Skip to content
/ .allstar Public

kommit's OSPO policies for adherence to security best practices

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kommitters/.allstar

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

artwork

artwork

 
 

CHANGELOG.md

CHANGELOG.md

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

SECURITY.md

SECURITY.md

 
 

VERSION

VERSION

