lab", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@mui/material", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@mui/styles", + 2.3780821918, + "2024-12-17T15:50:28.000" + ], + [ + "@mui/x-date-pickers", + 0.4767123288, + "2024-12-17T15:50:28.000" + ], + [ + "@tailwindcss/forms", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@tanstack/match-sorter-utils", + 1.3561643836, + "2024-12-17T15:50:28.000" + ], + [ + "@tanstack/react-table", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:50:28.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:50:28.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:50:28.000" + ], + [ + "@types/dompurify", + 2.0219178082, + "2024-12-17T15:50:28.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:50:28.000" + ], + [ + "@types/lodash", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:50:28.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:50:28.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "@wojtekmaj/enzyme-adapter-react-17", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "babel-jest", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "babel-plugin-dynamic-import-node", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "babel-plugin-macros", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "classnames", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:50:28.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "date-fns", + 1.3863013699, + "2024-12-17T15:50:28.000" + ], + [ + "dompurify", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "enzyme", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:50:28.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:50:28.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.3479452055, + "2024-12-17T15:50:28.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:50:28.000" + ], + [ + "eslint-plugin-react-hooks", + 0.6109589041, + "2024-12-17T15:50:28.000" + ], + [ + "file-saver", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "formik", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:50:28.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:50:28.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:50:28.000" + ], + [ + "jszip", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "lodash", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "node-polyfill-webpack-plugin", + 3.4328767123, + "2024-12-17T15:50:28.000" + ], + [ + "postcss", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:50:28.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:50:28.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:50:28.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "query-string", + 1.8520547945, + "2024-12-17T15:50:28.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:50:28.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:50:28.000" + ], + [ + "react-router", + 0.0712328767, + "2024-12-17T15:50:28.000" + ], + [ + "react-router-dom", + 0.0712328767, + "2024-12-17T15:50:28.000" + ], + [ + "react-select", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "sass-loader", + 2.802739726, + "2024-12-17T15:50:28.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:50:28.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:50:28.000" + ], + [ + "style-loader", + 0.2465753425, + "2024-12-17T15:50:28.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:50:28.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:50:28.000" + ], + [ + "use-debounce", + 1.5232876712, + "2024-12-17T15:50:28.000" + ], + [ + "uuid", + 3.9260273973, + "2024-12-17T15:50:28.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:50:28.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:50:28.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:50:28.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:50:28.000" + ], + [ + "webpack-dev-server", + 0.0, + "2024-12-17T15:50:28.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:50:28.000" + ], + [ + "yup", + 3.1808219178, + "2024-12-17T15:50:28.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 6297687, + "CodeBytes": 0, + "Lines": 130662, + "Code": 120876, + "Comment": 1936, + "Blank": 7850, + "Complexity": 5351, + "Count": 528, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 33592, + "CodeBytes": 0, + "Lines": 1734, + "Code": 1603, + "Comment": 11, + "Blank": 120, + "Complexity": 0, + "Count": 42, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 6390741, + "CodeBytes": 0, + "Lines": 138724, + "Code": 138722, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 38, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 19804, + "CodeBytes": 0, + "Lines": 724, + "Code": 694, + "Comment": 9, + "Blank": 21, + "Complexity": 4, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 12050, + "CodeBytes": 0, + "Lines": 465, + "Code": 394, + "Comment": 23, + "Blank": 48, + "Complexity": 3, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5733, + "CodeBytes": 0, + "Lines": 189, + "Code": 150, + "Comment": 9, + "Blank": 30, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1813, + "CodeBytes": 0, + "Lines": 53, + "Code": 36, + "Comment": 0, + "Blank": 17, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 301, + "CodeBytes": 0, + "Lines": 15, + "Code": 15, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 901, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 80, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 8547386.587099876, + "estimatedScheduleMonths_low": 32.19018655285656, + "estimatedPeople_low": 25.867792074765738, + "estimatedCost_high": 26637389.716963824, + "estimatedScheduleMonths_high": 32.19018655285656, + "estimatedPeople_high": 25.867792074765738, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 528 130662 7850 1936 120876 5351\n(ULOC) 42730\n-------------------------------------------------------------------------------\nSass 42 1734 120 11 1603 0\n(ULOC) 899\n-------------------------------------------------------------------------------\nJSON 38 138724 2 0 138722 0\n(ULOC) 25711\n-------------------------------------------------------------------------------\nJavaScript 9 724 21 9 694 4\n(ULOC) 462\n-------------------------------------------------------------------------------\nTypeScript Typings 5 465 48 23 394 3\n(ULOC) 327\n-------------------------------------------------------------------------------\nYAML 3 189 30 9 150 0\n(ULOC) 104\n-------------------------------------------------------------------------------\nMarkdown 2 53 17 0 36 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nCSS 1 15 0 0 15 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSVG 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 632 272697 8101 1989 262607 5359\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 69870\nDRYness % 0.26\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $9,372,747\nEstimated Schedule Effort (organic) 32.19 months\nEstimated People Required (organic) 25.87\n───────────────────────────────────────────────────────────────────────────────\nProcessed 12769866 bytes, 12.770 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:40:10Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-measure", + "commit": "595ae9d281409018c27c50a1894da4ecc84f0e1e" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 3 - ], - [ - "2024-08-14T00:00:00.000Z", - 4 - ], - [ - "2024-08-15T00:00:00.000Z", - 1 - ], - [ - "2024-08-21T00:00:00.000Z", - 3 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-09-05T00:00:00.000Z", - 1 - ], - [ - "2024-09-16T00:00:00.000Z", - 1 - ], - [ - "2024-09-18T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 2 - ], - [ - "2024-09-24T00:00:00.000Z", - 1 - ], - [ - "2024-10-23T00:00:00.000Z", - 2 - ], - [ - "2024-11-08T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@date-io/date-fns", - 0.4684931507, - "2024-12-17T15:50:28.000" - ], - [ - "@emotion/react", - 2.4931506849, - "2024-12-17T15:50:28.000" - ], - [ - "@emotion/styled", - 2.4931506849, - "2024-12-17T15:50:28.000" - ], - [ - "@heroicons/react", - 2.7178082192, - "2024-12-17T15:50:28.000" - ], - [ - "@lhncbc/ucum-lhc", - 1.5123287671, - "2024-12-17T15:50:28.000" - ], - [ - "@madie/cql-antlr-parser", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@madie/madie-auth", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@madie/madie-design-system", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@madie/madie-editor", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@madie/madie-root", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@material-ui/core", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@mui/icons-material", - 0.0356164384, - "2024-12-17T15:50:28.000" - ], - [ - "@mui/lab", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@mui/material", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@mui/styles", - 2.3780821918, - "2024-12-17T15:50:28.000" - ], - [ - "@mui/x-date-pickers", - 0.4767123288, - "2024-12-17T15:50:28.000" - ], - [ - "@tailwindcss/forms", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@tanstack/match-sorter-utils", - 1.3561643836, - "2024-12-17T15:50:28.000" - ], - [ - "@tanstack/react-table", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:50:28.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:50:28.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:50:28.000" - ], - [ - "@types/dompurify", - 2.0219178082, - "2024-12-17T15:50:28.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:50:28.000" - ], - [ - "@types/lodash", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:50:28.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:50:28.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "@wojtekmaj/enzyme-adapter-react-17", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "babel-jest", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "babel-plugin-dynamic-import-node", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "babel-plugin-macros", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "classnames", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:50:28.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "date-fns", - 1.3863013699, - "2024-12-17T15:50:28.000" - ], - [ - "dompurify", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "enzyme", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:50:28.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:50:28.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.3479452055, - "2024-12-17T15:50:28.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:50:28.000" - ], - [ - "eslint-plugin-react-hooks", - 0.6109589041, - "2024-12-17T15:50:28.000" - ], - [ - "file-saver", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "formik", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:50:28.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:50:28.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:50:28.000" - ], - [ - "jszip", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "lodash", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "node-polyfill-webpack-plugin", - 3.4328767123, - "2024-12-17T15:50:28.000" - ], - [ - "postcss", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:50:28.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:50:28.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:50:28.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "query-string", - 1.8520547945, - "2024-12-17T15:50:28.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:50:28.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:50:28.000" - ], - [ - "react-router", - 0.0712328767, - "2024-12-17T15:50:28.000" - ], - [ - "react-router-dom", - 0.0712328767, - "2024-12-17T15:50:28.000" - ], - [ - "react-select", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "sass-loader", - 2.802739726, - "2024-12-17T15:50:28.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:50:28.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:50:28.000" - ], - [ - "style-loader", - 0.2465753425, - "2024-12-17T15:50:28.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:50:28.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:50:28.000" - ], - [ - "use-debounce", - 1.5232876712, - "2024-12-17T15:50:28.000" - ], - [ - "uuid", - 3.9260273973, - "2024-12-17T15:50:28.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:50:28.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:50:28.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:50:28.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:50:28.000" - ], - [ - "webpack-dev-server", - 0.0, - "2024-12-17T15:50:28.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:50:28.000" - ], - [ - "yup", - 3.1808219178, - "2024-12-17T15:50:28.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 6236465, - "CodeBytes": 0, - "Lines": 128695, - "Code": 119084, - "Comment": 1928, - "Blank": 7683, - "Complexity": 5269, - "Count": 525, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 33548, - "CodeBytes": 0, - "Lines": 1730, - "Code": 1600, - "Comment": 11, - "Blank": 119, - "Complexity": 0, - "Count": 42, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 6390741, - "CodeBytes": 0, - "Lines": 138724, - "Code": 138722, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 38, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 19804, - "CodeBytes": 0, - "Lines": 724, - "Code": 694, - "Comment": 9, - "Blank": 21, - "Complexity": 4, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 12050, - "CodeBytes": 0, - "Lines": 465, - "Code": 394, - "Comment": 23, - "Blank": 48, - "Complexity": 3, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5733, - "CodeBytes": 0, - "Lines": 189, - "Code": 150, - "Comment": 9, - "Blank": 30, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1813, - "CodeBytes": 0, - "Lines": 53, - "Code": 36, - "Comment": 0, - "Blank": 17, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 301, - "CodeBytes": 0, - "Lines": 15, - "Code": 15, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 901, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 80, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 8486051.862495147, - "estimatedScheduleMonths_low": 32.102213647286696, - "estimatedPeople_low": 25.752548213163667, - "estimatedCost_high": 26446243.92686411, - "estimatedScheduleMonths_high": 32.102213647286696, - "estimatedPeople_high": 25.752548213163667, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 525 128695 7683 1928 119084 5269\n(ULOC) 42089\n-------------------------------------------------------------------------------\nSass 42 1730 119 11 1600 0\n(ULOC) 897\n-------------------------------------------------------------------------------\nJSON 38 138724 2 0 138722 0\n(ULOC) 25711\n-------------------------------------------------------------------------------\nJavaScript 9 724 21 9 694 4\n(ULOC) 462\n-------------------------------------------------------------------------------\nTypeScript Typings 5 465 48 23 394 3\n(ULOC) 327\n-------------------------------------------------------------------------------\nYAML 3 189 30 9 150 0\n(ULOC) 104\n-------------------------------------------------------------------------------\nMarkdown 2 53 17 0 36 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nCSS 1 15 0 0 15 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSVG 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 629 270726 7933 1981 260812 5277\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 69227\nDRYness % 0.26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $9,305,490\nEstimated Schedule Effort (organic) 32.10 months\nEstimated People Required (organic) 25.75\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 12708600 bytes, 12.709 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:40:10Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-measure", - "commit": "595ae9d281409018c27c50a1894da4ecc84f0e1e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 9, - "reason": "1 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 5.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 9, + "reason": "1 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-models/madie-models_data.json b/app/site/_data/measureauthoringtool/madie-models/madie-models_data.json index 90dd6832a2..5cac4352c7 100644 --- a/app/site/_data/measureauthoringtool/madie-models/madie-models_data.json +++ b/app/site/_data/measureauthoringtool/madie-models/madie-models_data.json @@ -1,350 +1,350 @@ { - "url": "https://github.com/measureauthoringtool/madie-models", - "owner": "measureauthoringtool", - "name": "madie-models", - "description": "Typescript models to be used for MADiE UI & any other typescript projects related to MADiE (ie., Lambdas / Node servers)", - "commits_count": 550, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 243, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 216, - "closed_pull_requests_count": 27, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-03-16T18:56:17Z", - "total_project_lines": 979, - "average_project_lines": 35, - "total_project_comment_lines": 15, - "average_project_comment_lines": 1, - "total_project_blank_lines": 101, - "average_blank_lines": 4, - "predominant_langs": { - "TypeScript": 16982, - "JavaScript": 183 + "url": "https://github.com/measureauthoringtool/madie-models", + "owner": "measureauthoringtool", + "name": "madie-models", + "description": "Typescript models to be used for MADiE UI & any other typescript projects related to MADiE (ie., Lambdas / Node servers)", + "commits_count": 550, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 243, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 216, + "closed_pull_requests_count": 27, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-03-16T18:56:17Z", + "total_project_lines": 979, + "average_project_lines": 35, + "total_project_comment_lines": 15, + "average_project_comment_lines": 1, + "total_project_blank_lines": 101, + "average_blank_lines": 4, + "predominant_langs": { + "TypeScript": 16982, + "JavaScript": 183 + }, + "commits_by_month": { + "2025/1": 4, + "2024/12": 21, + "2024/11": 1, + "2024/10": 2, + "2024/9": 2 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-12T00:00:00.000Z", + 1 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ], + [ + "2024-11-11T00:00:00.000Z", + 1 + ], + [ + "2024-12-04T00:00:00.000Z", + 3 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 16982, + "CodeBytes": 0, + "Lines": 656, + "Code": 601, + "Comment": 0, + "Blank": 55, + "Complexity": 11, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 11412, + "CodeBytes": 0, + "Lines": 134, + "Code": 126, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1962, + "CodeBytes": 0, + "Lines": 52, + "Code": 37, + "Comment": 0, + "Blank": 15, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3960, + "CodeBytes": 0, + "Lines": 141, + "Code": 103, + "Comment": 14, + "Blank": 24, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 183, + "CodeBytes": 0, + "Lines": 6, + "Code": 5, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 21335.559826774137, + "estimatedScheduleMonths_low": 3.301310384591634, + "estimatedPeople_low": 0.6296035859043032, + "estimatedCost_high": 66490.92282699847, + "estimatedScheduleMonths_high": 3.301310384591634, + "estimatedPeople_high": 0.6296035859043032, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 21 656 55 0 601 11\n(ULOC) 423\n-------------------------------------------------------------------------------\nJSON 2 134 8 0 126 0\n(ULOC) 123\n-------------------------------------------------------------------------------\nMarkdown 2 52 15 0 37 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nYAML 2 141 24 14 103 0\n(ULOC) 78\n-------------------------------------------------------------------------------\nJavaScript 1 6 0 1 5 0\n(ULOC) 7\n───────────────────────────────────────────────────────────────────────────────\nTotal 28 989 102 15 872 11\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 661\nDRYness % 0.67\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $23,395\nEstimated Schedule Effort (organic) 3.30 months\nEstimated People Required (organic) 0.63\n───────────────────────────────────────────────────────────────────────────────\nProcessed 34499 bytes, 0.034 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:42:38Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-models", + "commit": "f6ac5bb979b97864c8e8f3eb206f2e45d1a4c185" }, - "commits_by_month": { - "2025/1": 4, - "2024/12": 21, - "2024/11": 1, - "2024/10": 2, - "2024/9": 2 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-12T00:00:00.000Z", - 1 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ], - [ - "2024-11-11T00:00:00.000Z", - 1 - ], - [ - "2024-12-04T00:00:00.000Z", - 3 - ] + "score": 5.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "22 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 16813, - "CodeBytes": 0, - "Lines": 647, - "Code": 593, - "Comment": 0, - "Blank": 54, - "Complexity": 11, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 11412, - "CodeBytes": 0, - "Lines": 134, - "Code": 126, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1962, - "CodeBytes": 0, - "Lines": 52, - "Code": 37, - "Comment": 0, - "Blank": 15, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3960, - "CodeBytes": 0, - "Lines": 141, - "Code": 103, - "Comment": 14, - "Blank": 24, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 183, - "CodeBytes": 0, - "Lines": 6, - "Code": 5, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 21130.08106830843, - "estimatedScheduleMonths_low": 3.28919229141682, - "estimatedPeople_low": 0.6258372480402751, - "estimatedCost_high": 65850.56127179871, - "estimatedScheduleMonths_high": 3.28919229141682, - "estimatedPeople_high": 0.6258372480402751, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 21 647 54 0 593 11\n(ULOC) 420\n-------------------------------------------------------------------------------\nJSON 2 134 8 0 126 0\n(ULOC) 123\n-------------------------------------------------------------------------------\nMarkdown 2 52 15 0 37 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nYAML 2 141 24 14 103 0\n(ULOC) 78\n-------------------------------------------------------------------------------\nJavaScript 1 6 0 1 5 0\n(ULOC) 7\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 28 980 101 15 864 11\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 658\nDRYness % 0.67\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $23,170\nEstimated Schedule Effort (organic) 3.29 months\nEstimated People Required (organic) 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 34330 bytes, 0.034 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:42:38Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-models", - "commit": "f6ac5bb979b97864c8e8f3eb206f2e45d1a4c185" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "22 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-patient/madie-patient_data.json b/app/site/_data/measureauthoringtool/madie-patient/madie-patient_data.json index f39902fc6a..9bb2f4fae7 100644 --- a/app/site/_data/measureauthoringtool/madie-patient/madie-patient_data.json +++ b/app/site/_data/measureauthoringtool/madie-patient/madie-patient_data.json @@ -1,1014 +1,1014 @@ { - "url": "https://github.com/measureauthoringtool/madie-patient", - "owner": "measureauthoringtool", - "name": "madie-patient", - "description": null, - "commits_count": 3845, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 770, - "open_pull_requests_count": 18, - "merged_pull_requests_count": 704, - "closed_pull_requests_count": 48, - "forks_count": 2, - "stargazers_count": 3, - "watchers_count": 4, - "created_at": "2021-12-30T03:26:46Z", - "total_project_lines": 223091, - "average_project_lines": 548, - "total_project_comment_lines": 1068, - "average_project_comment_lines": 3, - "total_project_blank_lines": 4758, - "average_blank_lines": 12, - "predominant_langs": { - "TypeScript": 4656296, - "SCSS": 20454, - "JavaScript": 18163, - "Shell": 766, - "CSS": 301 - }, - "commits_by_month": { - "2024/11": 30 + "url": "https://github.com/measureauthoringtool/madie-patient", + "owner": "measureauthoringtool", + "name": "madie-patient", + "description": null, + "commits_count": 3845, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 770, + "open_pull_requests_count": 18, + "merged_pull_requests_count": 704, + "closed_pull_requests_count": 48, + "forks_count": 2, + "stargazers_count": 3, + "watchers_count": 4, + "created_at": "2021-12-30T03:26:46Z", + "total_project_lines": 223091, + "average_project_lines": 548, + "total_project_comment_lines": 1068, + "average_project_comment_lines": 3, + "total_project_blank_lines": 4758, + "average_blank_lines": 12, + "predominant_langs": { + "TypeScript": 4656296, + "SCSS": 20454, + "JavaScript": 18163, + "Shell": 766, + "CSS": 301 + }, + "commits_by_month": { + "2024/11": 30 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 3 + ], + [ + "2024-08-16T00:00:00.000Z", + 1 + ], + [ + "2024-08-21T00:00:00.000Z", + 2 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-08-26T00:00:00.000Z", + 1 + ], + [ + "2024-08-27T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 1 + ], + [ + "2024-08-29T00:00:00.000Z", + 1 + ], + [ + "2024-09-10T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-09-24T00:00:00.000Z", + 3 + ], + [ + "2024-10-22T00:00:00.000Z", + 1 + ], + [ + "2024-10-24T00:00:00.000Z", + 1 + ], + [ + "2024-10-29T00:00:00.000Z", + 1 + ], + [ + "2024-10-30T00:00:00.000Z", + 1 + ], + [ + "2024-11-04T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@date-io/date-fns", + 0.4684931507, + "2024-12-17T15:52:33.000" + ], + [ + "@emotion/react", + 2.4931506849, + "2024-12-17T15:52:33.000" + ], + [ + "@emotion/styled", + 2.4931506849, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/fontawesome-svg-core", + 2.8575342466, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/free-solid-svg-icons", + 3.3698630137, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/react-fontawesome", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@lhncbc/ucum-lhc", + 0.5753424658, + "2024-12-17T15:52:33.000" + ], + [ + "@madie/cql-antlr-parser", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@madie/madie-design-system", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@material-ui/core", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/core", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/icons-material", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/lab", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/material", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/styles", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/x-data-grid", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@mui/x-date-pickers", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@tailwindcss/forms", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@tanstack/match-sorter-utils", + 1.3561643836, + "2024-12-17T15:52:33.000" + ], + [ + "@tanstack/react-table", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@testing-library/jest-dom", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:52:33.000" + ], + [ + "@testing-library/react-hooks", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@testing-library/user-event", + 2.1945205479, + "2024-12-17T15:52:33.000" + ], + [ + "@types/blueimp-md5", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@types/fhir", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@types/jest", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@types/lodash", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:52:33.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:52:33.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:52:33.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "ace-builds", + 2.8904109589, + "2024-12-17T15:52:33.000" + ], + [ + "allotment", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:52:33.000" + ], + [ + "babel-plugin-macros", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "blueimp-md5", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "classnames", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:52:33.000" + ], + [ + "cqm-execution", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "cqm-models", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "date-fns", + 1.3863013699, + "2024-12-17T15:52:33.000" + ], + [ + "dayjs", + 1.1397260274, + "2024-12-17T15:52:33.000" + ], + [ + "dompurify", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-plugin-jsx-a11y", + 0.3479452055, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-plugin-react-hooks", + 0.6109589041, + "2024-12-17T15:52:33.000" + ], + [ + "fhir", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "file-saver", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "formik", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "fqm-execution", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "handlebars-loader", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "html-react-parser", + 2.5479452055, + "2024-12-17T15:52:33.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:52:33.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:52:33.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:52:33.000" + ], + [ + "jsonpath-plus", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "jszip", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "lodash", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "moment", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "node-polyfill-webpack-plugin", + 3.4328767123, + "2024-12-17T15:52:33.000" + ], + [ + "postcss", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:52:33.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:52:33.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:52:33.000" + ], + [ + "pretty-bytes", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "query-string", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:52:33.000" + ], + [ + "react-ace", + 3.0328767123, + "2024-12-17T15:52:33.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:52:33.000" + ], + [ + "react-dropzone", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "react-router", + 0.0712328767, + "2024-12-17T15:52:33.000" + ], + [ + "react-router-dom", + 0.0712328767, + "2024-12-17T15:52:33.000" + ], + [ + "sass", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "sass-loader", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:52:33.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:52:33.000" + ], + [ + "styled-components", + 1.2630136986, + "2024-12-17T15:52:33.000" + ], + [ + "tailwindcss", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "twin.macro", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:52:33.000" + ], + [ + "validator", + 1.2630136986, + "2024-12-17T15:52:33.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:52:33.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:52:33.000" + ], + [ + "webpack-dev-server", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:52:33.000" + ], + [ + "yup", + 3.1808219178, + "2024-12-17T15:52:33.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 4656296, + "CodeBytes": 0, + "Lines": 82609, + "Code": 77016, + "Comment": 1008, + "Blank": 4585, + "Complexity": 3450, + "Count": 334, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 6374747, + "CodeBytes": 0, + "Lines": 138186, + "Code": 138184, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 28, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 20454, + "CodeBytes": 0, + "Lines": 1060, + "Code": 976, + "Comment": 9, + "Blank": 75, + "Complexity": 0, + "Count": 26, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 18163, + "CodeBytes": 0, + "Lines": 667, + "Code": 646, + "Comment": 5, + "Blank": 16, + "Complexity": 2, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 4511, + "CodeBytes": 0, + "Lines": 193, + "Code": 143, + "Comment": 22, + "Blank": 28, + "Complexity": 2, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5755, + "CodeBytes": 0, + "Lines": 186, + "Code": 139, + "Comment": 19, + "Blank": 28, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1404, + "CodeBytes": 0, + "Lines": 30, + "Code": 22, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 301, + "CodeBytes": 0, + "Lines": 15, + "Code": 15, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 766, + "CodeBytes": 0, + "Lines": 24, + "Code": 15, + "Comment": 5, + "Blank": 4, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 7004884.713742416, + "estimatedScheduleMonths_low": 29.845523345553037, + "estimatedPeople_low": 22.865005037129315, + "estimatedCost_high": 21830280.184585612, + "estimatedScheduleMonths_high": 29.845523345553037, + "estimatedPeople_high": 22.865005037129315, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 334 82609 4585 1008 77016 3450\n(ULOC) 26843\n-------------------------------------------------------------------------------\nJSON 28 138186 2 0 138184 0\n(ULOC) 25565\n-------------------------------------------------------------------------------\nSass 26 1060 75 9 976 0\n(ULOC) 567\n-------------------------------------------------------------------------------\nJavaScript 7 667 16 5 646 2\n(ULOC) 429\n-------------------------------------------------------------------------------\nTypeScript Typings 4 193 28 22 143 2\n(ULOC) 119\n-------------------------------------------------------------------------------\nYAML 3 186 28 19 139 0\n(ULOC) 114\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nCSS 1 15 0 0 15 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 24 4 5 15 1\n(ULOC) 21\n───────────────────────────────────────────────────────────────────────────────\nTotal 407 223091 4758 1068 217265 3455\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 53504\nDRYness % 0.24\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $7,681,297\nEstimated Schedule Effort (organic) 29.85 months\nEstimated People Required (organic) 22.87\n───────────────────────────────────────────────────────────────────────────────\nProcessed 11089445 bytes, 11.089 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:40:29Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-patient", + "commit": "127a2875d2ae1b1741ca1f54f561c879383bd646" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 3 - ], - [ - "2024-08-16T00:00:00.000Z", - 1 - ], - [ - "2024-08-21T00:00:00.000Z", - 2 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-08-26T00:00:00.000Z", - 1 - ], - [ - "2024-08-27T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 1 - ], - [ - "2024-08-29T00:00:00.000Z", - 1 - ], - [ - "2024-09-10T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-09-24T00:00:00.000Z", - 3 - ], - [ - "2024-10-22T00:00:00.000Z", - 1 - ], - [ - "2024-10-24T00:00:00.000Z", - 1 - ], - [ - "2024-10-29T00:00:00.000Z", - 1 - ], - [ - "2024-10-30T00:00:00.000Z", - 1 - ], - [ - "2024-11-04T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@date-io/date-fns", - 0.4684931507, - "2024-12-17T15:52:33.000" - ], - [ - "@emotion/react", - 2.4931506849, - "2024-12-17T15:52:33.000" - ], - [ - "@emotion/styled", - 2.4931506849, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/fontawesome-svg-core", - 2.8575342466, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/free-solid-svg-icons", - 3.3698630137, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/react-fontawesome", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@lhncbc/ucum-lhc", - 0.5753424658, - "2024-12-17T15:52:33.000" - ], - [ - "@madie/cql-antlr-parser", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@madie/madie-design-system", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@material-ui/core", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/core", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/icons-material", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/lab", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/material", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/styles", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/x-data-grid", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@mui/x-date-pickers", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@tailwindcss/forms", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@tanstack/match-sorter-utils", - 1.3561643836, - "2024-12-17T15:52:33.000" - ], - [ - "@tanstack/react-table", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@testing-library/jest-dom", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:52:33.000" - ], - [ - "@testing-library/react-hooks", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@testing-library/user-event", - 2.1945205479, - "2024-12-17T15:52:33.000" - ], - [ - "@types/blueimp-md5", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@types/fhir", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@types/jest", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@types/lodash", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:52:33.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:52:33.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:52:33.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "ace-builds", - 2.8904109589, - "2024-12-17T15:52:33.000" - ], - [ - "allotment", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:52:33.000" - ], - [ - "babel-plugin-macros", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "blueimp-md5", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "classnames", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:52:33.000" - ], - [ - "cqm-execution", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "cqm-models", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "date-fns", - 1.3863013699, - "2024-12-17T15:52:33.000" - ], - [ - "dayjs", - 1.1397260274, - "2024-12-17T15:52:33.000" - ], - [ - "dompurify", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-plugin-jsx-a11y", - 0.3479452055, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-plugin-react-hooks", - 0.6109589041, - "2024-12-17T15:52:33.000" - ], - [ - "fhir", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "file-saver", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "formik", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "fqm-execution", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "handlebars-loader", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "html-react-parser", - 2.5479452055, - "2024-12-17T15:52:33.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:52:33.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:52:33.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:52:33.000" - ], - [ - "jsonpath-plus", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "jszip", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "lodash", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "moment", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "node-polyfill-webpack-plugin", - 3.4328767123, - "2024-12-17T15:52:33.000" - ], - [ - "postcss", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:52:33.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:52:33.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:52:33.000" - ], - [ - "pretty-bytes", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "query-string", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:52:33.000" - ], - [ - "react-ace", - 3.0328767123, - "2024-12-17T15:52:33.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:52:33.000" - ], - [ - "react-dropzone", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "react-router", - 0.0712328767, - "2024-12-17T15:52:33.000" - ], - [ - "react-router-dom", - 0.0712328767, - "2024-12-17T15:52:33.000" - ], - [ - "sass", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "sass-loader", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:52:33.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:52:33.000" - ], - [ - "styled-components", - 1.2630136986, - "2024-12-17T15:52:33.000" - ], - [ - "tailwindcss", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "twin.macro", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:52:33.000" - ], - [ - "validator", - 1.2630136986, - "2024-12-17T15:52:33.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:52:33.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:52:33.000" - ], - [ - "webpack-dev-server", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:52:33.000" - ], - [ - "yup", - 3.1808219178, - "2024-12-17T15:52:33.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 4656296, - "CodeBytes": 0, - "Lines": 82609, - "Code": 77016, - "Comment": 1008, - "Blank": 4585, - "Complexity": 3450, - "Count": 334, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 6374747, - "CodeBytes": 0, - "Lines": 138186, - "Code": 138184, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 28, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 20454, - "CodeBytes": 0, - "Lines": 1060, - "Code": 976, - "Comment": 9, - "Blank": 75, - "Complexity": 0, - "Count": 26, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 18163, - "CodeBytes": 0, - "Lines": 667, - "Code": 646, - "Comment": 5, - "Blank": 16, - "Complexity": 2, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 4511, - "CodeBytes": 0, - "Lines": 193, - "Code": 143, - "Comment": 22, - "Blank": 28, - "Complexity": 2, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5755, - "CodeBytes": 0, - "Lines": 186, - "Code": 139, - "Comment": 19, - "Blank": 28, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1404, - "CodeBytes": 0, - "Lines": 30, - "Code": 22, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 301, - "CodeBytes": 0, - "Lines": 15, - "Code": 15, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 766, - "CodeBytes": 0, - "Lines": 24, - "Code": 15, - "Comment": 5, - "Blank": 4, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 7004884.713742416, - "estimatedScheduleMonths_low": 29.845523345553037, - "estimatedPeople_low": 22.865005037129315, - "estimatedCost_high": 21830280.184585612, - "estimatedScheduleMonths_high": 29.845523345553037, - "estimatedPeople_high": 22.865005037129315, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 334 82609 4585 1008 77016 3450\n(ULOC) 26843\n-------------------------------------------------------------------------------\nJSON 28 138186 2 0 138184 0\n(ULOC) 25565\n-------------------------------------------------------------------------------\nSass 26 1060 75 9 976 0\n(ULOC) 567\n-------------------------------------------------------------------------------\nJavaScript 7 667 16 5 646 2\n(ULOC) 429\n-------------------------------------------------------------------------------\nTypeScript Typings 4 193 28 22 143 2\n(ULOC) 119\n-------------------------------------------------------------------------------\nYAML 3 186 28 19 139 0\n(ULOC) 114\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nCSS 1 15 0 0 15 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 24 4 5 15 1\n(ULOC) 21\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 407 223091 4758 1068 217265 3455\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 53504\nDRYness % 0.24\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $7,681,297\nEstimated Schedule Effort (organic) 29.85 months\nEstimated People Required (organic) 22.87\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 11089445 bytes, 11.089 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:40:29Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-patient", - "commit": "127a2875d2ae1b1741ca1f54f561c879383bd646" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 6, - "reason": "4 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 5.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 6, + "reason": "4 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-public/madie-public_data.json b/app/site/_data/measureauthoringtool/madie-public/madie-public_data.json index 6e2944e89f..c171dc5872 100644 --- a/app/site/_data/measureauthoringtool/madie-public/madie-public_data.json +++ b/app/site/_data/measureauthoringtool/madie-public/madie-public_data.json @@ -1,650 +1,650 @@ { - "url": "https://github.com/measureauthoringtool/madie-public", - "owner": "measureauthoringtool", - "name": "madie-public", - "description": "MADiE Public Site", - "commits_count": 45, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 37, - "open_pull_requests_count": 11, - "merged_pull_requests_count": 19, - "closed_pull_requests_count": 7, - "forks_count": 2, - "stargazers_count": 2, - "watchers_count": 5, - "created_at": "2021-09-13T19:40:37Z", - "total_project_lines": 775, - "average_project_lines": 35, - "total_project_comment_lines": 38, - "average_project_comment_lines": 2, - "total_project_blank_lines": 77, - "average_blank_lines": 4, - "predominant_langs": { - "JavaScript": 2591, - "TypeScript": 2521, - "Shell": 116 - }, - "commits_by_month": { - "2023/9": 2, - "2022/12": 2, - "2022/11": 1, - "2022/8": 10, - "2022/2": 5, - "2021/12": 2, - "2021/11": 7, - "2021/9": 1 + "url": "https://github.com/measureauthoringtool/madie-public", + "owner": "measureauthoringtool", + "name": "madie-public", + "description": "MADiE Public Site", + "commits_count": 45, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 37, + "open_pull_requests_count": 11, + "merged_pull_requests_count": 19, + "closed_pull_requests_count": 7, + "forks_count": 2, + "stargazers_count": 2, + "watchers_count": 5, + "created_at": "2021-09-13T19:40:37Z", + "total_project_lines": 775, + "average_project_lines": 35, + "total_project_comment_lines": 38, + "average_project_comment_lines": 2, + "total_project_blank_lines": 77, + "average_blank_lines": 4, + "predominant_langs": { + "JavaScript": 2591, + "TypeScript": 2521, + "Shell": 116 + }, + "commits_by_month": { + "2023/9": 2, + "2022/12": 2, + "2022/11": 1, + "2022/8": 10, + "2022/2": 5, + "2021/12": 2, + "2021/11": 7, + "2021/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/plugin-transform-react-jsx", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@madie/madie-auth", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@madie/madie-editor", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@madie/madie-root", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:49:28.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:49:28.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:49:28.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:49:28.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:49:28.000" + ], + [ + "@types/styled-components", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:49:28.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "autoprefixer", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:49:28.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:49:28.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:49:28.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:49:28.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:49:28.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:49:28.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:49:28.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:49:28.000" + ], + [ + "postcss", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "postcss-loader", + 2.2547945205, + "2024-12-17T15:49:28.000" + ], + [ + "postcss-preset-env", + 2.0821917808, + "2024-12-17T15:49:28.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:49:28.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:49:28.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:49:28.000" + ], + [ + "react-is", + 0.6109589041, + "2024-12-17T15:49:28.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:49:28.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:49:28.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:49:28.000" + ], + [ + "tailwindcss", + 3.2630136986, + "2024-12-17T15:49:28.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "twin.macro", + 2.1150684932, + "2024-12-17T15:49:28.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:49:28.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:49:28.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:49:28.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:49:28.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:49:28.000" + ], + [ + "webpack-dev-server", + 0.0, + "2024-12-17T15:49:28.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:49:28.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JSON", + "Bytes": 4286, + "CodeBytes": 0, + "Lines": 159, + "Code": 159, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2591, + "CodeBytes": 0, + "Lines": 111, + "Code": 104, + "Comment": 3, + "Blank": 4, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 2521, + "CodeBytes": 0, + "Lines": 86, + "Code": 72, + "Comment": 3, + "Blank": 11, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5641, + "CodeBytes": 0, + "Lines": 188, + "Code": 149, + "Comment": 9, + "Blank": 30, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1661, + "CodeBytes": 0, + "Lines": 38, + "Code": 27, + "Comment": 0, + "Blank": 11, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 1297, + "CodeBytes": 0, + "Lines": 68, + "Code": 38, + "Comment": 22, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 15925.125590373653, + "estimatedScheduleMonths_low": 2.954053189667431, + "estimatedPeople_low": 0.5251871158569527, + "estimatedCost_high": 49629.646713605434, + "estimatedScheduleMonths_high": 2.954053189667431, + "estimatedPeople_high": 0.5251871158569527, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJSON 5 159 0 0 159 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nJavaScript 4 111 4 3 104 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nTypeScript 4 86 11 3 72 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nYAML 3 188 30 9 149 0\n(ULOC) 103\n-------------------------------------------------------------------------------\nMarkdown 2 38 11 0 27 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nTypeScript Typings 2 68 8 22 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 22 775 77 38 660 1\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 550\nDRYness % 0.71\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $17,462\nEstimated Schedule Effort (organic) 2.95 months\nEstimated People Required (organic) 0.53\n───────────────────────────────────────────────────────────────────────────────\nProcessed 25161 bytes, 0.025 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:39:36Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-public", + "commit": "157a98311537769c57104582c2e8d4c725851a6b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/plugin-transform-react-jsx", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@madie/madie-auth", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@madie/madie-editor", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@madie/madie-root", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:49:28.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:49:28.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:49:28.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:49:28.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:49:28.000" - ], - [ - "@types/styled-components", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:49:28.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "autoprefixer", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:49:28.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:49:28.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:49:28.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:49:28.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:49:28.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:49:28.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:49:28.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:49:28.000" - ], - [ - "postcss", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "postcss-loader", - 2.2547945205, - "2024-12-17T15:49:28.000" - ], - [ - "postcss-preset-env", - 2.0821917808, - "2024-12-17T15:49:28.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:49:28.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:49:28.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:49:28.000" - ], - [ - "react-is", - 0.6109589041, - "2024-12-17T15:49:28.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:49:28.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:49:28.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:49:28.000" - ], - [ - "tailwindcss", - 3.2630136986, - "2024-12-17T15:49:28.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "twin.macro", - 2.1150684932, - "2024-12-17T15:49:28.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:49:28.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:49:28.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:49:28.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:49:28.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:49:28.000" - ], - [ - "webpack-dev-server", - 0.0, - "2024-12-17T15:49:28.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:49:28.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "JSON", - "Bytes": 4286, - "CodeBytes": 0, - "Lines": 159, - "Code": 159, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2591, - "CodeBytes": 0, - "Lines": 111, - "Code": 104, - "Comment": 3, - "Blank": 4, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 2521, - "CodeBytes": 0, - "Lines": 86, - "Code": 72, - "Comment": 3, - "Blank": 11, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5641, - "CodeBytes": 0, - "Lines": 188, - "Code": 149, - "Comment": 9, - "Blank": 30, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1661, - "CodeBytes": 0, - "Lines": 38, - "Code": 27, - "Comment": 0, - "Blank": 11, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 1297, - "CodeBytes": 0, - "Lines": 68, - "Code": 38, - "Comment": 22, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 15925.125590373653, - "estimatedScheduleMonths_low": 2.954053189667431, - "estimatedPeople_low": 0.5251871158569527, - "estimatedCost_high": 49629.646713605434, - "estimatedScheduleMonths_high": 2.954053189667431, - "estimatedPeople_high": 0.5251871158569527, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJSON 5 159 0 0 159 0\n(ULOC) 135\n-------------------------------------------------------------------------------\nJavaScript 4 111 4 3 104 0\n(ULOC) 80\n-------------------------------------------------------------------------------\nTypeScript 4 86 11 3 72 0\n(ULOC) 69\n-------------------------------------------------------------------------------\nYAML 3 188 30 9 149 0\n(ULOC) 103\n-------------------------------------------------------------------------------\nMarkdown 2 38 11 0 27 0\n(ULOC) 27\n-------------------------------------------------------------------------------\nTypeScript Typings 2 68 8 22 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 22 775 77 38 660 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 550\nDRYness % 0.71\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $17,462\nEstimated Schedule Effort (organic) 2.95 months\nEstimated People Required (organic) 0.53\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 25161 bytes, 0.025 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:39:36Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-public", - "commit": "157a98311537769c57104582c2e8d4c725851a6b" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.6, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 10 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "31 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.6, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 10 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "31 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-qdm-elm-translation/madie-qdm-elm-translation_data.json b/app/site/_data/measureauthoringtool/madie-qdm-elm-translation/madie-qdm-elm-translation_data.json index 4f1c8d6500..708beffb5b 100644 --- a/app/site/_data/measureauthoringtool/madie-qdm-elm-translation/madie-qdm-elm-translation_data.json +++ b/app/site/_data/measureauthoringtool/madie-qdm-elm-translation/madie-qdm-elm-translation_data.json @@ -1,398 +1,398 @@ { - "url": "https://github.com/measureauthoringtool/madie-qdm-elm-translation", - "owner": "measureauthoringtool", - "name": "madie-qdm-elm-translation", - "description": null, - "commits_count": 607, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 303, - "open_pull_requests_count": 89, - "merged_pull_requests_count": 157, - "closed_pull_requests_count": 57, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 5, - "created_at": "2022-01-03T20:56:34Z", - "total_project_lines": 90337, - "average_project_lines": 1328, - "total_project_comment_lines": 179, - "average_project_comment_lines": 3, - "total_project_blank_lines": 691, - "average_blank_lines": 10, - "predominant_langs": { - "Java": 163120, - "Dockerfile": 467 + "url": "https://github.com/measureauthoringtool/madie-qdm-elm-translation", + "owner": "measureauthoringtool", + "name": "madie-qdm-elm-translation", + "description": null, + "commits_count": 607, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 303, + "open_pull_requests_count": 89, + "merged_pull_requests_count": 157, + "closed_pull_requests_count": 57, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 5, + "created_at": "2022-01-03T20:56:34Z", + "total_project_lines": 90337, + "average_project_lines": 1328, + "total_project_comment_lines": 179, + "average_project_comment_lines": 3, + "total_project_blank_lines": 691, + "average_blank_lines": 10, + "predominant_langs": { + "Java": 163120, + "Dockerfile": 467 + }, + "commits_by_month": { + "2025/1": 9, + "2024/12": 14, + "2024/11": 7 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 1 + ], + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-08-16T00:00:00.000Z", + 1 + ], + [ + "2024-08-28T00:00:00.000Z", + 3 + ], + [ + "2024-09-03T00:00:00.000Z", + 1 + ], + [ + "2024-09-26T00:00:00.000Z", + 1 + ], + [ + "2024-10-01T00:00:00.000Z", + 1 + ], + [ + "2024-11-01T00:00:00.000Z", + 1 + ], + [ + "2024-11-07T00:00:00.000Z", + 2 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-11-25T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 163120, + "CodeBytes": 0, + "Lines": 4270, + "Code": 3518, + "Comment": 170, + "Blank": 582, + "Complexity": 160, + "Count": 44, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3180828, + "CodeBytes": 0, + "Lines": 84933, + "Code": 84933, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4758, + "CodeBytes": 0, + "Lines": 174, + "Code": 145, + "Comment": 3, + "Blank": 26, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 37261, + "CodeBytes": 0, + "Lines": 903, + "Code": 818, + "Comment": 24, + "Blank": 61, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1899, + "CodeBytes": 0, + "Lines": 51, + "Code": 38, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 467, + "CodeBytes": 0, + "Lines": 13, + "Code": 6, + "Comment": 3, + "Blank": 4, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2762594.6286383993, + "estimatedScheduleMonths_low": 20.95691460270169, + "estimatedPeople_low": 12.84219699049468, + "estimatedCost_high": 8609451.439121164, + "estimatedScheduleMonths_high": 20.95691460270169, + "estimatedPeople_high": 12.84219699049468, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 44 4270 582 170 3518 160\n(ULOC) 2268\n-------------------------------------------------------------------------------\nJSON 8 84933 0 0 84933 0\n(ULOC) 9971\n-------------------------------------------------------------------------------\nYAML 7 174 26 3 145 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nXML 5 903 61 24 818 0\n(ULOC) 531\n-------------------------------------------------------------------------------\nMarkdown 2 51 13 0 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nDockerfile 1 13 4 3 6 1\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 68 90465 698 200 89567 161\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 13027\nDRYness % 0.14\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $3,029,359\nEstimated Schedule Effort (organic) 20.96 months\nEstimated People Required (organic) 12.84\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3395381 bytes, 3.395 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:40:57Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-qdm-elm-translation", + "commit": "2dc7a01c0ef803090688fd034a2a9bf975345a10" }, - "commits_by_month": { - "2025/1": 9, - "2024/12": 14, - "2024/11": 7 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-08-16T00:00:00.000Z", - 1 - ], - [ - "2024-08-28T00:00:00.000Z", - 3 - ], - [ - "2024-09-03T00:00:00.000Z", - 1 - ], - [ - "2024-09-26T00:00:00.000Z", - 1 - ], - [ - "2024-10-01T00:00:00.000Z", - 1 - ], - [ - "2024-11-01T00:00:00.000Z", - 1 - ], - [ - "2024-11-07T00:00:00.000Z", - 2 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-11-25T00:00:00.000Z", - 1 - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 4 contributing companies or organizations", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 163120, - "CodeBytes": 0, - "Lines": 4270, - "Code": 3518, - "Comment": 170, - "Blank": 582, - "Complexity": 160, - "Count": 44, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3180828, - "CodeBytes": 0, - "Lines": 84933, - "Code": 84933, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4758, - "CodeBytes": 0, - "Lines": 174, - "Code": 145, - "Comment": 3, - "Blank": 26, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 37261, - "CodeBytes": 0, - "Lines": 903, - "Code": 818, - "Comment": 24, - "Blank": 61, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1899, - "CodeBytes": 0, - "Lines": 51, - "Code": 38, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 467, - "CodeBytes": 0, - "Lines": 13, - "Code": 6, - "Comment": 3, - "Blank": 4, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2762594.6286383993, - "estimatedScheduleMonths_low": 20.95691460270169, - "estimatedPeople_low": 12.84219699049468, - "estimatedCost_high": 8609451.439121164, - "estimatedScheduleMonths_high": 20.95691460270169, - "estimatedPeople_high": 12.84219699049468, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 44 4270 582 170 3518 160\n(ULOC) 2268\n-------------------------------------------------------------------------------\nJSON 8 84933 0 0 84933 0\n(ULOC) 9971\n-------------------------------------------------------------------------------\nYAML 7 174 26 3 145 0\n(ULOC) 122\n-------------------------------------------------------------------------------\nXML 5 903 61 24 818 0\n(ULOC) 531\n-------------------------------------------------------------------------------\nMarkdown 2 51 13 0 38 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nDockerfile 1 13 4 3 6 1\n(ULOC) 10\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 68 90465 698 200 89567 161\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 13027\nDRYness % 0.14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $3,029,359\nEstimated Schedule Effort (organic) 20.96 months\nEstimated People Required (organic) 12.84\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3395381 bytes, 3.395 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:40:57Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-qdm-elm-translation", - "commit": "2dc7a01c0ef803090688fd034a2a9bf975345a10" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 4 contributing companies or organizations", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-qdm-service/madie-qdm-service_data.json b/app/site/_data/measureauthoringtool/madie-qdm-service/madie-qdm-service_data.json index d00f1ab80d..b94dce8d72 100644 --- a/app/site/_data/measureauthoringtool/madie-qdm-service/madie-qdm-service_data.json +++ b/app/site/_data/measureauthoringtool/madie-qdm-service/madie-qdm-service_data.json @@ -1,429 +1,429 @@ { - "url": "https://github.com/measureauthoringtool/madie-qdm-service", - "owner": "measureauthoringtool", - "name": "madie-qdm-service", - "description": null, - "commits_count": 330, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 107, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 103, - "closed_pull_requests_count": 3, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 3, - "created_at": "2023-12-14T18:03:43Z", - "total_project_lines": 66070, - "average_project_lines": 346, - "total_project_comment_lines": 5864, - "average_project_comment_lines": 31, - "total_project_blank_lines": 3162, - "average_blank_lines": 17, - "predominant_langs": { - "Java": 1044313, - "XSLT": 41801, - "FreeMarker": 41360, - "Dockerfile": 686 + "url": "https://github.com/measureauthoringtool/madie-qdm-service", + "owner": "measureauthoringtool", + "name": "madie-qdm-service", + "description": null, + "commits_count": 330, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 107, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 103, + "closed_pull_requests_count": 3, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 3, + "created_at": "2023-12-14T18:03:43Z", + "total_project_lines": 66070, + "average_project_lines": 346, + "total_project_comment_lines": 5864, + "average_project_comment_lines": 31, + "total_project_blank_lines": 3162, + "average_blank_lines": 17, + "predominant_langs": { + "Java": 1044313, + "XSLT": 41801, + "FreeMarker": 41360, + "Dockerfile": 686 + }, + "commits_by_month": { + "2025/1": 2, + "2024/12": 4, + "2024/11": 3, + "2024/10": 15, + "2024/9": 3, + "2024/8": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 4 + ], + [ + "2024-09-25T00:00:00.000Z", + 1 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ], + [ + "2024-10-01T00:00:00.000Z", + 1 + ], + [ + "2024-10-15T00:00:00.000Z", + 2 + ], + [ + "2024-10-29T00:00:00.000Z", + 2 + ], + [ + "2024-10-30T00:00:00.000Z", + 1 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-09T00:00:00.000Z", + 1 + ], + [ + "2024-12-10T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 1044313, + "CodeBytes": 0, + "Lines": 28512, + "Code": 19891, + "Comment": 5767, + "Blank": 2854, + "Complexity": 2167, + "Count": 148, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Freemarker Template", + "Bytes": 41360, + "CodeBytes": 0, + "Lines": 1275, + "Code": 1151, + "Comment": 13, + "Blank": 111, + "Complexity": 74, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2362990, + "CodeBytes": 0, + "Lines": 33414, + "Code": 33413, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 8, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 86392, + "CodeBytes": 0, + "Lines": 1365, + "Code": 1186, + "Comment": 75, + "Blank": 104, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3343, + "CodeBytes": 0, + "Lines": 114, + "Code": 97, + "Comment": 3, + "Blank": 14, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1619, + "CodeBytes": 0, + "Lines": 56, + "Code": 42, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 686, + "CodeBytes": 0, + "Lines": 20, + "Code": 9, + "Comment": 6, + "Blank": 5, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 41801, + "CodeBytes": 0, + "Lines": 925, + "Code": 865, + "Comment": 0, + "Blank": 60, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 18364, + "CodeBytes": 0, + "Lines": 424, + "Code": 424, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1721289.4945940792, + "estimatedScheduleMonths_low": 17.50859555118283, + "estimatedPeople_low": 9.577499005760659, + "estimatedCost_high": 5364289.846491579, + "estimatedScheduleMonths_high": 17.50859555118283, + "estimatedPeople_high": 9.577499005760659, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 148 28512 2854 5767 19891 2167\n(ULOC) 12205\n-------------------------------------------------------------------------------\nFreemarker Template 19 1275 111 13 1151 74\n(ULOC) 688\n-------------------------------------------------------------------------------\nJSON 8 33414 1 0 33413 0\n(ULOC) 6757\n-------------------------------------------------------------------------------\nXML 6 1365 104 75 1186 0\n(ULOC) 887\n-------------------------------------------------------------------------------\nYAML 4 114 14 3 97 0\n(ULOC) 92\n-------------------------------------------------------------------------------\nMarkdown 3 56 14 0 42 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 6 9 1\n(ULOC) 16\n-------------------------------------------------------------------------------\nExtensible Styleshe… 1 925 60 0 865 0\n(ULOC) 541\n-------------------------------------------------------------------------------\nXML Schema 1 424 0 0 424 0\n(ULOC) 211\n───────────────────────────────────────────────────────────────────────────────\nTotal 191 66105 3163 5864 57078 2242\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 21407\nDRYness % 0.32\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,887,502\nEstimated Schedule Effort (organic) 17.51 months\nEstimated People Required (organic) 9.58\n───────────────────────────────────────────────────────────────────────────────\nProcessed 3600868 bytes, 3.601 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:44:01Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-qdm-service", + "commit": "fbbd26dd9624ecd5aef7198abb5ff54df3f99913" }, - "commits_by_month": { - "2025/1": 2, - "2024/12": 4, - "2024/11": 3, - "2024/10": 15, - "2024/9": 3, - "2024/8": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 4 - ], - [ - "2024-09-25T00:00:00.000Z", - 1 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ], - [ - "2024-10-01T00:00:00.000Z", - 1 - ], - [ - "2024-10-15T00:00:00.000Z", - 2 - ], - [ - "2024-10-29T00:00:00.000Z", - 2 - ], - [ - "2024-10-30T00:00:00.000Z", - 1 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-09T00:00:00.000Z", - 1 - ], - [ - "2024-12-10T00:00:00.000Z", - 1 - ] + "score": 5.2, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 6, + "reason": "project has 2 contributing companies or organizations -- score normalized to 6", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "14 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 1044313, - "CodeBytes": 0, - "Lines": 28512, - "Code": 19891, - "Comment": 5767, - "Blank": 2854, - "Complexity": 2167, - "Count": 148, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Freemarker Template", - "Bytes": 41360, - "CodeBytes": 0, - "Lines": 1275, - "Code": 1151, - "Comment": 13, - "Blank": 111, - "Complexity": 74, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2362990, - "CodeBytes": 0, - "Lines": 33414, - "Code": 33413, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 8, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 86392, - "CodeBytes": 0, - "Lines": 1365, - "Code": 1186, - "Comment": 75, - "Blank": 104, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3343, - "CodeBytes": 0, - "Lines": 114, - "Code": 97, - "Comment": 3, - "Blank": 14, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1619, - "CodeBytes": 0, - "Lines": 56, - "Code": 42, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 686, - "CodeBytes": 0, - "Lines": 20, - "Code": 9, - "Comment": 6, - "Blank": 5, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 41801, - "CodeBytes": 0, - "Lines": 925, - "Code": 865, - "Comment": 0, - "Blank": 60, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 18364, - "CodeBytes": 0, - "Lines": 424, - "Code": 424, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1721289.4945940792, - "estimatedScheduleMonths_low": 17.50859555118283, - "estimatedPeople_low": 9.577499005760659, - "estimatedCost_high": 5364289.846491579, - "estimatedScheduleMonths_high": 17.50859555118283, - "estimatedPeople_high": 9.577499005760659, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 148 28512 2854 5767 19891 2167\n(ULOC) 12205\n-------------------------------------------------------------------------------\nFreemarker Template 19 1275 111 13 1151 74\n(ULOC) 688\n-------------------------------------------------------------------------------\nJSON 8 33414 1 0 33413 0\n(ULOC) 6757\n-------------------------------------------------------------------------------\nXML 6 1365 104 75 1186 0\n(ULOC) 887\n-------------------------------------------------------------------------------\nYAML 4 114 14 3 97 0\n(ULOC) 92\n-------------------------------------------------------------------------------\nMarkdown 3 56 14 0 42 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 6 9 1\n(ULOC) 16\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 1 925 60 0 865 0\n(ULOC) 541\n-------------------------------------------------------------------------------\nXML Schema 1 424 0 0 424 0\n(ULOC) 211\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 191 66105 3163 5864 57078 2242\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 21407\nDRYness % 0.32\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,887,502\nEstimated Schedule Effort (organic) 17.51 months\nEstimated People Required (organic) 9.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 3600868 bytes, 3.601 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:44:01Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-qdm-service", - "commit": "fbbd26dd9624ecd5aef7198abb5ff54df3f99913" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.2, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 6, - "reason": "project has 2 contributing companies or organizations -- score normalized to 6", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "14 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-rest-commons/madie-rest-commons_data.json b/app/site/_data/measureauthoringtool/madie-rest-commons/madie-rest-commons_data.json index dc9674e280..5b428f37d5 100644 --- a/app/site/_data/measureauthoringtool/madie-rest-commons/madie-rest-commons_data.json +++ b/app/site/_data/measureauthoringtool/madie-rest-commons/madie-rest-commons_data.json @@ -1,363 +1,363 @@ { - "url": "https://github.com/measureauthoringtool/madie-rest-commons", - "owner": "measureauthoringtool", - "name": "madie-rest-commons", - "description": null, - "commits_count": 36, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 41, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 15, - "closed_pull_requests_count": 11, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-03-01T20:35:28Z", - "total_project_lines": 3097, - "average_project_lines": 36, - "total_project_comment_lines": 74, - "average_project_comment_lines": 1, - "total_project_blank_lines": 536, - "average_blank_lines": 6, - "predominant_langs": { - "Java": 68174 + "url": "https://github.com/measureauthoringtool/madie-rest-commons", + "owner": "measureauthoringtool", + "name": "madie-rest-commons", + "description": null, + "commits_count": 36, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 41, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 15, + "closed_pull_requests_count": 11, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-03-01T20:35:28Z", + "total_project_lines": 3097, + "average_project_lines": 36, + "total_project_comment_lines": 74, + "average_project_comment_lines": 1, + "total_project_blank_lines": 536, + "average_blank_lines": 6, + "predominant_langs": { + "Java": 68174 + }, + "commits_by_month": { + "2025/1": 2, + "2024/12": 4, + "2024/8": 4, + "2024/7": 2, + "2024/4": 2, + "2024/1": 1, + "2023/11": 2, + "2023/10": 2, + "2023/4": 2, + "2023/1": 4, + "2022/12": 2, + "2022/3": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-28T00:00:00.000Z", + 2 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-04T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 68174, + "CodeBytes": 0, + "Lines": 2489, + "Code": 1925, + "Comment": 72, + "Blank": 492, + "Complexity": 104, + "Count": 80, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1282, + "CodeBytes": 0, + "Lines": 27, + "Code": 20, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2203, + "CodeBytes": 0, + "Lines": 78, + "Code": 67, + "Comment": 2, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 417092, + "CodeBytes": 0, + "Lines": 254, + "Code": 254, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 4487, + "CodeBytes": 0, + "Lines": 128, + "Code": 112, + "Comment": 0, + "Blank": 16, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 64124.10376473763, + "estimatedScheduleMonths_low": 5.015276933029367, + "estimatedPeople_low": 1.2455922499585275, + "estimatedCost_high": 199838.71383684545, + "estimatedScheduleMonths_high": 5.015276933029367, + "estimatedPeople_high": 1.2455922499585275, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 80 2489 492 72 1925 104\n(ULOC) 987\n-------------------------------------------------------------------------------\nMarkdown 2 27 7 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nYAML 2 78 9 2 67 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nJSON 1 254 0 0 254 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 128 16 0 112 0\n(ULOC) 71\n───────────────────────────────────────────────────────────────────────────────\nTotal 87 3097 536 74 2487 104\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1360\nDRYness % 0.44\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $70,316\nEstimated Schedule Effort (organic) 5.02 months\nEstimated People Required (organic) 1.25\n───────────────────────────────────────────────────────────────────────────────\nProcessed 500286 bytes, 0.500 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:41:43Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-rest-commons", + "commit": "2d88d81ae8e5f0f6f643254dc645e60b29e2e4a7" }, - "commits_by_month": { - "2025/1": 2, - "2024/12": 4, - "2024/8": 4, - "2024/7": 2, - "2024/4": 2, - "2024/1": 1, - "2023/11": 2, - "2023/10": 2, - "2023/4": 2, - "2023/1": 4, - "2022/12": 2, - "2022/3": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-28T00:00:00.000Z", - 2 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-04T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 2 - ] + "score": 4.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 6, + "reason": "10 out of 15 merged PRs checked by a CI test -- score normalized to 6", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 5, + "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 68174, - "CodeBytes": 0, - "Lines": 2489, - "Code": 1925, - "Comment": 72, - "Blank": 492, - "Complexity": 104, - "Count": 80, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1282, - "CodeBytes": 0, - "Lines": 27, - "Code": 20, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2203, - "CodeBytes": 0, - "Lines": 78, - "Code": 67, - "Comment": 2, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 417092, - "CodeBytes": 0, - "Lines": 254, - "Code": 254, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 4487, - "CodeBytes": 0, - "Lines": 128, - "Code": 112, - "Comment": 0, - "Blank": 16, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 64124.10376473763, - "estimatedScheduleMonths_low": 5.015276933029367, - "estimatedPeople_low": 1.2455922499585275, - "estimatedCost_high": 199838.71383684545, - "estimatedScheduleMonths_high": 5.015276933029367, - "estimatedPeople_high": 1.2455922499585275, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 80 2489 492 72 1925 104\n(ULOC) 987\n-------------------------------------------------------------------------------\nMarkdown 2 27 7 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nYAML 2 78 9 2 67 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nJSON 1 254 0 0 254 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 128 16 0 112 0\n(ULOC) 71\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 87 3097 536 74 2487 104\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1360\nDRYness % 0.44\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $70,316\nEstimated Schedule Effort (organic) 5.02 months\nEstimated People Required (organic) 1.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 500286 bytes, 0.500 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:41:43Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-rest-commons", - "commit": "2d88d81ae8e5f0f6f643254dc645e60b29e2e4a7" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 6, - "reason": "10 out of 15 merged PRs checked by a CI test -- score normalized to 6", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 5, - "reason": "6 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 5", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-root/madie-root_data.json b/app/site/_data/measureauthoringtool/madie-root/madie-root_data.json index b2faa66938..6d88049745 100644 --- a/app/site/_data/measureauthoringtool/madie-root/madie-root_data.json +++ b/app/site/_data/measureauthoringtool/madie-root/madie-root_data.json @@ -1,611 +1,611 @@ { - "url": "https://github.com/measureauthoringtool/madie-root", - "owner": "measureauthoringtool", - "name": "madie-root", - "description": "This is the single-spa root config for the MADiE application", - "commits_count": 306, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 259, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 125, - "closed_pull_requests_count": 119, - "forks_count": 1, - "stargazers_count": 2, - "watchers_count": 5, - "created_at": "2021-08-24T19:39:57Z", - "total_project_lines": 932, - "average_project_lines": 31, - "total_project_comment_lines": 12, - "average_project_comment_lines": 0, - "total_project_blank_lines": 100, - "average_blank_lines": 3, - "predominant_langs": { - "TypeScript": 8418, - "EJS": 4615, - "JavaScript": 2819, - "Shell": 116 - }, - "commits_by_month": { - "2025/1": 6, - "2024/12": 11, - "2024/11": 11, - "2024/10": 2 + "url": "https://github.com/measureauthoringtool/madie-root", + "owner": "measureauthoringtool", + "name": "madie-root", + "description": "This is the single-spa root config for the MADiE application", + "commits_count": 306, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 259, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 125, + "closed_pull_requests_count": 119, + "forks_count": 1, + "stargazers_count": 2, + "watchers_count": 5, + "created_at": "2021-08-24T19:39:57Z", + "total_project_lines": 932, + "average_project_lines": 31, + "total_project_comment_lines": 12, + "average_project_comment_lines": 0, + "total_project_blank_lines": 100, + "average_blank_lines": 3, + "predominant_langs": { + "TypeScript": 8418, + "EJS": 4615, + "JavaScript": 2819, + "Shell": 116 + }, + "commits_by_month": { + "2025/1": 6, + "2024/12": 11, + "2024/11": 11, + "2024/10": 2 + }, + "average_issue_resolution_time": [ + [ + "madie-root", + "4 days 17:40:10" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 2 + ], + [ + "2024-09-10T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-17T00:00:00.000Z", + 1 + ], + [ + "2024-09-20T00:00:00.000Z", + 1 + ], + [ + "2024-09-26T00:00:00.000Z", + 1 + ], + [ + "2024-10-31T00:00:00.000Z", + 1 + ], + [ + "2024-11-04T00:00:00.000Z", + 1 + ], + [ + "2024-11-08T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-12T00:00:00.000Z", + 1 + ], + [ + "2024-12-13T00:00:00.000Z", + 3 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@madie/madie-auth", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@madie/madie-editor", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@madie/madie-layout", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@madie/madie-measure", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@types/jest", + 2.1643835616, + "2024-12-17T15:49:40.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "concurrently", + 1.9561643836, + "2024-12-17T15:49:40.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:49:40.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:49:40.000" + ], + [ + "eslint-config-ts-important-stuff", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:49:40.000" + ], + [ + "html-webpack-plugin", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "husky", + 1.8767123288, + "2024-12-17T15:49:40.000" + ], + [ + "jest", + 1.1643835616, + "2024-12-17T15:49:40.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:49:40.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:49:40.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "serve", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:49:40.000" + ], + [ + "systemjs", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "ts-jest", + 2.0246575342, + "2024-12-17T15:49:40.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:49:40.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:49:40.000" + ], + [ + "webpack-cli", + 0.9835616438, + "2024-12-17T15:49:40.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:49:40.000" + ], + [ + "webpack-dev-server", + 2.4520547945, + "2024-12-17T15:49:40.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:49:40.000" + ], + [ + "webpack-pwa-manifest", + 0.0, + "2024-12-17T15:49:40.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 8418, + "CodeBytes": 0, + "Lines": 282, + "Code": 241, + "Comment": 0, + "Blank": 41, + "Complexity": 7, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 5078, + "CodeBytes": 0, + "Lines": 172, + "Code": 172, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5674, + "CodeBytes": 0, + "Lines": 186, + "Code": 150, + "Comment": 8, + "Blank": 28, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 2819, + "CodeBytes": 0, + "Lines": 101, + "Code": 95, + "Comment": 3, + "Blank": 3, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1387, + "CodeBytes": 0, + "Lines": 30, + "Code": 22, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 580, + "CodeBytes": 0, + "Lines": 39, + "Code": 32, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 20078.513671339144, + "estimatedScheduleMonths_low": 3.226003355434988, + "estimatedPeople_low": 0.6063400481731129, + "estimatedCost_high": 62573.417985803, + "estimatedScheduleMonths_high": 3.226003355434988, + "estimatedPeople_high": 0.6063400481731129, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 13 282 41 0 241 7\n(ULOC) 120\n-------------------------------------------------------------------------------\nJSON 7 172 0 0 172 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nYAML 3 186 28 8 150 0\n(ULOC) 102\n-------------------------------------------------------------------------------\nJavaScript 2 101 3 3 95 1\n(ULOC) 72\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 1 39 7 0 32 0\n(ULOC) 14\n───────────────────────────────────────────────────────────────────────────────\nTotal 30 935 100 12 823 9\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 564\nDRYness % 0.60\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $22,017\nEstimated Schedule Effort (organic) 3.23 months\nEstimated People Required (organic) 0.61\n───────────────────────────────────────────────────────────────────────────────\nProcessed 31120 bytes, 0.031 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:38:07Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-root", + "commit": "d3a89decf61e2175368559002e25f91f3fdcdbcc" }, - "average_issue_resolution_time": [ - [ - "madie-root", - "4 days 17:40:10" - ] - ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 2 - ], - [ - "2024-09-10T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-17T00:00:00.000Z", - 1 - ], - [ - "2024-09-20T00:00:00.000Z", - 1 - ], - [ - "2024-09-26T00:00:00.000Z", - 1 - ], - [ - "2024-10-31T00:00:00.000Z", - 1 - ], - [ - "2024-11-04T00:00:00.000Z", - 1 - ], - [ - "2024-11-08T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-12T00:00:00.000Z", - 1 - ], - [ - "2024-12-13T00:00:00.000Z", - 3 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@madie/madie-auth", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@madie/madie-editor", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@madie/madie-layout", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@madie/madie-measure", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@types/jest", - 2.1643835616, - "2024-12-17T15:49:40.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "concurrently", - 1.9561643836, - "2024-12-17T15:49:40.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:49:40.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:49:40.000" - ], - [ - "eslint-config-ts-important-stuff", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:49:40.000" - ], - [ - "html-webpack-plugin", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "husky", - 1.8767123288, - "2024-12-17T15:49:40.000" - ], - [ - "jest", - 1.1643835616, - "2024-12-17T15:49:40.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:49:40.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:49:40.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "serve", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:49:40.000" - ], - [ - "systemjs", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "ts-jest", - 2.0246575342, - "2024-12-17T15:49:40.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:49:40.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:49:40.000" - ], - [ - "webpack-cli", - 0.9835616438, - "2024-12-17T15:49:40.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:49:40.000" - ], - [ - "webpack-dev-server", - 2.4520547945, - "2024-12-17T15:49:40.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:49:40.000" - ], - [ - "webpack-pwa-manifest", - 0.0, - "2024-12-17T15:49:40.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 8418, - "CodeBytes": 0, - "Lines": 282, - "Code": 241, - "Comment": 0, - "Blank": 41, - "Complexity": 7, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 5078, - "CodeBytes": 0, - "Lines": 172, - "Code": 172, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5674, - "CodeBytes": 0, - "Lines": 186, - "Code": 150, - "Comment": 8, - "Blank": 28, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 2819, - "CodeBytes": 0, - "Lines": 101, - "Code": 95, - "Comment": 3, - "Blank": 3, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1387, - "CodeBytes": 0, - "Lines": 30, - "Code": 22, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 580, - "CodeBytes": 0, - "Lines": 39, - "Code": 32, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 20078.513671339144, - "estimatedScheduleMonths_low": 3.226003355434988, - "estimatedPeople_low": 0.6063400481731129, - "estimatedCost_high": 62573.417985803, - "estimatedScheduleMonths_high": 3.226003355434988, - "estimatedPeople_high": 0.6063400481731129, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 13 282 41 0 241 7\n(ULOC) 120\n-------------------------------------------------------------------------------\nJSON 7 172 0 0 172 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nYAML 3 186 28 8 150 0\n(ULOC) 102\n-------------------------------------------------------------------------------\nJavaScript 2 101 3 3 95 1\n(ULOC) 72\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTypeScript Typings 1 39 7 0 32 0\n(ULOC) 14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 30 935 100 12 823 9\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 564\nDRYness % 0.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $22,017\nEstimated Schedule Effort (organic) 3.23 months\nEstimated People Required (organic) 0.61\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 31120 bytes, 0.031 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:38:07Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-root", - "commit": "d3a89decf61e2175368559002e25f91f3fdcdbcc" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 8, - "reason": "2 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 6.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "9 out of 9 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 8, + "reason": "2 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-server-commons/madie-server-commons_data.json b/app/site/_data/measureauthoringtool/madie-server-commons/madie-server-commons_data.json index bb391f3f6b..c342271de0 100644 --- a/app/site/_data/measureauthoringtool/madie-server-commons/madie-server-commons_data.json +++ b/app/site/_data/measureauthoringtool/madie-server-commons/madie-server-commons_data.json @@ -1,291 +1,291 @@ { - "url": "https://github.com/measureauthoringtool/madie-server-commons", - "owner": "measureauthoringtool", - "name": "madie-server-commons", - "description": null, - "commits_count": 13, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 21, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 12, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-01-03T20:55:54Z", - "total_project_lines": 15221, - "average_project_lines": 157, - "total_project_comment_lines": 3563, - "average_project_comment_lines": 37, - "total_project_blank_lines": 2310, - "average_blank_lines": 24, - "predominant_langs": { - "Java": 352033 + "url": "https://github.com/measureauthoringtool/madie-server-commons", + "owner": "measureauthoringtool", + "name": "madie-server-commons", + "description": null, + "commits_count": 13, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 21, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 12, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-01-03T20:55:54Z", + "total_project_lines": 15221, + "average_project_lines": 157, + "total_project_comment_lines": 3563, + "average_project_comment_lines": 37, + "total_project_blank_lines": 2310, + "average_blank_lines": 24, + "predominant_langs": { + "Java": 352033 + }, + "commits_by_month": { + "2022/3": 4, + "2022/2": 9 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 352033, + "CodeBytes": 0, + "Lines": 13102, + "Code": 7476, + "Comment": 3508, + "Blank": 2118, + "Complexity": 968, + "Count": 85, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 87811, + "CodeBytes": 0, + "Lines": 1998, + "Code": 1763, + "Comment": 55, + "Blank": 180, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 257523.20729572067, + "estimatedScheduleMonths_low": 8.506228469900114, + "estimatedPeople_low": 2.949367140053577, + "estimatedCost_high": 802554.7884135284, + "estimatedScheduleMonths_high": 8.506228469900114, + "estimatedPeople_high": 2.949367140053577, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 85 13102 2118 3508 7476 968\n(ULOC) 6376\n-------------------------------------------------------------------------------\nXML 11 1998 180 55 1763 0\n(ULOC) 1227\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 97 15221 2310 3563 9348 968\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 7711\nDRYness % 0.51\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $282,390\nEstimated Schedule Effort (organic) 8.51 months\nEstimated People Required (organic) 2.95\n───────────────────────────────────────────────────────────────────────────────\nProcessed 446892 bytes, 0.447 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:40:51Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-server-commons", + "commit": "85077dd105e4609dc0c7a98302b494139fdfe739" }, - "commits_by_month": { - "2022/3": 4, - "2022/2": 9 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 352033, - "CodeBytes": 0, - "Lines": 13102, - "Code": 7476, - "Comment": 3508, - "Blank": 2118, - "Complexity": 968, - "Count": 85, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 87811, - "CodeBytes": 0, - "Lines": 1998, - "Code": 1763, - "Comment": 55, - "Blank": 180, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 257523.20729572067, - "estimatedScheduleMonths_low": 8.506228469900114, - "estimatedPeople_low": 2.949367140053577, - "estimatedCost_high": 802554.7884135284, - "estimatedScheduleMonths_high": 8.506228469900114, - "estimatedPeople_high": 2.949367140053577, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 85 13102 2118 3508 7476 968\n(ULOC) 6376\n-------------------------------------------------------------------------------\nXML 11 1998 180 55 1763 0\n(ULOC) 1227\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 97 15221 2310 3563 9348 968\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 7711\nDRYness % 0.51\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $282,390\nEstimated Schedule Effort (organic) 8.51 months\nEstimated People Required (organic) 2.95\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 446892 bytes, 0.447 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:40:51Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-server-commons", - "commit": "85077dd105e4609dc0c7a98302b494139fdfe739" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/11 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "20 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/11 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "20 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-translator-commons/madie-translator-commons_data.json b/app/site/_data/measureauthoringtool/madie-translator-commons/madie-translator-commons_data.json index b04a3e57df..d5a634c991 100644 --- a/app/site/_data/measureauthoringtool/madie-translator-commons/madie-translator-commons_data.json +++ b/app/site/_data/measureauthoringtool/madie-translator-commons/madie-translator-commons_data.json @@ -1,350 +1,350 @@ { - "url": "https://github.com/measureauthoringtool/madie-translator-commons", - "owner": "measureauthoringtool", - "name": "madie-translator-commons", - "description": null, - "commits_count": 61, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 31, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 26, - "closed_pull_requests_count": 4, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 1, - "created_at": "2024-08-01T15:26:35Z", - "total_project_lines": 5379, - "average_project_lines": 76, - "total_project_comment_lines": 348, - "average_project_comment_lines": 5, - "total_project_blank_lines": 786, - "average_blank_lines": 11, - "predominant_langs": { - "Java": 162082 + "url": "https://github.com/measureauthoringtool/madie-translator-commons", + "owner": "measureauthoringtool", + "name": "madie-translator-commons", + "description": null, + "commits_count": 61, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 31, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 26, + "closed_pull_requests_count": 4, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 1, + "created_at": "2024-08-01T15:26:35Z", + "total_project_lines": 5379, + "average_project_lines": 76, + "total_project_comment_lines": 348, + "average_project_comment_lines": 5, + "total_project_blank_lines": 786, + "average_blank_lines": 11, + "predominant_langs": { + "Java": 162082 + }, + "commits_by_month": { + "2025/1": 2, + "2024/12": 6, + "2024/11": 15, + "2024/10": 2, + "2024/9": 2, + "2024/8": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 2 + ], + [ + "2024-08-28T00:00:00.000Z", + 4 + ], + [ + "2024-11-01T00:00:00.000Z", + 1 + ], + [ + "2024-11-07T00:00:00.000Z", + 2 + ], + [ + "2024-11-12T00:00:00.000Z", + 1 + ], + [ + "2024-11-13T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 162082, + "CodeBytes": 0, + "Lines": 4759, + "Code": 3709, + "Comment": 314, + "Blank": 736, + "Complexity": 299, + "Count": 60, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 13805, + "CodeBytes": 0, + "Lines": 403, + "Code": 351, + "Comment": 30, + "Blank": 22, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5204, + "CodeBytes": 0, + "Lines": 158, + "Code": 135, + "Comment": 6, + "Blank": 17, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1530, + "CodeBytes": 0, + "Lines": 34, + "Code": 25, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 114754.22883284262, + "estimatedScheduleMonths_low": 6.256607735111857, + "estimatedPeople_low": 1.786813724207627, + "estimatedCost_high": 357624.2964958988, + "estimatedScheduleMonths_high": 6.256607735111857, + "estimatedPeople_high": 1.786813724207627, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 60 4759 736 314 3709 299\n(ULOC) 2537\n-------------------------------------------------------------------------------\nXML 4 403 22 30 351 0\n(ULOC) 291\n-------------------------------------------------------------------------------\nYAML 4 158 17 6 135 0\n(ULOC) 77\n-------------------------------------------------------------------------------\nMarkdown 2 34 9 0 25 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 71 5475 796 350 4329 299\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3037\nDRYness % 0.55\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $125,835\nEstimated Schedule Effort (organic) 6.26 months\nEstimated People Required (organic) 1.79\n───────────────────────────────────────────────────────────────────────────────\nProcessed 189669 bytes, 0.190 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:44:43Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-translator-commons", + "commit": "47c36db95ad1c8aa0630d3eff08bbe5b21ad4fda" }, - "commits_by_month": { - "2025/1": 2, - "2024/12": 6, - "2024/11": 15, - "2024/10": 2, - "2024/9": 2, - "2024/8": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 2 - ], - [ - "2024-08-28T00:00:00.000Z", - 4 - ], - [ - "2024-11-01T00:00:00.000Z", - 1 - ], - [ - "2024-11-07T00:00:00.000Z", - 2 - ], - [ - "2024-11-12T00:00:00.000Z", - 1 - ], - [ - "2024-11-13T00:00:00.000Z", - 1 - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "23 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 162082, - "CodeBytes": 0, - "Lines": 4759, - "Code": 3709, - "Comment": 314, - "Blank": 736, - "Complexity": 299, - "Count": 60, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 13805, - "CodeBytes": 0, - "Lines": 403, - "Code": 351, - "Comment": 30, - "Blank": 22, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5204, - "CodeBytes": 0, - "Lines": 158, - "Code": 135, - "Comment": 6, - "Blank": 17, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1530, - "CodeBytes": 0, - "Lines": 34, - "Code": 25, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 114754.22883284262, - "estimatedScheduleMonths_low": 6.256607735111857, - "estimatedPeople_low": 1.786813724207627, - "estimatedCost_high": 357624.2964958988, - "estimatedScheduleMonths_high": 6.256607735111857, - "estimatedPeople_high": 1.786813724207627, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 60 4759 736 314 3709 299\n(ULOC) 2537\n-------------------------------------------------------------------------------\nXML 4 403 22 30 351 0\n(ULOC) 291\n-------------------------------------------------------------------------------\nYAML 4 158 17 6 135 0\n(ULOC) 77\n-------------------------------------------------------------------------------\nMarkdown 2 34 9 0 25 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 71 5475 796 350 4329 299\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3037\nDRYness % 0.55\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $125,835\nEstimated Schedule Effort (organic) 6.26 months\nEstimated People Required (organic) 1.79\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 189669 bytes, 0.190 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:44:43Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-translator-commons", - "commit": "47c36db95ad1c8aa0630d3eff08bbe5b21ad4fda" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "23 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/madie-util/madie-util_data.json b/app/site/_data/measureauthoringtool/madie-util/madie-util_data.json index df9303a5b3..134328f79d 100644 --- a/app/site/_data/measureauthoringtool/madie-util/madie-util_data.json +++ b/app/site/_data/measureauthoringtool/madie-util/madie-util_data.json @@ -1,661 +1,661 @@ { - "url": "https://github.com/measureauthoringtool/madie-util", - "owner": "measureauthoringtool", - "name": "madie-util", - "description": null, - "commits_count": 271, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 118, - "open_pull_requests_count": 14, - "merged_pull_requests_count": 75, - "closed_pull_requests_count": 29, - "forks_count": 0, - "stargazers_count": 1, - "watchers_count": 4, - "created_at": "2022-05-20T17:27:18Z", - "total_project_lines": 1603, - "average_project_lines": 37, - "total_project_comment_lines": 58, - "average_project_comment_lines": 1, - "total_project_blank_lines": 177, - "average_blank_lines": 4, - "predominant_langs": { - "TypeScript": 32760, - "JavaScript": 1082, - "Shell": 116 - }, - "commits_by_month": { - "2025/1": 6, - "2024/12": 18, - "2024/11": 6 + "url": "https://github.com/measureauthoringtool/madie-util", + "owner": "measureauthoringtool", + "name": "madie-util", + "description": null, + "commits_count": 271, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 118, + "open_pull_requests_count": 14, + "merged_pull_requests_count": 75, + "closed_pull_requests_count": 29, + "forks_count": 0, + "stargazers_count": 1, + "watchers_count": 4, + "created_at": "2022-05-20T17:27:18Z", + "total_project_lines": 1603, + "average_project_lines": 37, + "total_project_comment_lines": 58, + "average_project_comment_lines": 1, + "total_project_blank_lines": 177, + "average_blank_lines": 4, + "predominant_langs": { + "TypeScript": 32760, + "JavaScript": 1082, + "Shell": 116 + }, + "commits_by_month": { + "2025/1": 6, + "2024/12": 18, + "2024/11": 6 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-13T00:00:00.000Z", + 3 + ], + [ + "2024-08-19T00:00:00.000Z", + 1 + ], + [ + "2024-09-11T00:00:00.000Z", + 1 + ], + [ + "2024-09-12T00:00:00.000Z", + 1 + ], + [ + "2024-09-13T00:00:00.000Z", + 2 + ], + [ + "2024-09-27T00:00:00.000Z", + 1 + ], + [ + "2024-10-31T00:00:00.000Z", + 1 + ], + [ + "2024-11-04T00:00:00.000Z", + 1 + ], + [ + "2024-11-11T00:00:00.000Z", + 1 + ], + [ + "2024-12-13T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@babel/core", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@babel/eslint-parser", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@babel/plugin-transform-runtime", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@babel/preset-react", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@babel/runtime", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@testing-library/jest-dom", + 1.2904109589, + "2024-12-17T15:55:06.000" + ], + [ + "@testing-library/react", + 2.6520547945, + "2024-12-17T15:55:06.000" + ], + [ + "@types/jest", + 2.3945205479, + "2024-12-17T15:55:06.000" + ], + [ + "@types/react", + 0.1890410959, + "2024-12-17T15:55:06.000" + ], + [ + "@types/react-dom", + 3.4273972603, + "2024-12-17T15:55:06.000" + ], + [ + "@types/systemjs", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "@types/testing-library__jest-dom", + 0.0575342466, + "2024-12-17T15:55:06.000" + ], + [ + "@types/webpack-env", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "babel-jest", + 1.5890410959, + "2024-12-17T15:55:06.000" + ], + [ + "babel-plugin-macros", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "concurrently", + 2.8794520548, + "2024-12-17T15:55:06.000" + ], + [ + "cross-env", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "dompurify", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:55:06.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:55:06.000" + ], + [ + "eslint-config-ts-react-important-stuff", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "eslint-plugin-prettier", + 2.9068493151, + "2024-12-17T15:55:06.000" + ], + [ + "husky", + 3.0794520548, + "2024-12-17T15:55:06.000" + ], + [ + "identity-obj-proxy", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:55:06.000" + ], + [ + "jest-cli", + 1.5890410959, + "2024-12-17T15:55:06.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:55:06.000" + ], + [ + "pretty-quick", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "react", + 3.7068493151, + "2024-12-17T15:55:06.000" + ], + [ + "react-dom", + 3.7068493151, + "2024-12-17T15:55:06.000" + ], + [ + "rxjs", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "single-spa", + 1.2904109589, + "2024-12-17T15:55:06.000" + ], + [ + "single-spa-react", + 2.6684931507, + "2024-12-17T15:55:06.000" + ], + [ + "styled-components", + 1.4657534247, + "2024-12-17T15:55:06.000" + ], + [ + "ts-config-single-spa", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:55:06.000" + ], + [ + "webpack", + 0.0, + "2024-12-17T15:55:06.000" + ], + [ + "webpack-cli", + 1.3671232877, + "2024-12-17T15:55:06.000" + ], + [ + "webpack-config-single-spa-react", + 0.9506849315, + "2024-12-17T15:55:06.000" + ], + [ + "webpack-config-single-spa-react-ts", + 0.9506849315, + "2024-12-17T15:55:06.000" + ], + [ + "webpack-config-single-spa-ts", + 0.8876712329, + "2024-12-17T15:55:06.000" + ], + [ + "webpack-dev-server", + 0.7260273973, + "2024-12-17T15:55:06.000" + ], + [ + "webpack-merge", + 1.1150684932, + "2024-12-17T15:55:06.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 32760, + "CodeBytes": 0, + "Lines": 1100, + "Code": 927, + "Comment": 51, + "Blank": 122, + "Complexity": 39, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1082, + "CodeBytes": 0, + "Lines": 46, + "Code": 43, + "Comment": 1, + "Blank": 2, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3202, + "CodeBytes": 0, + "Lines": 119, + "Code": 119, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5824, + "CodeBytes": 0, + "Lines": 191, + "Code": 155, + "Comment": 7, + "Blank": 29, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1453, + "CodeBytes": 0, + "Lines": 30, + "Code": 22, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 116, + "CodeBytes": 0, + "Lines": 4, + "Code": 2, + "Comment": 1, + "Blank": 1, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 80, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 580, + "CodeBytes": 0, + "Lines": 39, + "Code": 32, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 35390.619529307405, + "estimatedScheduleMonths_low": 4.001329578675859, + "estimatedPeople_low": 0.8616548735708646, + "estimatedCost_high": 110292.62747396268, + "estimatedScheduleMonths_high": 4.001329578675859, + "estimatedPeople_high": 0.8616548735708646, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 27 1100 122 51 927 39\n(ULOC) 598\n-------------------------------------------------------------------------------\nJavaScript 4 46 2 1 43 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nJSON 3 119 0 0 119 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nYAML 3 191 29 7 155 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nTypeScript Typings 1 39 7 0 32 0\n(ULOC) 14\n───────────────────────────────────────────────────────────────────────────────\nTotal 43 1653 181 60 1412 40\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 988\nDRYness % 0.60\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $38,808\nEstimated Schedule Effort (organic) 4.00 months\nEstimated People Required (organic) 0.86\n───────────────────────────────────────────────────────────────────────────────\nProcessed 52145 bytes, 0.052 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:12Z", + "repo": { + "name": "github.com/measureauthoringtool/madie-util", + "commit": "14a072c02139ae41683672017a220112a193bb42" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-13T00:00:00.000Z", - 3 - ], - [ - "2024-08-19T00:00:00.000Z", - 1 - ], - [ - "2024-09-11T00:00:00.000Z", - 1 - ], - [ - "2024-09-12T00:00:00.000Z", - 1 - ], - [ - "2024-09-13T00:00:00.000Z", - 2 - ], - [ - "2024-09-27T00:00:00.000Z", - 1 - ], - [ - "2024-10-31T00:00:00.000Z", - 1 - ], - [ - "2024-11-04T00:00:00.000Z", - 1 - ], - [ - "2024-11-11T00:00:00.000Z", - 1 - ], - [ - "2024-12-13T00:00:00.000Z", - 2 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@babel/core", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@babel/eslint-parser", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@babel/plugin-transform-runtime", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@babel/preset-react", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@babel/runtime", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@testing-library/jest-dom", - 1.2904109589, - "2024-12-17T15:55:06.000" - ], - [ - "@testing-library/react", - 2.6520547945, - "2024-12-17T15:55:06.000" - ], - [ - "@types/jest", - 2.3945205479, - "2024-12-17T15:55:06.000" - ], - [ - "@types/react", - 0.1890410959, - "2024-12-17T15:55:06.000" - ], - [ - "@types/react-dom", - 3.4273972603, - "2024-12-17T15:55:06.000" - ], - [ - "@types/systemjs", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "@types/testing-library__jest-dom", - 0.0575342466, - "2024-12-17T15:55:06.000" - ], - [ - "@types/webpack-env", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "babel-jest", - 1.5890410959, - "2024-12-17T15:55:06.000" - ], - [ - "babel-plugin-macros", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "concurrently", - 2.8794520548, - "2024-12-17T15:55:06.000" - ], - [ - "cross-env", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "dompurify", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:55:06.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:55:06.000" - ], - [ - "eslint-config-ts-react-important-stuff", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "eslint-plugin-prettier", - 2.9068493151, - "2024-12-17T15:55:06.000" - ], - [ - "husky", - 3.0794520548, - "2024-12-17T15:55:06.000" - ], - [ - "identity-obj-proxy", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:55:06.000" - ], - [ - "jest-cli", - 1.5890410959, - "2024-12-17T15:55:06.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:55:06.000" - ], - [ - "pretty-quick", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "react", - 3.7068493151, - "2024-12-17T15:55:06.000" - ], - [ - "react-dom", - 3.7068493151, - "2024-12-17T15:55:06.000" - ], - [ - "rxjs", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "single-spa", - 1.2904109589, - "2024-12-17T15:55:06.000" - ], - [ - "single-spa-react", - 2.6684931507, - "2024-12-17T15:55:06.000" - ], - [ - "styled-components", - 1.4657534247, - "2024-12-17T15:55:06.000" - ], - [ - "ts-config-single-spa", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:55:06.000" - ], - [ - "webpack", - 0.0, - "2024-12-17T15:55:06.000" - ], - [ - "webpack-cli", - 1.3671232877, - "2024-12-17T15:55:06.000" - ], - [ - "webpack-config-single-spa-react", - 0.9506849315, - "2024-12-17T15:55:06.000" - ], - [ - "webpack-config-single-spa-react-ts", - 0.9506849315, - "2024-12-17T15:55:06.000" - ], - [ - "webpack-config-single-spa-ts", - 0.8876712329, - "2024-12-17T15:55:06.000" - ], - [ - "webpack-dev-server", - 0.7260273973, - "2024-12-17T15:55:06.000" - ], - [ - "webpack-merge", - 1.1150684932, - "2024-12-17T15:55:06.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 32760, - "CodeBytes": 0, - "Lines": 1100, - "Code": 927, - "Comment": 51, - "Blank": 122, - "Complexity": 39, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1082, - "CodeBytes": 0, - "Lines": 46, - "Code": 43, - "Comment": 1, - "Blank": 2, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3202, - "CodeBytes": 0, - "Lines": 119, - "Code": 119, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5824, - "CodeBytes": 0, - "Lines": 191, - "Code": 155, - "Comment": 7, - "Blank": 29, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1453, - "CodeBytes": 0, - "Lines": 30, - "Code": 22, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 116, - "CodeBytes": 0, - "Lines": 4, - "Code": 2, - "Comment": 1, - "Blank": 1, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 80, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 580, - "CodeBytes": 0, - "Lines": 39, - "Code": 32, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 35390.619529307405, - "estimatedScheduleMonths_low": 4.001329578675859, - "estimatedPeople_low": 0.8616548735708646, - "estimatedCost_high": 110292.62747396268, - "estimatedScheduleMonths_high": 4.001329578675859, - "estimatedPeople_high": 0.8616548735708646, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 27 1100 122 51 927 39\n(ULOC) 598\n-------------------------------------------------------------------------------\nJavaScript 4 46 2 1 43 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nJSON 3 119 0 0 119 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nYAML 3 191 29 7 155 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 2 30 8 0 22 0\n(ULOC) 23\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 4 1 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nTOML 1 3 0 0 3 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nTypeScript Typings 1 39 7 0 32 0\n(ULOC) 14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 43 1653 181 60 1412 40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 988\nDRYness % 0.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $38,808\nEstimated Schedule Effort (organic) 4.00 months\nEstimated People Required (organic) 0.86\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 52145 bytes, 0.052 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:12Z", - "repo": { - "name": "github.com/measureauthoringtool/madie-util", - "commit": "14a072c02139ae41683672017a220112a193bb42" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 5.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat-drupal/mat-drupal_data.json b/app/site/_data/measureauthoringtool/mat-drupal/mat-drupal_data.json index e1ca0e4c3f..e78b2134cf 100644 --- a/app/site/_data/measureauthoringtool/mat-drupal/mat-drupal_data.json +++ b/app/site/_data/measureauthoringtool/mat-drupal/mat-drupal_data.json @@ -1,514 +1,514 @@ { - "url": "https://github.com/measureauthoringtool/mat-drupal", - "owner": "measureauthoringtool", - "name": "mat-drupal", - "description": "Drupal CMS", - "commits_count": 244, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 77, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 39, - "closed_pull_requests_count": 37, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 9, - "created_at": "2020-02-03T22:50:28Z", - "total_project_lines": 48565, - "average_project_lines": 68, - "total_project_comment_lines": 2233, - "average_project_comment_lines": 3, - "total_project_blank_lines": 3143, - "average_blank_lines": 4, - "predominant_langs": { - "JavaScript": 297379, - "HTML": 262597, - "Twig": 179870, - "SCSS": 62870, - "PHP": 28554, - "CSS": 18651, - "Dockerfile": 5063, - "Shell": 1174 - }, - "commits_by_month": { - "2024/12": 6, - "2024/11": 4, - "2024/10": 2, - "2024/9": 2, - "2024/8": 16 - }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-11T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 1 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-12-12T00:00:00.000Z", - 2 - ] + "url": "https://github.com/measureauthoringtool/mat-drupal", + "owner": "measureauthoringtool", + "name": "mat-drupal", + "description": "Drupal CMS", + "commits_count": 244, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 77, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 39, + "closed_pull_requests_count": 37, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 9, + "created_at": "2020-02-03T22:50:28Z", + "total_project_lines": 48565, + "average_project_lines": 68, + "total_project_comment_lines": 2233, + "average_project_comment_lines": 3, + "total_project_blank_lines": 3143, + "average_blank_lines": 4, + "predominant_langs": { + "JavaScript": 297379, + "HTML": 262597, + "Twig": 179870, + "SCSS": 62870, + "PHP": 28554, + "CSS": 18651, + "Dockerfile": 5063, + "Shell": 1174 + }, + "commits_by_month": { + "2024/12": 6, + "2024/11": 4, + "2024/10": 2, + "2024/9": 2, + "2024/8": 16 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-11T00:00:00.000Z", + 1 + ], + [ + "2024-08-14T00:00:00.000Z", + 1 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-12-12T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "breakpoint-sass", + 5.6849315068, + "2024-12-17T15:53:33.000" + ], + [ + "node-sass", + 0.0, + "2024-12-17T15:53:33.000" ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "breakpoint-sass", - 5.6849315068, - "2024-12-17T15:53:33.000" - ], - [ - "node-sass", - 0.0, - "2024-12-17T15:53:33.000" - ], - [ - "node-sass-glob-importer", - 0.0, - "2024-12-17T15:53:33.000" - ], - [ - "normalize-scss", - 5.7863013699, - "2024-12-17T15:53:33.000" - ], - [ - "normalize.css", - 0.0, - "2024-12-17T15:53:33.000" - ], - [ - "sass-rem", - 5.6684931507, - "2024-12-17T15:53:33.000" - ] + [ + "node-sass-glob-importer", + 0.0, + "2024-12-17T15:53:33.000" ], - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 553716, - "CodeBytes": 0, - "Lines": 21160, - "Code": 21082, - "Comment": 50, - "Blank": 28, - "Complexity": 0, - "Count": 397, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Twig Template", - "Bytes": 179870, - "CodeBytes": 0, - "Lines": 4937, - "Code": 4694, - "Comment": 0, - "Blank": 243, - "Complexity": 196, - "Count": 160, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 62870, - "CodeBytes": 0, - "Lines": 3606, - "Code": 2805, - "Comment": 209, - "Blank": 592, - "Complexity": 5, - "Count": 79, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 333756, - "CodeBytes": 0, - "Lines": 11153, - "Code": 8050, - "Comment": 1457, - "Blank": 1646, - "Complexity": 1817, - "Count": 24, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "PHP", - "Bytes": 28554, - "CodeBytes": 0, - "Lines": 959, - "Code": 598, - "Comment": 244, - "Blank": 117, - "Complexity": 73, - "Count": 17, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 10158, - "CodeBytes": 0, - "Lines": 246, - "Code": 198, - "Comment": 0, - "Blank": 48, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 43111, - "CodeBytes": 0, - "Lines": 221, - "Code": 221, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 46453, - "CodeBytes": 0, - "Lines": 1352, - "Code": 1352, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 98892, - "CodeBytes": 0, - "Lines": 3668, - "Code": 3172, - "Comment": 219, - "Blank": 277, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 1174, - "CodeBytes": 0, - "Lines": 60, - "Code": 33, - "Comment": 8, - "Blank": 19, - "Complexity": 2, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 99, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 5063, - "CodeBytes": 0, - "Lines": 128, - "Code": 68, - "Comment": 34, - "Blank": 26, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 262597, - "CodeBytes": 0, - "Lines": 1116, - "Code": 1001, - "Comment": 8, - "Blank": 107, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 11357, - "CodeBytes": 0, - "Lines": 201, - "Code": 169, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1292435.9253662797, - "estimatedScheduleMonths_low": 15.702263097988983, - "estimatedPeople_low": 8.018558086775675, - "estimatedCost_high": 4027794.8209509333, - "estimatedScheduleMonths_high": 15.702263097988983, - "estimatedPeople_high": 8.018558086775675, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 397 21160 28 50 21082 0\n(ULOC) 5183\n-------------------------------------------------------------------------------\nTwig Template 160 4937 243 0 4694 196\n(ULOC) 2083\n-------------------------------------------------------------------------------\nSass 79 3606 592 209 2805 5\n(ULOC) 1638\n-------------------------------------------------------------------------------\nJavaScript 24 11153 1646 1457 8050 1817\n(ULOC) 6803\n-------------------------------------------------------------------------------\nPHP 17 959 117 244 598 73\n(ULOC) 542\n-------------------------------------------------------------------------------\nMarkdown 14 246 48 0 198 0\n(ULOC) 154\n-------------------------------------------------------------------------------\nSVG 14 221 0 0 221 0\n(ULOC) 140\n-------------------------------------------------------------------------------\nJSON 7 1352 0 0 1352 0\n(ULOC) 664\n-------------------------------------------------------------------------------\nCSS 3 3668 277 219 3172 0\n(ULOC) 1952\n-------------------------------------------------------------------------------\nShell 3 60 19 8 33 2\n(ULOC) 30\n-------------------------------------------------------------------------------\nDocker ignore 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nDockerfile 1 128 26 34 68 3\n(ULOC) 103\n-------------------------------------------------------------------------------\nHTML 1 1116 107 8 1001 0\n(ULOC) 507\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 722 48810 3135 2229 43446 2096\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 19484\nDRYness % 0.40\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,417,237\nEstimated Schedule Effort (organic) 15.70 months\nEstimated People Required (organic) 8.02\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1637670 bytes, 1.638 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + [ + "normalize-scss", + 5.7863013699, + "2024-12-17T15:53:33.000" + ], + [ + "normalize.css", + 0.0, + "2024-12-17T15:53:33.000" + ], + [ + "sass-rem", + 5.6684931507, + "2024-12-17T15:53:33.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 553716, + "CodeBytes": 0, + "Lines": 21160, + "Code": 21082, + "Comment": 50, + "Blank": 28, + "Complexity": 0, + "Count": 397, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Twig Template", + "Bytes": 179870, + "CodeBytes": 0, + "Lines": 4937, + "Code": 4694, + "Comment": 0, + "Blank": 243, + "Complexity": 196, + "Count": 160, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 62870, + "CodeBytes": 0, + "Lines": 3606, + "Code": 2805, + "Comment": 209, + "Blank": 592, + "Complexity": 5, + "Count": 79, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 333756, + "CodeBytes": 0, + "Lines": 11153, + "Code": 8050, + "Comment": 1457, + "Blank": 1646, + "Complexity": 1817, + "Count": 24, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "PHP", + "Bytes": 28554, + "CodeBytes": 0, + "Lines": 959, + "Code": 598, + "Comment": 244, + "Blank": 117, + "Complexity": 73, + "Count": 17, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 10158, + "CodeBytes": 0, + "Lines": 246, + "Code": 198, + "Comment": 0, + "Blank": 48, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 43111, + "CodeBytes": 0, + "Lines": 221, + "Code": 221, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 46453, + "CodeBytes": 0, + "Lines": 1352, + "Code": 1352, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 98892, + "CodeBytes": 0, + "Lines": 3668, + "Code": 3172, + "Comment": 219, + "Blank": 277, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 1174, + "CodeBytes": 0, + "Lines": 60, + "Code": 33, + "Comment": 8, + "Blank": 19, + "Complexity": 2, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 99, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 5063, + "CodeBytes": 0, + "Lines": 128, + "Code": 68, + "Comment": 34, + "Blank": 26, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 262597, + "CodeBytes": 0, + "Lines": 1116, + "Code": 1001, + "Comment": 8, + "Blank": 107, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 11357, + "CodeBytes": 0, + "Lines": 201, + "Code": 169, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1292435.9253662797, + "estimatedScheduleMonths_low": 15.702263097988983, + "estimatedPeople_low": 8.018558086775675, + "estimatedCost_high": 4027794.8209509333, + "estimatedScheduleMonths_high": 15.702263097988983, + "estimatedPeople_high": 8.018558086775675, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 397 21160 28 50 21082 0\n(ULOC) 5183\n-------------------------------------------------------------------------------\nTwig Template 160 4937 243 0 4694 196\n(ULOC) 2083\n-------------------------------------------------------------------------------\nSass 79 3606 592 209 2805 5\n(ULOC) 1638\n-------------------------------------------------------------------------------\nJavaScript 24 11153 1646 1457 8050 1817\n(ULOC) 6803\n-------------------------------------------------------------------------------\nPHP 17 959 117 244 598 73\n(ULOC) 542\n-------------------------------------------------------------------------------\nMarkdown 14 246 48 0 198 0\n(ULOC) 154\n-------------------------------------------------------------------------------\nSVG 14 221 0 0 221 0\n(ULOC) 140\n-------------------------------------------------------------------------------\nJSON 7 1352 0 0 1352 0\n(ULOC) 664\n-------------------------------------------------------------------------------\nCSS 3 3668 277 219 3172 0\n(ULOC) 1952\n-------------------------------------------------------------------------------\nShell 3 60 19 8 33 2\n(ULOC) 30\n-------------------------------------------------------------------------------\nDocker ignore 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nDockerfile 1 128 26 34 68 3\n(ULOC) 103\n-------------------------------------------------------------------------------\nHTML 1 1116 107 8 1001 0\n(ULOC) 507\n-------------------------------------------------------------------------------\nLicense 1 201 32 0 169 0\n(ULOC) 168\n───────────────────────────────────────────────────────────────────────────────\nTotal 722 48810 3135 2229 43446 2096\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 19484\nDRYness % 0.40\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,417,237\nEstimated Schedule Effort (organic) 15.70 months\nEstimated People Required (organic) 8.02\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1637670 bytes, 1.638 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:35:56Z", + "repo": { + "name": "github.com/measureauthoringtool/mat-drupal", + "commit": "d8e85bf80cc6992e0e8e451425a50273bed618ba" }, - "ossf_scorecard": { - "date": "2025-01-19T14:35:56Z", - "repo": { - "name": "github.com/measureauthoringtool/mat-drupal", - "commit": "d8e85bf80cc6992e0e8e451425a50273bed618ba" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 9, - "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 5, - "reason": "5 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" + }, + "score": 5.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 9, + "reason": "11 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 9", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 5, + "reason": "5 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat-fhir-jpaserver/mat-fhir-jpaserver_data.json b/app/site/_data/measureauthoringtool/mat-fhir-jpaserver/mat-fhir-jpaserver_data.json index da5686be6d..abf8cd1c51 100644 --- a/app/site/_data/measureauthoringtool/mat-fhir-jpaserver/mat-fhir-jpaserver_data.json +++ b/app/site/_data/measureauthoringtool/mat-fhir-jpaserver/mat-fhir-jpaserver_data.json @@ -1,414 +1,414 @@ { - "url": "https://github.com/measureauthoringtool/mat-fhir-jpaserver", - "owner": "measureauthoringtool", - "name": "mat-fhir-jpaserver", - "description": "Based on HAPI FHIR JPASERVER STARTER PROJECT", - "commits_count": 8, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 7, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 5, - "closed_pull_requests_count": 1, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 10, - "created_at": "2019-10-01T19:40:53Z", - "total_project_lines": 7675, - "average_project_lines": 207, - "total_project_comment_lines": 259, - "average_project_comment_lines": 7, - "total_project_blank_lines": 1350, - "average_blank_lines": 36, - "predominant_langs": { - "Java": 59447, - "HTML": 4547, - "Dockerfile": 123, - "Shell": 87 + "url": "https://github.com/measureauthoringtool/mat-fhir-jpaserver", + "owner": "measureauthoringtool", + "name": "mat-fhir-jpaserver", + "description": "Based on HAPI FHIR JPASERVER STARTER PROJECT", + "commits_count": 8, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 7, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 5, + "closed_pull_requests_count": 1, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 10, + "created_at": "2019-10-01T19:40:53Z", + "total_project_lines": 7675, + "average_project_lines": 207, + "total_project_comment_lines": 259, + "average_project_comment_lines": 7, + "total_project_blank_lines": 1350, + "average_blank_lines": 36, + "predominant_langs": { + "Java": 59447, + "HTML": 4547, + "Dockerfile": 123, + "Shell": 87 + }, + "commits_by_month": { + "2019/11": 1, + "2019/10": 7 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 59447, + "CodeBytes": 0, + "Lines": 1520, + "Code": 1071, + "Comment": 182, + "Blank": 267, + "Complexity": 101, + "Count": 13, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 4547, + "CodeBytes": 0, + "Lines": 131, + "Code": 117, + "Comment": 1, + "Blank": 13, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 166630, + "CodeBytes": 0, + "Lines": 4942, + "Code": 4031, + "Comment": 0, + "Blank": 911, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 7794, + "CodeBytes": 0, + "Lines": 216, + "Code": 155, + "Comment": 39, + "Blank": 22, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 12394, + "CodeBytes": 0, + "Lines": 333, + "Code": 270, + "Comment": 29, + "Blank": 34, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 22714, + "CodeBytes": 0, + "Lines": 402, + "Code": 338, + "Comment": 0, + "Blank": 64, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4127, + "CodeBytes": 0, + "Lines": 89, + "Code": 59, + "Comment": 0, + "Blank": 30, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 123, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 336451, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 87, + "CodeBytes": 0, + "Lines": 5, + "Code": 2, + "Comment": 1, + "Blank": 2, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 841, + "CodeBytes": 0, + "Lines": 32, + "Code": 18, + "Comment": 7, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 163534.45199117812, + "estimatedScheduleMonths_low": 7.158109547028388, + "estimatedPeople_low": 2.225668234671777, + "estimatedCost_high": 509644.7768506928, + "estimatedScheduleMonths_high": 7.158109547028388, + "estimatedPeople_high": 2.225668234671777, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 13 1520 267 182 1071 101\n(ULOC) 839\n-------------------------------------------------------------------------------\nHTML 5 131 13 1 117 0\n(ULOC) 89\n-------------------------------------------------------------------------------\nXML Schema 5 4942 911 0 4031 0\n(ULOC) 1805\n-------------------------------------------------------------------------------\nProperties File 3 216 22 39 155 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nXML 3 333 34 29 270 0\n(ULOC) 198\n-------------------------------------------------------------------------------\nLicense 2 402 64 0 338 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 2 89 30 0 59 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nDockerfile 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nJavaScript 1 1 0 0 1 4\n(ULOC) 1\n-------------------------------------------------------------------------------\nShell 1 5 2 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nYAML 1 32 7 7 18 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 37 7675 1350 259 6066 106\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3244\nDRYness % 0.42\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $179,325\nEstimated Schedule Effort (organic) 7.16 months\nEstimated People Required (organic) 2.23\n───────────────────────────────────────────────────────────────────────────────\nProcessed 615155 bytes, 0.615 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:44Z", + "repo": { + "name": "github.com/measureauthoringtool/mat-fhir-jpaserver", + "commit": "3906c8c9602152f8caf4d990fd49cb4dee613721" }, - "commits_by_month": { - "2019/11": 1, - "2019/10": 7 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 59447, - "CodeBytes": 0, - "Lines": 1520, - "Code": 1071, - "Comment": 182, - "Blank": 267, - "Complexity": 101, - "Count": 13, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 4547, - "CodeBytes": 0, - "Lines": 131, - "Code": 117, - "Comment": 1, - "Blank": 13, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 166630, - "CodeBytes": 0, - "Lines": 4942, - "Code": 4031, - "Comment": 0, - "Blank": 911, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 7794, - "CodeBytes": 0, - "Lines": 216, - "Code": 155, - "Comment": 39, - "Blank": 22, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 12394, - "CodeBytes": 0, - "Lines": 333, - "Code": 270, - "Comment": 29, - "Blank": 34, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 22714, - "CodeBytes": 0, - "Lines": 402, - "Code": 338, - "Comment": 0, - "Blank": 64, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4127, - "CodeBytes": 0, - "Lines": 89, - "Code": 59, - "Comment": 0, - "Blank": 30, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 123, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 336451, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 87, - "CodeBytes": 0, - "Lines": 5, - "Code": 2, - "Comment": 1, - "Blank": 2, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 841, - "CodeBytes": 0, - "Lines": 32, - "Code": 18, - "Comment": 7, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 163534.45199117812, - "estimatedScheduleMonths_low": 7.158109547028388, - "estimatedPeople_low": 2.225668234671777, - "estimatedCost_high": 509644.7768506928, - "estimatedScheduleMonths_high": 7.158109547028388, - "estimatedPeople_high": 2.225668234671777, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 13 1520 267 182 1071 101\n(ULOC) 839\n-------------------------------------------------------------------------------\nHTML 5 131 13 1 117 0\n(ULOC) 89\n-------------------------------------------------------------------------------\nXML Schema 5 4942 911 0 4031 0\n(ULOC) 1805\n-------------------------------------------------------------------------------\nProperties File 3 216 22 39 155 0\n(ULOC) 74\n-------------------------------------------------------------------------------\nXML 3 333 34 29 270 0\n(ULOC) 198\n-------------------------------------------------------------------------------\nLicense 2 402 64 0 338 0\n(ULOC) 168\n-------------------------------------------------------------------------------\nMarkdown 2 89 30 0 59 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nDockerfile 1 4 0 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nJavaScript 1 1 0 0 1 4\n(ULOC) 1\n-------------------------------------------------------------------------------\nShell 1 5 2 1 2 1\n(ULOC) 4\n-------------------------------------------------------------------------------\nYAML 1 32 7 7 18 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 37 7675 1350 259 6066 106\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3244\nDRYness % 0.42\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $179,325\nEstimated Schedule Effort (organic) 7.16 months\nEstimated People Required (organic) 2.23\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 615155 bytes, 0.615 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:44Z", - "repo": { - "name": "github.com/measureauthoringtool/mat-fhir-jpaserver", - "commit": "3906c8c9602152f8caf4d990fd49cb4dee613721" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat-iac/mat-iac_data.json b/app/site/_data/measureauthoringtool/mat-iac/mat-iac_data.json index cde6856531..14f8bf4c59 100644 --- a/app/site/_data/measureauthoringtool/mat-iac/mat-iac_data.json +++ b/app/site/_data/measureauthoringtool/mat-iac/mat-iac_data.json @@ -1,291 +1,291 @@ { - "url": "https://github.com/measureauthoringtool/mat-iac", - "owner": "measureauthoringtool", - "name": "mat-iac", - "description": "Infrastrucutre as Code for the MeasureAuthoringTool", - "commits_count": 9, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-10-23T15:50:52Z", - "total_project_lines": 722, - "average_project_lines": 52, - "total_project_comment_lines": 42, - "average_project_comment_lines": 3, - "total_project_blank_lines": 91, - "average_blank_lines": 7, - "predominant_langs": { - "HCL": 12780 + "url": "https://github.com/measureauthoringtool/mat-iac", + "owner": "measureauthoringtool", + "name": "mat-iac", + "description": "Infrastrucutre as Code for the MeasureAuthoringTool", + "commits_count": 9, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-10-23T15:50:52Z", + "total_project_lines": 722, + "average_project_lines": 52, + "total_project_comment_lines": 42, + "average_project_comment_lines": 3, + "total_project_blank_lines": 91, + "average_blank_lines": 7, + "predominant_langs": { + "HCL": 12780 + }, + "commits_by_month": { + "2020/3": 3, + "2019/10": 6 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Terraform", + "Bytes": 12780, + "CodeBytes": 0, + "Lines": 501, + "Code": 382, + "Comment": 42, + "Blank": 77, + "Complexity": 4, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5987, + "CodeBytes": 0, + "Lines": 219, + "Code": 205, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 62, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14131.322024498946, + "estimatedScheduleMonths_low": 2.8229051311796964, + "estimatedPeople_low": 0.4876812046437448, + "estimatedCost_high": 44039.37135013945, + "estimatedScheduleMonths_high": 2.8229051311796964, + "estimatedPeople_high": 0.4876812046437448, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTerraform 9 501 77 42 382 4\n(ULOC) 299\n-------------------------------------------------------------------------------\nYAML 4 219 14 0 205 0\n(ULOC) 137\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 722 91 42 589 4\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 425\nDRYness % 0.59\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $15,495\nEstimated Schedule Effort (organic) 2.82 months\nEstimated People Required (organic) 0.49\n───────────────────────────────────────────────────────────────────────────────\nProcessed 18829 bytes, 0.019 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:35:19Z", + "repo": { + "name": "github.com/measureauthoringtool/mat-iac", + "commit": "4e318739692c6a5159234d4061566b72f1c431cf" }, - "commits_by_month": { - "2020/3": 3, - "2019/10": 6 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Terraform", - "Bytes": 12780, - "CodeBytes": 0, - "Lines": 501, - "Code": 382, - "Comment": 42, - "Blank": 77, - "Complexity": 4, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5987, - "CodeBytes": 0, - "Lines": 219, - "Code": 205, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 62, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14131.322024498946, - "estimatedScheduleMonths_low": 2.8229051311796964, - "estimatedPeople_low": 0.4876812046437448, - "estimatedCost_high": 44039.37135013945, - "estimatedScheduleMonths_high": 2.8229051311796964, - "estimatedPeople_high": 0.4876812046437448, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTerraform 9 501 77 42 382 4\n(ULOC) 299\n-------------------------------------------------------------------------------\nYAML 4 219 14 0 205 0\n(ULOC) 137\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 722 91 42 589 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 425\nDRYness % 0.59\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $15,495\nEstimated Schedule Effort (organic) 2.82 months\nEstimated People Required (organic) 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 18829 bytes, 0.019 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:35:19Z", - "repo": { - "name": "github.com/measureauthoringtool/mat-iac", - "commit": "4e318739692c6a5159234d4061566b72f1c431cf" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 1, - "reason": "Found 1/7 approved changesets -- score normalized to 1", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 1, + "reason": "Found 1/7 approved changesets -- score normalized to 1", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat-public-website-portlets/mat-public-website-portlets_data.json b/app/site/_data/measureauthoringtool/mat-public-website-portlets/mat-public-website-portlets_data.json index 27fd2a2ea6..1fdea8d482 100644 --- a/app/site/_data/measureauthoringtool/mat-public-website-portlets/mat-public-website-portlets_data.json +++ b/app/site/_data/measureauthoringtool/mat-public-website-portlets/mat-public-website-portlets_data.json @@ -1,462 +1,462 @@ { - "url": "https://github.com/measureauthoringtool/mat-public-website-portlets", - "owner": "measureauthoringtool", - "name": "mat-public-website-portlets", - "description": "Measure Authoring Tool Liferay Public Website", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-09-06T16:30:19Z", - "total_project_lines": 26028, - "average_project_lines": 87, - "total_project_comment_lines": 805, - "average_project_comment_lines": 3, - "total_project_blank_lines": 4740, - "average_blank_lines": 16, - "predominant_langs": { - "HTML": 146196, - "CSS": 123372, - "Java": 80846, - "XSLT": 6611, - "Batchfile": 3166, - "Shell": 2612, - "JavaScript": 1010 + "url": "https://github.com/measureauthoringtool/mat-public-website-portlets", + "owner": "measureauthoringtool", + "name": "mat-public-website-portlets", + "description": "Measure Authoring Tool Liferay Public Website", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-09-06T16:30:19Z", + "total_project_lines": 26028, + "average_project_lines": 87, + "total_project_comment_lines": 805, + "average_project_comment_lines": 3, + "total_project_blank_lines": 4740, + "average_blank_lines": 16, + "predominant_langs": { + "HTML": 146196, + "CSS": 123372, + "Java": 80846, + "XSLT": 6611, + "Batchfile": 3166, + "Shell": 2612, + "JavaScript": 1010 + }, + "commits_by_month": { + "2019/12": 2, + "2019/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Properties File", + "Bytes": 82481, + "CodeBytes": 0, + "Lines": 1799, + "Code": 1588, + "Comment": 167, + "Blank": 44, + "Complexity": 0, + "Count": 172, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 292828, + "CodeBytes": 0, + "Lines": 7490, + "Code": 6995, + "Comment": 19, + "Blank": 476, + "Complexity": 0, + "Count": 57, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 123372, + "CodeBytes": 0, + "Lines": 7012, + "Code": 5238, + "Comment": 344, + "Blank": 1430, + "Complexity": 0, + "Count": 25, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaServer Pages", + "Bytes": 42625, + "CodeBytes": 0, + "Lines": 1089, + "Code": 778, + "Comment": 123, + "Blank": 188, + "Complexity": 48, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 3166, + "CodeBytes": 0, + "Lines": 150, + "Code": 102, + "Comment": 0, + "Blank": 48, + "Complexity": 26, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 38221, + "CodeBytes": 0, + "Lines": 1282, + "Code": 886, + "Comment": 109, + "Blank": 287, + "Complexity": 105, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1147, + "CodeBytes": 0, + "Lines": 22, + "Code": 21, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 2612, + "CodeBytes": 0, + "Lines": 116, + "Code": 70, + "Comment": 15, + "Blank": 31, + "Complexity": 5, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1010, + "CodeBytes": 0, + "Lines": 70, + "Code": 26, + "Comment": 28, + "Blank": 16, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 777, + "CodeBytes": 0, + "Lines": 66, + "Code": 66, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 144226, + "CodeBytes": 0, + "Lines": 6531, + "Code": 4361, + "Comment": 0, + "Blank": 2170, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Smarty Template", + "Bytes": 0, + "CodeBytes": 0, + "Lines": 0, + "Code": 0, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 6611, + "CodeBytes": 0, + "Lines": 280, + "Code": 243, + "Comment": 0, + "Blank": 37, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 586847.1191110574, + "estimatedScheduleMonths_low": 11.632319250798304, + "estimatedPeople_low": 4.914826282109927, + "estimatedCost_high": 1828871.9314078288, + "estimatedScheduleMonths_high": 11.632319250798304, + "estimatedPeople_high": 4.914826282109927, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nProperties File 172 1799 44 167 1588 0\n(ULOC) 698\n-------------------------------------------------------------------------------\nXML 57 7490 476 19 6995 0\n(ULOC) 2187\n-------------------------------------------------------------------------------\nCSS 25 7012 1430 344 5238 0\n(ULOC) 1614\n-------------------------------------------------------------------------------\nJavaServer Pages 9 1089 188 123 778 48\n(ULOC) 609\n-------------------------------------------------------------------------------\nBatch 6 150 48 0 102 26\n(ULOC) 45\n-------------------------------------------------------------------------------\nJava 6 1282 287 109 886 105\n(ULOC) 649\n-------------------------------------------------------------------------------\nPlain Text 5 22 1 0 21 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nShell 5 116 31 15 70 5\n(ULOC) 37\n-------------------------------------------------------------------------------\nJavaScript 4 70 16 28 26 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nJSON 3 66 0 0 66 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nHTML 2 6531 2170 0 4361 0\n(ULOC) 623\n-------------------------------------------------------------------------------\nSmarty Template 2 0 0 0 0 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nExtensible Styleshe… 1 280 37 0 243 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 298 26028 4740 805 20483 184\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 6595\nDRYness % 0.25\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $643,514\nEstimated Schedule Effort (organic) 11.63 months\nEstimated People Required (organic) 4.91\n───────────────────────────────────────────────────────────────────────────────\nProcessed 746124 bytes, 0.746 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:25Z", + "repo": { + "name": "github.com/measureauthoringtool/mat-public-website-portlets", + "commit": "b8b3523b0f0c53a4b33f13330a357276e023a034" }, - "commits_by_month": { - "2019/12": 2, - "2019/9": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Properties File", - "Bytes": 82481, - "CodeBytes": 0, - "Lines": 1799, - "Code": 1588, - "Comment": 167, - "Blank": 44, - "Complexity": 0, - "Count": 172, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 292828, - "CodeBytes": 0, - "Lines": 7490, - "Code": 6995, - "Comment": 19, - "Blank": 476, - "Complexity": 0, - "Count": 57, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 123372, - "CodeBytes": 0, - "Lines": 7012, - "Code": 5238, - "Comment": 344, - "Blank": 1430, - "Complexity": 0, - "Count": 25, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaServer Pages", - "Bytes": 42625, - "CodeBytes": 0, - "Lines": 1089, - "Code": 778, - "Comment": 123, - "Blank": 188, - "Complexity": 48, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 3166, - "CodeBytes": 0, - "Lines": 150, - "Code": 102, - "Comment": 0, - "Blank": 48, - "Complexity": 26, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 38221, - "CodeBytes": 0, - "Lines": 1282, - "Code": 886, - "Comment": 109, - "Blank": 287, - "Complexity": 105, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1147, - "CodeBytes": 0, - "Lines": 22, - "Code": 21, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 2612, - "CodeBytes": 0, - "Lines": 116, - "Code": 70, - "Comment": 15, - "Blank": 31, - "Complexity": 5, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1010, - "CodeBytes": 0, - "Lines": 70, - "Code": 26, - "Comment": 28, - "Blank": 16, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 777, - "CodeBytes": 0, - "Lines": 66, - "Code": 66, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 144226, - "CodeBytes": 0, - "Lines": 6531, - "Code": 4361, - "Comment": 0, - "Blank": 2170, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Smarty Template", - "Bytes": 0, - "CodeBytes": 0, - "Lines": 0, - "Code": 0, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 6611, - "CodeBytes": 0, - "Lines": 280, - "Code": 243, - "Comment": 0, - "Blank": 37, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 586847.1191110574, - "estimatedScheduleMonths_low": 11.632319250798304, - "estimatedPeople_low": 4.914826282109927, - "estimatedCost_high": 1828871.9314078288, - "estimatedScheduleMonths_high": 11.632319250798304, - "estimatedPeople_high": 4.914826282109927, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProperties File 172 1799 44 167 1588 0\n(ULOC) 698\n-------------------------------------------------------------------------------\nXML 57 7490 476 19 6995 0\n(ULOC) 2187\n-------------------------------------------------------------------------------\nCSS 25 7012 1430 344 5238 0\n(ULOC) 1614\n-------------------------------------------------------------------------------\nJavaServer Pages 9 1089 188 123 778 48\n(ULOC) 609\n-------------------------------------------------------------------------------\nBatch 6 150 48 0 102 26\n(ULOC) 45\n-------------------------------------------------------------------------------\nJava 6 1282 287 109 886 105\n(ULOC) 649\n-------------------------------------------------------------------------------\nPlain Text 5 22 1 0 21 0\n(ULOC) 17\n-------------------------------------------------------------------------------\nShell 5 116 31 15 70 5\n(ULOC) 37\n-------------------------------------------------------------------------------\nJavaScript 4 70 16 28 26 0\n(ULOC) 18\n-------------------------------------------------------------------------------\nJSON 3 66 0 0 66 0\n(ULOC) 19\n-------------------------------------------------------------------------------\nHTML 2 6531 2170 0 4361 0\n(ULOC) 623\n-------------------------------------------------------------------------------\nSmarty Template 2 0 0 0 0 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 1 280 37 0 243 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 298 26028 4740 805 20483 184\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 6595\nDRYness % 0.25\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $643,514\nEstimated Schedule Effort (organic) 11.63 months\nEstimated People Required (organic) 4.91\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 746124 bytes, 0.746 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:25Z", - "repo": { - "name": "github.com/measureauthoringtool/mat-public-website-portlets", - "commit": "b8b3523b0f0c53a4b33f13330a357276e023a034" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.0, - "checks": [ - { - "details": null, - "score": 0, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.0, + "checks": [ + { + "details": null, + "score": 0, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat-tomcat/mat-tomcat_data.json b/app/site/_data/measureauthoringtool/mat-tomcat/mat-tomcat_data.json index 252747918e..d1f09fa9b7 100644 --- a/app/site/_data/measureauthoringtool/mat-tomcat/mat-tomcat_data.json +++ b/app/site/_data/measureauthoringtool/mat-tomcat/mat-tomcat_data.json @@ -1,323 +1,323 @@ { - "url": "https://github.com/measureauthoringtool/mat-tomcat", - "owner": "measureauthoringtool", - "name": "mat-tomcat", - "description": "Base Tomcat Docker image for use in deploying the MeasureAuthoringTool", - "commits_count": 8, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-10-24T19:48:05Z", - "total_project_lines": 202, - "average_project_lines": 40, - "total_project_comment_lines": 9, - "average_project_comment_lines": 2, - "total_project_blank_lines": 18, - "average_blank_lines": 4, - "predominant_langs": { - "Dockerfile": 445 + "url": "https://github.com/measureauthoringtool/mat-tomcat", + "owner": "measureauthoringtool", + "name": "mat-tomcat", + "description": "Base Tomcat Docker image for use in deploying the MeasureAuthoringTool", + "commits_count": 8, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-10-24T19:48:05Z", + "total_project_lines": 202, + "average_project_lines": 40, + "total_project_comment_lines": 9, + "average_project_comment_lines": 2, + "total_project_blank_lines": 18, + "average_blank_lines": 4, + "predominant_langs": { + "Dockerfile": 445 + }, + "commits_by_month": { + "2020/6": 2, + "2020/3": 3, + "2019/12": 2, + "2019/10": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Dockerfile", + "Bytes": 445, + "CodeBytes": 0, + "Lines": 11, + "Code": 5, + "Comment": 3, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 155, + "CodeBytes": 0, + "Lines": 3, + "Code": 3, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1493, + "CodeBytes": 0, + "Lines": 39, + "Code": 33, + "Comment": 6, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1203, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3951.406271445183, + "estimatedScheduleMonths_low": 1.73937194922977, + "estimatedPeople_low": 0.2213139201230741, + "estimatedCost_high": 12314.307737220679, + "estimatedScheduleMonths_high": 1.73937194922977, + "estimatedPeople_high": 0.2213139201230741, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nDockerfile 1 11 3 3 5 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nXML 1 39 0 6 33 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 5 202 18 9 175 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 184\nDRYness % 0.91\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,332\nEstimated Schedule Effort (organic) 1.74 months\nEstimated People Required (organic) 0.22\n───────────────────────────────────────────────────────────────────────────────\nProcessed 10344 bytes, 0.010 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:35:23Z", + "repo": { + "name": "github.com/measureauthoringtool/mat-tomcat", + "commit": "6e726e2b5c9d0ac3896acd70a556c92ff3173114" }, - "commits_by_month": { - "2020/6": 2, - "2020/3": 3, - "2019/12": 2, - "2019/10": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Dockerfile", - "Bytes": 445, - "CodeBytes": 0, - "Lines": 11, - "Code": 5, - "Comment": 3, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 155, - "CodeBytes": 0, - "Lines": 3, - "Code": 3, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1493, - "CodeBytes": 0, - "Lines": 39, - "Code": 33, - "Comment": 6, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1203, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3951.406271445183, - "estimatedScheduleMonths_low": 1.73937194922977, - "estimatedPeople_low": 0.2213139201230741, - "estimatedCost_high": 12314.307737220679, - "estimatedScheduleMonths_high": 1.73937194922977, - "estimatedPeople_high": 0.2213139201230741, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nDockerfile 1 11 3 3 5 0\n(ULOC) 9\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 3 0 0 3 0\n(ULOC) 4\n-------------------------------------------------------------------------------\nXML 1 39 0 6 33 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 5 202 18 9 175 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 184\nDRYness % 0.91\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,332\nEstimated Schedule Effort (organic) 1.74 months\nEstimated People Required (organic) 0.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 10344 bytes, 0.010 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:35:23Z", - "repo": { - "name": "github.com/measureauthoringtool/mat-tomcat", - "commit": "6e726e2b5c9d0ac3896acd70a556c92ff3173114" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.9, - "checks": [ - { - "details": null, - "score": 8, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 7, - "reason": "Found 3/4 approved changesets -- score normalized to 7", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.9, + "checks": [ + { + "details": null, + "score": 8, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 7, + "reason": "Found 3/4 approved changesets -- score normalized to 7", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat_automation_cypress/mat_automation_cypress_data.json b/app/site/_data/measureauthoringtool/mat_automation_cypress/mat_automation_cypress_data.json index d946aea0c0..c75ab611e0 100644 --- a/app/site/_data/measureauthoringtool/mat_automation_cypress/mat_automation_cypress_data.json +++ b/app/site/_data/measureauthoringtool/mat_automation_cypress/mat_automation_cypress_data.json @@ -1,543 +1,543 @@ { - "url": "https://github.com/measureauthoringtool/mat_automation_cypress", - "owner": "measureauthoringtool", - "name": "mat_automation_cypress", - "description": null, - "commits_count": 664, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 350, - "open_pull_requests_count": 40, - "merged_pull_requests_count": 285, - "closed_pull_requests_count": 25, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "created_at": "2020-01-28T14:18:43Z", - "total_project_lines": 25139, - "average_project_lines": 120, - "total_project_comment_lines": 1657, - "average_project_comment_lines": 8, - "total_project_blank_lines": 6776, - "average_blank_lines": 32, - "predominant_langs": { - "JavaScript": 942479, - "HTML": 94524, - "Dockerfile": 756 - }, - "commits_by_month": { - "2023/11": 7, - "2023/9": 2, - "2023/7": 10, - "2023/4": 3, - "2023/3": 2, - "2022/7": 6 + "url": "https://github.com/measureauthoringtool/mat_automation_cypress", + "owner": "measureauthoringtool", + "name": "mat_automation_cypress", + "description": null, + "commits_count": 664, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 350, + "open_pull_requests_count": 40, + "merged_pull_requests_count": 285, + "closed_pull_requests_count": 25, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "created_at": "2020-01-28T14:18:43Z", + "total_project_lines": 25139, + "average_project_lines": 120, + "total_project_comment_lines": 1657, + "average_project_comment_lines": 8, + "total_project_blank_lines": 6776, + "average_blank_lines": 32, + "predominant_langs": { + "JavaScript": 942479, + "HTML": 94524, + "Dockerfile": 756 + }, + "commits_by_month": { + "2023/11": 7, + "2023/9": 2, + "2023/7": 10, + "2023/4": 3, + "2023/3": 2, + "2022/7": 6 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@cypress/browserify-preprocessor", + 1.4821917808, + "2024-12-17T15:54:05.000" + ], + [ + "@cypress/webpack-preprocessor", + 4.1698630137, + "2024-12-17T15:54:05.000" + ], + [ + "@types/node", + 2.5123287671, + "2024-12-17T15:54:05.000" + ], + [ + "axe-core", + 0.2547945205, + "2024-12-17T15:54:05.000" + ], + [ + "cy-verify-downloads", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "cypress", + 2.5342465753, + "2024-12-17T15:54:05.000" + ], + [ + "cypress-axe", + 1.6575342466, + "2024-12-17T15:54:05.000" + ], + [ + "cypress-commands", + 2.2191780822, + "2024-12-17T15:54:05.000" + ], + [ + "cypress-file-upload", + 0.8109589041, + "2024-12-17T15:54:05.000" + ], + [ + "cypress-visual-regression", + 2.4219178082, + "2024-12-17T15:54:05.000" + ], + [ + "data-driven", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "diff", + 4.6520547945, + "2024-12-17T15:54:05.000" + ], + [ + "eslint-plugin-chai-friendly", + 0.1808219178, + "2024-12-17T15:54:05.000" + ], + [ + "eslint-plugin-cypress", + 0.5397260274, + "2024-12-17T15:54:05.000" + ], + [ + "husky", + 3.8410958904, + "2024-12-17T15:54:05.000" + ], + [ + "make-runnable", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "mocha", + 3.5753424658, + "2024-12-17T15:54:05.000" + ], + [ + "mochawesome", + 2.6328767123, + "2024-12-17T15:54:05.000" + ], + [ + "mochawesome-merge", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "mongodb", + 4.3643835616, + "2024-12-17T15:54:05.000" + ], + [ + "mongodb-client-encryption", + 1.1698630137, + "2024-12-17T15:54:05.000" + ], + [ + "mysql", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "playwright", + 3.7561643836, + "2024-12-17T15:54:05.000" + ], + [ + "portscanner", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "snazzy", + 2.1643835616, + "2024-12-17T15:54:05.000" + ], + [ + "standard", + 4.3424657534, + "2024-12-17T15:54:05.000" + ], + [ + "ts-loader", + 3.6493150685, + "2024-12-17T15:54:05.000" + ], + [ + "tsify", + 0.9342465753, + "2024-12-17T15:54:05.000" + ], + [ + "tslint", + 0.7342465753, + "2024-12-17T15:54:05.000" + ], + [ + "tslint-no-unused-expression-chai", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "tunnel-ssh", + 6.802739726, + "2024-12-17T15:54:05.000" + ], + [ + "typescript", + 3.7808219178, + "2024-12-17T15:54:05.000" + ], + [ + "unzipper", + 0.0, + "2024-12-17T15:54:05.000" + ], + [ + "webpack", + 1.2465753425, + "2024-12-17T15:54:05.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 942479, + "CodeBytes": 0, + "Lines": 24036, + "Code": 15675, + "Comment": 1643, + "Blank": 6718, + "Complexity": 209, + "Count": 185, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 229865, + "CodeBytes": 0, + "Lines": 438, + "Code": 422, + "Comment": 0, + "Blank": 16, + "Complexity": 0, + "Count": 15, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2979, + "CodeBytes": 0, + "Lines": 70, + "Code": 67, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript", + "Bytes": 0, + "CodeBytes": 0, + "Lines": 0, + "Code": 0, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 756, + "CodeBytes": 0, + "Lines": 29, + "Code": 19, + "Comment": 4, + "Blank": 6, + "Complexity": 6, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 3510, + "CodeBytes": 0, + "Lines": 103, + "Code": 72, + "Comment": 0, + "Blank": 31, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 0, + "CodeBytes": 0, + "Lines": 0, + "Code": 0, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 20255, + "CodeBytes": 0, + "Lines": 463, + "Code": 451, + "Comment": 10, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 473781.2120127499, + "estimatedScheduleMonths_low": 10.723743037722866, + "estimatedPeople_low": 4.304086033425594, + "estimatedCost_high": 1476509.1828192528, + "estimatedScheduleMonths_high": 10.723743037722866, + "estimatedPeople_high": 4.304086033425594, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 185 24036 6718 1643 15675 209\n(ULOC) 5950\n-------------------------------------------------------------------------------\nJSON 15 438 16 0 422 0\n(ULOC) 337\n-------------------------------------------------------------------------------\nYAML 3 70 3 0 67 0\n(ULOC) 58\n-------------------------------------------------------------------------------\nTypeScript 2 0 0 0 0 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nDockerfile 1 29 6 4 19 6\n(ULOC) 23\n-------------------------------------------------------------------------------\nMarkdown 1 103 31 0 72 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nTypeScript Typings 1 0 0 0 0 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nXML 1 463 2 10 451 0\n(ULOC) 249\n───────────────────────────────────────────────────────────────────────────────\nTotal 209 25139 6776 1657 16706 215\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 6675\nDRYness % 0.27\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $519,530\nEstimated Schedule Effort (organic) 10.72 months\nEstimated People Required (organic) 4.30\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1199844 bytes, 1.200 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:35:34Z", + "repo": { + "name": "github.com/measureauthoringtool/mat_automation_cypress", + "commit": "c5fc2ea68f417b760a6a67ba625b7b2123823f78" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@cypress/browserify-preprocessor", - 1.4821917808, - "2024-12-17T15:54:05.000" - ], - [ - "@cypress/webpack-preprocessor", - 4.1698630137, - "2024-12-17T15:54:05.000" - ], - [ - "@types/node", - 2.5123287671, - "2024-12-17T15:54:05.000" - ], - [ - "axe-core", - 0.2547945205, - "2024-12-17T15:54:05.000" - ], - [ - "cy-verify-downloads", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "cypress", - 2.5342465753, - "2024-12-17T15:54:05.000" - ], - [ - "cypress-axe", - 1.6575342466, - "2024-12-17T15:54:05.000" - ], - [ - "cypress-commands", - 2.2191780822, - "2024-12-17T15:54:05.000" - ], - [ - "cypress-file-upload", - 0.8109589041, - "2024-12-17T15:54:05.000" - ], - [ - "cypress-visual-regression", - 2.4219178082, - "2024-12-17T15:54:05.000" - ], - [ - "data-driven", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "diff", - 4.6520547945, - "2024-12-17T15:54:05.000" - ], - [ - "eslint-plugin-chai-friendly", - 0.1808219178, - "2024-12-17T15:54:05.000" - ], - [ - "eslint-plugin-cypress", - 0.5397260274, - "2024-12-17T15:54:05.000" - ], - [ - "husky", - 3.8410958904, - "2024-12-17T15:54:05.000" - ], - [ - "make-runnable", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "mocha", - 3.5753424658, - "2024-12-17T15:54:05.000" - ], - [ - "mochawesome", - 2.6328767123, - "2024-12-17T15:54:05.000" - ], - [ - "mochawesome-merge", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "mongodb", - 4.3643835616, - "2024-12-17T15:54:05.000" - ], - [ - "mongodb-client-encryption", - 1.1698630137, - "2024-12-17T15:54:05.000" - ], - [ - "mysql", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "playwright", - 3.7561643836, - "2024-12-17T15:54:05.000" - ], - [ - "portscanner", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "snazzy", - 2.1643835616, - "2024-12-17T15:54:05.000" - ], - [ - "standard", - 4.3424657534, - "2024-12-17T15:54:05.000" - ], - [ - "ts-loader", - 3.6493150685, - "2024-12-17T15:54:05.000" - ], - [ - "tsify", - 0.9342465753, - "2024-12-17T15:54:05.000" - ], - [ - "tslint", - 0.7342465753, - "2024-12-17T15:54:05.000" - ], - [ - "tslint-no-unused-expression-chai", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "tunnel-ssh", - 6.802739726, - "2024-12-17T15:54:05.000" - ], - [ - "typescript", - 3.7808219178, - "2024-12-17T15:54:05.000" - ], - [ - "unzipper", - 0.0, - "2024-12-17T15:54:05.000" - ], - [ - "webpack", - 1.2465753425, - "2024-12-17T15:54:05.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 942479, - "CodeBytes": 0, - "Lines": 24036, - "Code": 15675, - "Comment": 1643, - "Blank": 6718, - "Complexity": 209, - "Count": 185, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 229865, - "CodeBytes": 0, - "Lines": 438, - "Code": 422, - "Comment": 0, - "Blank": 16, - "Complexity": 0, - "Count": 15, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2979, - "CodeBytes": 0, - "Lines": 70, - "Code": 67, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript", - "Bytes": 0, - "CodeBytes": 0, - "Lines": 0, - "Code": 0, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 756, - "CodeBytes": 0, - "Lines": 29, - "Code": 19, - "Comment": 4, - "Blank": 6, - "Complexity": 6, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 3510, - "CodeBytes": 0, - "Lines": 103, - "Code": 72, - "Comment": 0, - "Blank": 31, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 0, - "CodeBytes": 0, - "Lines": 0, - "Code": 0, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 20255, - "CodeBytes": 0, - "Lines": 463, - "Code": 451, - "Comment": 10, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 473781.2120127499, - "estimatedScheduleMonths_low": 10.723743037722866, - "estimatedPeople_low": 4.304086033425594, - "estimatedCost_high": 1476509.1828192528, - "estimatedScheduleMonths_high": 10.723743037722866, - "estimatedPeople_high": 4.304086033425594, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 185 24036 6718 1643 15675 209\n(ULOC) 5950\n-------------------------------------------------------------------------------\nJSON 15 438 16 0 422 0\n(ULOC) 337\n-------------------------------------------------------------------------------\nYAML 3 70 3 0 67 0\n(ULOC) 58\n-------------------------------------------------------------------------------\nTypeScript 2 0 0 0 0 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nDockerfile 1 29 6 4 19 6\n(ULOC) 23\n-------------------------------------------------------------------------------\nMarkdown 1 103 31 0 72 0\n(ULOC) 68\n-------------------------------------------------------------------------------\nTypeScript Typings 1 0 0 0 0 0\n(ULOC) 1\n-------------------------------------------------------------------------------\nXML 1 463 2 10 451 0\n(ULOC) 249\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 209 25139 6776 1657 16706 215\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 6675\nDRYness % 0.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $519,530\nEstimated Schedule Effort (organic) 10.72 months\nEstimated People Required (organic) 4.30\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1199844 bytes, 1.200 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:35:34Z", - "repo": { - "name": "github.com/measureauthoringtool/mat_automation_cypress", - "commit": "c5fc2ea68f417b760a6a67ba625b7b2123823f78" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.3, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 1, - "reason": "2 out of 14 merged PRs checked by a CI test -- score normalized to 1", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "42 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.3, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 1, + "reason": "2 out of 14 merged PRs checked by a CI test -- score normalized to 1", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "42 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat_automation_selenium/mat_automation_selenium_data.json b/app/site/_data/measureauthoringtool/mat_automation_selenium/mat_automation_selenium_data.json index 36b6b77241..c9d0da46c5 100644 --- a/app/site/_data/measureauthoringtool/mat_automation_selenium/mat_automation_selenium_data.json +++ b/app/site/_data/measureauthoringtool/mat_automation_selenium/mat_automation_selenium_data.json @@ -1,386 +1,386 @@ { - "url": "https://github.com/measureauthoringtool/mat_automation_selenium", - "owner": "measureauthoringtool", - "name": "mat_automation_selenium", - "description": null, - "commits_count": 9, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-12-03T20:12:01Z", - "total_project_lines": 15473, - "average_project_lines": 172, - "total_project_comment_lines": 665, - "average_project_comment_lines": 7, - "total_project_blank_lines": 2441, - "average_blank_lines": 27, - "predominant_langs": { - "Java": 383683, - "Gherkin": 142916, - "HTML": 65985, - "JavaScript": 28334, - "CSS": 6805 + "url": "https://github.com/measureauthoringtool/mat_automation_selenium", + "owner": "measureauthoringtool", + "name": "mat_automation_selenium", + "description": null, + "commits_count": 9, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-12-03T20:12:01Z", + "total_project_lines": 15473, + "average_project_lines": 172, + "total_project_comment_lines": 665, + "average_project_comment_lines": 7, + "total_project_blank_lines": 2441, + "average_blank_lines": 27, + "predominant_langs": { + "Java": 383683, + "Gherkin": 142916, + "HTML": 65985, + "JavaScript": 28334, + "CSS": 6805 + }, + "commits_by_month": { + "2020/6": 2, + "2020/3": 4, + "2019/12": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "HTML", + "Bytes": 65985, + "CodeBytes": 0, + "Lines": 1459, + "Code": 1204, + "Comment": 112, + "Blank": 143, + "Complexity": 0, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Java", + "Bytes": 383683, + "CodeBytes": 0, + "Lines": 9490, + "Code": 7368, + "Comment": 366, + "Blank": 1756, + "Complexity": 332, + "Count": 26, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gherkin Specification", + "Bytes": 142916, + "CodeBytes": 0, + "Lines": 2930, + "Code": 2407, + "Comment": 149, + "Blank": 374, + "Complexity": 346, + "Count": 14, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 11093, + "CodeBytes": 0, + "Lines": 280, + "Code": 241, + "Comment": 18, + "Blank": 21, + "Complexity": 0, + "Count": 10, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 215636, + "CodeBytes": 0, + "Lines": 714, + "Code": 658, + "Comment": 10, + "Blank": 46, + "Complexity": 69, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 6805, + "CodeBytes": 0, + "Lines": 414, + "Code": 340, + "Comment": 0, + "Blank": 74, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 1004, + "CodeBytes": 0, + "Lines": 37, + "Code": 15, + "Comment": 10, + "Blank": 12, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1223, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 345493.04765732505, + "estimatedScheduleMonths_low": 9.511165976364593, + "estimatedPeople_low": 3.5387921894767, + "estimatedCost_high": 1076707.23222457, + "estimatedScheduleMonths_high": 9.511165976364593, + "estimatedPeople_high": 3.5387921894767, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nHTML 27 1459 143 112 1204 0\n(ULOC) 794\n-------------------------------------------------------------------------------\nJava 26 9490 1756 366 7368 332\n(ULOC) 4361\n-------------------------------------------------------------------------------\nGherkin Specificati… 14 2930 374 149 2407 346\n(ULOC) 1369\n-------------------------------------------------------------------------------\nXML 10 280 21 18 241 0\n(ULOC) 200\n-------------------------------------------------------------------------------\nJavaScript 5 714 46 10 658 69\n(ULOC) 379\n-------------------------------------------------------------------------------\nCSS 3 414 74 0 340 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nProperties File 3 37 12 10 15 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 90 15473 2441 665 12367 747\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 7420\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $378,854\nEstimated Schedule Effort (organic) 9.51 months\nEstimated People Required (organic) 3.54\n───────────────────────────────────────────────────────────────────────────────\nProcessed 835393 bytes, 0.835 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:35:28Z", + "repo": { + "name": "github.com/measureauthoringtool/mat_automation_selenium", + "commit": "d6f23fb8176999702bed251527baf7a44c71e6d5" }, - "commits_by_month": { - "2020/6": 2, - "2020/3": 4, - "2019/12": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "HTML", - "Bytes": 65985, - "CodeBytes": 0, - "Lines": 1459, - "Code": 1204, - "Comment": 112, - "Blank": 143, - "Complexity": 0, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Java", - "Bytes": 383683, - "CodeBytes": 0, - "Lines": 9490, - "Code": 7368, - "Comment": 366, - "Blank": 1756, - "Complexity": 332, - "Count": 26, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gherkin Specification", - "Bytes": 142916, - "CodeBytes": 0, - "Lines": 2930, - "Code": 2407, - "Comment": 149, - "Blank": 374, - "Complexity": 346, - "Count": 14, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 11093, - "CodeBytes": 0, - "Lines": 280, - "Code": 241, - "Comment": 18, - "Blank": 21, - "Complexity": 0, - "Count": 10, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 215636, - "CodeBytes": 0, - "Lines": 714, - "Code": 658, - "Comment": 10, - "Blank": 46, - "Complexity": 69, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 6805, - "CodeBytes": 0, - "Lines": 414, - "Code": 340, - "Comment": 0, - "Blank": 74, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 1004, - "CodeBytes": 0, - "Lines": 37, - "Code": 15, - "Comment": 10, - "Blank": 12, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1223, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 345493.04765732505, - "estimatedScheduleMonths_low": 9.511165976364593, - "estimatedPeople_low": 3.5387921894767, - "estimatedCost_high": 1076707.23222457, - "estimatedScheduleMonths_high": 9.511165976364593, - "estimatedPeople_high": 3.5387921894767, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nHTML 27 1459 143 112 1204 0\n(ULOC) 794\n-------------------------------------------------------------------------------\nJava 26 9490 1756 366 7368 332\n(ULOC) 4361\n-------------------------------------------------------------------------------\nGherkin Specificati\u2026 14 2930 374 149 2407 346\n(ULOC) 1369\n-------------------------------------------------------------------------------\nXML 10 280 21 18 241 0\n(ULOC) 200\n-------------------------------------------------------------------------------\nJavaScript 5 714 46 10 658 69\n(ULOC) 379\n-------------------------------------------------------------------------------\nCSS 3 414 74 0 340 0\n(ULOC) 192\n-------------------------------------------------------------------------------\nProperties File 3 37 12 10 15 0\n(ULOC) 26\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 90 15473 2441 665 12367 747\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 7420\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $378,854\nEstimated Schedule Effort (organic) 9.51 months\nEstimated People Required (organic) 3.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 835393 bytes, 0.835 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:35:28Z", - "repo": { - "name": "github.com/measureauthoringtool/mat_automation_selenium", - "commit": "d6f23fb8176999702bed251527baf7a44c71e6d5" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 0, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 3, - "reason": "Found 2/6 approved changesets -- score normalized to 3", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.5, + "checks": [ + { + "details": null, + "score": 0, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 3, + "reason": "Found 2/6 approved changesets -- score normalized to 3", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/mat_framework_for_vsac/mat_framework_for_vsac_data.json b/app/site/_data/measureauthoringtool/mat_framework_for_vsac/mat_framework_for_vsac_data.json index fa7bb3bf3c..658165d4a4 100644 --- a/app/site/_data/measureauthoringtool/mat_framework_for_vsac/mat_framework_for_vsac_data.json +++ b/app/site/_data/measureauthoringtool/mat_framework_for_vsac/mat_framework_for_vsac_data.json @@ -1,324 +1,324 @@ { - "url": "https://github.com/measureauthoringtool/mat_framework_for_vsac", - "owner": "measureauthoringtool", - "name": "mat_framework_for_vsac", - "description": "A repository for MAT VSAC communication code. This is used as 'vsac_framework.jar' inside MAT Tool.", - "commits_count": 10, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2014-04-30T20:10:49Z", - "total_project_lines": 1605, - "average_project_lines": 76, - "total_project_comment_lines": 268, - "average_project_comment_lines": 13, - "total_project_blank_lines": 145, - "average_blank_lines": 7, - "predominant_langs": { - "Java": 28412 + "url": "https://github.com/measureauthoringtool/mat_framework_for_vsac", + "owner": "measureauthoringtool", + "name": "mat_framework_for_vsac", + "description": "A repository for MAT VSAC communication code. This is used as 'vsac_framework.jar' inside MAT Tool.", + "commits_count": 10, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2014-04-30T20:10:49Z", + "total_project_lines": 1605, + "average_project_lines": 76, + "total_project_comment_lines": 268, + "average_project_comment_lines": 13, + "total_project_blank_lines": 145, + "average_blank_lines": 7, + "predominant_langs": { + "Java": 28412 + }, + "commits_by_month": { + "2020/6": 2, + "2020/3": 2, + "2019/12": 2, + "2014/9": 1, + "2014/4": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 28041, + "CodeBytes": 0, + "Lines": 929, + "Code": 662, + "Comment": 154, + "Blank": 113, + "Complexity": 16, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 19152, + "CodeBytes": 0, + "Lines": 514, + "Code": 384, + "Comment": 114, + "Blank": 16, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaServer Pages", + "Bytes": 371, + "CodeBytes": 0, + "Lines": 13, + "Code": 12, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1223, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 29624.552712464716, + "estimatedScheduleMonths_low": 3.7398527797828955, + "estimatedPeople_low": 0.7716969849666884, + "estimatedCost_high": 92323.04491569843, + "estimatedScheduleMonths_high": 3.7398527797828955, + "estimatedPeople_high": 0.7716969849666884, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 11 929 113 154 662 16\n(ULOC) 479\n-------------------------------------------------------------------------------\nXML 7 514 16 114 384 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nJavaServer Pages 1 13 1 0 12 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 21 1605 145 268 1192 16\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 756\nDRYness % 0.47\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $32,485\nEstimated Schedule Effort (organic) 3.74 months\nEstimated People Required (organic) 0.77\n───────────────────────────────────────────────────────────────────────────────\nProcessed 55835 bytes, 0.056 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:14Z", + "repo": { + "name": "github.com/measureauthoringtool/mat_framework_for_vsac", + "commit": "e89ccb32e36a75c85583564742f72aa674a6e2f1" }, - "commits_by_month": { - "2020/6": 2, - "2020/3": 2, - "2019/12": 2, - "2014/9": 1, - "2014/4": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 28041, - "CodeBytes": 0, - "Lines": 929, - "Code": 662, - "Comment": 154, - "Blank": 113, - "Complexity": 16, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 19152, - "CodeBytes": 0, - "Lines": 514, - "Code": 384, - "Comment": 114, - "Blank": 16, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaServer Pages", - "Bytes": 371, - "CodeBytes": 0, - "Lines": 13, - "Code": 12, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1223, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 29624.552712464716, - "estimatedScheduleMonths_low": 3.7398527797828955, - "estimatedPeople_low": 0.7716969849666884, - "estimatedCost_high": 92323.04491569843, - "estimatedScheduleMonths_high": 3.7398527797828955, - "estimatedPeople_high": 0.7716969849666884, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 11 929 113 154 662 16\n(ULOC) 479\n-------------------------------------------------------------------------------\nXML 7 514 16 114 384 0\n(ULOC) 133\n-------------------------------------------------------------------------------\nJavaServer Pages 1 13 1 0 12 0\n(ULOC) 13\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 21 1605 145 268 1192 16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 756\nDRYness % 0.47\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $32,485\nEstimated Schedule Effort (organic) 3.74 months\nEstimated People Required (organic) 0.77\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 55835 bytes, 0.056 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:14Z", - "repo": { - "name": "github.com/measureauthoringtool/mat_framework_for_vsac", - "commit": "e89ccb32e36a75c85583564742f72aa674a6e2f1" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.5, - "checks": [ - { - "details": null, - "score": 0, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 4, - "reason": "Found 3/7 approved changesets -- score normalized to 4", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.5, + "checks": [ + { + "details": null, + "score": 0, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 4, + "reason": "Found 3/7 approved changesets -- score normalized to 4", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measure-authoring-tool-frontend/measure-authoring-tool-frontend_data.json b/app/site/_data/measureauthoringtool/measure-authoring-tool-frontend/measure-authoring-tool-frontend_data.json index 87bf65e5c4..74aa7019d1 100644 --- a/app/site/_data/measureauthoringtool/measure-authoring-tool-frontend/measure-authoring-tool-frontend_data.json +++ b/app/site/_data/measureauthoringtool/measure-authoring-tool-frontend/measure-authoring-tool-frontend_data.json @@ -1,524 +1,524 @@ { - "url": "https://github.com/measureauthoringtool/measure-authoring-tool-frontend", - "owner": "measureauthoringtool", - "name": "measure-authoring-tool-frontend", - "description": "POC for React Frontend for the Measure Authoring Tool", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-09-06T16:19:41Z", - "total_project_lines": 7968, - "average_project_lines": 38, - "total_project_comment_lines": 202, - "average_project_comment_lines": 1, - "total_project_blank_lines": 1000, - "average_blank_lines": 5, - "predominant_langs": { - "JavaScript": 192170, - "CSS": 2630, - "HTML": 1634 - }, - "commits_by_month": { - "2019/12": 2, - "2019/9": 1 + "url": "https://github.com/measureauthoringtool/measure-authoring-tool-frontend", + "owner": "measureauthoringtool", + "name": "measure-authoring-tool-frontend", + "description": "POC for React Frontend for the Measure Authoring Tool", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-09-06T16:19:41Z", + "total_project_lines": 7968, + "average_project_lines": 38, + "total_project_comment_lines": 202, + "average_project_comment_lines": 1, + "total_project_blank_lines": 1000, + "average_blank_lines": 5, + "predominant_langs": { + "JavaScript": 192170, + "CSS": 2630, + "HTML": 1634 + }, + "commits_by_month": { + "2019/12": 2, + "2019/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [ + [ + "@cmsgov/design-system-core", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@cmsgov/design-system-layout", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/fontawesome-svg-core", + 2.8575342466, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/free-regular-svg-icons", + 5.5397260274, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/free-solid-svg-icons", + 5.5397260274, + "2024-12-17T15:52:33.000" + ], + [ + "@fortawesome/react-fontawesome", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "babel-polyfill", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "bootstrap", + 1.5917808219, + "2024-12-17T15:52:33.000" + ], + [ + "enzyme", + 0.8356164384, + "2024-12-17T15:52:33.000" + ], + [ + "enzyme-adapter-react-16", + 5.0136986301, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-config-airbnb", + 2.4849315068, + "2024-12-17T15:52:33.000" + ], + [ + "eslint-plugin-jest", + 5.0301369863, + "2024-12-17T15:52:33.000" + ], + [ + "immutable", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "monaco-editor-webpack-plugin", + 2.8054794521, + "2024-12-17T15:52:33.000" + ], + [ + "node-sass", + 3.0410958904, + "2024-12-17T15:52:33.000" + ], + [ + "pre-commit", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "prop-types", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "query-string", + 4.9095890411, + "2024-12-17T15:52:33.000" + ], + [ + "react", + 5.3287671233, + "2024-12-17T15:52:33.000" + ], + [ + "react-app-rewired", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "react-docgen", + 6.3205479452, + "2024-12-17T15:52:33.000" + ], + [ + "react-dom", + 5.3287671233, + "2024-12-17T15:52:33.000" + ], + [ + "react-monaco-editor", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "react-quill", + 2.3479452055, + "2024-12-17T15:52:33.000" + ], + [ + "react-redux", + 5.8082191781, + "2024-12-17T15:52:33.000" + ], + [ + "react-router", + 5.7232876712, + "2024-12-17T15:52:33.000" + ], + [ + "react-router-dom", + 5.7232876712, + "2024-12-17T15:52:33.000" + ], + [ + "react-scripts", + 3.4465753425, + "2024-12-17T15:52:33.000" + ], + [ + "react-test-renderer", + 5.3287671233, + "2024-12-17T15:52:33.000" + ], + [ + "reactstrap", + 5.9808219178, + "2024-12-17T15:52:33.000" + ], + [ + "redux", + 0.898630137, + "2024-12-17T15:52:33.000" + ], + [ + "redux-logger", + 0.0, + "2024-12-17T15:52:33.000" + ], + [ + "redux-thunk", + 1.0821917808, + "2024-12-17T15:52:33.000" + ], + [ + "styled-components", + 4.8356164384, + "2024-12-17T15:52:33.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "JavaScript", + "Bytes": 192170, + "CodeBytes": 0, + "Lines": 6661, + "Code": 5829, + "Comment": 166, + "Blank": 666, + "Complexity": 101, + "Count": 123, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 13424, + "CodeBytes": 0, + "Lines": 679, + "Code": 380, + "Comment": 0, + "Blank": 299, + "Complexity": 0, + "Count": 57, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 26001, + "CodeBytes": 0, + "Lines": 214, + "Code": 202, + "Comment": 12, + "Blank": 0, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 2736, + "CodeBytes": 0, + "Lines": 101, + "Code": 101, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 2630, + "CodeBytes": 0, + "Lines": 151, + "Code": 127, + "Comment": 1, + "Blank": 23, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 1634, + "CodeBytes": 0, + "Lines": 41, + "Code": 18, + "Comment": 23, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 183404.64338119986, + "estimatedScheduleMonths_low": 7.476920206808223, + "estimatedPeople_low": 2.3896653640263423, + "estimatedCost_high": 571568.9716221681, + "estimatedScheduleMonths_high": 7.476920206808223, + "estimatedPeople_high": 2.3896653640263423, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJavaScript 123 6661 666 166 5829 101\n(ULOC) 3183\n-------------------------------------------------------------------------------\nMarkdown 57 679 299 0 380 0\n(ULOC) 226\n-------------------------------------------------------------------------------\nSVG 21 214 0 12 202 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nJSON 3 101 0 0 101 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nSass 2 151 23 1 127 0\n(ULOC) 98\n-------------------------------------------------------------------------------\nHTML 1 41 0 23 18 0\n(ULOC) 35\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n───────────────────────────────────────────────────────────────────────────────\nTotal 208 7968 1000 202 6766 101\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3849\nDRYness % 0.48\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $201,114\nEstimated Schedule Effort (organic) 7.48 months\nEstimated People Required (organic) 2.39\n───────────────────────────────────────────────────────────────────────────────\nProcessed 245643 bytes, 0.246 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:51Z", + "repo": { + "name": "github.com/measureauthoringtool/measure-authoring-tool-frontend", + "commit": "b253f6fffb82ec57a9a0ae2a9bdb1b62bffcd5d7" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [ - [ - "@cmsgov/design-system-core", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@cmsgov/design-system-layout", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/fontawesome-svg-core", - 2.8575342466, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/free-regular-svg-icons", - 5.5397260274, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/free-solid-svg-icons", - 5.5397260274, - "2024-12-17T15:52:33.000" - ], - [ - "@fortawesome/react-fontawesome", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "babel-polyfill", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "bootstrap", - 1.5917808219, - "2024-12-17T15:52:33.000" - ], - [ - "enzyme", - 0.8356164384, - "2024-12-17T15:52:33.000" - ], - [ - "enzyme-adapter-react-16", - 5.0136986301, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-config-airbnb", - 2.4849315068, - "2024-12-17T15:52:33.000" - ], - [ - "eslint-plugin-jest", - 5.0301369863, - "2024-12-17T15:52:33.000" - ], - [ - "immutable", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "monaco-editor-webpack-plugin", - 2.8054794521, - "2024-12-17T15:52:33.000" - ], - [ - "node-sass", - 3.0410958904, - "2024-12-17T15:52:33.000" - ], - [ - "pre-commit", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "prop-types", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "query-string", - 4.9095890411, - "2024-12-17T15:52:33.000" - ], - [ - "react", - 5.3287671233, - "2024-12-17T15:52:33.000" - ], - [ - "react-app-rewired", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "react-docgen", - 6.3205479452, - "2024-12-17T15:52:33.000" - ], - [ - "react-dom", - 5.3287671233, - "2024-12-17T15:52:33.000" - ], - [ - "react-monaco-editor", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "react-quill", - 2.3479452055, - "2024-12-17T15:52:33.000" - ], - [ - "react-redux", - 5.8082191781, - "2024-12-17T15:52:33.000" - ], - [ - "react-router", - 5.7232876712, - "2024-12-17T15:52:33.000" - ], - [ - "react-router-dom", - 5.7232876712, - "2024-12-17T15:52:33.000" - ], - [ - "react-scripts", - 3.4465753425, - "2024-12-17T15:52:33.000" - ], - [ - "react-test-renderer", - 5.3287671233, - "2024-12-17T15:52:33.000" - ], - [ - "reactstrap", - 5.9808219178, - "2024-12-17T15:52:33.000" - ], - [ - "redux", - 0.898630137, - "2024-12-17T15:52:33.000" - ], - [ - "redux-logger", - 0.0, - "2024-12-17T15:52:33.000" - ], - [ - "redux-thunk", - 1.0821917808, - "2024-12-17T15:52:33.000" - ], - [ - "styled-components", - 4.8356164384, - "2024-12-17T15:52:33.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "JavaScript", - "Bytes": 192170, - "CodeBytes": 0, - "Lines": 6661, - "Code": 5829, - "Comment": 166, - "Blank": 666, - "Complexity": 101, - "Count": 123, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 13424, - "CodeBytes": 0, - "Lines": 679, - "Code": 380, - "Comment": 0, - "Blank": 299, - "Complexity": 0, - "Count": 57, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 26001, - "CodeBytes": 0, - "Lines": 214, - "Code": 202, - "Comment": 12, - "Blank": 0, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 2736, - "CodeBytes": 0, - "Lines": 101, - "Code": 101, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 2630, - "CodeBytes": 0, - "Lines": 151, - "Code": 127, - "Comment": 1, - "Blank": 23, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 1634, - "CodeBytes": 0, - "Lines": 41, - "Code": 18, - "Comment": 23, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 183404.64338119986, - "estimatedScheduleMonths_low": 7.476920206808223, - "estimatedPeople_low": 2.3896653640263423, - "estimatedCost_high": 571568.9716221681, - "estimatedScheduleMonths_high": 7.476920206808223, - "estimatedPeople_high": 2.3896653640263423, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJavaScript 123 6661 666 166 5829 101\n(ULOC) 3183\n-------------------------------------------------------------------------------\nMarkdown 57 679 299 0 380 0\n(ULOC) 226\n-------------------------------------------------------------------------------\nSVG 21 214 0 12 202 0\n(ULOC) 118\n-------------------------------------------------------------------------------\nJSON 3 101 0 0 101 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nSass 2 151 23 1 127 0\n(ULOC) 98\n-------------------------------------------------------------------------------\nHTML 1 41 0 23 18 0\n(ULOC) 35\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 208 7968 1000 202 6766 101\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3849\nDRYness % 0.48\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $201,114\nEstimated Schedule Effort (organic) 7.48 months\nEstimated People Required (organic) 2.39\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 245643 bytes, 0.246 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:51Z", - "repo": { - "name": "github.com/measureauthoringtool/measure-authoring-tool-frontend", - "commit": "b253f6fffb82ec57a9a0ae2a9bdb1b62bffcd5d7" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.0, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "145 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.0, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "145 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measure-authoring-tool-server/measure-authoring-tool-server_data.json b/app/site/_data/measureauthoringtool/measure-authoring-tool-server/measure-authoring-tool-server_data.json index d0d3f2103f..a65f755a7b 100644 --- a/app/site/_data/measureauthoringtool/measure-authoring-tool-server/measure-authoring-tool-server_data.json +++ b/app/site/_data/measureauthoringtool/measure-authoring-tool-server/measure-authoring-tool-server_data.json @@ -1,446 +1,446 @@ { - "url": "https://github.com/measureauthoringtool/measure-authoring-tool-server", - "owner": "measureauthoringtool", - "name": "measure-authoring-tool-server", - "description": "POC for Spring Boot backend (REST API) for the Measure Authoring Tool ", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 11, - "created_at": "2019-09-06T16:20:16Z", - "total_project_lines": 164749, - "average_project_lines": 165, - "total_project_comment_lines": 24581, - "average_project_comment_lines": 25, - "total_project_blank_lines": 19587, - "average_blank_lines": 20, - "predominant_langs": { - "Java": 3725226, - "XSLT": 945766, - "FreeMarker": 40912, - "HTML": 6044, - "TSQL": 2592, - "CSS": 1030 + "url": "https://github.com/measureauthoringtool/measure-authoring-tool-server", + "owner": "measureauthoringtool", + "name": "measure-authoring-tool-server", + "description": "POC for Spring Boot backend (REST API) for the Measure Authoring Tool ", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 11, + "created_at": "2019-09-06T16:20:16Z", + "total_project_lines": 164749, + "average_project_lines": 165, + "total_project_comment_lines": 24581, + "average_project_comment_lines": 25, + "total_project_blank_lines": 19587, + "average_blank_lines": 20, + "predominant_langs": { + "Java": 3725226, + "XSLT": 945766, + "FreeMarker": 40912, + "HTML": 6044, + "TSQL": 2592, + "CSS": 1030 + }, + "commits_by_month": { + "2019/12": 2, + "2019/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 3725226, + "CodeBytes": 0, + "Lines": 112026, + "Code": 71972, + "Comment": 24053, + "Blank": 16001, + "Complexity": 10243, + "Count": 596, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 808029, + "CodeBytes": 0, + "Lines": 13784, + "Code": 11313, + "Comment": 450, + "Blank": 2021, + "Complexity": 0, + "Count": 322, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Freemarker Template", + "Bytes": 40912, + "CodeBytes": 0, + "Lines": 1313, + "Code": 1107, + "Comment": 13, + "Blank": 193, + "Complexity": 59, + "Count": 26, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 755343, + "CodeBytes": 0, + "Lines": 15314, + "Code": 15228, + "Comment": 0, + "Blank": 86, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 945766, + "CodeBytes": 0, + "Lines": 21349, + "Code": 20185, + "Comment": 0, + "Blank": 1164, + "Complexity": 0, + "Count": 20, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 2627, + "CodeBytes": 0, + "Lines": 62, + "Code": 38, + "Comment": 9, + "Blank": 15, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 6044, + "CodeBytes": 0, + "Lines": 137, + "Code": 136, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 75935, + "CodeBytes": 0, + "Lines": 80, + "Code": 66, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 2592, + "CodeBytes": 0, + "Lines": 62, + "Code": 53, + "Comment": 0, + "Blank": 9, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 5810, + "CodeBytes": 0, + "Lines": 161, + "Code": 129, + "Comment": 0, + "Blank": 32, + "Complexity": 22, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1816, + "CodeBytes": 0, + "Lines": 54, + "Code": 40, + "Comment": 0, + "Blank": 14, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 9113, + "CodeBytes": 0, + "Lines": 286, + "Code": 205, + "Comment": 55, + "Blank": 26, + "Complexity": 34, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 3774892.2436322803, + "estimatedScheduleMonths_low": 23.596661044403753, + "estimatedPeople_low": 15.584881801809386, + "estimatedCost_high": 11764212.933218298, + "estimatedScheduleMonths_high": 23.596661044403753, + "estimatedPeople_high": 15.584881801809386, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 596 112026 16001 24053 71972 10243\n(ULOC) 41425\n-------------------------------------------------------------------------------\nXML 322 13784 2021 450 11313 0\n(ULOC) 6323\n-------------------------------------------------------------------------------\nFreemarker Template 26 1313 193 13 1107 59\n(ULOC) 684\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4366\n-------------------------------------------------------------------------------\nExtensible Styleshe… 20 21349 1164 0 20185 0\n(ULOC) 7577\n-------------------------------------------------------------------------------\nProperties File 4 62 15 9 38 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nHTML 3 137 0 1 136 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nCSS 2 80 14 0 66 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nSQL 2 62 9 0 53 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nBatch 1 161 32 0 129 22\n(ULOC) 115\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 54 14 0 40 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nShell 1 286 26 55 205 34\n(ULOC) 198\n───────────────────────────────────────────────────────────────────────────────\nTotal 1000 164749 19587 24581 120581 10358\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 60918\nDRYness % 0.37\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $4,139,407\nEstimated Schedule Effort (organic) 23.60 months\nEstimated People Required (organic) 15.58\n───────────────────────────────────────────────────────────────────────────────\nProcessed 6386261 bytes, 6.386 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:09Z", + "repo": { + "name": "github.com/measureauthoringtool/measure-authoring-tool-server", + "commit": "ab0c9e55fd4050b1cfb6715e3605abb3c69befd7" }, - "commits_by_month": { - "2019/12": 2, - "2019/9": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 3725226, - "CodeBytes": 0, - "Lines": 112026, - "Code": 71972, - "Comment": 24053, - "Blank": 16001, - "Complexity": 10243, - "Count": 596, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 808029, - "CodeBytes": 0, - "Lines": 13784, - "Code": 11313, - "Comment": 450, - "Blank": 2021, - "Complexity": 0, - "Count": 322, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Freemarker Template", - "Bytes": 40912, - "CodeBytes": 0, - "Lines": 1313, - "Code": 1107, - "Comment": 13, - "Blank": 193, - "Complexity": 59, - "Count": 26, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 755343, - "CodeBytes": 0, - "Lines": 15314, - "Code": 15228, - "Comment": 0, - "Blank": 86, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 945766, - "CodeBytes": 0, - "Lines": 21349, - "Code": 20185, - "Comment": 0, - "Blank": 1164, - "Complexity": 0, - "Count": 20, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 2627, - "CodeBytes": 0, - "Lines": 62, - "Code": 38, - "Comment": 9, - "Blank": 15, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 6044, - "CodeBytes": 0, - "Lines": 137, - "Code": 136, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 75935, - "CodeBytes": 0, - "Lines": 80, - "Code": 66, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 2592, - "CodeBytes": 0, - "Lines": 62, - "Code": 53, - "Comment": 0, - "Blank": 9, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 5810, - "CodeBytes": 0, - "Lines": 161, - "Code": 129, - "Comment": 0, - "Blank": 32, - "Complexity": 22, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1816, - "CodeBytes": 0, - "Lines": 54, - "Code": 40, - "Comment": 0, - "Blank": 14, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 9113, - "CodeBytes": 0, - "Lines": 286, - "Code": 205, - "Comment": 55, - "Blank": 26, - "Complexity": 34, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 3774892.2436322803, - "estimatedScheduleMonths_low": 23.596661044403753, - "estimatedPeople_low": 15.584881801809386, - "estimatedCost_high": 11764212.933218298, - "estimatedScheduleMonths_high": 23.596661044403753, - "estimatedPeople_high": 15.584881801809386, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 596 112026 16001 24053 71972 10243\n(ULOC) 41425\n-------------------------------------------------------------------------------\nXML 322 13784 2021 450 11313 0\n(ULOC) 6323\n-------------------------------------------------------------------------------\nFreemarker Template 26 1313 193 13 1107 59\n(ULOC) 684\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4366\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 20 21349 1164 0 20185 0\n(ULOC) 7577\n-------------------------------------------------------------------------------\nProperties File 4 62 15 9 38 0\n(ULOC) 48\n-------------------------------------------------------------------------------\nHTML 3 137 0 1 136 0\n(ULOC) 71\n-------------------------------------------------------------------------------\nCSS 2 80 14 0 66 0\n(ULOC) 47\n-------------------------------------------------------------------------------\nSQL 2 62 9 0 53 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nBatch 1 161 32 0 129 22\n(ULOC) 115\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 54 14 0 40 0\n(ULOC) 36\n-------------------------------------------------------------------------------\nShell 1 286 26 55 205 34\n(ULOC) 198\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1000 164749 19587 24581 120581 10358\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 60918\nDRYness % 0.37\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $4,139,407\nEstimated Schedule Effort (organic) 23.60 months\nEstimated People Required (organic) 15.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 6386261 bytes, 6.386 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:09Z", - "repo": { - "name": "github.com/measureauthoringtool/measure-authoring-tool-server", - "commit": "ab0c9e55fd4050b1cfb6715e3605abb3c69befd7" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.9, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measure-service/measure-service_data.json b/app/site/_data/measureauthoringtool/measure-service/measure-service_data.json index 643f96d43b..6835f38749 100644 --- a/app/site/_data/measureauthoringtool/measure-service/measure-service_data.json +++ b/app/site/_data/measureauthoringtool/measure-service/measure-service_data.json @@ -1,492 +1,492 @@ { - "url": "https://github.com/measureauthoringtool/measure-service", - "owner": "measureauthoringtool", - "name": "measure-service", - "description": "Template for creating Spring-Boot Microservices", - "commits_count": 2303, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 786, - "open_pull_requests_count": 15, - "merged_pull_requests_count": 530, - "closed_pull_requests_count": 241, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 6, - "created_at": "2021-09-21T17:51:59Z", - "total_project_lines": 48973, - "average_project_lines": 166, - "total_project_comment_lines": 899, - "average_project_comment_lines": 3, - "total_project_blank_lines": 4684, - "average_blank_lines": 16, - "predominant_langs": { - "Java": 1598747, - "Dockerfile": 667, - "JavaScript": 593 + "url": "https://github.com/measureauthoringtool/measure-service", + "owner": "measureauthoringtool", + "name": "measure-service", + "description": "Template for creating Spring-Boot Microservices", + "commits_count": 2303, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 786, + "open_pull_requests_count": 15, + "merged_pull_requests_count": 530, + "closed_pull_requests_count": 241, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 6, + "created_at": "2021-09-21T17:51:59Z", + "total_project_lines": 48973, + "average_project_lines": 166, + "total_project_comment_lines": 899, + "average_project_comment_lines": 3, + "total_project_blank_lines": 4684, + "average_blank_lines": 16, + "predominant_langs": { + "Java": 1598747, + "Dockerfile": 667, + "JavaScript": 593 + }, + "commits_by_month": { + "2025/1": 30 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 1 + ], + [ + "2024-08-14T00:00:00.000Z", + 2 + ], + [ + "2024-08-16T00:00:00.000Z", + 1 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-08-25T00:00:00.000Z", + 2 + ], + [ + "2024-08-26T00:00:00.000Z", + 2 + ], + [ + "2024-09-03T00:00:00.000Z", + 1 + ], + [ + "2024-09-12T00:00:00.000Z", + 2 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ], + [ + "2024-10-14T00:00:00.000Z", + 1 + ], + [ + "2024-10-15T00:00:00.000Z", + 1 + ], + [ + "2024-10-17T00:00:00.000Z", + 2 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-04T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 1603689, + "CodeBytes": 0, + "Lines": 39183, + "Code": 33677, + "Comment": 839, + "Blank": 4667, + "Complexity": 1239, + "Count": 263, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3654803, + "CodeBytes": 0, + "Lines": 11466, + "Code": 11461, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 18, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6643, + "CodeBytes": 0, + "Lines": 216, + "Code": 182, + "Comment": 3, + "Blank": 31, + "Complexity": 0, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 22226, + "CodeBytes": 0, + "Lines": 632, + "Code": 569, + "Comment": 29, + "Blank": 34, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2516, + "CodeBytes": 0, + "Lines": 57, + "Code": 38, + "Comment": 0, + "Blank": 19, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 1208, + "CodeBytes": 0, + "Lines": 48, + "Code": 32, + "Comment": 0, + "Blank": 16, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 6608, + "CodeBytes": 0, + "Lines": 182, + "Code": 147, + "Comment": 0, + "Blank": 35, + "Complexity": 30, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 667, + "CodeBytes": 0, + "Lines": 21, + "Code": 8, + "Comment": 6, + "Blank": 7, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 593, + "CodeBytes": 0, + "Lines": 27, + "Code": 20, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 218, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10070, + "CodeBytes": 0, + "Lines": 310, + "Code": 230, + "Comment": 54, + "Blank": 26, + "Complexity": 34, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 152, + "CodeBytes": 0, + "Lines": 4, + "Code": 4, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 1383919.0398883782, + "estimatedScheduleMonths_low": 16.11568914796034, + "estimatedPeople_low": 8.365873832685029, + "estimatedCost_high": 4312896.161485198, + "estimatedScheduleMonths_high": 16.11568914796034, + "estimatedPeople_high": 8.365873832685029, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 263 39183 4667 839 33677 1239\n(ULOC) 13716\n-------------------------------------------------------------------------------\nJSON 18 11466 5 0 11461 0\n(ULOC) 3259\n-------------------------------------------------------------------------------\nYAML 9 216 31 3 182 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nXML 4 632 34 29 569 0\n(ULOC) 386\n-------------------------------------------------------------------------------\nMarkdown 2 57 19 0 38 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nPlain Text 2 48 16 0 32 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nBatch 1 182 35 0 147 30\n(ULOC) 128\n-------------------------------------------------------------------------------\nDockerfile 1 21 7 6 8 1\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 27 7 0 20 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 310 26 54 230 34\n(ULOC) 212\n-------------------------------------------------------------------------------\nTOML 1 4 0 0 4 0\n(ULOC) 4\n───────────────────────────────────────────────────────────────────────────────\nTotal 304 52148 4847 931 46370 1304\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 17934\nDRYness % 0.34\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,517,554\nEstimated Schedule Effort (organic) 16.12 months\nEstimated People Required (organic) 8.37\n───────────────────────────────────────────────────────────────────────────────\nProcessed 5309393 bytes, 5.309 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:39:49Z", + "repo": { + "name": "github.com/measureauthoringtool/measure-service", + "commit": "3a68b984a2a0feeacc1dc5cedf65172c9e564031" }, - "commits_by_month": { - "2025/1": 30 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 1 - ], - [ - "2024-08-14T00:00:00.000Z", - 2 - ], - [ - "2024-08-16T00:00:00.000Z", - 1 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-08-25T00:00:00.000Z", - 2 - ], - [ - "2024-08-26T00:00:00.000Z", - 2 - ], - [ - "2024-09-03T00:00:00.000Z", - 1 - ], - [ - "2024-09-12T00:00:00.000Z", - 2 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ], - [ - "2024-10-14T00:00:00.000Z", - 1 - ], - [ - "2024-10-15T00:00:00.000Z", - 1 - ], - [ - "2024-10-17T00:00:00.000Z", - 2 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-04T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ] + "score": 5.4, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "6 out of 6 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 1571274, - "CodeBytes": 0, - "Lines": 38398, - "Code": 33003, - "Comment": 840, - "Blank": 4555, - "Complexity": 1229, - "Count": 259, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3654803, - "CodeBytes": 0, - "Lines": 11466, - "Code": 11461, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 18, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6643, - "CodeBytes": 0, - "Lines": 216, - "Code": 182, - "Comment": 3, - "Blank": 31, - "Complexity": 0, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 22226, - "CodeBytes": 0, - "Lines": 632, - "Code": 569, - "Comment": 29, - "Blank": 34, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2516, - "CodeBytes": 0, - "Lines": 57, - "Code": 38, - "Comment": 0, - "Blank": 19, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 1208, - "CodeBytes": 0, - "Lines": 48, - "Code": 32, - "Comment": 0, - "Blank": 16, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 6608, - "CodeBytes": 0, - "Lines": 182, - "Code": 147, - "Comment": 0, - "Blank": 35, - "Complexity": 30, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 667, - "CodeBytes": 0, - "Lines": 21, - "Code": 8, - "Comment": 6, - "Blank": 7, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 593, - "CodeBytes": 0, - "Lines": 27, - "Code": 20, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 218, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10070, - "CodeBytes": 0, - "Lines": 310, - "Code": 230, - "Comment": 54, - "Blank": 26, - "Complexity": 34, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 152, - "CodeBytes": 0, - "Lines": 4, - "Code": 4, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 1362805.34657298, - "estimatedScheduleMonths_low": 16.021813668361293, - "estimatedPeople_low": 8.28651002531743, - "estimatedCost_high": 4247096.671608897, - "estimatedScheduleMonths_high": 16.021813668361293, - "estimatedPeople_high": 8.28651002531743, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 259 38398 4555 840 33003 1229\n(ULOC) 13571\n-------------------------------------------------------------------------------\nJSON 18 11466 5 0 11461 0\n(ULOC) 3259\n-------------------------------------------------------------------------------\nYAML 9 216 31 3 182 0\n(ULOC) 165\n-------------------------------------------------------------------------------\nXML 4 632 34 29 569 0\n(ULOC) 386\n-------------------------------------------------------------------------------\nMarkdown 2 57 19 0 38 0\n(ULOC) 34\n-------------------------------------------------------------------------------\nPlain Text 2 48 16 0 32 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nBatch 1 182 35 0 147 30\n(ULOC) 128\n-------------------------------------------------------------------------------\nDockerfile 1 21 7 6 8 1\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 27 7 0 20 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 310 26 54 230 34\n(ULOC) 212\n-------------------------------------------------------------------------------\nTOML 1 4 0 0 4 0\n(ULOC) 4\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 300 51363 4735 932 45696 1294\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 17789\nDRYness % 0.35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,494,401\nEstimated Schedule Effort (organic) 16.02 months\nEstimated People Required (organic) 8.29\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 5276978 bytes, 5.277 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:39:49Z", - "repo": { - "name": "github.com/measureauthoringtool/measure-service", - "commit": "3a68b984a2a0feeacc1dc5cedf65172c9e564031" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.4, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "6 out of 6 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measure-transfer-lambda/measure-transfer-lambda_data.json b/app/site/_data/measureauthoringtool/measure-transfer-lambda/measure-transfer-lambda_data.json index 033c281f13..056988a77b 100644 --- a/app/site/_data/measureauthoringtool/measure-transfer-lambda/measure-transfer-lambda_data.json +++ b/app/site/_data/measureauthoringtool/measure-transfer-lambda/measure-transfer-lambda_data.json @@ -1,500 +1,500 @@ { - "url": "https://github.com/measureauthoringtool/measure-transfer-lambda", - "owner": "measureauthoringtool", - "name": "measure-transfer-lambda", - "description": "This is a lambda service to transfer MAT measures to MADiE", - "commits_count": 238, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 92, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 60, - "closed_pull_requests_count": 32, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-03-02T21:47:51Z", - "total_project_lines": 3832, - "average_project_lines": 87, - "total_project_comment_lines": 70, - "average_project_comment_lines": 2, - "total_project_blank_lines": 203, - "average_blank_lines": 5, - "predominant_langs": { - "TypeScript": 69689, - "JavaScript": 1060 + "url": "https://github.com/measureauthoringtool/measure-transfer-lambda", + "owner": "measureauthoringtool", + "name": "measure-transfer-lambda", + "description": "This is a lambda service to transfer MAT measures to MADiE", + "commits_count": 238, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 92, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 60, + "closed_pull_requests_count": 32, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-03-02T21:47:51Z", + "total_project_lines": 3832, + "average_project_lines": 87, + "total_project_comment_lines": 70, + "average_project_comment_lines": 2, + "total_project_blank_lines": 203, + "average_blank_lines": 5, + "predominant_langs": { + "TypeScript": 69689, + "JavaScript": 1060 + }, + "commits_by_month": { + "2024/5": 2, + "2024/4": 2, + "2024/3": 10, + "2024/2": 16 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@aws-sdk/client-s3", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@babel/core", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@babel/preset-env", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@babel/preset-typescript", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@lhncbc/ucum-lhc", + 0.5753424658, + "2024-12-17T15:49:04.000" + ], + [ + "@madie/madie-models", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@types/aws-lambda", + 2.4684931507, + "2024-12-17T15:49:04.000" + ], + [ + "@types/jest", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@types/lodash", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@types/node", + 2.4904109589, + "2024-12-17T15:49:04.000" + ], + [ + "@types/nodemailer", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@types/nodemailer-smtp-transport", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4356164384, + "2024-12-17T15:49:04.000" + ], + [ + "@typescript-eslint/parser", + 1.4356164384, + "2024-12-17T15:49:04.000" + ], + [ + "axios", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "babel-jest", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "esbuild", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "eslint", + 2.8356164384, + "2024-12-17T15:49:04.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:49:04.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:49:04.000" + ], + [ + "fast-xml-parser", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "jest", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "lodash", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "nodemailer", + 0.7369863014, + "2024-12-17T15:49:04.000" + ], + [ + "nodemailer-smtp-transport", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:49:04.000" + ], + [ + "ts-jest", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:49:04.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:49:04.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 69689, + "CodeBytes": 0, + "Lines": 1738, + "Code": 1526, + "Comment": 66, + "Blank": 146, + "Complexity": 197, + "Count": 20, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 195070, + "CodeBytes": 0, + "Lines": 1751, + "Code": 1751, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 17, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 4722, + "CodeBytes": 0, + "Lines": 90, + "Code": 63, + "Comment": 0, + "Blank": 27, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1669, + "CodeBytes": 0, + "Lines": 66, + "Code": 52, + "Comment": 2, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CloudFormation (YAML)", + "Bytes": 1840, + "CodeBytes": 0, + "Lines": 53, + "Code": 45, + "Comment": 2, + "Blank": 6, + "Complexity": 2, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TOML", + "Bytes": 360, + "CodeBytes": 0, + "Lines": 13, + "Code": 13, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 93423.497311645, + "estimatedScheduleMonths_low": 5.786289356528265, + "estimatedPeople_low": 1.572915823250005, + "estimatedCost_high": 291148.4207778621, + "estimatedScheduleMonths_high": 5.786289356528265, + "estimatedPeople_high": 1.572915823250005, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 20 1738 146 66 1526 197\n(ULOC) 1180\n-------------------------------------------------------------------------------\nJSON 17 1751 0 0 1751 0\n(ULOC) 432\n-------------------------------------------------------------------------------\nMarkdown 2 90 27 0 63 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nYAML 2 66 12 2 52 0\n(ULOC) 51\n-------------------------------------------------------------------------------\nCloudFormation (YAM… 1 53 6 2 45 2\n(ULOC) 47\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nTOML 1 13 0 0 13 0\n(ULOC) 14\n───────────────────────────────────────────────────────────────────────────────\nTotal 44 3832 203 70 3559 199\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1875\nDRYness % 0.49\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $102,444\nEstimated Schedule Effort (organic) 5.79 months\nEstimated People Required (organic) 1.57\n───────────────────────────────────────────────────────────────────────────────\nProcessed 280398 bytes, 0.280 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:41:54Z", + "repo": { + "name": "github.com/measureauthoringtool/measure-transfer-lambda", + "commit": "32d0b200355fbee05e547df58ff431346bcd8266" }, - "commits_by_month": { - "2024/5": 2, - "2024/4": 2, - "2024/3": 10, - "2024/2": 16 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@aws-sdk/client-s3", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@babel/core", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@babel/preset-env", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@babel/preset-typescript", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@lhncbc/ucum-lhc", - 0.5753424658, - "2024-12-17T15:49:04.000" - ], - [ - "@madie/madie-models", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@types/aws-lambda", - 2.4684931507, - "2024-12-17T15:49:04.000" - ], - [ - "@types/jest", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@types/lodash", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@types/node", - 2.4904109589, - "2024-12-17T15:49:04.000" - ], - [ - "@types/nodemailer", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@types/nodemailer-smtp-transport", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4356164384, - "2024-12-17T15:49:04.000" - ], - [ - "@typescript-eslint/parser", - 1.4356164384, - "2024-12-17T15:49:04.000" - ], - [ - "axios", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "babel-jest", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "esbuild", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "eslint", - 2.8356164384, - "2024-12-17T15:49:04.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:49:04.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:49:04.000" - ], - [ - "fast-xml-parser", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "jest", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "lodash", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "nodemailer", - 0.7369863014, - "2024-12-17T15:49:04.000" - ], - [ - "nodemailer-smtp-transport", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:49:04.000" - ], - [ - "ts-jest", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:49:04.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:49:04.000" - ] + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 6, + "reason": "4 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 69689, - "CodeBytes": 0, - "Lines": 1738, - "Code": 1526, - "Comment": 66, - "Blank": 146, - "Complexity": 197, - "Count": 20, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 195070, - "CodeBytes": 0, - "Lines": 1751, - "Code": 1751, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 17, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 4722, - "CodeBytes": 0, - "Lines": 90, - "Code": 63, - "Comment": 0, - "Blank": 27, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1669, - "CodeBytes": 0, - "Lines": 66, - "Code": 52, - "Comment": 2, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CloudFormation (YAML)", - "Bytes": 1840, - "CodeBytes": 0, - "Lines": 53, - "Code": 45, - "Comment": 2, - "Blank": 6, - "Complexity": 2, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TOML", - "Bytes": 360, - "CodeBytes": 0, - "Lines": 13, - "Code": 13, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 93423.497311645, - "estimatedScheduleMonths_low": 5.786289356528265, - "estimatedPeople_low": 1.572915823250005, - "estimatedCost_high": 291148.4207778621, - "estimatedScheduleMonths_high": 5.786289356528265, - "estimatedPeople_high": 1.572915823250005, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 20 1738 146 66 1526 197\n(ULOC) 1180\n-------------------------------------------------------------------------------\nJSON 17 1751 0 0 1751 0\n(ULOC) 432\n-------------------------------------------------------------------------------\nMarkdown 2 90 27 0 63 0\n(ULOC) 56\n-------------------------------------------------------------------------------\nYAML 2 66 12 2 52 0\n(ULOC) 51\n-------------------------------------------------------------------------------\nCloudFormation (YAM\u2026 1 53 6 2 45 2\n(ULOC) 47\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nTOML 1 13 0 0 13 0\n(ULOC) 14\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 44 3832 203 70 3559 199\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1875\nDRYness % 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $102,444\nEstimated Schedule Effort (organic) 5.79 months\nEstimated People Required (organic) 1.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 280398 bytes, 0.280 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:41:54Z", - "repo": { - "name": "github.com/measureauthoringtool/measure-transfer-lambda", - "commit": "32d0b200355fbee05e547df58ff431346bcd8266" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "12 out of 12 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 6, - "reason": "4 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measureauthoringtool/measureauthoringtool_data.json b/app/site/_data/measureauthoringtool/measureauthoringtool/measureauthoringtool_data.json index 0bd4731145..eace6482c0 100644 --- a/app/site/_data/measureauthoringtool/measureauthoringtool/measureauthoringtool_data.json +++ b/app/site/_data/measureauthoringtool/measureauthoringtool/measureauthoringtool_data.json @@ -1,578 +1,578 @@ { - "url": "https://github.com/measureauthoringtool/measureauthoringtool", - "owner": "measureauthoringtool", - "name": "measureauthoringtool", - "description": "Measure Authoring Tool Code with commit history", - "commits_count": 11818, - "issues_count": 3, - "open_issues_count": 1, - "closed_issues_count": 2, - "pull_requests_count": 1028, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 683, - "closed_pull_requests_count": 345, - "forks_count": 4, - "stargazers_count": 9, - "watchers_count": 8, - "created_at": "2019-09-20T15:57:26Z", - "total_project_lines": 725594, - "average_project_lines": 345, - "total_project_comment_lines": 63499, - "average_project_comment_lines": 30, - "total_project_blank_lines": 75472, - "average_blank_lines": 36, - "predominant_langs": { - "JavaScript": 18747748, - "Java": 9504176, - "XSLT": 935793, - "CSS": 249093, - "SCSS": 202499, - "FreeMarker": 59318, - "HTML": 25571, - "Dockerfile": 988, - "Shell": 257 + "url": "https://github.com/measureauthoringtool/measureauthoringtool", + "owner": "measureauthoringtool", + "name": "measureauthoringtool", + "description": "Measure Authoring Tool Code with commit history", + "commits_count": 11818, + "issues_count": 3, + "open_issues_count": 1, + "closed_issues_count": 2, + "pull_requests_count": 1028, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 683, + "closed_pull_requests_count": 345, + "forks_count": 4, + "stargazers_count": 9, + "watchers_count": 8, + "created_at": "2019-09-20T15:57:26Z", + "total_project_lines": 725594, + "average_project_lines": 345, + "total_project_comment_lines": 63499, + "average_project_comment_lines": 30, + "total_project_blank_lines": 75472, + "average_blank_lines": 36, + "predominant_langs": { + "JavaScript": 18747748, + "Java": 9504176, + "XSLT": 935793, + "CSS": 249093, + "SCSS": 202499, + "FreeMarker": 59318, + "HTML": 25571, + "Dockerfile": 988, + "Shell": 257 + }, + "commits_by_month": { + "2024/4": 2, + "2024/3": 5, + "2024/2": 4, + "2024/1": 3, + "2023/10": 6, + "2023/9": 10 + }, + "average_issue_resolution_time": [ + [ + "measureauthoringtool", + "153 days 15:10:08" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 9502639, + "CodeBytes": 0, + "Lines": 255059, + "Code": 175696, + "Comment": 41853, + "Blank": 37510, + "Complexity": 20734, + "Count": 1398, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 21061390, + "CodeBytes": 0, + "Lines": 362803, + "Code": 314780, + "Comment": 17511, + "Blank": 30512, + "Complexity": 50701, + "Count": 355, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 7924870, + "CodeBytes": 0, + "Lines": 5576, + "Code": 5572, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 68, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 1860456, + "CodeBytes": 0, + "Lines": 24593, + "Code": 21063, + "Comment": 1955, + "Blank": 1575, + "Complexity": 0, + "Count": 60, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 399859, + "CodeBytes": 0, + "Lines": 8008, + "Code": 7113, + "Comment": 416, + "Blank": 479, + "Complexity": 0, + "Count": 58, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Sass", + "Bytes": 202499, + "CodeBytes": 0, + "Lines": 9461, + "Code": 7499, + "Comment": 636, + "Blank": 1326, + "Complexity": 13, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Freemarker Template", + "Bytes": 59318, + "CodeBytes": 0, + "Lines": 1690, + "Code": 1517, + "Comment": 13, + "Blank": 160, + "Complexity": 97, + "Count": 37, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 757514, + "CodeBytes": 0, + "Lines": 15314, + "Code": 15228, + "Comment": 0, + "Blank": 86, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 935793, + "CodeBytes": 0, + "Lines": 20454, + "Code": 19349, + "Comment": 0, + "Blank": 1105, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 800509, + "CodeBytes": 0, + "Lines": 14465, + "Code": 11716, + "Comment": 541, + "Blank": 2208, + "Complexity": 0, + "Count": 11, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SVG", + "Bytes": 402500, + "CodeBytes": 0, + "Lines": 3813, + "Code": 3811, + "Comment": 1, + "Blank": 1, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 25571, + "CodeBytes": 0, + "Lines": 614, + "Code": 510, + "Comment": 50, + "Blank": 54, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 13205, + "CodeBytes": 0, + "Lines": 295, + "Code": 230, + "Comment": 0, + "Blank": 65, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 2669, + "CodeBytes": 0, + "Lines": 69, + "Code": 65, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2124, + "CodeBytes": 0, + "Lines": 66, + "Code": 55, + "Comment": 2, + "Blank": 9, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaServer Pages", + "Bytes": 1537, + "CodeBytes": 0, + "Lines": 49, + "Code": 47, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 77, + "CodeBytes": 0, + "Lines": 8, + "Code": 8, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 988, + "CodeBytes": 0, + "Lines": 20, + "Code": 15, + "Comment": 0, + "Blank": 5, + "Complexity": 7, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 261769, + "CodeBytes": 0, + "Lines": 3104, + "Code": 2233, + "Comment": 519, + "Blank": 352, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 257, + "CodeBytes": 0, + "Lines": 12, + "Code": 7, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 19876447.89569746, + "estimatedScheduleMonths_low": 44.36041047083386, + "estimatedPeople_low": 43.650852164074536, + "estimatedCost_high": 61943692.7757193, + "estimatedScheduleMonths_high": 44.36041047083386, + "estimatedPeople_high": 43.650852164074536, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 1398 255059 37510 41853 175696 20734\n(ULOC) 104388\n-------------------------------------------------------------------------------\nJavaScript 355 362803 30512 17511 314780 50701\n(ULOC) 103211\n-------------------------------------------------------------------------------\nJSON 68 5576 4 0 5572 0\n(ULOC) 910\n-------------------------------------------------------------------------------\nProperties File 60 24593 1575 1955 21063 0\n(ULOC) 17560\n-------------------------------------------------------------------------------\nXML 58 8008 479 416 7113 0\n(ULOC) 4106\n-------------------------------------------------------------------------------\nSass 54 9461 1326 636 7499 13\n(ULOC) 4198\n-------------------------------------------------------------------------------\nFreemarker Template 37 1690 160 13 1517 97\n(ULOC) 891\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4437\n-------------------------------------------------------------------------------\nExtensible Styleshe… 19 20454 1105 0 19349 0\n(ULOC) 7607\n-------------------------------------------------------------------------------\nCSS 11 14465 2208 541 11716 0\n(ULOC) 5850\n-------------------------------------------------------------------------------\nSVG 5 3813 1 1 3811 0\n(ULOC) 3064\n-------------------------------------------------------------------------------\nHTML 4 614 54 50 510 0\n(ULOC) 371\n-------------------------------------------------------------------------------\nMarkdown 3 295 65 0 230 0\n(ULOC) 222\n-------------------------------------------------------------------------------\nPlain Text 3 69 4 0 65 0\n(ULOC) 40\n-------------------------------------------------------------------------------\nYAML 3 66 9 2 55 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nJavaServer Pages 2 49 2 0 47 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nDocker ignore 1 8 0 0 8 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 0 15 7\n(ULOC) 16\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSQL 1 3104 352 519 2233 0\n(ULOC) 1617\n-------------------------------------------------------------------------------\nShell 1 12 3 2 7 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 2106 725594 75472 63499 586623 71552\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 257954\nDRYness % 0.36\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $21,795,777\nEstimated Schedule Effort (organic) 44.36 months\nEstimated People Required (organic) 43.65\n───────────────────────────────────────────────────────────────────────────────\nProcessed 44222592 bytes, 44.223 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:30Z", + "repo": { + "name": "github.com/measureauthoringtool/measureauthoringtool", + "commit": "2d94c35db264231549d306968d7cd7f469b0ea5c" }, - "commits_by_month": { - "2024/4": 2, - "2024/3": 5, - "2024/2": 4, - "2024/1": 3, - "2023/10": 6, - "2023/9": 10 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "measureauthoringtool", - "153 days 15:10:08" - ] + "score": 4.8, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 4, + "reason": "4 out of 9 merged PRs checked by a CI test -- score normalized to 4", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "18 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 9502639, - "CodeBytes": 0, - "Lines": 255059, - "Code": 175696, - "Comment": 41853, - "Blank": 37510, - "Complexity": 20734, - "Count": 1398, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 21061390, - "CodeBytes": 0, - "Lines": 362803, - "Code": 314780, - "Comment": 17511, - "Blank": 30512, - "Complexity": 50701, - "Count": 355, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 7924870, - "CodeBytes": 0, - "Lines": 5576, - "Code": 5572, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 68, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 1860456, - "CodeBytes": 0, - "Lines": 24593, - "Code": 21063, - "Comment": 1955, - "Blank": 1575, - "Complexity": 0, - "Count": 60, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 399859, - "CodeBytes": 0, - "Lines": 8008, - "Code": 7113, - "Comment": 416, - "Blank": 479, - "Complexity": 0, - "Count": 58, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Sass", - "Bytes": 202499, - "CodeBytes": 0, - "Lines": 9461, - "Code": 7499, - "Comment": 636, - "Blank": 1326, - "Complexity": 13, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Freemarker Template", - "Bytes": 59318, - "CodeBytes": 0, - "Lines": 1690, - "Code": 1517, - "Comment": 13, - "Blank": 160, - "Complexity": 97, - "Count": 37, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 757514, - "CodeBytes": 0, - "Lines": 15314, - "Code": 15228, - "Comment": 0, - "Blank": 86, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 935793, - "CodeBytes": 0, - "Lines": 20454, - "Code": 19349, - "Comment": 0, - "Blank": 1105, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 800509, - "CodeBytes": 0, - "Lines": 14465, - "Code": 11716, - "Comment": 541, - "Blank": 2208, - "Complexity": 0, - "Count": 11, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SVG", - "Bytes": 402500, - "CodeBytes": 0, - "Lines": 3813, - "Code": 3811, - "Comment": 1, - "Blank": 1, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 25571, - "CodeBytes": 0, - "Lines": 614, - "Code": 510, - "Comment": 50, - "Blank": 54, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 13205, - "CodeBytes": 0, - "Lines": 295, - "Code": 230, - "Comment": 0, - "Blank": 65, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 2669, - "CodeBytes": 0, - "Lines": 69, - "Code": 65, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2124, - "CodeBytes": 0, - "Lines": 66, - "Code": 55, - "Comment": 2, - "Blank": 9, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaServer Pages", - "Bytes": 1537, - "CodeBytes": 0, - "Lines": 49, - "Code": 47, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 77, - "CodeBytes": 0, - "Lines": 8, - "Code": 8, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 988, - "CodeBytes": 0, - "Lines": 20, - "Code": 15, - "Comment": 0, - "Blank": 5, - "Complexity": 7, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 261769, - "CodeBytes": 0, - "Lines": 3104, - "Code": 2233, - "Comment": 519, - "Blank": 352, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 257, - "CodeBytes": 0, - "Lines": 12, - "Code": 7, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 19876447.89569746, - "estimatedScheduleMonths_low": 44.36041047083386, - "estimatedPeople_low": 43.650852164074536, - "estimatedCost_high": 61943692.7757193, - "estimatedScheduleMonths_high": 44.36041047083386, - "estimatedPeople_high": 43.650852164074536, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 1398 255059 37510 41853 175696 20734\n(ULOC) 104388\n-------------------------------------------------------------------------------\nJavaScript 355 362803 30512 17511 314780 50701\n(ULOC) 103211\n-------------------------------------------------------------------------------\nJSON 68 5576 4 0 5572 0\n(ULOC) 910\n-------------------------------------------------------------------------------\nProperties File 60 24593 1575 1955 21063 0\n(ULOC) 17560\n-------------------------------------------------------------------------------\nXML 58 8008 479 416 7113 0\n(ULOC) 4106\n-------------------------------------------------------------------------------\nSass 54 9461 1326 636 7499 13\n(ULOC) 4198\n-------------------------------------------------------------------------------\nFreemarker Template 37 1690 160 13 1517 97\n(ULOC) 891\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4437\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 19 20454 1105 0 19349 0\n(ULOC) 7607\n-------------------------------------------------------------------------------\nCSS 11 14465 2208 541 11716 0\n(ULOC) 5850\n-------------------------------------------------------------------------------\nSVG 5 3813 1 1 3811 0\n(ULOC) 3064\n-------------------------------------------------------------------------------\nHTML 4 614 54 50 510 0\n(ULOC) 371\n-------------------------------------------------------------------------------\nMarkdown 3 295 65 0 230 0\n(ULOC) 222\n-------------------------------------------------------------------------------\nPlain Text 3 69 4 0 65 0\n(ULOC) 40\n-------------------------------------------------------------------------------\nYAML 3 66 9 2 55 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nJavaServer Pages 2 49 2 0 47 0\n(ULOC) 28\n-------------------------------------------------------------------------------\nDocker ignore 1 8 0 0 8 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 0 15 7\n(ULOC) 16\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nSQL 1 3104 352 519 2233 0\n(ULOC) 1617\n-------------------------------------------------------------------------------\nShell 1 12 3 2 7 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2106 725594 75472 63499 586623 71552\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 257954\nDRYness % 0.36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $21,795,777\nEstimated Schedule Effort (organic) 44.36 months\nEstimated People Required (organic) 43.65\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 44222592 bytes, 44.223 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:30Z", - "repo": { - "name": "github.com/measureauthoringtool/measureauthoringtool", - "commit": "2d94c35db264231549d306968d7cd7f469b0ea5c" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.8, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 4, - "reason": "4 out of 9 merged PRs checked by a CI test -- score normalized to 4", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "18 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measureauthoringtool_latestsprint/measureauthoringtool_latestsprint_data.json b/app/site/_data/measureauthoringtool/measureauthoringtool_latestsprint/measureauthoringtool_latestsprint_data.json index c1e8354ac7..523608568b 100644 --- a/app/site/_data/measureauthoringtool/measureauthoringtool_latestsprint/measureauthoringtool_latestsprint_data.json +++ b/app/site/_data/measureauthoringtool/measureauthoringtool_latestsprint/measureauthoringtool_latestsprint_data.json @@ -1,474 +1,474 @@ { - "url": "https://github.com/measureauthoringtool/measureauthoringtool_latestsprint", - "owner": "measureauthoringtool", - "name": "measureauthoringtool_latestsprint", - "description": "A repo for the latest Sprint of MAT tool.", - "commits_count": 179, - "issues_count": 1, - "open_issues_count": 1, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 3, - "stargazers_count": 5, - "watchers_count": 14, - "created_at": "2013-11-05T19:24:31Z", - "total_project_lines": 542503, - "average_project_lines": 278, - "total_project_comment_lines": 45826, - "average_project_comment_lines": 24, - "total_project_blank_lines": 55360, - "average_blank_lines": 28, - "predominant_langs": { - "JavaScript": 14147340, - "Java": 7945165, - "XSLT": 976600, - "CSS": 237779, - "FreeMarker": 40950, - "HTML": 10016, - "TSQL": 311 + "url": "https://github.com/measureauthoringtool/measureauthoringtool_latestsprint", + "owner": "measureauthoringtool", + "name": "measureauthoringtool_latestsprint", + "description": "A repo for the latest Sprint of MAT tool.", + "commits_count": 179, + "issues_count": 1, + "open_issues_count": 1, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 3, + "stargazers_count": 5, + "watchers_count": 14, + "created_at": "2013-11-05T19:24:31Z", + "total_project_lines": 542503, + "average_project_lines": 278, + "total_project_comment_lines": 45826, + "average_project_comment_lines": 24, + "total_project_blank_lines": 55360, + "average_blank_lines": 28, + "predominant_langs": { + "JavaScript": 14147340, + "Java": 7945165, + "XSLT": 976600, + "CSS": 237779, + "FreeMarker": 40950, + "HTML": 10016, + "TSQL": 311 + }, + "commits_by_month": { + "2019/12": 3, + "2019/9": 1, + "2019/8": 2, + "2019/7": 3, + "2019/6": 3, + "2019/5": 3, + "2019/4": 1, + "2019/3": 3, + "2019/2": 1, + "2019/1": 3, + "2018/12": 2, + "2018/11": 2, + "2018/10": 2, + "2018/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 7945165, + "CodeBytes": 0, + "Lines": 235853, + "Code": 157018, + "Comment": 44073, + "Blank": 34762, + "Complexity": 18808, + "Count": 1188, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1170064, + "CodeBytes": 0, + "Lines": 18382, + "Code": 15126, + "Comment": 753, + "Blank": 2503, + "Complexity": 0, + "Count": 367, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 14493216, + "CodeBytes": 0, + "Lines": 231032, + "Code": 216328, + "Comment": 256, + "Blank": 14448, + "Complexity": 37826, + "Count": 305, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Freemarker Template", + "Bytes": 40950, + "CodeBytes": 0, + "Lines": 1332, + "Code": 1128, + "Comment": 13, + "Blank": 191, + "Complexity": 61, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 976600, + "CodeBytes": 0, + "Lines": 22266, + "Code": 21040, + "Comment": 0, + "Blank": 1226, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 755343, + "CodeBytes": 0, + "Lines": 15314, + "Code": 15228, + "Comment": 0, + "Blank": 86, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 237779, + "CodeBytes": 0, + "Lines": 12577, + "Code": 10492, + "Comment": 286, + "Blank": 1799, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 10016, + "CodeBytes": 0, + "Lines": 218, + "Code": 148, + "Comment": 53, + "Blank": 17, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 10490, + "CodeBytes": 0, + "Lines": 186, + "Code": 154, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 2502, + "CodeBytes": 0, + "Lines": 71, + "Code": 31, + "Comment": 16, + "Blank": 24, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 175069, + "CodeBytes": 0, + "Lines": 1836, + "Code": 1204, + "Comment": 376, + "Blank": 256, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 74547, + "CodeBytes": 0, + "Lines": 3314, + "Code": 3310, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14741779.93583675, + "estimatedScheduleMonths_low": 39.598231725333605, + "estimatedPeople_low": 36.26800267265756, + "estimatedCost_high": 45941824.82225111, + "estimatedScheduleMonths_high": 39.598231725333605, + "estimatedPeople_high": 36.26800267265756, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 1188 235853 34762 44073 157018 18808\n(ULOC) 87001\n-------------------------------------------------------------------------------\nXML 367 18382 2503 753 15126 0\n(ULOC) 8621\n-------------------------------------------------------------------------------\nJavaScript 305 231032 14448 256 216328 37826\n(ULOC) 63468\n-------------------------------------------------------------------------------\nFreemarker Template 27 1332 191 13 1128 61\n(ULOC) 686\n-------------------------------------------------------------------------------\nExtensible Styleshe… 21 22266 1226 0 21040 0\n(ULOC) 7585\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4366\n-------------------------------------------------------------------------------\nCSS 6 12577 1799 286 10492 0\n(ULOC) 4251\n-------------------------------------------------------------------------------\nHTML 3 218 17 53 148 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nMarkdown 3 186 32 0 154 0\n(ULOC) 145\n-------------------------------------------------------------------------------\nProperties File 3 71 24 16 31 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nSQL 2 1836 256 376 1204 0\n(ULOC) 838\n-------------------------------------------------------------------------------\nJSON 1 3314 4 0 3310 0\n(ULOC) 236\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 1949 542503 55360 45826 441317 56695\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 177170\nDRYness % 0.33\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,165,290\nEstimated Schedule Effort (organic) 39.60 months\nEstimated People Required (organic) 36.27\n───────────────────────────────────────────────────────────────────────────────\nProcessed 25898794 bytes, 25.899 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:05Z", + "repo": { + "name": "github.com/measureauthoringtool/measureauthoringtool_latestsprint", + "commit": "71bf83060239e1c6e99a041c43b351e7ed6b4815" }, - "commits_by_month": { - "2019/12": 3, - "2019/9": 1, - "2019/8": 2, - "2019/7": 3, - "2019/6": 3, - "2019/5": 3, - "2019/4": 1, - "2019/3": 3, - "2019/2": 1, - "2019/1": 3, - "2018/12": 2, - "2018/11": 2, - "2018/10": 2, - "2018/9": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 7945165, - "CodeBytes": 0, - "Lines": 235853, - "Code": 157018, - "Comment": 44073, - "Blank": 34762, - "Complexity": 18808, - "Count": 1188, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1170064, - "CodeBytes": 0, - "Lines": 18382, - "Code": 15126, - "Comment": 753, - "Blank": 2503, - "Complexity": 0, - "Count": 367, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 14493216, - "CodeBytes": 0, - "Lines": 231032, - "Code": 216328, - "Comment": 256, - "Blank": 14448, - "Complexity": 37826, - "Count": 305, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Freemarker Template", - "Bytes": 40950, - "CodeBytes": 0, - "Lines": 1332, - "Code": 1128, - "Comment": 13, - "Blank": 191, - "Complexity": 61, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 976600, - "CodeBytes": 0, - "Lines": 22266, - "Code": 21040, - "Comment": 0, - "Blank": 1226, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 755343, - "CodeBytes": 0, - "Lines": 15314, - "Code": 15228, - "Comment": 0, - "Blank": 86, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 237779, - "CodeBytes": 0, - "Lines": 12577, - "Code": 10492, - "Comment": 286, - "Blank": 1799, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 10016, - "CodeBytes": 0, - "Lines": 218, - "Code": 148, - "Comment": 53, - "Blank": 17, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 10490, - "CodeBytes": 0, - "Lines": 186, - "Code": 154, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 2502, - "CodeBytes": 0, - "Lines": 71, - "Code": 31, - "Comment": 16, - "Blank": 24, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 175069, - "CodeBytes": 0, - "Lines": 1836, - "Code": 1204, - "Comment": 376, - "Blank": 256, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 74547, - "CodeBytes": 0, - "Lines": 3314, - "Code": 3310, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14741779.93583675, - "estimatedScheduleMonths_low": 39.598231725333605, - "estimatedPeople_low": 36.26800267265756, - "estimatedCost_high": 45941824.82225111, - "estimatedScheduleMonths_high": 39.598231725333605, - "estimatedPeople_high": 36.26800267265756, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 1188 235853 34762 44073 157018 18808\n(ULOC) 87001\n-------------------------------------------------------------------------------\nXML 367 18382 2503 753 15126 0\n(ULOC) 8621\n-------------------------------------------------------------------------------\nJavaScript 305 231032 14448 256 216328 37826\n(ULOC) 63468\n-------------------------------------------------------------------------------\nFreemarker Template 27 1332 191 13 1128 61\n(ULOC) 686\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 21 22266 1226 0 21040 0\n(ULOC) 7585\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4366\n-------------------------------------------------------------------------------\nCSS 6 12577 1799 286 10492 0\n(ULOC) 4251\n-------------------------------------------------------------------------------\nHTML 3 218 17 53 148 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nMarkdown 3 186 32 0 154 0\n(ULOC) 145\n-------------------------------------------------------------------------------\nProperties File 3 71 24 16 31 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nSQL 2 1836 256 376 1204 0\n(ULOC) 838\n-------------------------------------------------------------------------------\nJSON 1 3314 4 0 3310 0\n(ULOC) 236\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1949 542503 55360 45826 441317 56695\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 177170\nDRYness % 0.33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,165,290\nEstimated Schedule Effort (organic) 39.60 months\nEstimated People Required (organic) 36.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 25898794 bytes, 25.899 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:05Z", - "repo": { - "name": "github.com/measureauthoringtool/measureauthoringtool_latestsprint", - "commit": "71bf83060239e1c6e99a041c43b351e7ed6b4815" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.3, - "checks": [ - { - "details": null, - "score": 8, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/28 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.3, + "checks": [ + { + "details": null, + "score": 8, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/28 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/measureauthoringtool_release/measureauthoringtool_release_data.json b/app/site/_data/measureauthoringtool/measureauthoringtool_release/measureauthoringtool_release_data.json index 7978c71c2d..306cf0c4ca 100644 --- a/app/site/_data/measureauthoringtool/measureauthoringtool_release/measureauthoringtool_release_data.json +++ b/app/site/_data/measureauthoringtool/measureauthoringtool_release/measureauthoringtool_release_data.json @@ -1,483 +1,483 @@ { - "url": "https://github.com/measureauthoringtool/measureauthoringtool_release", - "owner": "measureauthoringtool", - "name": "measureauthoringtool_release", - "description": "A repo for latest release code for MAT. ", - "commits_count": 69, - "issues_count": 5, - "open_issues_count": 1, - "closed_issues_count": 4, - "pull_requests_count": 3, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 9, - "stargazers_count": 7, - "watchers_count": 15, - "created_at": "2013-11-05T19:23:35Z", - "total_project_lines": 542597, - "average_project_lines": 278, - "total_project_comment_lines": 45844, - "average_project_comment_lines": 24, - "total_project_blank_lines": 55373, - "average_blank_lines": 28, - "predominant_langs": { - "JavaScript": 14147340, - "Java": 7948539, - "XSLT": 976600, - "CSS": 237779, - "FreeMarker": 40950, - "HTML": 10016, - "TSQL": 311 + "url": "https://github.com/measureauthoringtool/measureauthoringtool_release", + "owner": "measureauthoringtool", + "name": "measureauthoringtool_release", + "description": "A repo for latest release code for MAT. ", + "commits_count": 69, + "issues_count": 5, + "open_issues_count": 1, + "closed_issues_count": 4, + "pull_requests_count": 3, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 9, + "stargazers_count": 7, + "watchers_count": 15, + "created_at": "2013-11-05T19:23:35Z", + "total_project_lines": 542597, + "average_project_lines": 278, + "total_project_comment_lines": 45844, + "average_project_comment_lines": 24, + "total_project_blank_lines": 55373, + "average_blank_lines": 28, + "predominant_langs": { + "JavaScript": 14147340, + "Java": 7948539, + "XSLT": 976600, + "CSS": 237779, + "FreeMarker": 40950, + "HTML": 10016, + "TSQL": 311 + }, + "commits_by_month": { + "2019/12": 3, + "2019/10": 1, + "2019/9": 1, + "2019/8": 1, + "2019/6": 1, + "2019/5": 1, + "2018/10": 1, + "2018/5": 1, + "2017/12": 1, + "2017/11": 3, + "2017/9": 1, + "2017/7": 1, + "2017/6": 2, + "2017/5": 1, + "2017/2": 1, + "2016/11": 2, + "2016/9": 1, + "2016/5": 7 + }, + "average_issue_resolution_time": [ + [ + "measureauthoringtool_release", + "63 days 18:33:49.5" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 7948539, + "CodeBytes": 0, + "Lines": 235945, + "Code": 157079, + "Comment": 44091, + "Blank": 34775, + "Complexity": 18816, + "Count": 1189, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1170335, + "CodeBytes": 0, + "Lines": 18382, + "Code": 15126, + "Comment": 753, + "Blank": 2503, + "Complexity": 0, + "Count": 367, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 14493216, + "CodeBytes": 0, + "Lines": 231032, + "Code": 216328, + "Comment": 256, + "Blank": 14448, + "Complexity": 37826, + "Count": 305, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Freemarker Template", + "Bytes": 40950, + "CodeBytes": 0, + "Lines": 1332, + "Code": 1128, + "Comment": 13, + "Blank": 191, + "Complexity": 61, + "Count": 27, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Extensible Stylesheet Language Transformations", + "Bytes": 976600, + "CodeBytes": 0, + "Lines": 22266, + "Code": 21040, + "Comment": 0, + "Blank": 1226, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 755343, + "CodeBytes": 0, + "Lines": 15314, + "Code": 15228, + "Comment": 0, + "Blank": 86, + "Complexity": 0, + "Count": 21, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 237779, + "CodeBytes": 0, + "Lines": 12577, + "Code": 10492, + "Comment": 286, + "Blank": 1799, + "Complexity": 0, + "Count": 6, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "HTML", + "Bytes": 10016, + "CodeBytes": 0, + "Lines": 218, + "Code": 148, + "Comment": 53, + "Blank": 17, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 10479, + "CodeBytes": 0, + "Lines": 188, + "Code": 156, + "Comment": 0, + "Blank": 32, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 2502, + "CodeBytes": 0, + "Lines": 71, + "Code": 31, + "Comment": 16, + "Blank": 24, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "SQL", + "Bytes": 175069, + "CodeBytes": 0, + "Lines": 1836, + "Code": 1204, + "Comment": 376, + "Blank": 256, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 74547, + "CodeBytes": 0, + "Lines": 3314, + "Code": 3310, + "Comment": 0, + "Blank": 4, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 5, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14743989.622349707, + "estimatedScheduleMonths_low": 39.60048710650984, + "estimatedPeople_low": 36.2713730901633, + "estimatedCost_high": 45948711.17051654, + "estimatedScheduleMonths_high": 39.60048710650984, + "estimatedPeople_high": 36.2713730901633, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 1189 235945 34775 44091 157079 18816\n(ULOC) 87061\n-------------------------------------------------------------------------------\nXML 367 18382 2503 753 15126 0\n(ULOC) 8627\n-------------------------------------------------------------------------------\nJavaScript 305 231032 14448 256 216328 37826\n(ULOC) 63468\n-------------------------------------------------------------------------------\nFreemarker Template 27 1332 191 13 1128 61\n(ULOC) 686\n-------------------------------------------------------------------------------\nExtensible Styleshe… 21 22266 1226 0 21040 0\n(ULOC) 7585\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4366\n-------------------------------------------------------------------------------\nCSS 6 12577 1799 286 10492 0\n(ULOC) 4251\n-------------------------------------------------------------------------------\nHTML 3 218 17 53 148 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nMarkdown 3 188 32 0 156 0\n(ULOC) 147\n-------------------------------------------------------------------------------\nProperties File 3 71 24 16 31 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nSQL 2 1836 256 376 1204 0\n(ULOC) 838\n-------------------------------------------------------------------------------\nJSON 1 3314 4 0 3310 0\n(ULOC) 236\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n───────────────────────────────────────────────────────────────────────────────\nTotal 1950 542597 55373 45844 441380 56703\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 177239\nDRYness % 0.33\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $16,167,713\nEstimated Schedule Effort (organic) 39.60 months\nEstimated People Required (organic) 36.27\n───────────────────────────────────────────────────────────────────────────────\nProcessed 25902428 bytes, 25.902 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:32:55Z", + "repo": { + "name": "github.com/measureauthoringtool/measureauthoringtool_release", + "commit": "cb4c0a04c4ffa7ef8fdd46701e2d999a3910b55e" }, - "commits_by_month": { - "2019/12": 3, - "2019/10": 1, - "2019/9": 1, - "2019/8": 1, - "2019/6": 1, - "2019/5": 1, - "2018/10": 1, - "2018/5": 1, - "2017/12": 1, - "2017/11": 3, - "2017/9": 1, - "2017/7": 1, - "2017/6": 2, - "2017/5": 1, - "2017/2": 1, - "2016/11": 2, - "2016/9": 1, - "2016/5": 7 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "measureauthoringtool_release", - "63 days 18:33:49.5" - ] + "score": 2.2, + "checks": [ + { + "details": null, + "score": 7, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 1/28 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 7948539, - "CodeBytes": 0, - "Lines": 235945, - "Code": 157079, - "Comment": 44091, - "Blank": 34775, - "Complexity": 18816, - "Count": 1189, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1170335, - "CodeBytes": 0, - "Lines": 18382, - "Code": 15126, - "Comment": 753, - "Blank": 2503, - "Complexity": 0, - "Count": 367, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 14493216, - "CodeBytes": 0, - "Lines": 231032, - "Code": 216328, - "Comment": 256, - "Blank": 14448, - "Complexity": 37826, - "Count": 305, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Freemarker Template", - "Bytes": 40950, - "CodeBytes": 0, - "Lines": 1332, - "Code": 1128, - "Comment": 13, - "Blank": 191, - "Complexity": 61, - "Count": 27, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Extensible Stylesheet Language Transformations", - "Bytes": 976600, - "CodeBytes": 0, - "Lines": 22266, - "Code": 21040, - "Comment": 0, - "Blank": 1226, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 755343, - "CodeBytes": 0, - "Lines": 15314, - "Code": 15228, - "Comment": 0, - "Blank": 86, - "Complexity": 0, - "Count": 21, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 237779, - "CodeBytes": 0, - "Lines": 12577, - "Code": 10492, - "Comment": 286, - "Blank": 1799, - "Complexity": 0, - "Count": 6, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "HTML", - "Bytes": 10016, - "CodeBytes": 0, - "Lines": 218, - "Code": 148, - "Comment": 53, - "Blank": 17, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 10479, - "CodeBytes": 0, - "Lines": 188, - "Code": 156, - "Comment": 0, - "Blank": 32, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 2502, - "CodeBytes": 0, - "Lines": 71, - "Code": 31, - "Comment": 16, - "Blank": 24, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "SQL", - "Bytes": 175069, - "CodeBytes": 0, - "Lines": 1836, - "Code": 1204, - "Comment": 376, - "Blank": 256, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 74547, - "CodeBytes": 0, - "Lines": 3314, - "Code": 3310, - "Comment": 0, - "Blank": 4, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 5, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14743989.622349707, - "estimatedScheduleMonths_low": 39.60048710650984, - "estimatedPeople_low": 36.2713730901633, - "estimatedCost_high": 45948711.17051654, - "estimatedScheduleMonths_high": 39.60048710650984, - "estimatedPeople_high": 36.2713730901633, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 1189 235945 34775 44091 157079 18816\n(ULOC) 87061\n-------------------------------------------------------------------------------\nXML 367 18382 2503 753 15126 0\n(ULOC) 8627\n-------------------------------------------------------------------------------\nJavaScript 305 231032 14448 256 216328 37826\n(ULOC) 63468\n-------------------------------------------------------------------------------\nFreemarker Template 27 1332 191 13 1128 61\n(ULOC) 686\n-------------------------------------------------------------------------------\nExtensible Styleshe\u2026 21 22266 1226 0 21040 0\n(ULOC) 7585\n-------------------------------------------------------------------------------\nXML Schema 21 15314 86 0 15228 0\n(ULOC) 4366\n-------------------------------------------------------------------------------\nCSS 6 12577 1799 286 10492 0\n(ULOC) 4251\n-------------------------------------------------------------------------------\nHTML 3 218 17 53 148 0\n(ULOC) 93\n-------------------------------------------------------------------------------\nMarkdown 3 188 32 0 156 0\n(ULOC) 147\n-------------------------------------------------------------------------------\nProperties File 3 71 24 16 31 0\n(ULOC) 46\n-------------------------------------------------------------------------------\nSQL 2 1836 256 376 1204 0\n(ULOC) 838\n-------------------------------------------------------------------------------\nJSON 1 3314 4 0 3310 0\n(ULOC) 236\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 1950 542597 55373 45844 441380 56703\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 177239\nDRYness % 0.33\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $16,167,713\nEstimated Schedule Effort (organic) 39.60 months\nEstimated People Required (organic) 36.27\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 25902428 bytes, 25.902 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:32:55Z", - "repo": { - "name": "github.com/measureauthoringtool/measureauthoringtool_release", - "commit": "cb4c0a04c4ffa7ef8fdd46701e2d999a3910b55e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.2, - "checks": [ - { - "details": null, - "score": 7, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 1/28 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/model-info-parser/model-info-parser_data.json b/app/site/_data/measureauthoringtool/model-info-parser/model-info-parser_data.json index 5c099e710e..9daf21271d 100644 --- a/app/site/_data/measureauthoringtool/model-info-parser/model-info-parser_data.json +++ b/app/site/_data/measureauthoringtool/model-info-parser/model-info-parser_data.json @@ -1,515 +1,515 @@ { - "url": "https://github.com/measureauthoringtool/model-info-parser", - "owner": "measureauthoringtool", - "name": "model-info-parser", - "description": "This is a library, written in TypeScript, to parse a modelinfo.xml specification file and generate libraries conforming to that specification. ", - "commits_count": 412, - "issues_count": 2, - "open_issues_count": 0, - "closed_issues_count": 2, - "pull_requests_count": 439, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 191, - "closed_pull_requests_count": 248, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "created_at": "2020-05-26T13:21:20Z", - "total_project_lines": 36699, - "average_project_lines": 122, - "total_project_comment_lines": 687, - "average_project_comment_lines": 2, - "total_project_blank_lines": 2101, - "average_blank_lines": 7, - "predominant_langs": { - "TypeScript": 476365, - "JavaScript": 5072 - }, - "commits_by_month": { - "2021/8": 3, - "2021/7": 7, - "2021/6": 13, - "2021/5": 7 + "url": "https://github.com/measureauthoringtool/model-info-parser", + "owner": "measureauthoringtool", + "name": "model-info-parser", + "description": "This is a library, written in TypeScript, to parse a modelinfo.xml specification file and generate libraries conforming to that specification. ", + "commits_count": 412, + "issues_count": 2, + "open_issues_count": 0, + "closed_issues_count": 2, + "pull_requests_count": 439, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 191, + "closed_pull_requests_count": 248, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "created_at": "2020-05-26T13:21:20Z", + "total_project_lines": 36699, + "average_project_lines": 122, + "total_project_comment_lines": 687, + "average_project_comment_lines": 2, + "total_project_blank_lines": 2101, + "average_blank_lines": 7, + "predominant_langs": { + "TypeScript": 476365, + "JavaScript": 5072 + }, + "commits_by_month": { + "2021/8": 3, + "2021/7": 7, + "2021/6": 13, + "2021/5": 7 + }, + "average_issue_resolution_time": [ + [ + "model-info-parser", + "443 days 19:54:05.5" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@jest/types", + 1.5315068493, + "2024-12-17T15:54:04.000" + ], + [ + "@types/faker", + 3.0191780822, + "2024-12-17T15:54:04.000" + ], + [ + "@types/jest", + 3.298630137, + "2024-12-17T15:54:04.000" + ], + [ + "@types/lodash", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "@types/node", + 3.3095890411, + "2024-12-17T15:54:04.000" + ], + [ + "@types/sinon", + 0.2273972603, + "2024-12-17T15:54:04.000" + ], + [ + "@types/xml2js", + 2.3506849315, + "2024-12-17T15:54:04.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 3.1945205479, + "2024-12-17T15:54:04.000" + ], + [ + "@typescript-eslint/parser", + 3.1945205479, + "2024-12-17T15:54:04.000" + ], + [ + "commander", + 2.5726027397, + "2024-12-17T15:54:04.000" + ], + [ + "eslint", + 3.3726027397, + "2024-12-17T15:54:04.000" + ], + [ + "eslint-config-airbnb-typescript", + 3.0657534247, + "2024-12-17T15:54:04.000" + ], + [ + "eslint-config-prettier", + 0.3315068493, + "2024-12-17T15:54:04.000" + ], + [ + "eslint-plugin-eslint-comments", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "eslint-plugin-import", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "eslint-plugin-jest", + 3.0739726027, + "2024-12-17T15:54:04.000" + ], + [ + "eslint-plugin-promise", + 2.9890410959, + "2024-12-17T15:54:04.000" + ], + [ + "faker", + 0.7424657534, + "2024-12-17T15:54:04.000" + ], + [ + "handlebars", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "jest", + 1.5890410959, + "2024-12-17T15:54:04.000" + ], + [ + "jest-extended", + 3.701369863, + "2024-12-17T15:54:04.000" + ], + [ + "jest-sinon", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "lodash", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:54:04.000" + ], + [ + "reflect-metadata", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "sinon", + 3.1342465753, + "2024-12-17T15:54:04.000" + ], + [ + "ts-jest", + 2.2657534247, + "2024-12-17T15:54:04.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:54:04.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:54:04.000" + ], + [ + "winston", + 1.4602739726, + "2024-12-17T15:54:04.000" + ], + [ + "xml2js", + 0.0, + "2024-12-17T15:54:04.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 479593, + "CodeBytes": 0, + "Lines": 14430, + "Code": 11732, + "Comment": 673, + "Blank": 2025, + "Complexity": 1095, + "Count": 288, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 1384649, + "CodeBytes": 0, + "Lines": 21811, + "Code": 21772, + "Comment": 4, + "Blank": 35, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5185, + "CodeBytes": 0, + "Lines": 169, + "Code": 133, + "Comment": 9, + "Blank": 27, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3236, + "CodeBytes": 0, + "Lines": 98, + "Code": 98, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1844, + "CodeBytes": 0, + "Lines": 63, + "Code": 62, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 730, + "CodeBytes": 0, + "Lines": 7, + "Code": 5, + "Comment": 0, + "Blank": 2, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 996367.0579361555, + "estimatedScheduleMonths_low": 14.224145257126594, + "estimatedPeople_low": 6.824057691261756, + "estimatedCost_high": 3105114.9205590403, + "estimatedScheduleMonths_high": 14.224145257126594, + "estimatedPeople_high": 6.824057691261756, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 288 14430 2025 673 11732 1095\n(ULOC) 6800\n-------------------------------------------------------------------------------\nXML 5 21811 35 4 21772 0\n(ULOC) 6253\n-------------------------------------------------------------------------------\nYAML 3 169 27 9 133 0\n(ULOC) 99\n-------------------------------------------------------------------------------\nJSON 2 98 0 0 98 0\n(ULOC) 90\n-------------------------------------------------------------------------------\nJavaScript 2 63 0 1 62 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 7 2 0 5 0\n(ULOC) 6\n───────────────────────────────────────────────────────────────────────────────\nTotal 302 36699 2101 687 33911 1095\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 13380\nDRYness % 0.36\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $1,092,579\nEstimated Schedule Effort (organic) 14.22 months\nEstimated People Required (organic) 6.82\n───────────────────────────────────────────────────────────────────────────────\nProcessed 1882285 bytes, 1.882 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:36:14Z", + "repo": { + "name": "github.com/measureauthoringtool/model-info-parser", + "commit": "e768780ff0d95f085f6b0b4cac6dbe4175758de1" }, - "average_issue_resolution_time": [ - [ - "model-info-parser", - "443 days 19:54:05.5" - ] - ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@jest/types", - 1.5315068493, - "2024-12-17T15:54:04.000" - ], - [ - "@types/faker", - 3.0191780822, - "2024-12-17T15:54:04.000" - ], - [ - "@types/jest", - 3.298630137, - "2024-12-17T15:54:04.000" - ], - [ - "@types/lodash", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "@types/node", - 3.3095890411, - "2024-12-17T15:54:04.000" - ], - [ - "@types/sinon", - 0.2273972603, - "2024-12-17T15:54:04.000" - ], - [ - "@types/xml2js", - 2.3506849315, - "2024-12-17T15:54:04.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 3.1945205479, - "2024-12-17T15:54:04.000" - ], - [ - "@typescript-eslint/parser", - 3.1945205479, - "2024-12-17T15:54:04.000" - ], - [ - "commander", - 2.5726027397, - "2024-12-17T15:54:04.000" - ], - [ - "eslint", - 3.3726027397, - "2024-12-17T15:54:04.000" - ], - [ - "eslint-config-airbnb-typescript", - 3.0657534247, - "2024-12-17T15:54:04.000" - ], - [ - "eslint-config-prettier", - 0.3315068493, - "2024-12-17T15:54:04.000" - ], - [ - "eslint-plugin-eslint-comments", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "eslint-plugin-import", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "eslint-plugin-jest", - 3.0739726027, - "2024-12-17T15:54:04.000" - ], - [ - "eslint-plugin-promise", - 2.9890410959, - "2024-12-17T15:54:04.000" - ], - [ - "faker", - 0.7424657534, - "2024-12-17T15:54:04.000" - ], - [ - "handlebars", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "jest", - 1.5890410959, - "2024-12-17T15:54:04.000" - ], - [ - "jest-extended", - 3.701369863, - "2024-12-17T15:54:04.000" - ], - [ - "jest-sinon", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "lodash", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:54:04.000" - ], - [ - "reflect-metadata", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "sinon", - 3.1342465753, - "2024-12-17T15:54:04.000" - ], - [ - "ts-jest", - 2.2657534247, - "2024-12-17T15:54:04.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:54:04.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:54:04.000" - ], - [ - "winston", - 1.4602739726, - "2024-12-17T15:54:04.000" - ], - [ - "xml2js", - 0.0, - "2024-12-17T15:54:04.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 479593, - "CodeBytes": 0, - "Lines": 14430, - "Code": 11732, - "Comment": 673, - "Blank": 2025, - "Complexity": 1095, - "Count": 288, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 1384649, - "CodeBytes": 0, - "Lines": 21811, - "Code": 21772, - "Comment": 4, - "Blank": 35, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5185, - "CodeBytes": 0, - "Lines": 169, - "Code": 133, - "Comment": 9, - "Blank": 27, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3236, - "CodeBytes": 0, - "Lines": 98, - "Code": 98, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1844, - "CodeBytes": 0, - "Lines": 63, - "Code": 62, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 730, - "CodeBytes": 0, - "Lines": 7, - "Code": 5, - "Comment": 0, - "Blank": 2, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 996367.0579361555, - "estimatedScheduleMonths_low": 14.224145257126594, - "estimatedPeople_low": 6.824057691261756, - "estimatedCost_high": 3105114.9205590403, - "estimatedScheduleMonths_high": 14.224145257126594, - "estimatedPeople_high": 6.824057691261756, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 288 14430 2025 673 11732 1095\n(ULOC) 6800\n-------------------------------------------------------------------------------\nXML 5 21811 35 4 21772 0\n(ULOC) 6253\n-------------------------------------------------------------------------------\nYAML 3 169 27 9 133 0\n(ULOC) 99\n-------------------------------------------------------------------------------\nJSON 2 98 0 0 98 0\n(ULOC) 90\n-------------------------------------------------------------------------------\nJavaScript 2 63 0 1 62 0\n(ULOC) 53\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 7 2 0 5 0\n(ULOC) 6\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 302 36699 2101 687 33911 1095\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 13380\nDRYness % 0.36\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $1,092,579\nEstimated Schedule Effort (organic) 14.22 months\nEstimated People Required (organic) 6.82\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 1882285 bytes, 1.882 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:36:14Z", - "repo": { - "name": "github.com/measureauthoringtool/model-info-parser", - "commit": "e768780ff0d95f085f6b0b4cac6dbe4175758de1" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 18 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": -1, - "reason": "Found no human activity in the last 18 changesets", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 2, - "reason": "dependency not pinned by hash detected -- score normalized to 2", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "18 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 4.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 18 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": -1, + "reason": "Found no human activity in the last 18 changesets", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 2, + "reason": "dependency not pinned by hash detected -- score normalized to 2", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "18 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/package-service/package-service_data.json b/app/site/_data/measureauthoringtool/package-service/package-service_data.json index d4eda5c6fb..e147af0d07 100644 --- a/app/site/_data/measureauthoringtool/package-service/package-service_data.json +++ b/app/site/_data/measureauthoringtool/package-service/package-service_data.json @@ -1,351 +1,351 @@ { - "url": "https://github.com/measureauthoringtool/package-service", - "owner": "measureauthoringtool", - "name": "package-service", - "description": "For creating artifacts related to packaging, publishing and exporting Measures and Test Data", - "commits_count": 14, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 4, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 2, - "closed_pull_requests_count": 2, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-12-12T21:32:43Z", - "total_project_lines": 1185, - "average_project_lines": 66, - "total_project_comment_lines": 74, - "average_project_comment_lines": 4, - "total_project_blank_lines": 143, - "average_blank_lines": 8, - "predominant_langs": { - "Java": 5781 + "url": "https://github.com/measureauthoringtool/package-service", + "owner": "measureauthoringtool", + "name": "package-service", + "description": "For creating artifacts related to packaging, publishing and exporting Measures and Test Data", + "commits_count": 14, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 4, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 2, + "closed_pull_requests_count": 2, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-12-12T21:32:43Z", + "total_project_lines": 1185, + "average_project_lines": 66, + "total_project_comment_lines": 74, + "average_project_comment_lines": 4, + "total_project_blank_lines": 143, + "average_blank_lines": 8, + "predominant_langs": { + "Java": 5781 + }, + "commits_by_month": { + "2023/1": 1, + "2022/12": 13 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 5781, + "CodeBytes": 0, + "Lines": 176, + "Code": 149, + "Comment": 0, + "Blank": 27, + "Complexity": 1, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 9391, + "CodeBytes": 0, + "Lines": 278, + "Code": 238, + "Comment": 17, + "Blank": 23, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2604, + "CodeBytes": 0, + "Lines": 78, + "Code": 64, + "Comment": 3, + "Blank": 11, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1291, + "CodeBytes": 0, + "Lines": 28, + "Code": 20, + "Comment": 0, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 6734, + "CodeBytes": 0, + "Lines": 188, + "Code": 153, + "Comment": 0, + "Blank": 35, + "Complexity": 27, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10284, + "CodeBytes": 0, + "Lines": 316, + "Code": 235, + "Comment": 54, + "Blank": 27, + "Complexity": 35, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 23808.435547799072, + "estimatedScheduleMonths_low": 3.441791423834789, + "estimatedPeople_low": 0.6739005623798318, + "estimatedCost_high": 74197.48361389147, + "estimatedScheduleMonths_high": 3.441791423834789, + "estimatedPeople_high": 0.6739005623798318, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 7 176 27 0 149 1\n(ULOC) 118\n-------------------------------------------------------------------------------\nXML 3 278 23 17 238 0\n(ULOC) 210\n-------------------------------------------------------------------------------\nYAML 3 78 11 3 64 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nMarkdown 2 28 8 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nBatch 1 188 35 0 153 27\n(ULOC) 134\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 316 27 54 235 35\n(ULOC) 216\n───────────────────────────────────────────────────────────────────────────────\nTotal 18 1185 143 74 968 63\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 862\nDRYness % 0.73\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $26,107\nEstimated Schedule Effort (organic) 3.44 months\nEstimated People Required (organic) 0.67\n───────────────────────────────────────────────────────────────────────────────\nProcessed 43133 bytes, 0.043 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:25Z", + "repo": { + "name": "github.com/measureauthoringtool/package-service", + "commit": "81e11762c58d40a5732793f1233a704f320c9c9f" }, - "commits_by_month": { - "2023/1": 1, - "2022/12": 13 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 5781, - "CodeBytes": 0, - "Lines": 176, - "Code": 149, - "Comment": 0, - "Blank": 27, - "Complexity": 1, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 9391, - "CodeBytes": 0, - "Lines": 278, - "Code": 238, - "Comment": 17, - "Blank": 23, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2604, - "CodeBytes": 0, - "Lines": 78, - "Code": 64, - "Comment": 3, - "Blank": 11, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1291, - "CodeBytes": 0, - "Lines": 28, - "Code": 20, - "Comment": 0, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 6734, - "CodeBytes": 0, - "Lines": 188, - "Code": 153, - "Comment": 0, - "Blank": 35, - "Complexity": 27, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10284, - "CodeBytes": 0, - "Lines": 316, - "Code": 235, - "Comment": 54, - "Blank": 27, - "Complexity": 35, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 23808.435547799072, - "estimatedScheduleMonths_low": 3.441791423834789, - "estimatedPeople_low": 0.6739005623798318, - "estimatedCost_high": 74197.48361389147, - "estimatedScheduleMonths_high": 3.441791423834789, - "estimatedPeople_high": 0.6739005623798318, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 7 176 27 0 149 1\n(ULOC) 118\n-------------------------------------------------------------------------------\nXML 3 278 23 17 238 0\n(ULOC) 210\n-------------------------------------------------------------------------------\nYAML 3 78 11 3 64 0\n(ULOC) 60\n-------------------------------------------------------------------------------\nMarkdown 2 28 8 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nBatch 1 188 35 0 153 27\n(ULOC) 134\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 1 316 27 54 235 35\n(ULOC) 216\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 18 1185 143 74 968 63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 862\nDRYness % 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $26,107\nEstimated Schedule Effort (organic) 3.44 months\nEstimated People Required (organic) 0.67\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 43133 bytes, 0.043 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:25Z", - "repo": { - "name": "github.com/measureauthoringtool/package-service", - "commit": "81e11762c58d40a5732793f1233a704f320c9c9f" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.1, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 1/4 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 3, - "reason": "project has 1 contributing companies or organizations -- score normalized to 3", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "37 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.1, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 2 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 1/4 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 3, + "reason": "project has 1 contributing companies or organizations -- score normalized to 3", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "37 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/packaging-utility/packaging-utility_data.json b/app/site/_data/measureauthoringtool/packaging-utility/packaging-utility_data.json index 5f2f7e7b1a..5634ebf4ec 100644 --- a/app/site/_data/measureauthoringtool/packaging-utility/packaging-utility_data.json +++ b/app/site/_data/measureauthoringtool/packaging-utility/packaging-utility_data.json @@ -1,361 +1,361 @@ { - "url": "https://github.com/measureauthoringtool/packaging-utility", - "owner": "measureauthoringtool", - "name": "packaging-utility", - "description": "Utility library for packaging Export and other bundles for consumption by third-party tools ", - "commits_count": 75, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 37, - "open_pull_requests_count": 6, - "merged_pull_requests_count": 30, - "closed_pull_requests_count": 1, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2023-05-12T12:55:59Z", - "total_project_lines": 1696, - "average_project_lines": 85, - "total_project_comment_lines": 22, - "average_project_comment_lines": 1, - "total_project_blank_lines": 165, - "average_blank_lines": 8, - "predominant_langs": { - "Java": 82331, - "Liquid": 11740 + "url": "https://github.com/measureauthoringtool/packaging-utility", + "owner": "measureauthoringtool", + "name": "packaging-utility", + "description": "Utility library for packaging Export and other bundles for consumption by third-party tools ", + "commits_count": 75, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 37, + "open_pull_requests_count": 6, + "merged_pull_requests_count": 30, + "closed_pull_requests_count": 1, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2023-05-12T12:55:59Z", + "total_project_lines": 1696, + "average_project_lines": 85, + "total_project_comment_lines": 22, + "average_project_comment_lines": 1, + "total_project_blank_lines": 165, + "average_blank_lines": 8, + "predominant_langs": { + "Java": 82331, + "Liquid": 11740 + }, + "commits_by_month": { + "2025/1": 7, + "2024/12": 4, + "2024/11": 7, + "2024/9": 5, + "2024/7": 2, + "2024/5": 2, + "2024/4": 1, + "2024/1": 1, + "2023/7": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-03T00:00:00.000Z", + 2 + ], + [ + "2024-11-21T00:00:00.000Z", + 2 + ], + [ + "2024-12-03T00:00:00.000Z", + 1 + ], + [ + "2024-12-05T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 82331, + "CodeBytes": 0, + "Lines": 993, + "Code": 836, + "Comment": 29, + "Blank": 128, + "Complexity": 34, + "Count": 12, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 8118, + "CodeBytes": 0, + "Lines": 281, + "Code": 262, + "Comment": 5, + "Blank": 14, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 3778, + "CodeBytes": 0, + "Lines": 117, + "Code": 99, + "Comment": 3, + "Blank": 15, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 6967, + "CodeBytes": 0, + "Lines": 237, + "Code": 237, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1249, + "CodeBytes": 0, + "Lines": 26, + "Code": 19, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 39348.376180105995, + "estimatedScheduleMonths_low": 4.165805713728015, + "estimatedPeople_low": 0.9201895806517078, + "estimatedCost_high": 122626.7257668068, + "estimatedScheduleMonths_high": 4.165805713728015, + "estimatedPeople_high": 0.9201895806517078, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 12 993 128 29 836 34\n(ULOC) 579\n-------------------------------------------------------------------------------\nXML 3 281 14 5 262 0\n(ULOC) 196\n-------------------------------------------------------------------------------\nYAML 3 117 15 3 99 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nJSON 1 237 0 0 237 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 26 7 0 19 0\n(ULOC) 20\n───────────────────────────────────────────────────────────────────────────────\nTotal 21 1775 176 37 1562 34\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1115\nDRYness % 0.63\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $43,147\nEstimated Schedule Effort (organic) 4.17 months\nEstimated People Required (organic) 0.92\n───────────────────────────────────────────────────────────────────────────────\nProcessed 109491 bytes, 0.109 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:42Z", + "repo": { + "name": "github.com/measureauthoringtool/packaging-utility", + "commit": "fcb3a9bca5a6da05f0c1499964067ddc52b1288f" }, - "commits_by_month": { - "2025/1": 7, - "2024/12": 4, - "2024/11": 7, - "2024/9": 5, - "2024/7": 2, - "2024/5": 2, - "2024/4": 1, - "2024/1": 1, - "2023/7": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-03T00:00:00.000Z", - 2 - ], - [ - "2024-11-21T00:00:00.000Z", - 2 - ], - [ - "2024-12-03T00:00:00.000Z", - 1 - ], - [ - "2024-12-05T00:00:00.000Z", - 1 - ] + "score": 5.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "18 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": 10, + "reason": "packaging workflow detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 82331, - "CodeBytes": 0, - "Lines": 993, - "Code": 836, - "Comment": 29, - "Blank": 128, - "Complexity": 34, - "Count": 12, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 8118, - "CodeBytes": 0, - "Lines": 281, - "Code": 262, - "Comment": 5, - "Blank": 14, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 3778, - "CodeBytes": 0, - "Lines": 117, - "Code": 99, - "Comment": 3, - "Blank": 15, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 6967, - "CodeBytes": 0, - "Lines": 237, - "Code": 237, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1249, - "CodeBytes": 0, - "Lines": 26, - "Code": 19, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 39348.376180105995, - "estimatedScheduleMonths_low": 4.165805713728015, - "estimatedPeople_low": 0.9201895806517078, - "estimatedCost_high": 122626.7257668068, - "estimatedScheduleMonths_high": 4.165805713728015, - "estimatedPeople_high": 0.9201895806517078, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 12 993 128 29 836 34\n(ULOC) 579\n-------------------------------------------------------------------------------\nXML 3 281 14 5 262 0\n(ULOC) 196\n-------------------------------------------------------------------------------\nYAML 3 117 15 3 99 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nJSON 1 237 0 0 237 0\n(ULOC) 146\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 26 7 0 19 0\n(ULOC) 20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 21 1775 176 37 1562 34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1115\nDRYness % 0.63\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $43,147\nEstimated Schedule Effort (organic) 4.17 months\nEstimated People Required (organic) 0.92\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 109491 bytes, 0.109 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:42Z", - "repo": { - "name": "github.com/measureauthoringtool/packaging-utility", - "commit": "fcb3a9bca5a6da05f0c1499964067ddc52b1288f" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "13 out of 13 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "18 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": 10, - "reason": "packaging workflow detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/qdm-qicore-conversion/qdm-qicore-conversion_data.json b/app/site/_data/measureauthoringtool/qdm-qicore-conversion/qdm-qicore-conversion_data.json index 0649feea53..d94fec3a6f 100644 --- a/app/site/_data/measureauthoringtool/qdm-qicore-conversion/qdm-qicore-conversion_data.json +++ b/app/site/_data/measureauthoringtool/qdm-qicore-conversion/qdm-qicore-conversion_data.json @@ -1,425 +1,425 @@ { - "url": "https://github.com/measureauthoringtool/qdm-qicore-conversion", - "owner": "measureauthoringtool", - "name": "qdm-qicore-conversion", - "description": "This project provides services to convert CMS Quality Data Model(QDM) to FHIR Resources.", - "commits_count": 1276, - "issues_count": 2, - "open_issues_count": 0, - "closed_issues_count": 2, - "pull_requests_count": 455, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 256, - "closed_pull_requests_count": 199, - "forks_count": 4, - "stargazers_count": 4, - "watchers_count": 8, - "created_at": "2019-10-02T18:37:47Z", - "total_project_lines": 212269, - "average_project_lines": 275, - "total_project_comment_lines": 5692, - "average_project_comment_lines": 7, - "total_project_blank_lines": 11215, - "average_blank_lines": 15, - "predominant_langs": { - "Java": 1931084, - "HTML": 74360, - "JavaScript": 28020, - "CSS": 5245, - "Shell": 5117, - "Dockerfile": 2604 + "url": "https://github.com/measureauthoringtool/qdm-qicore-conversion", + "owner": "measureauthoringtool", + "name": "qdm-qicore-conversion", + "description": "This project provides services to convert CMS Quality Data Model(QDM) to FHIR Resources.", + "commits_count": 1276, + "issues_count": 2, + "open_issues_count": 0, + "closed_issues_count": 2, + "pull_requests_count": 455, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 256, + "closed_pull_requests_count": 199, + "forks_count": 4, + "stargazers_count": 4, + "watchers_count": 8, + "created_at": "2019-10-02T18:37:47Z", + "total_project_lines": 212269, + "average_project_lines": 275, + "total_project_comment_lines": 5692, + "average_project_comment_lines": 7, + "total_project_blank_lines": 11215, + "average_blank_lines": 15, + "predominant_langs": { + "Java": 1931084, + "HTML": 74360, + "JavaScript": 28020, + "CSS": 5245, + "Shell": 5117, + "Dockerfile": 2604 + }, + "commits_by_month": { + "2024/3": 4, + "2024/1": 5, + "2023/9": 12, + "2023/2": 3, + "2022/6": 5, + "2022/5": 1 + }, + "average_issue_resolution_time": [ + [ + "qdm-qicore-conversion", + "595 days 14:45:34.5" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 1935376, + "CodeBytes": 0, + "Lines": 57412, + "Code": 41374, + "Comment": 5434, + "Blank": 10604, + "Complexity": 3178, + "Count": 637, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 15664234, + "CodeBytes": 0, + "Lines": 141032, + "Code": 141032, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 57, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 693779, + "CodeBytes": 0, + "Lines": 11710, + "Code": 11194, + "Comment": 167, + "Blank": 349, + "Complexity": 0, + "Count": 42, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 17066, + "CodeBytes": 0, + "Lines": 639, + "Code": 556, + "Comment": 0, + "Blank": 83, + "Complexity": 0, + "Count": 19, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 2604, + "CodeBytes": 0, + "Lines": 44, + "Code": 33, + "Comment": 0, + "Blank": 11, + "Complexity": 10, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "CSS", + "Bytes": 59001, + "CodeBytes": 0, + "Lines": 336, + "Code": 260, + "Comment": 28, + "Blank": 48, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 1150856, + "CodeBytes": 0, + "Lines": 704, + "Code": 587, + "Comment": 43, + "Blank": 74, + "Complexity": 127, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 14096, + "CodeBytes": 0, + "Lines": 242, + "Code": 218, + "Comment": 0, + "Blank": 24, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 2073, + "CodeBytes": 0, + "Lines": 43, + "Code": 18, + "Comment": 20, + "Blank": 5, + "Complexity": 1, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 3256, + "CodeBytes": 0, + "Lines": 106, + "Code": 89, + "Comment": 0, + "Blank": 17, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 64, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 6265328.274762981, + "estimatedScheduleMonths_low": 28.60654955274751, + "estimatedPeople_low": 21.33672999677026, + "estimatedCost_high": 19525499.31594944, + "estimatedScheduleMonths_high": 28.60654955274751, + "estimatedPeople_high": 21.33672999677026, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 637 57412 10604 5434 41374 3178\n(ULOC) 22598\n-------------------------------------------------------------------------------\nJSON 57 141032 0 0 141032 0\n(ULOC) 16485\n-------------------------------------------------------------------------------\nXML 42 11710 349 167 11194 0\n(ULOC) 6308\n-------------------------------------------------------------------------------\nYAML 19 639 83 0 556 0\n(ULOC) 277\n-------------------------------------------------------------------------------\nDockerfile 4 44 11 0 33 10\n(ULOC) 16\n-------------------------------------------------------------------------------\nCSS 3 336 48 28 260 0\n(ULOC) 209\n-------------------------------------------------------------------------------\nJavaScript 3 704 74 43 587 127\n(ULOC) 481\n-------------------------------------------------------------------------------\nLicense 2 242 24 0 218 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 2 43 5 20 18 1\n(ULOC) 36\n-------------------------------------------------------------------------------\nMarkdown 1 106 17 0 89 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nProperties File 1 1 0 0 1 0\n(ULOC) 1\n───────────────────────────────────────────────────────────────────────────────\nTotal 771 212269 11215 5692 195362 3316\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 46529\nDRYness % 0.22\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $6,870,327\nEstimated Schedule Effort (organic) 28.61 months\nEstimated People Required (organic) 21.34\n───────────────────────────────────────────────────────────────────────────────\nProcessed 19542405 bytes, 19.542 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:48Z", + "repo": { + "name": "github.com/measureauthoringtool/qdm-qicore-conversion", + "commit": "f04c05e452598a2a71bf4683ea5c068131c9503c" }, - "commits_by_month": { - "2024/3": 4, - "2024/1": 5, - "2023/9": 12, - "2023/2": 3, - "2022/6": 5, - "2022/5": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [ - [ - "qdm-qicore-conversion", - "595 days 14:45:34.5" - ] + "score": 4.0, + "checks": [ + { + "details": null, + "score": 0, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 3, + "reason": "3 out of 10 merged PRs checked by a CI test -- score normalized to 3", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "69 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 1935376, - "CodeBytes": 0, - "Lines": 57412, - "Code": 41374, - "Comment": 5434, - "Blank": 10604, - "Complexity": 3178, - "Count": 637, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 15664234, - "CodeBytes": 0, - "Lines": 141032, - "Code": 141032, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 57, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 693779, - "CodeBytes": 0, - "Lines": 11710, - "Code": 11194, - "Comment": 167, - "Blank": 349, - "Complexity": 0, - "Count": 42, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 17066, - "CodeBytes": 0, - "Lines": 639, - "Code": 556, - "Comment": 0, - "Blank": 83, - "Complexity": 0, - "Count": 19, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 2604, - "CodeBytes": 0, - "Lines": 44, - "Code": 33, - "Comment": 0, - "Blank": 11, - "Complexity": 10, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "CSS", - "Bytes": 59001, - "CodeBytes": 0, - "Lines": 336, - "Code": 260, - "Comment": 28, - "Blank": 48, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 1150856, - "CodeBytes": 0, - "Lines": 704, - "Code": 587, - "Comment": 43, - "Blank": 74, - "Complexity": 127, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 14096, - "CodeBytes": 0, - "Lines": 242, - "Code": 218, - "Comment": 0, - "Blank": 24, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 2073, - "CodeBytes": 0, - "Lines": 43, - "Code": 18, - "Comment": 20, - "Blank": 5, - "Complexity": 1, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 3256, - "CodeBytes": 0, - "Lines": 106, - "Code": 89, - "Comment": 0, - "Blank": 17, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 64, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 6265328.274762981, - "estimatedScheduleMonths_low": 28.60654955274751, - "estimatedPeople_low": 21.33672999677026, - "estimatedCost_high": 19525499.31594944, - "estimatedScheduleMonths_high": 28.60654955274751, - "estimatedPeople_high": 21.33672999677026, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 637 57412 10604 5434 41374 3178\n(ULOC) 22598\n-------------------------------------------------------------------------------\nJSON 57 141032 0 0 141032 0\n(ULOC) 16485\n-------------------------------------------------------------------------------\nXML 42 11710 349 167 11194 0\n(ULOC) 6308\n-------------------------------------------------------------------------------\nYAML 19 639 83 0 556 0\n(ULOC) 277\n-------------------------------------------------------------------------------\nDockerfile 4 44 11 0 33 10\n(ULOC) 16\n-------------------------------------------------------------------------------\nCSS 3 336 48 28 260 0\n(ULOC) 209\n-------------------------------------------------------------------------------\nJavaScript 3 704 74 43 587 127\n(ULOC) 481\n-------------------------------------------------------------------------------\nLicense 2 242 24 0 218 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nShell 2 43 5 20 18 1\n(ULOC) 36\n-------------------------------------------------------------------------------\nMarkdown 1 106 17 0 89 0\n(ULOC) 73\n-------------------------------------------------------------------------------\nProperties File 1 1 0 0 1 0\n(ULOC) 1\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 771 212269 11215 5692 195362 3316\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 46529\nDRYness % 0.22\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $6,870,327\nEstimated Schedule Effort (organic) 28.61 months\nEstimated People Required (organic) 21.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 19542405 bytes, 19.542 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:48Z", - "repo": { - "name": "github.com/measureauthoringtool/qdm-qicore-conversion", - "commit": "f04c05e452598a2a71bf4683ea5c068131c9503c" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.0, - "checks": [ - { - "details": null, - "score": 0, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 3, - "reason": "3 out of 10 merged PRs checked by a CI test -- score normalized to 3", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "69 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/qrda-export-service/qrda-export-service_data.json b/app/site/_data/measureauthoringtool/qrda-export-service/qrda-export-service_data.json index 90e92c1028..5edbea4ec1 100644 --- a/app/site/_data/measureauthoringtool/qrda-export-service/qrda-export-service_data.json +++ b/app/site/_data/measureauthoringtool/qrda-export-service/qrda-export-service_data.json @@ -1,406 +1,406 @@ { - "url": "https://github.com/measureauthoringtool/qrda-export-service", - "owner": "measureauthoringtool", - "name": "qrda-export-service", - "description": null, - "commits_count": 50, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 27, - "open_pull_requests_count": 2, - "merged_pull_requests_count": 17, - "closed_pull_requests_count": 8, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 3, - "created_at": "2024-03-06T20:12:39Z", - "total_project_lines": 901, - "average_project_lines": 64, - "total_project_comment_lines": 45, - "average_project_comment_lines": 3, - "total_project_blank_lines": 87, - "average_blank_lines": 6, - "predominant_langs": { - "Ruby": 11822, - "HTML": 6946, - "Dockerfile": 701, - "JavaScript": 601 + "url": "https://github.com/measureauthoringtool/qrda-export-service", + "owner": "measureauthoringtool", + "name": "qrda-export-service", + "description": null, + "commits_count": 50, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 27, + "open_pull_requests_count": 2, + "merged_pull_requests_count": 17, + "closed_pull_requests_count": 8, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 3, + "created_at": "2024-03-06T20:12:39Z", + "total_project_lines": 901, + "average_project_lines": 64, + "total_project_comment_lines": 45, + "average_project_comment_lines": 3, + "total_project_blank_lines": 87, + "average_blank_lines": 6, + "predominant_langs": { + "Ruby": 11822, + "HTML": 6946, + "Dockerfile": 701, + "JavaScript": 601 + }, + "commits_by_month": { + "2024/12": 2, + "2024/9": 2, + "2024/8": 9, + "2024/7": 3, + "2024/6": 3, + "2024/5": 9, + "2024/4": 2 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-08-12T00:00:00.000Z", + 2 + ], + [ + "2024-08-22T00:00:00.000Z", + 1 + ], + [ + "2024-08-23T00:00:00.000Z", + 1 + ], + [ + "2024-12-09T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "YAML", + "Bytes": 3481, + "CodeBytes": 0, + "Lines": 109, + "Code": 89, + "Comment": 7, + "Blank": 13, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1270, + "CodeBytes": 0, + "Lines": 27, + "Code": 20, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby", + "Bytes": 11286, + "CodeBytes": 0, + "Lines": 354, + "Code": 287, + "Comment": 32, + "Blank": 35, + "Complexity": 10, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 701, + "CodeBytes": 0, + "Lines": 27, + "Code": 13, + "Comment": 6, + "Blank": 8, + "Complexity": 3, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Gemfile", + "Bytes": 355, + "CodeBytes": 0, + "Lines": 17, + "Code": 14, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 601, + "CodeBytes": 0, + "Lines": 26, + "Code": 20, + "Comment": 0, + "Blank": 6, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Rakefile", + "Bytes": 86, + "CodeBytes": 0, + "Lines": 5, + "Code": 4, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Ruby HTML", + "Bytes": 6946, + "CodeBytes": 0, + "Lines": 215, + "Code": 213, + "Comment": 0, + "Blank": 2, + "Complexity": 21, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 18697.53653342812, + "estimatedScheduleMonths_low": 3.139821002077638, + "estimatedPeople_low": 0.5801349209398651, + "estimatedCost_high": 58269.690075768856, + "estimatedScheduleMonths_high": 3.139821002077638, + "estimatedPeople_high": 0.5801349209398651, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nYAML 4 109 13 7 89 0\n(ULOC) 83\n-------------------------------------------------------------------------------\nMarkdown 2 27 7 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nRuby 2 354 35 32 287 10\n(ULOC) 291\n-------------------------------------------------------------------------------\nDockerfile 1 27 8 6 13 3\n(ULOC) 20\n-------------------------------------------------------------------------------\nGemfile 1 17 3 0 14 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 26 6 0 20 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nRakefile 1 5 1 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nRuby HTML 1 215 2 0 213 21\n(ULOC) 158\n───────────────────────────────────────────────────────────────────────────────\nTotal 14 901 87 45 769 34\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 707\nDRYness % 0.78\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $20,503\nEstimated Schedule Effort (organic) 3.14 months\nEstimated People Required (organic) 0.58\n───────────────────────────────────────────────────────────────────────────────\nProcessed 31774 bytes, 0.032 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:44:23Z", + "repo": { + "name": "github.com/measureauthoringtool/qrda-export-service", + "commit": "f456a91a606092dc0fccb9e7233ffa76d011bb7e" }, - "commits_by_month": { - "2024/12": 2, - "2024/9": 2, - "2024/8": 9, - "2024/7": 3, - "2024/6": 3, - "2024/5": 9, - "2024/4": 2 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-08-12T00:00:00.000Z", - 2 - ], - [ - "2024-08-22T00:00:00.000Z", - 1 - ], - [ - "2024-08-23T00:00:00.000Z", - 1 - ], - [ - "2024-12-09T00:00:00.000Z", - 2 - ] + "score": 4.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 1, + "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 7, + "reason": "3 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "YAML", - "Bytes": 3481, - "CodeBytes": 0, - "Lines": 109, - "Code": 89, - "Comment": 7, - "Blank": 13, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1270, - "CodeBytes": 0, - "Lines": 27, - "Code": 20, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby", - "Bytes": 11286, - "CodeBytes": 0, - "Lines": 354, - "Code": 287, - "Comment": 32, - "Blank": 35, - "Complexity": 10, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 701, - "CodeBytes": 0, - "Lines": 27, - "Code": 13, - "Comment": 6, - "Blank": 8, - "Complexity": 3, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Gemfile", - "Bytes": 355, - "CodeBytes": 0, - "Lines": 17, - "Code": 14, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 601, - "CodeBytes": 0, - "Lines": 26, - "Code": 20, - "Comment": 0, - "Blank": 6, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Rakefile", - "Bytes": 86, - "CodeBytes": 0, - "Lines": 5, - "Code": 4, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Ruby HTML", - "Bytes": 6946, - "CodeBytes": 0, - "Lines": 215, - "Code": 213, - "Comment": 0, - "Blank": 2, - "Complexity": 21, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 18697.53653342812, - "estimatedScheduleMonths_low": 3.139821002077638, - "estimatedPeople_low": 0.5801349209398651, - "estimatedCost_high": 58269.690075768856, - "estimatedScheduleMonths_high": 3.139821002077638, - "estimatedPeople_high": 0.5801349209398651, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nYAML 4 109 13 7 89 0\n(ULOC) 83\n-------------------------------------------------------------------------------\nMarkdown 2 27 7 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nRuby 2 354 35 32 287 10\n(ULOC) 291\n-------------------------------------------------------------------------------\nDockerfile 1 27 8 6 13 3\n(ULOC) 20\n-------------------------------------------------------------------------------\nGemfile 1 17 3 0 14 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nJavaScript 1 26 6 0 20 0\n(ULOC) 15\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nRakefile 1 5 1 0 4 0\n(ULOC) 5\n-------------------------------------------------------------------------------\nRuby HTML 1 215 2 0 213 21\n(ULOC) 158\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 14 901 87 45 769 34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 707\nDRYness % 0.78\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $20,503\nEstimated Schedule Effort (organic) 3.14 months\nEstimated People Required (organic) 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 31774 bytes, 0.032 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:44:23Z", - "repo": { - "name": "github.com/measureauthoringtool/qrda-export-service", - "commit": "f456a91a606092dc0fccb9e7233ffa76d011bb7e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 4.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "10 out of 10 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 1, - "reason": "2 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 1", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 7, - "reason": "3 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/serviceutil/serviceutil_data.json b/app/site/_data/measureauthoringtool/serviceutil/serviceutil_data.json index 3f6a4e51d2..99518f0dbd 100644 --- a/app/site/_data/measureauthoringtool/serviceutil/serviceutil_data.json +++ b/app/site/_data/measureauthoringtool/serviceutil/serviceutil_data.json @@ -1,305 +1,305 @@ { - "url": "https://github.com/measureauthoringtool/serviceutil", - "owner": "measureauthoringtool", - "name": "serviceutil", - "description": "MADiE Utilities for service projects", - "commits_count": 9, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2023-05-03T12:54:26Z", - "total_project_lines": 429, - "average_project_lines": 43, - "total_project_comment_lines": 10, - "average_project_comment_lines": 1, - "total_project_blank_lines": 73, - "average_blank_lines": 7, - "predominant_langs": { - "Java": 4329 + "url": "https://github.com/measureauthoringtool/serviceutil", + "owner": "measureauthoringtool", + "name": "serviceutil", + "description": "MADiE Utilities for service projects", + "commits_count": 9, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2023-05-03T12:54:26Z", + "total_project_lines": 429, + "average_project_lines": 43, + "total_project_comment_lines": 10, + "average_project_comment_lines": 1, + "total_project_blank_lines": 73, + "average_blank_lines": 7, + "predominant_langs": { + "Java": 4329 + }, + "commits_by_month": { + "2023/5": 9 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 4329, + "CodeBytes": 0, + "Lines": 155, + "Code": 107, + "Comment": 4, + "Blank": 44, + "Complexity": 6, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 1263, + "CodeBytes": 0, + "Lines": 27, + "Code": 20, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 5686, + "CodeBytes": 0, + "Lines": 168, + "Code": 152, + "Comment": 4, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 2205, + "CodeBytes": 0, + "Lines": 79, + "Code": 67, + "Comment": 2, + "Blank": 10, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 8083.354722803788, + "estimatedScheduleMonths_low": 2.2830301345549593, + "estimatedPeople_low": 0.3449288349383456, + "estimatedCost_high": 25191.26375970346, + "estimatedScheduleMonths_high": 2.2830301345549593, + "estimatedPeople_high": 0.3449288349383456, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 4 155 44 4 107 6\n(ULOC) 84\n-------------------------------------------------------------------------------\nMarkdown 2 27 7 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nXML 2 168 12 4 152 0\n(ULOC) 127\n-------------------------------------------------------------------------------\nYAML 2 79 10 2 67 0\n(ULOC) 51\n───────────────────────────────────────────────────────────────────────────────\nTotal 10 429 73 10 346 6\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 280\nDRYness % 0.65\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $8,863\nEstimated Schedule Effort (organic) 2.28 months\nEstimated People Required (organic) 0.34\n───────────────────────────────────────────────────────────────────────────────\nProcessed 13483 bytes, 0.013 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:36Z", + "repo": { + "name": "github.com/measureauthoringtool/serviceutil", + "commit": "c37182aa424dd1bcf869e59c78b6ffefb784361c" }, - "commits_by_month": { - "2023/5": 9 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 4329, - "CodeBytes": 0, - "Lines": 155, - "Code": 107, - "Comment": 4, - "Blank": 44, - "Complexity": 6, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 1263, - "CodeBytes": 0, - "Lines": 27, - "Code": 20, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 5686, - "CodeBytes": 0, - "Lines": 168, - "Code": 152, - "Comment": 4, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 2205, - "CodeBytes": 0, - "Lines": 79, - "Code": 67, - "Comment": 2, - "Blank": 10, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 8083.354722803788, - "estimatedScheduleMonths_low": 2.2830301345549593, - "estimatedPeople_low": 0.3449288349383456, - "estimatedCost_high": 25191.26375970346, - "estimatedScheduleMonths_high": 2.2830301345549593, - "estimatedPeople_high": 0.3449288349383456, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 4 155 44 4 107 6\n(ULOC) 84\n-------------------------------------------------------------------------------\nMarkdown 2 27 7 0 20 0\n(ULOC) 21\n-------------------------------------------------------------------------------\nXML 2 168 12 4 152 0\n(ULOC) 127\n-------------------------------------------------------------------------------\nYAML 2 79 10 2 67 0\n(ULOC) 51\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 10 429 73 10 346 6\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 280\nDRYness % 0.65\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $8,863\nEstimated Schedule Effort (organic) 2.28 months\nEstimated People Required (organic) 0.34\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 13483 bytes, 0.013 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:36Z", - "repo": { - "name": "github.com/measureauthoringtool/serviceutil", - "commit": "c37182aa424dd1bcf869e59c78b6ffefb784361c" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.9, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 1/4 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 2, - "reason": "8 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.9, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 1/4 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 2, + "reason": "8 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/styleguide/styleguide_data.json b/app/site/_data/measureauthoringtool/styleguide/styleguide_data.json index 41ed875291..59803c2048 100644 --- a/app/site/_data/measureauthoringtool/styleguide/styleguide_data.json +++ b/app/site/_data/measureauthoringtool/styleguide/styleguide_data.json @@ -1,273 +1,273 @@ { - "url": "https://github.com/measureauthoringtool/styleguide", - "owner": "measureauthoringtool", - "name": "styleguide", - "description": "Style guide for the MADiE project", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 2, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "created_at": "2021-08-24T14:26:42Z", - "total_project_lines": 123, - "average_project_lines": 62, - "total_project_comment_lines": 0, - "average_project_comment_lines": 0, - "total_project_blank_lines": 12, - "average_blank_lines": 6, - "predominant_langs": {}, - "commits_by_month": { - "2021/8": 3 + "url": "https://github.com/measureauthoringtool/styleguide", + "owner": "measureauthoringtool", + "name": "styleguide", + "description": "Style guide for the MADiE project", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 2, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "created_at": "2021-08-24T14:26:42Z", + "total_project_lines": 123, + "average_project_lines": 62, + "total_project_comment_lines": 0, + "average_project_comment_lines": 0, + "total_project_blank_lines": 12, + "average_blank_lines": 6, + "predominant_langs": {}, + "commits_by_month": { + "2021/8": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 47, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 2449.914123719557, + "estimatedScheduleMonths_low": 1.4504546312439293, + "estimatedPeople_low": 0.16454936867469586, + "estimatedCost_high": 7635.002421103105, + "estimatedScheduleMonths_high": 1.4504546312439293, + "estimatedPeople_high": 0.16454936867469586, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n───────────────────────────────────────────────────────────────────────────────\nTotal 2 123 12 0 111 0\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 112\nDRYness % 0.91\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $2,686\nEstimated Schedule Effort (organic) 1.45 months\nEstimated People Required (organic) 0.16\n───────────────────────────────────────────────────────────────────────────────\nProcessed 7095 bytes, 0.007 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:38:04Z", + "repo": { + "name": "github.com/measureauthoringtool/styleguide", + "commit": "7611d5f4c8355998164b036c906d8922dba1ec3d" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 47, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 2449.914123719557, - "estimatedScheduleMonths_low": 1.4504546312439293, - "estimatedPeople_low": 0.16454936867469586, - "estimatedCost_high": 7635.002421103105, - "estimatedScheduleMonths_high": 1.4504546312439293, - "estimatedPeople_high": 0.16454936867469586, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 2 0 0 2 0\n(ULOC) 3\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 2 123 12 0 111 0\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 112\nDRYness % 0.91\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $2,686\nEstimated Schedule Effort (organic) 1.45 months\nEstimated People Required (organic) 0.16\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 7095 bytes, 0.007 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:38:04Z", - "repo": { - "name": "github.com/measureauthoringtool/styleguide", - "commit": "7611d5f4c8355998164b036c906d8922dba1ec3d" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 3.7, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 3.7, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/terminology-service/terminology-service_data.json b/app/site/_data/measureauthoringtool/terminology-service/terminology-service_data.json index 018ba545b7..72da5ca2ec 100644 --- a/app/site/_data/measureauthoringtool/terminology-service/terminology-service_data.json +++ b/app/site/_data/measureauthoringtool/terminology-service/terminology-service_data.json @@ -1,402 +1,402 @@ { - "url": "https://github.com/measureauthoringtool/terminology-service", - "owner": "measureauthoringtool", - "name": "terminology-service", - "description": null, - "commits_count": 397, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 123, - "open_pull_requests_count": 9, - "merged_pull_requests_count": 97, - "closed_pull_requests_count": 17, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 5, - "created_at": "2022-04-18T17:30:29Z", - "total_project_lines": 6692, - "average_project_lines": 100, - "total_project_comment_lines": 143, - "average_project_comment_lines": 2, - "total_project_blank_lines": 723, - "average_blank_lines": 11, - "predominant_langs": { - "Java": 227029, - "Dockerfile": 686, - "JavaScript": 593 + "url": "https://github.com/measureauthoringtool/terminology-service", + "owner": "measureauthoringtool", + "name": "terminology-service", + "description": null, + "commits_count": 397, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 123, + "open_pull_requests_count": 9, + "merged_pull_requests_count": 97, + "closed_pull_requests_count": 17, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 5, + "created_at": "2022-04-18T17:30:29Z", + "total_project_lines": 6692, + "average_project_lines": 100, + "total_project_comment_lines": 143, + "average_project_comment_lines": 2, + "total_project_blank_lines": 723, + "average_blank_lines": 11, + "predominant_langs": { + "Java": 227029, + "Dockerfile": 686, + "JavaScript": 593 + }, + "commits_by_month": { + "2025/1": 10, + "2024/12": 17, + "2024/11": 3 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-10-01T00:00:00.000Z", + 2 + ], + [ + "2024-10-19T00:00:00.000Z", + 1 + ], + [ + "2024-10-22T00:00:00.000Z", + 2 + ], + [ + "2024-10-28T00:00:00.000Z", + 1 + ], + [ + "2024-10-29T00:00:00.000Z", + 1 + ], + [ + "2024-11-19T00:00:00.000Z", + 1 + ], + [ + "2024-11-20T00:00:00.000Z", + 1 + ], + [ + "2024-12-09T00:00:00.000Z", + 2 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 227029, + "CodeBytes": 0, + "Lines": 5427, + "Code": 4703, + "Comment": 119, + "Blank": 605, + "Complexity": 177, + "Count": 46, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 5382, + "CodeBytes": 0, + "Lines": 172, + "Code": 144, + "Comment": 3, + "Blank": 25, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 24221, + "CodeBytes": 0, + "Lines": 530, + "Code": 470, + "Comment": 20, + "Blank": 40, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 10222, + "CodeBytes": 0, + "Lines": 262, + "Code": 262, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2216, + "CodeBytes": 0, + "Lines": 67, + "Code": 49, + "Comment": 0, + "Blank": 18, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 686, + "CodeBytes": 0, + "Lines": 20, + "Code": 9, + "Comment": 6, + "Blank": 5, + "Complexity": 1, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 593, + "CodeBytes": 0, + "Lines": 27, + "Code": 20, + "Comment": 0, + "Blank": 7, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML Schema", + "Bytes": 2233, + "CodeBytes": 0, + "Lines": 41, + "Code": 41, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 153133.53244434224, + "estimatedScheduleMonths_low": 6.981577061263985, + "estimatedPeople_low": 2.1368117976407186, + "estimatedCost_high": 477230.9688918956, + "estimatedScheduleMonths_high": 6.981577061263985, + "estimatedPeople_high": 2.1368117976407186, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 46 5427 605 119 4703 177\n(ULOC) 2830\n-------------------------------------------------------------------------------\nYAML 7 172 25 3 144 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nXML 5 530 40 20 470 0\n(ULOC) 350\n-------------------------------------------------------------------------------\nJSON 3 262 0 0 262 0\n(ULOC) 125\n-------------------------------------------------------------------------------\nMarkdown 2 67 18 0 49 0\n(ULOC) 40\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 6 9 1\n(ULOC) 16\n-------------------------------------------------------------------------------\nJavaScript 1 27 7 0 20 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nXML Schema 1 41 0 0 41 0\n(ULOC) 41\n───────────────────────────────────────────────────────────────────────────────\nTotal 66 6546 700 148 5698 178\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 3535\nDRYness % 0.54\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $167,920\nEstimated Schedule Effort (organic) 6.98 months\nEstimated People Required (organic) 2.14\n───────────────────────────────────────────────────────────────────────────────\nProcessed 272582 bytes, 0.273 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:43:01Z", + "repo": { + "name": "github.com/measureauthoringtool/terminology-service", + "commit": "9846752d79d78c55baa4e90c0f5c6f26f3048f31" }, - "commits_by_month": { - "2025/1": 10, - "2024/12": 17, - "2024/11": 3 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-10-01T00:00:00.000Z", - 2 - ], - [ - "2024-10-19T00:00:00.000Z", - 1 - ], - [ - "2024-10-22T00:00:00.000Z", - 2 - ], - [ - "2024-10-28T00:00:00.000Z", - 1 - ], - [ - "2024-10-29T00:00:00.000Z", - 1 - ], - [ - "2024-11-19T00:00:00.000Z", - 1 - ], - [ - "2024-11-20T00:00:00.000Z", - 1 - ], - [ - "2024-12-09T00:00:00.000Z", - 2 - ] + "score": 5.5, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 10, + "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 10, + "reason": "all changesets reviewed", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 10, + "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 220709, - "CodeBytes": 0, - "Lines": 5290, - "Code": 4582, - "Comment": 118, - "Blank": 590, - "Complexity": 173, - "Count": 46, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 5382, - "CodeBytes": 0, - "Lines": 172, - "Code": 144, - "Comment": 3, - "Blank": 25, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 24222, - "CodeBytes": 0, - "Lines": 530, - "Code": 470, - "Comment": 20, - "Blank": 40, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 8678, - "CodeBytes": 0, - "Lines": 232, - "Code": 232, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2216, - "CodeBytes": 0, - "Lines": 67, - "Code": 49, - "Comment": 0, - "Blank": 18, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 686, - "CodeBytes": 0, - "Lines": 20, - "Code": 9, - "Comment": 6, - "Blank": 5, - "Complexity": 1, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 593, - "CodeBytes": 0, - "Lines": 27, - "Code": 20, - "Comment": 0, - "Blank": 7, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML Schema", - "Bytes": 2233, - "CodeBytes": 0, - "Lines": 41, - "Code": 41, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 148875.35423417104, - "estimatedScheduleMonths_low": 6.907159561485843, - "estimatedPeople_low": 2.0997753214584027, - "estimatedCost_high": 463960.6258095081, - "estimatedScheduleMonths_high": 6.907159561485843, - "estimatedPeople_high": 2.0997753214584027, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 46 5290 590 118 4582 173\n(ULOC) 2738\n-------------------------------------------------------------------------------\nYAML 7 172 25 3 144 0\n(ULOC) 130\n-------------------------------------------------------------------------------\nXML 5 530 40 20 470 0\n(ULOC) 350\n-------------------------------------------------------------------------------\nJSON 3 232 0 0 232 0\n(ULOC) 109\n-------------------------------------------------------------------------------\nMarkdown 2 67 18 0 49 0\n(ULOC) 40\n-------------------------------------------------------------------------------\nDockerfile 1 20 5 6 9 1\n(ULOC) 16\n-------------------------------------------------------------------------------\nJavaScript 1 27 7 0 20 0\n(ULOC) 16\n-------------------------------------------------------------------------------\nXML Schema 1 41 0 0 41 0\n(ULOC) 41\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 66 6379 685 147 5547 174\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 3429\nDRYness % 0.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $163,251\nEstimated Schedule Effort (organic) 6.91 months\nEstimated People Required (organic) 2.10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 264719 bytes, 0.265 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:43:01Z", - "repo": { - "name": "github.com/measureauthoringtool/terminology-service", - "commit": "9846752d79d78c55baa4e90c0f5c6f26f3048f31" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 5.5, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 10, - "reason": "11 out of 11 merged PRs checked by a CI test -- score normalized to 10", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 10, - "reason": "all changesets reviewed", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 10, - "reason": "30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/test-case-service/test-case-service_data.json b/app/site/_data/measureauthoringtool/test-case-service/test-case-service_data.json index 38e45fac53..c144ea2fcd 100644 --- a/app/site/_data/measureauthoringtool/test-case-service/test-case-service_data.json +++ b/app/site/_data/measureauthoringtool/test-case-service/test-case-service_data.json @@ -1,366 +1,366 @@ { - "url": "https://github.com/measureauthoringtool/test-case-service", - "owner": "measureauthoringtool", - "name": "test-case-service", - "description": null, - "commits_count": 29, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 10, - "open_pull_requests_count": 1, - "merged_pull_requests_count": 9, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-01-06T14:34:54Z", - "total_project_lines": 1374, - "average_project_lines": 55, - "total_project_comment_lines": 109, - "average_project_comment_lines": 4, - "total_project_blank_lines": 176, - "average_blank_lines": 7, - "predominant_langs": { - "Java": 8179, - "Dockerfile": 364 + "url": "https://github.com/measureauthoringtool/test-case-service", + "owner": "measureauthoringtool", + "name": "test-case-service", + "description": null, + "commits_count": 29, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 10, + "open_pull_requests_count": 1, + "merged_pull_requests_count": 9, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-01-06T14:34:54Z", + "total_project_lines": 1374, + "average_project_lines": 55, + "total_project_comment_lines": 109, + "average_project_comment_lines": 4, + "total_project_blank_lines": 176, + "average_blank_lines": 7, + "predominant_langs": { + "Java": 8179, + "Dockerfile": 364 + }, + "commits_by_month": { + "2022/1": 29 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 13121, + "CodeBytes": 0, + "Lines": 370, + "Code": 278, + "Comment": 31, + "Blank": 61, + "Complexity": 9, + "Count": 9, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 4061, + "CodeBytes": 0, + "Lines": 150, + "Code": 122, + "Comment": 3, + "Blank": 25, + "Complexity": 0, + "Count": 7, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 12567, + "CodeBytes": 0, + "Lines": 347, + "Code": 303, + "Comment": 18, + "Blank": 26, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 6608, + "CodeBytes": 0, + "Lines": 182, + "Code": 147, + "Comment": 0, + "Blank": 35, + "Complexity": 30, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 364, + "CodeBytes": 0, + "Lines": 12, + "Code": 6, + "Comment": 3, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 18, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 218, + "CodeBytes": 0, + "Lines": 2, + "Code": 2, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10070, + "CodeBytes": 0, + "Lines": 310, + "Code": 230, + "Comment": 54, + "Blank": 26, + "Complexity": 34, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 26942.693302679563, + "estimatedScheduleMonths_low": 3.6074008605491743, + "estimatedPeople_low": 0.7276057306259378, + "estimatedCost_high": 83965.19968001307, + "estimatedScheduleMonths_high": 3.6074008605491743, + "estimatedPeople_high": 0.7276057306259378, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 9 370 61 31 278 9\n(ULOC) 253\n-------------------------------------------------------------------------------\nYAML 7 150 25 3 122 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nXML 4 347 26 18 303 0\n(ULOC) 236\n-------------------------------------------------------------------------------\nBatch 1 182 35 0 147 30\n(ULOC) 128\n-------------------------------------------------------------------------------\nDockerfile 1 12 3 3 6 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nMarkdown 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 310 26 54 230 34\n(ULOC) 212\n───────────────────────────────────────────────────────────────────────────────\nTotal 25 1374 176 109 1089 73\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 944\nDRYness % 0.69\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $29,544\nEstimated Schedule Effort (organic) 3.61 months\nEstimated People Required (organic) 0.73\n───────────────────────────────────────────────────────────────────────────────\nProcessed 47027 bytes, 0.047 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:41:08Z", + "repo": { + "name": "github.com/measureauthoringtool/test-case-service", + "commit": "9fc1c0e0bc515e4e01ff0071e08ce5c0a0b5d883" }, - "commits_by_month": { - "2022/1": 29 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 13121, - "CodeBytes": 0, - "Lines": 370, - "Code": 278, - "Comment": 31, - "Blank": 61, - "Complexity": 9, - "Count": 9, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 4061, - "CodeBytes": 0, - "Lines": 150, - "Code": 122, - "Comment": 3, - "Blank": 25, - "Complexity": 0, - "Count": 7, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 12567, - "CodeBytes": 0, - "Lines": 347, - "Code": 303, - "Comment": 18, - "Blank": 26, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 6608, - "CodeBytes": 0, - "Lines": 182, - "Code": 147, - "Comment": 0, - "Blank": 35, - "Complexity": 30, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 364, - "CodeBytes": 0, - "Lines": 12, - "Code": 6, - "Comment": 3, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 18, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 218, - "CodeBytes": 0, - "Lines": 2, - "Code": 2, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10070, - "CodeBytes": 0, - "Lines": 310, - "Code": 230, - "Comment": 54, - "Blank": 26, - "Complexity": 34, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 26942.693302679563, - "estimatedScheduleMonths_low": 3.6074008605491743, - "estimatedPeople_low": 0.7276057306259378, - "estimatedCost_high": 83965.19968001307, - "estimatedScheduleMonths_high": 3.6074008605491743, - "estimatedPeople_high": 0.7276057306259378, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 9 370 61 31 278 9\n(ULOC) 253\n-------------------------------------------------------------------------------\nYAML 7 150 25 3 122 0\n(ULOC) 108\n-------------------------------------------------------------------------------\nXML 4 347 26 18 303 0\n(ULOC) 236\n-------------------------------------------------------------------------------\nBatch 1 182 35 0 147 30\n(ULOC) 128\n-------------------------------------------------------------------------------\nDockerfile 1 12 3 3 6 0\n(ULOC) 10\n-------------------------------------------------------------------------------\nMarkdown 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nProperties File 1 2 0 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nShell 1 310 26 54 230 34\n(ULOC) 212\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 25 1374 176 109 1089 73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 944\nDRYness % 0.69\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $29,544\nEstimated Schedule Effort (organic) 3.61 months\nEstimated People Required (organic) 0.73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 47027 bytes, 0.047 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:41:08Z", - "repo": { - "name": "github.com/measureauthoringtool/test-case-service", - "commit": "9fc1c0e0bc515e4e01ff0071e08ce5c0a0b5d883" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.7, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 8 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 3, - "reason": "Found 5/15 approved changesets -- score normalized to 3", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "49 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.7, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 8 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 3, + "reason": "Found 5/15 approved changesets -- score normalized to 3", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "49 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/virus-scan-service/virus-scan-service_data.json b/app/site/_data/measureauthoringtool/virus-scan-service/virus-scan-service_data.json index cad14a35d7..939ccb2642 100644 --- a/app/site/_data/measureauthoringtool/virus-scan-service/virus-scan-service_data.json +++ b/app/site/_data/measureauthoringtool/virus-scan-service/virus-scan-service_data.json @@ -1,677 +1,677 @@ { - "url": "https://github.com/measureauthoringtool/virus-scan-service", - "owner": "measureauthoringtool", - "name": "virus-scan-service", - "description": "This is a virus scanning microservice running on Node.js", - "commits_count": 400, - "issues_count": 1, - "open_issues_count": 0, - "closed_issues_count": 1, - "pull_requests_count": 538, - "open_pull_requests_count": 23, - "merged_pull_requests_count": 187, - "closed_pull_requests_count": 328, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 7, - "created_at": "2020-12-02T19:35:54Z", - "total_project_lines": 3443, - "average_project_lines": 49, - "total_project_comment_lines": 254, - "average_project_comment_lines": 4, - "total_project_blank_lines": 386, - "average_blank_lines": 6, - "predominant_langs": { - "TypeScript": 91954, - "Dockerfile": 629, - "JavaScript": 595 - }, - "commits_by_month": { - "2025/1": 12, - "2024/12": 1, - "2024/9": 6, - "2024/4": 3, - "2024/2": 5, - "2024/1": 3 + "url": "https://github.com/measureauthoringtool/virus-scan-service", + "owner": "measureauthoringtool", + "name": "virus-scan-service", + "description": "This is a virus scanning microservice running on Node.js", + "commits_count": 400, + "issues_count": 1, + "open_issues_count": 0, + "closed_issues_count": 1, + "pull_requests_count": 538, + "open_pull_requests_count": 23, + "merged_pull_requests_count": 187, + "closed_pull_requests_count": 328, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 7, + "created_at": "2020-12-02T19:35:54Z", + "total_project_lines": 3443, + "average_project_lines": 49, + "total_project_comment_lines": 254, + "average_project_comment_lines": 4, + "total_project_blank_lines": 386, + "average_blank_lines": 6, + "predominant_langs": { + "TypeScript": 91954, + "Dockerfile": 629, + "JavaScript": 595 + }, + "commits_by_month": { + "2025/1": 12, + "2024/12": 1, + "2024/9": 6, + "2024/4": 3, + "2024/2": 5, + "2024/1": 3 + }, + "average_issue_resolution_time": [ + [ + "virus-scan-service", + "55 days 06:02:57" + ] + ], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [ + [ + "2024-09-19T00:00:00.000Z", + 1 + ], + [ + "2024-09-23T00:00:00.000Z", + 1 + ] + ], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [ + [ + "@nestjs/axios", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/cli", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/common", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/config", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/core", + 0.0356164384, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/passport", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/platform-express", + 0.0356164384, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/schematics", + 2.5753424658, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/swagger", + 0.2109589041, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/terminus", + -0.4109589041, + "2024-12-17T15:49:44.000" + ], + [ + "@nestjs/testing", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/busboy", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/express", + 0.8849315068, + "2024-12-17T15:49:44.000" + ], + [ + "@types/express-serve-static-core", + 0.1643835616, + "2024-12-17T15:49:44.000" + ], + [ + "@types/jest", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/mock-req-res", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/node", + -0.002739726, + "2024-12-17T15:49:44.000" + ], + [ + "@types/passport", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/passport-strategy", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/sinon", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "@types/supertest", + 0.1369863014, + "2024-12-17T15:49:44.000" + ], + [ + "@typescript-eslint/eslint-plugin", + 1.4356164384, + "2024-12-17T15:49:44.000" + ], + [ + "@typescript-eslint/parser", + 1.4356164384, + "2024-12-17T15:49:44.000" + ], + [ + "busboy", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "clamscan", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "date-fns", + 1.3863013699, + "2024-12-17T15:49:44.000" + ], + [ + "eslint", + 0.2410958904, + "2024-12-17T15:49:44.000" + ], + [ + "eslint-config-prettier", + 0.3479452055, + "2024-12-17T15:49:44.000" + ], + [ + "eslint-plugin-prettier", + 2.0493150685, + "2024-12-17T15:49:44.000" + ], + [ + "helmet", + 3.4109589041, + "2024-12-17T15:49:44.000" + ], + [ + "jest", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "jest-extended", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "jest-sinon", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "joi", + 1.1534246575, + "2024-12-17T15:49:44.000" + ], + [ + "mock-req-res", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "nest-winston", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "passport", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "passport-headerapikey", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "prettier", + 1.6164383562, + "2024-12-17T15:49:44.000" + ], + [ + "reflect-metadata", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "rimraf", + 4.4191780822, + "2024-12-17T15:49:44.000" + ], + [ + "rxjs", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "sinon", + 1.8493150685, + "2024-12-17T15:49:44.000" + ], + [ + "supertest", + 0.2739726027, + "2024-12-17T15:49:44.000" + ], + [ + "swagger-ui-express", + 1.0739726027, + "2024-12-17T15:49:44.000" + ], + [ + "ts-jest", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "ts-loader", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "ts-node", + 0.0, + "2024-12-17T15:49:44.000" + ], + [ + "tsconfig-paths", + -0.7123287671, + "2024-12-17T15:49:44.000" + ], + [ + "typescript", + 1.8109589041, + "2024-12-17T15:49:44.000" + ], + [ + "virus-scan-service", + -1.0, + "2024-12-17T15:49:44.000" + ], + [ + "winston", + 1.4602739726, + "2024-12-17T15:49:44.000" + ] + ], + "cocomo": { + "languageSummary": [ + { + "Name": "TypeScript", + "Bytes": 91954, + "CodeBytes": 0, + "Lines": 2854, + "Code": 2295, + "Comment": 243, + "Blank": 316, + "Complexity": 53, + "Count": 54, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JSON", + "Bytes": 3714, + "CodeBytes": 0, + "Lines": 136, + "Code": 136, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 5, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 6591, + "CodeBytes": 0, + "Lines": 212, + "Code": 170, + "Comment": 8, + "Blank": 34, + "Complexity": 0, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Docker ignore", + "Bytes": 53, + "CodeBytes": 0, + "Lines": 7, + "Code": 7, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 629, + "CodeBytes": 0, + "Lines": 23, + "Code": 14, + "Comment": 3, + "Blank": 6, + "Complexity": 4, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "JavaScript", + "Bytes": 595, + "CodeBytes": 0, + "Lines": 23, + "Code": 23, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 488, + "CodeBytes": 0, + "Lines": 40, + "Code": 27, + "Comment": 0, + "Blank": 13, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Plain Text", + "Bytes": 34, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "TypeScript Typings", + "Bytes": 476, + "CodeBytes": 0, + "Lines": 26, + "Code": 21, + "Comment": 0, + "Blank": 5, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 72705.28586054734, + "estimatedScheduleMonths_low": 5.2604378812438775, + "estimatedPeople_low": 1.3464604393429218, + "estimatedCost_high": 226581.42511929752, + "estimatedScheduleMonths_high": 5.2604378812438775, + "estimatedPeople_high": 1.3464604393429218, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nTypeScript 54 2854 316 243 2295 53\n(ULOC) 1526\n-------------------------------------------------------------------------------\nJSON 5 136 0 0 136 0\n(ULOC) 123\n-------------------------------------------------------------------------------\nYAML 4 212 34 8 170 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nDocker ignore 1 7 0 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nDockerfile 1 23 6 3 14 4\n(ULOC) 18\n-------------------------------------------------------------------------------\nJavaScript 1 23 0 0 23 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 40 13 0 27 0\n(ULOC) 24\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 26 5 0 21 0\n(ULOC) 20\n───────────────────────────────────────────────────────────────────────────────\nTotal 70 3443 386 254 2803 57\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 1978\nDRYness % 0.57\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $79,725\nEstimated Schedule Effort (organic) 5.26 months\nEstimated People Required (organic) 1.35\n───────────────────────────────────────────────────────────────────────────────\nProcessed 111582 bytes, 0.112 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:37:15Z", + "repo": { + "name": "github.com/measureauthoringtool/virus-scan-service", + "commit": "5cb00b64b007b5721ecdccebeddf991a41d338b4" }, - "average_issue_resolution_time": [ - [ - "virus-scan-service", - "55 days 06:02:57" - ] - ], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [ - [ - "2024-09-19T00:00:00.000Z", - 1 - ], - [ - "2024-09-23T00:00:00.000Z", - 1 - ] - ], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [ - [ - "@nestjs/axios", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/cli", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/common", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/config", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/core", - 0.0356164384, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/passport", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/platform-express", - 0.0356164384, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/schematics", - 2.5753424658, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/swagger", - 0.2109589041, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/terminus", - -0.4109589041, - "2024-12-17T15:49:44.000" - ], - [ - "@nestjs/testing", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/busboy", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/express", - 0.8849315068, - "2024-12-17T15:49:44.000" - ], - [ - "@types/express-serve-static-core", - 0.1643835616, - "2024-12-17T15:49:44.000" - ], - [ - "@types/jest", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/mock-req-res", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/node", - -0.002739726, - "2024-12-17T15:49:44.000" - ], - [ - "@types/passport", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/passport-strategy", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/sinon", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "@types/supertest", - 0.1369863014, - "2024-12-17T15:49:44.000" - ], - [ - "@typescript-eslint/eslint-plugin", - 1.4356164384, - "2024-12-17T15:49:44.000" - ], - [ - "@typescript-eslint/parser", - 1.4356164384, - "2024-12-17T15:49:44.000" - ], - [ - "busboy", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "clamscan", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "date-fns", - 1.3863013699, - "2024-12-17T15:49:44.000" - ], - [ - "eslint", - 0.2410958904, - "2024-12-17T15:49:44.000" - ], - [ - "eslint-config-prettier", - 0.3479452055, - "2024-12-17T15:49:44.000" - ], - [ - "eslint-plugin-prettier", - 2.0493150685, - "2024-12-17T15:49:44.000" - ], - [ - "helmet", - 3.4109589041, - "2024-12-17T15:49:44.000" - ], - [ - "jest", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "jest-extended", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "jest-sinon", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "joi", - 1.1534246575, - "2024-12-17T15:49:44.000" - ], - [ - "mock-req-res", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "nest-winston", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "passport", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "passport-headerapikey", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "prettier", - 1.6164383562, - "2024-12-17T15:49:44.000" - ], - [ - "reflect-metadata", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "rimraf", - 4.4191780822, - "2024-12-17T15:49:44.000" - ], - [ - "rxjs", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "sinon", - 1.8493150685, - "2024-12-17T15:49:44.000" - ], - [ - "supertest", - 0.2739726027, - "2024-12-17T15:49:44.000" - ], - [ - "swagger-ui-express", - 1.0739726027, - "2024-12-17T15:49:44.000" - ], - [ - "ts-jest", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "ts-loader", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "ts-node", - 0.0, - "2024-12-17T15:49:44.000" - ], - [ - "tsconfig-paths", - -0.7123287671, - "2024-12-17T15:49:44.000" - ], - [ - "typescript", - 1.8109589041, - "2024-12-17T15:49:44.000" - ], - [ - "virus-scan-service", - -1.0, - "2024-12-17T15:49:44.000" - ], - [ - "winston", - 1.4602739726, - "2024-12-17T15:49:44.000" - ] - ], - "cocomo": { - "languageSummary": [ - { - "Name": "TypeScript", - "Bytes": 91954, - "CodeBytes": 0, - "Lines": 2854, - "Code": 2295, - "Comment": 243, - "Blank": 316, - "Complexity": 53, - "Count": 54, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JSON", - "Bytes": 3714, - "CodeBytes": 0, - "Lines": 136, - "Code": 136, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 5, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 6591, - "CodeBytes": 0, - "Lines": 212, - "Code": 170, - "Comment": 8, - "Blank": 34, - "Complexity": 0, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Docker ignore", - "Bytes": 53, - "CodeBytes": 0, - "Lines": 7, - "Code": 7, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 630, - "CodeBytes": 0, - "Lines": 23, - "Code": 14, - "Comment": 3, - "Blank": 6, - "Complexity": 4, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "JavaScript", - "Bytes": 595, - "CodeBytes": 0, - "Lines": 23, - "Code": 23, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 488, - "CodeBytes": 0, - "Lines": 40, - "Code": 27, - "Comment": 0, - "Blank": 13, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Plain Text", - "Bytes": 34, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "TypeScript Typings", - "Bytes": 476, - "CodeBytes": 0, - "Lines": 26, - "Code": 21, - "Comment": 0, - "Blank": 5, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 72705.28586054734, - "estimatedScheduleMonths_low": 5.2604378812438775, - "estimatedPeople_low": 1.3464604393429218, - "estimatedCost_high": 226581.42511929752, - "estimatedScheduleMonths_high": 5.2604378812438775, - "estimatedPeople_high": 1.3464604393429218, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTypeScript 54 2854 316 243 2295 53\n(ULOC) 1526\n-------------------------------------------------------------------------------\nJSON 5 136 0 0 136 0\n(ULOC) 123\n-------------------------------------------------------------------------------\nYAML 4 212 34 8 170 0\n(ULOC) 143\n-------------------------------------------------------------------------------\nDocker ignore 1 7 0 0 7 0\n(ULOC) 8\n-------------------------------------------------------------------------------\nDockerfile 1 23 6 3 14 4\n(ULOC) 18\n-------------------------------------------------------------------------------\nJavaScript 1 23 0 0 23 0\n(ULOC) 22\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nMarkdown 1 40 13 0 27 0\n(ULOC) 24\n-------------------------------------------------------------------------------\nPlain Text 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nTypeScript Typings 1 26 5 0 21 0\n(ULOC) 20\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 70 3443 386 254 2803 57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 1978\nDRYness % 0.57\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $79,725\nEstimated Schedule Effort (organic) 5.26 months\nEstimated People Required (organic) 1.35\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 111583 bytes, 0.112 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "ossf_scorecard": { - "date": "2025-01-19T14:37:15Z", - "repo": { - "name": "github.com/measureauthoringtool/virus-scan-service", - "commit": "5cb00b64b007b5721ecdccebeddf991a41d338b4" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 6.4, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 8, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 9, - "reason": "9 out of 10 merged PRs checked by a CI test -- score normalized to 9", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 8, - "reason": "Found 8/10 approved changesets -- score normalized to 8", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 10, - "reason": "project has 3 contributing companies or organizations -- score normalized to 10", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 10, - "reason": "update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 8, - "reason": "10 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 8", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 3, - "reason": "dependency not pinned by hash detected -- score normalized to 3", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 6.4, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 8, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 9, + "reason": "9 out of 10 merged PRs checked by a CI test -- score normalized to 9", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 8, + "reason": "Found 8/10 approved changesets -- score normalized to 8", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 10, + "reason": "project has 3 contributing companies or organizations -- score normalized to 10", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 10, + "reason": "update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 8, + "reason": "10 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 8", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 3, + "reason": "dependency not pinned by hash detected -- score normalized to 3", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/vsac-client-service/vsac-client-service_data.json b/app/site/_data/measureauthoringtool/vsac-client-service/vsac-client-service_data.json index 26ed046ef0..f8cec3c915 100644 --- a/app/site/_data/measureauthoringtool/vsac-client-service/vsac-client-service_data.json +++ b/app/site/_data/measureauthoringtool/vsac-client-service/vsac-client-service_data.json @@ -1,320 +1,320 @@ { - "url": "https://github.com/measureauthoringtool/vsac-client-service", - "owner": "measureauthoringtool", - "name": "vsac-client-service", - "description": null, - "commits_count": 24, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 36, - "open_pull_requests_count": 17, - "merged_pull_requests_count": 15, - "closed_pull_requests_count": 4, - "forks_count": 2, - "stargazers_count": 0, - "watchers_count": 4, - "created_at": "2022-01-03T20:54:25Z", - "total_project_lines": 1989, - "average_project_lines": 86, - "total_project_comment_lines": 465, - "average_project_comment_lines": 20, - "total_project_blank_lines": 235, - "average_blank_lines": 10, - "predominant_langs": { - "Java": 53764 + "url": "https://github.com/measureauthoringtool/vsac-client-service", + "owner": "measureauthoringtool", + "name": "vsac-client-service", + "description": null, + "commits_count": 24, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 36, + "open_pull_requests_count": 17, + "merged_pull_requests_count": 15, + "closed_pull_requests_count": 4, + "forks_count": 2, + "stargazers_count": 0, + "watchers_count": 4, + "created_at": "2022-01-03T20:54:25Z", + "total_project_lines": 1989, + "average_project_lines": 86, + "total_project_comment_lines": 465, + "average_project_comment_lines": 20, + "total_project_blank_lines": 235, + "average_blank_lines": 10, + "predominant_langs": { + "Java": 53764 + }, + "commits_by_month": { + "2022/1": 24 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 53764, + "CodeBytes": 0, + "Lines": 1707, + "Code": 1047, + "Comment": 441, + "Blank": 219, + "Complexity": 77, + "Count": 16, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1990, + "CodeBytes": 0, + "Lines": 80, + "Code": 70, + "Comment": 2, + "Blank": 8, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 7867, + "CodeBytes": 0, + "Lines": 191, + "Code": 162, + "Comment": 21, + "Blank": 8, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 22, + "CodeBytes": 0, + "Lines": 1, + "Code": 1, + "Comment": 0, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 465, + "CodeBytes": 0, + "Lines": 10, + "Code": 9, + "Comment": 1, + "Blank": 0, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 32160.83359146536, + "estimatedScheduleMonths_low": 3.8584350543208066, + "estimatedPeople_low": 0.8120179140558343, + "estimatedCost_high": 100227.2038673467, + "estimatedScheduleMonths_high": 3.8584350543208066, + "estimatedPeople_high": 0.8120179140558343, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 16 1707 219 441 1047 77\n(ULOC) 795\n-------------------------------------------------------------------------------\nYAML 3 80 8 2 70 0\n(ULOC) 59\n-------------------------------------------------------------------------------\nXML 2 191 8 21 162 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nMarkdown 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nProperties File 1 10 0 1 9 0\n(ULOC) 10\n───────────────────────────────────────────────────────────────────────────────\nTotal 23 1989 235 465 1289 77\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 995\nDRYness % 0.50\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $35,266\nEstimated Schedule Effort (organic) 3.86 months\nEstimated People Required (organic) 0.81\n───────────────────────────────────────────────────────────────────────────────\nProcessed 64108 bytes, 0.064 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:40:43Z", + "repo": { + "name": "github.com/measureauthoringtool/vsac-client-service", + "commit": "b83b0935251ea716032595ce7f022e36c3f24ead" }, - "commits_by_month": { - "2022/1": 24 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 53764, - "CodeBytes": 0, - "Lines": 1707, - "Code": 1047, - "Comment": 441, - "Blank": 219, - "Complexity": 77, - "Count": 16, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1990, - "CodeBytes": 0, - "Lines": 80, - "Code": 70, - "Comment": 2, - "Blank": 8, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 7867, - "CodeBytes": 0, - "Lines": 191, - "Code": 162, - "Comment": 21, - "Blank": 8, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 22, - "CodeBytes": 0, - "Lines": 1, - "Code": 1, - "Comment": 0, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 465, - "CodeBytes": 0, - "Lines": 10, - "Code": 9, - "Comment": 1, - "Blank": 0, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 32160.83359146536, - "estimatedScheduleMonths_low": 3.8584350543208066, - "estimatedPeople_low": 0.8120179140558343, - "estimatedCost_high": 100227.2038673467, - "estimatedScheduleMonths_high": 3.8584350543208066, - "estimatedPeople_high": 0.8120179140558343, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 16 1707 219 441 1047 77\n(ULOC) 795\n-------------------------------------------------------------------------------\nYAML 3 80 8 2 70 0\n(ULOC) 59\n-------------------------------------------------------------------------------\nXML 2 191 8 21 162 0\n(ULOC) 132\n-------------------------------------------------------------------------------\nMarkdown 1 1 0 0 1 0\n(ULOC) 2\n-------------------------------------------------------------------------------\nProperties File 1 10 0 1 9 0\n(ULOC) 10\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 23 1989 235 465 1289 77\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 995\nDRYness % 0.50\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $35,266\nEstimated Schedule Effort (organic) 3.86 months\nEstimated People Required (organic) 0.81\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 64108 bytes, 0.064 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:40:43Z", - "repo": { - "name": "github.com/measureauthoringtool/vsac-client-service", - "commit": "b83b0935251ea716032595ce7f022e36c3f24ead" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.0, - "checks": [ - { - "details": null, - "score": 10, - "reason": "no binaries found in the repo", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 3, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 13 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 0, - "reason": "Found 0/16 approved changesets -- score normalized to 0", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": 0, - "reason": "Project has not signed or included provenance with any releases.", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "20 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.0, + "checks": [ + { + "details": null, + "score": 10, + "reason": "no binaries found in the repo", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 3, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 13 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 0, + "reason": "Found 0/16 approved changesets -- score normalized to 0", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": 0, + "reason": "Project has not signed or included provenance with any releases.", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "20 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/vsac-groovy-framework/vsac-groovy-framework_data.json b/app/site/_data/measureauthoringtool/vsac-groovy-framework/vsac-groovy-framework_data.json index 59703233cb..6f6f1c5a3d 100644 --- a/app/site/_data/measureauthoringtool/vsac-groovy-framework/vsac-groovy-framework_data.json +++ b/app/site/_data/measureauthoringtool/vsac-groovy-framework/vsac-groovy-framework_data.json @@ -1,311 +1,311 @@ { - "url": "https://github.com/measureauthoringtool/vsac-groovy-framework", - "owner": "measureauthoringtool", - "name": "vsac-groovy-framework", - "description": "New repo for MAT framework for VSAC using Groovy.", - "commits_count": 10, - "issues_count": 1, - "open_issues_count": 1, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 13, - "created_at": "2014-09-29T19:46:30Z", - "total_project_lines": 705, - "average_project_lines": 101, - "total_project_comment_lines": 83, - "average_project_comment_lines": 12, - "total_project_blank_lines": 33, - "average_blank_lines": 5, - "predominant_langs": { - "Groovy": 19297 + "url": "https://github.com/measureauthoringtool/vsac-groovy-framework", + "owner": "measureauthoringtool", + "name": "vsac-groovy-framework", + "description": "New repo for MAT framework for VSAC using Groovy.", + "commits_count": 10, + "issues_count": 1, + "open_issues_count": 1, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 13, + "created_at": "2014-09-29T19:46:30Z", + "total_project_lines": 705, + "average_project_lines": 101, + "total_project_comment_lines": 83, + "average_project_comment_lines": 12, + "total_project_blank_lines": 33, + "average_blank_lines": 5, + "predominant_langs": { + "Groovy": 19297 + }, + "commits_by_month": { + "2020/9": 1, + "2020/6": 1, + "2020/3": 2, + "2019/12": 2, + "2015/5": 1, + "2015/3": 1, + "2014/9": 2 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", + "nadia_color": "ff0000", + "nadia_badge_name": "midsize", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Groovy", + "Bytes": 19297, + "CodeBytes": 0, + "Lines": 516, + "Code": 416, + "Comment": 83, + "Blank": 17, + "Complexity": 55, + "Count": 4, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 2112, + "CodeBytes": 0, + "Lines": 40, + "Code": 39, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 1225, + "CodeBytes": 0, + "Lines": 28, + "Code": 25, + "Comment": 0, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 14131.322024498946, + "estimatedScheduleMonths_low": 2.8229051311796964, + "estimatedPeople_low": 0.4876812046437448, + "estimatedCost_high": 44039.37135013945, + "estimatedScheduleMonths_high": 2.8229051311796964, + "estimatedPeople_high": 0.4876812046437448, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGroovy 4 516 17 83 416 55\n(ULOC) 235\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 40 1 0 39 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n───────────────────────────────────────────────────────────────────────────────\nTotal 7 705 33 83 589 55\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 407\nDRYness % 0.58\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $15,495\nEstimated Schedule Effort (organic) 2.82 months\nEstimated People Required (organic) 0.49\n───────────────────────────────────────────────────────────────────────────────\nProcessed 29682 bytes, 0.030 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:33:18Z", + "repo": { + "name": "github.com/measureauthoringtool/vsac-groovy-framework", + "commit": "72a4805b44affe7cc71bc9f3d3136c7b94874fad" }, - "commits_by_month": { - "2020/9": 1, - "2020/6": 1, - "2020/3": 2, - "2019/12": 2, - "2015/5": 1, - "2015/3": 1, - "2014/9": 2 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=midsize&color=ff0000", - "nadia_color": "ff0000", - "nadia_badge_name": "midsize", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Groovy", - "Bytes": 19297, - "CodeBytes": 0, - "Lines": 516, - "Code": 416, - "Comment": 83, - "Blank": 17, - "Complexity": 55, - "Count": 4, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 2112, - "CodeBytes": 0, - "Lines": 40, - "Code": 39, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 1225, - "CodeBytes": 0, - "Lines": 28, - "Code": 25, - "Comment": 0, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 14131.322024498946, - "estimatedScheduleMonths_low": 2.8229051311796964, - "estimatedPeople_low": 0.4876812046437448, - "estimatedCost_high": 44039.37135013945, - "estimatedScheduleMonths_high": 2.8229051311796964, - "estimatedPeople_high": 0.4876812046437448, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGroovy 4 516 17 83 416 55\n(ULOC) 235\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 40 1 0 39 0\n(ULOC) 39\n-------------------------------------------------------------------------------\nYAML 1 28 3 0 25 0\n(ULOC) 26\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 7 705 33 83 589 55\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 407\nDRYness % 0.58\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $15,495\nEstimated Schedule Effort (organic) 2.82 months\nEstimated People Required (organic) 0.49\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 29682 bytes, 0.030 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:33:18Z", - "repo": { - "name": "github.com/measureauthoringtool/vsac-groovy-framework", - "commit": "72a4805b44affe7cc71bc9f3d3136c7b94874fad" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.4, - "checks": [ - { - "details": null, - "score": 1, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 2, - "reason": "Found 2/7 approved changesets -- score normalized to 2", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.4, + "checks": [ + { + "details": null, + "score": 1, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 2, + "reason": "Found 2/7 approved changesets -- score normalized to 2", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/vsac/vsac_data.json b/app/site/_data/measureauthoringtool/vsac/vsac_data.json index 8fbc656bfb..0da1066995 100644 --- a/app/site/_data/measureauthoringtool/vsac/vsac_data.json +++ b/app/site/_data/measureauthoringtool/vsac/vsac_data.json @@ -1,291 +1,291 @@ { - "url": "https://github.com/measureauthoringtool/vsac", - "owner": "measureauthoringtool", - "name": "vsac", - "description": "Groovy Wrapper around the VSAC API for the Measure Authoring Tool", - "commits_count": 3, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 1, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 1, - "closed_pull_requests_count": 0, - "forks_count": 1, - "stargazers_count": 0, - "watchers_count": 12, - "created_at": "2019-09-06T16:21:12Z", - "total_project_lines": 783, - "average_project_lines": 157, - "total_project_comment_lines": 68, - "average_project_comment_lines": 14, - "total_project_blank_lines": 33, - "average_blank_lines": 7, - "predominant_langs": { - "Groovy": 22021 + "url": "https://github.com/measureauthoringtool/vsac", + "owner": "measureauthoringtool", + "name": "vsac", + "description": "Groovy Wrapper around the VSAC API for the Measure Authoring Tool", + "commits_count": 3, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 1, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 1, + "closed_pull_requests_count": 0, + "forks_count": 1, + "stargazers_count": 0, + "watchers_count": 12, + "created_at": "2019-09-06T16:21:12Z", + "total_project_lines": 783, + "average_project_lines": 157, + "total_project_comment_lines": 68, + "average_project_comment_lines": 14, + "total_project_blank_lines": 33, + "average_blank_lines": 7, + "predominant_langs": { + "Groovy": 22021 + }, + "commits_by_month": { + "2019/12": 2, + "2019/9": 1 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Groovy", + "Bytes": 22021, + "CodeBytes": 0, + "Lines": 622, + "Code": 534, + "Comment": 68, + "Blank": 20, + "Complexity": 72, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "License", + "Bytes": 7048, + "CodeBytes": 0, + "Lines": 121, + "Code": 109, + "Comment": 0, + "Blank": 12, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 2112, + "CodeBytes": 0, + "Lines": 40, + "Code": 39, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 16482.96464413056, + "estimatedScheduleMonths_low": 2.9929554057209056, + "estimatedPeople_low": 0.5365183608653543, + "estimatedCost_high": 51368.11684395985, + "estimatedScheduleMonths_high": 2.9929554057209056, + "estimatedPeople_high": 0.5365183608653543, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nGroovy 3 622 20 68 534 72\n(ULOC) 262\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 40 1 0 39 0\n(ULOC) 39\n───────────────────────────────────────────────────────────────────────────────\nTotal 5 783 33 68 682 72\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 409\nDRYness % 0.52\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $18,074\nEstimated Schedule Effort (organic) 2.99 months\nEstimated People Required (organic) 0.54\n───────────────────────────────────────────────────────────────────────────────\nProcessed 31181 bytes, 0.031 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:34:22Z", + "repo": { + "name": "github.com/measureauthoringtool/vsac", + "commit": "6d0faf3a7f1451fe156f23eebb21eb200498773e" }, - "commits_by_month": { - "2019/12": 2, - "2019/9": 1 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Groovy", - "Bytes": 22021, - "CodeBytes": 0, - "Lines": 622, - "Code": 534, - "Comment": 68, - "Blank": 20, - "Complexity": 72, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "License", - "Bytes": 7048, - "CodeBytes": 0, - "Lines": 121, - "Code": 109, - "Comment": 0, - "Blank": 12, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 2112, - "CodeBytes": 0, - "Lines": 40, - "Code": 39, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 16482.96464413056, - "estimatedScheduleMonths_low": 2.9929554057209056, - "estimatedPeople_low": 0.5365183608653543, - "estimatedCost_high": 51368.11684395985, - "estimatedScheduleMonths_high": 2.9929554057209056, - "estimatedPeople_high": 0.5365183608653543, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nGroovy 3 622 20 68 534 72\n(ULOC) 262\n-------------------------------------------------------------------------------\nLicense 1 121 12 0 109 0\n(ULOC) 110\n-------------------------------------------------------------------------------\nXML 1 40 1 0 39 0\n(ULOC) 39\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 5 783 33 68 682 72\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 409\nDRYness % 0.52\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $18,074\nEstimated Schedule Effort (organic) 2.99 months\nEstimated People Required (organic) 0.54\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 31181 bytes, 0.031 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:34:22Z", - "repo": { - "name": "github.com/measureauthoringtool/vsac", - "commit": "6d0faf3a7f1451fe156f23eebb21eb200498773e" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.0, - "checks": [ - { - "details": null, - "score": 0, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 0, - "reason": "branch protection not enabled on development/release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 1/2 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": -1, - "reason": "no workflows found", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 10, - "reason": "license file detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": -1, - "reason": "no dependencies found", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": -1, - "reason": "No tokens found", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 10, - "reason": "0 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.0, + "checks": [ + { + "details": null, + "score": 0, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 0, + "reason": "branch protection not enabled on development/release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 1 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 1/2 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": -1, + "reason": "no workflows found", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 10, + "reason": "license file detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": -1, + "reason": "no dependencies found", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": -1, + "reason": "No tokens found", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 10, + "reason": "0 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +} diff --git a/app/site/_data/measureauthoringtool/vsacterminologyserviceinterface/vsacterminologyserviceinterface_data.json b/app/site/_data/measureauthoringtool/vsacterminologyserviceinterface/vsacterminologyserviceinterface_data.json index a73bb8da1b..3051594d0c 100644 --- a/app/site/_data/measureauthoringtool/vsacterminologyserviceinterface/vsacterminologyserviceinterface_data.json +++ b/app/site/_data/measureauthoringtool/vsacterminologyserviceinterface/vsacterminologyserviceinterface_data.json @@ -1,366 +1,366 @@ { - "url": "https://github.com/measureauthoringtool/vsacterminologyserviceinterface", - "owner": "measureauthoringtool", - "name": "vsacterminologyserviceinterface", - "description": null, - "commits_count": 11, - "issues_count": 0, - "open_issues_count": 0, - "closed_issues_count": 0, - "pull_requests_count": 3, - "open_pull_requests_count": 0, - "merged_pull_requests_count": 3, - "closed_pull_requests_count": 0, - "forks_count": 0, - "stargazers_count": 0, - "watchers_count": 8, - "created_at": "2021-08-11T19:22:37Z", - "total_project_lines": 1047, - "average_project_lines": 70, - "total_project_comment_lines": 106, - "average_project_comment_lines": 7, - "total_project_blank_lines": 136, - "average_blank_lines": 9, - "predominant_langs": { - "Java": 658, - "Dockerfile": 202 + "url": "https://github.com/measureauthoringtool/vsacterminologyserviceinterface", + "owner": "measureauthoringtool", + "name": "vsacterminologyserviceinterface", + "description": null, + "commits_count": 11, + "issues_count": 0, + "open_issues_count": 0, + "closed_issues_count": 0, + "pull_requests_count": 3, + "open_pull_requests_count": 0, + "merged_pull_requests_count": 3, + "closed_pull_requests_count": 0, + "forks_count": 0, + "stargazers_count": 0, + "watchers_count": 8, + "created_at": "2021-08-11T19:22:37Z", + "total_project_lines": 1047, + "average_project_lines": 70, + "total_project_comment_lines": 106, + "average_project_comment_lines": 7, + "total_project_blank_lines": 136, + "average_blank_lines": 9, + "predominant_langs": { + "Java": 658, + "Dockerfile": 202 + }, + "commits_by_month": { + "2021/8": 11 + }, + "average_issue_resolution_time": [], + "new_commit_contributors_by_day_over_last_month": [], + "new_commit_contributors_by_day_over_last_six_months": [], + "new_issues_by_day_over_last_month": [], + "new_issues_by_day_over_last_six_months": [], + "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", + "nadia_color": "0000ff", + "nadia_badge_name": "toy", + "repo_dependency_libyear_list": [], + "cocomo": { + "languageSummary": [ + { + "Name": "Java", + "Bytes": 5600, + "CodeBytes": 0, + "Lines": 140, + "Code": 93, + "Comment": 31, + "Blank": 16, + "Complexity": 9, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "XML", + "Bytes": 10460, + "CodeBytes": 0, + "Lines": 292, + "Code": 251, + "Comment": 17, + "Blank": 24, + "Complexity": 0, + "Count": 3, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Markdown", + "Bytes": 2479, + "CodeBytes": 0, + "Lines": 69, + "Code": 50, + "Comment": 0, + "Blank": 19, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Properties File", + "Bytes": 219, + "CodeBytes": 0, + "Lines": 3, + "Code": 2, + "Comment": 0, + "Blank": 1, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "YAML", + "Bytes": 751, + "CodeBytes": 0, + "Lines": 42, + "Code": 28, + "Comment": 2, + "Blank": 12, + "Complexity": 0, + "Count": 2, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Batch", + "Bytes": 6608, + "CodeBytes": 0, + "Lines": 182, + "Code": 147, + "Comment": 0, + "Blank": 35, + "Complexity": 30, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Dockerfile", + "Bytes": 202, + "CodeBytes": 0, + "Lines": 9, + "Code": 4, + "Comment": 2, + "Blank": 3, + "Complexity": 0, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + }, + { + "Name": "Shell", + "Bytes": 10070, + "CodeBytes": 0, + "Lines": 310, + "Code": 230, + "Comment": 54, + "Blank": 26, + "Complexity": 34, + "Count": 1, + "WeightedComplexity": 0, + "Files": [], + "LineLength": null, + "ULOC": 0 + } + ], + "estimatedCost_low": 19617.669246617694, + "estimatedScheduleMonths_low": 3.1976640678507016, + "estimatedPeople_low": 0.5976736087920824, + "estimatedCost_high": 61137.22548238654, + "estimatedScheduleMonths_high": 3.1976640678507016, + "estimatedPeople_high": 0.5976736087920824, + "dryness_table": "───────────────────────────────────────────────────────────────────────────────\nLanguage Files Lines Blanks Comments Code Complexity\n───────────────────────────────────────────────────────────────────────────────\nJava 3 140 16 31 93 9\n(ULOC) 108\n-------------------------------------------------------------------------------\nXML 3 292 24 17 251 0\n(ULOC) 187\n-------------------------------------------------------------------------------\nMarkdown 2 69 19 0 50 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nProperties File 2 3 1 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nYAML 2 42 12 2 28 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nBatch 1 182 35 0 147 30\n(ULOC) 128\n-------------------------------------------------------------------------------\nDockerfile 1 9 3 2 4 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nShell 1 310 26 54 230 34\n(ULOC) 212\n───────────────────────────────────────────────────────────────────────────────\nTotal 15 1047 136 106 805 73\n───────────────────────────────────────────────────────────────────────────────\nUnique Lines of Code (ULOC) 713\nDRYness % 0.68\n───────────────────────────────────────────────────────────────────────────────\nEstimated Cost to Develop (organic) $21,512\nEstimated Schedule Effort (organic) 3.20 months\nEstimated People Required (organic) 0.60\n───────────────────────────────────────────────────────────────────────────────\nProcessed 36389 bytes, 0.036 megabytes (SI)\n───────────────────────────────────────────────────────────────────────────────\n" + }, + "ossf_scorecard": { + "date": "2025-01-19T14:37:57Z", + "repo": { + "name": "github.com/measureauthoringtool/vsacterminologyserviceinterface", + "commit": "02009bb3e35a5490fa6b22bc6d9eab6f57466cf7" }, - "commits_by_month": { - "2021/8": 11 + "scorecard": { + "version": "v5.0.0-135-gd28512b6", + "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" }, - "average_issue_resolution_time": [], - "new_commit_contributors_by_day_over_last_month": [], - "new_commit_contributors_by_day_over_last_six_months": [], - "new_issues_by_day_over_last_month": [], - "new_issues_by_day_over_last_six_months": [], - "nadia_shields_badge_url": "https://img.shields.io/static/v1?label=project+type&message=toy&color=0000ff", - "nadia_color": "0000ff", - "nadia_badge_name": "toy", - "repo_dependency_libyear_list": [], - "cocomo": { - "languageSummary": [ - { - "Name": "Java", - "Bytes": 5600, - "CodeBytes": 0, - "Lines": 140, - "Code": 93, - "Comment": 31, - "Blank": 16, - "Complexity": 9, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "XML", - "Bytes": 10460, - "CodeBytes": 0, - "Lines": 292, - "Code": 251, - "Comment": 17, - "Blank": 24, - "Complexity": 0, - "Count": 3, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Markdown", - "Bytes": 2479, - "CodeBytes": 0, - "Lines": 69, - "Code": 50, - "Comment": 0, - "Blank": 19, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Properties File", - "Bytes": 219, - "CodeBytes": 0, - "Lines": 3, - "Code": 2, - "Comment": 0, - "Blank": 1, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "YAML", - "Bytes": 751, - "CodeBytes": 0, - "Lines": 42, - "Code": 28, - "Comment": 2, - "Blank": 12, - "Complexity": 0, - "Count": 2, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Batch", - "Bytes": 6608, - "CodeBytes": 0, - "Lines": 182, - "Code": 147, - "Comment": 0, - "Blank": 35, - "Complexity": 30, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Dockerfile", - "Bytes": 202, - "CodeBytes": 0, - "Lines": 9, - "Code": 4, - "Comment": 2, - "Blank": 3, - "Complexity": 0, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - }, - { - "Name": "Shell", - "Bytes": 10070, - "CodeBytes": 0, - "Lines": 310, - "Code": 230, - "Comment": 54, - "Blank": 26, - "Complexity": 34, - "Count": 1, - "WeightedComplexity": 0, - "Files": [], - "LineLength": null, - "ULOC": 0 - } - ], - "estimatedCost_low": 19617.669246617694, - "estimatedScheduleMonths_low": 3.1976640678507016, - "estimatedPeople_low": 0.5976736087920824, - "estimatedCost_high": 61137.22548238654, - "estimatedScheduleMonths_high": 3.1976640678507016, - "estimatedPeople_high": 0.5976736087920824, - "dryness_table": "\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nLanguage Files Lines Blanks Comments Code Complexity\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nJava 3 140 16 31 93 9\n(ULOC) 108\n-------------------------------------------------------------------------------\nXML 3 292 24 17 251 0\n(ULOC) 187\n-------------------------------------------------------------------------------\nMarkdown 2 69 19 0 50 0\n(ULOC) 44\n-------------------------------------------------------------------------------\nProperties File 2 3 1 0 2 0\n(ULOC) 3\n-------------------------------------------------------------------------------\nYAML 2 42 12 2 28 0\n(ULOC) 32\n-------------------------------------------------------------------------------\nBatch 1 182 35 0 147 30\n(ULOC) 128\n-------------------------------------------------------------------------------\nDockerfile 1 9 3 2 4 0\n(ULOC) 7\n-------------------------------------------------------------------------------\nShell 1 310 26 54 230 34\n(ULOC) 212\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nTotal 15 1047 136 106 805 73\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nUnique Lines of Code (ULOC) 713\nDRYness % 0.68\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nEstimated Cost to Develop (organic) $21,512\nEstimated Schedule Effort (organic) 3.20 months\nEstimated People Required (organic) 0.60\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\nProcessed 36389 bytes, 0.036 megabytes (SI)\n\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n" - }, - "ossf_scorecard": { - "date": "2025-01-19T14:37:57Z", - "repo": { - "name": "github.com/measureauthoringtool/vsacterminologyserviceinterface", - "commit": "02009bb3e35a5490fa6b22bc6d9eab6f57466cf7" - }, - "scorecard": { - "version": "v5.0.0-135-gd28512b6", - "commit": "d28512b65877e042871b0df77f2204c5f65fa76b" - }, - "score": 2.7, - "checks": [ - { - "details": null, - "score": 9, - "reason": "binaries present in source code", - "name": "Binary-Artifacts", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", - "short": "Determines if the project has generated executable (binary) artifacts in the source repository." - } - }, - { - "details": null, - "score": 6, - "reason": "branch protection is not maximal on development and all release branches", - "name": "Branch-Protection", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", - "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." - } - }, - { - "details": null, - "score": 0, - "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", - "name": "CI-Tests", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", - "short": "Determines if the project runs tests before pull requests are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "no effort to earn an OpenSSF best practices badge detected", - "name": "CII-Best-Practices", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", - "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." - } - }, - { - "details": null, - "score": 5, - "reason": "Found 3/6 approved changesets -- score normalized to 5", - "name": "Code-Review", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", - "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." - } - }, - { - "details": null, - "score": 0, - "reason": "project has 0 contributing companies or organizations -- score normalized to 0", - "name": "Contributors", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", - "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." - } - }, - { - "details": null, - "score": 10, - "reason": "no dangerous workflow patterns detected", - "name": "Dangerous-Workflow", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", - "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." - } - }, - { - "details": null, - "score": 0, - "reason": "no update tool detected", - "name": "Dependency-Update-Tool", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", - "short": "Determines if the project uses a dependency update tool." - } - }, - { - "details": null, - "score": 0, - "reason": "project is not fuzzed", - "name": "Fuzzing", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", - "short": "Determines if the project uses fuzzing." - } - }, - { - "details": null, - "score": 0, - "reason": "license file not detected", - "name": "License", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", - "short": "Determines if the project has defined a license." - } - }, - { - "details": null, - "score": 0, - "reason": "project is archived", - "name": "Maintained", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", - "short": "Determines if the project is \"actively maintained\"." - } - }, - { - "details": null, - "score": -1, - "reason": "packaging workflow not detected", - "name": "Packaging", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", - "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." - } - }, - { - "details": null, - "score": 0, - "reason": "dependency not pinned by hash detected -- score normalized to 0", - "name": "Pinned-Dependencies", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", - "short": "Determines if the project has declared and pinned the dependencies of its build process." - } - }, - { - "details": null, - "score": 0, - "reason": "SAST tool is not run on all commits -- score normalized to 0", - "name": "SAST", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", - "short": "Determines if the project uses static code analysis." - } - }, - { - "details": null, - "score": 0, - "reason": "security policy file not detected", - "name": "Security-Policy", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", - "short": "Determines if the project has published a security policy." - } - }, - { - "details": null, - "score": -1, - "reason": "no releases found", - "name": "Signed-Releases", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", - "short": "Determines if the project cryptographically signs release artifacts." - } - }, - { - "details": null, - "score": 0, - "reason": "detected GitHub workflow tokens with excessive permissions", - "name": "Token-Permissions", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", - "short": "Determines if the project's workflows follow the principle of least privilege." - } - }, - { - "details": null, - "score": 0, - "reason": "57 existing vulnerabilities detected", - "name": "Vulnerabilities", - "documentation": { - "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", - "short": "Determines if the project has open, known unfixed vulnerabilities." - } - } - ], - "metadata": null - } -} \ No newline at end of file + "score": 2.7, + "checks": [ + { + "details": null, + "score": 9, + "reason": "binaries present in source code", + "name": "Binary-Artifacts", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#binary-artifacts", + "short": "Determines if the project has generated executable (binary) artifacts in the source repository." + } + }, + { + "details": null, + "score": 6, + "reason": "branch protection is not maximal on development and all release branches", + "name": "Branch-Protection", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#branch-protection", + "short": "Determines if the default and release branches are protected with GitHub's branch protection settings." + } + }, + { + "details": null, + "score": 0, + "reason": "0 out of 3 merged PRs checked by a CI test -- score normalized to 0", + "name": "CI-Tests", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#ci-tests", + "short": "Determines if the project runs tests before pull requests are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "no effort to earn an OpenSSF best practices badge detected", + "name": "CII-Best-Practices", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#cii-best-practices", + "short": "Determines if the project has an OpenSSF (formerly CII) Best Practices Badge." + } + }, + { + "details": null, + "score": 5, + "reason": "Found 3/6 approved changesets -- score normalized to 5", + "name": "Code-Review", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#code-review", + "short": "Determines if the project requires human code review before pull requests (aka merge requests) are merged." + } + }, + { + "details": null, + "score": 0, + "reason": "project has 0 contributing companies or organizations -- score normalized to 0", + "name": "Contributors", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#contributors", + "short": "Determines if the project has a set of contributors from multiple organizations (e.g., companies)." + } + }, + { + "details": null, + "score": 10, + "reason": "no dangerous workflow patterns detected", + "name": "Dangerous-Workflow", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dangerous-workflow", + "short": "Determines if the project's GitHub Action workflows avoid dangerous patterns." + } + }, + { + "details": null, + "score": 0, + "reason": "no update tool detected", + "name": "Dependency-Update-Tool", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#dependency-update-tool", + "short": "Determines if the project uses a dependency update tool." + } + }, + { + "details": null, + "score": 0, + "reason": "project is not fuzzed", + "name": "Fuzzing", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#fuzzing", + "short": "Determines if the project uses fuzzing." + } + }, + { + "details": null, + "score": 0, + "reason": "license file not detected", + "name": "License", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#license", + "short": "Determines if the project has defined a license." + } + }, + { + "details": null, + "score": 0, + "reason": "project is archived", + "name": "Maintained", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#maintained", + "short": "Determines if the project is \"actively maintained\"." + } + }, + { + "details": null, + "score": -1, + "reason": "packaging workflow not detected", + "name": "Packaging", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#packaging", + "short": "Determines if the project is published as a package that others can easily download, install, easily update, and uninstall." + } + }, + { + "details": null, + "score": 0, + "reason": "dependency not pinned by hash detected -- score normalized to 0", + "name": "Pinned-Dependencies", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#pinned-dependencies", + "short": "Determines if the project has declared and pinned the dependencies of its build process." + } + }, + { + "details": null, + "score": 0, + "reason": "SAST tool is not run on all commits -- score normalized to 0", + "name": "SAST", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#sast", + "short": "Determines if the project uses static code analysis." + } + }, + { + "details": null, + "score": 0, + "reason": "security policy file not detected", + "name": "Security-Policy", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#security-policy", + "short": "Determines if the project has published a security policy." + } + }, + { + "details": null, + "score": -1, + "reason": "no releases found", + "name": "Signed-Releases", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#signed-releases", + "short": "Determines if the project cryptographically signs release artifacts." + } + }, + { + "details": null, + "score": 0, + "reason": "detected GitHub workflow tokens with excessive permissions", + "name": "Token-Permissions", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#token-permissions", + "short": "Determines if the project's workflows follow the principle of least privilege." + } + }, + { + "details": null, + "score": 0, + "reason": "57 existing vulnerabilities detected", + "name": "Vulnerabilities", + "documentation": { + "url": "https://github.com/ossf/scorecard/blob/d28512b65877e042871b0df77f2204c5f65fa76b/docs/checks.md#vulnerabilities", + "short": "Determines if the project has open, known unfixed vulnerabilities." + } + } + ], + "metadata": null + } +}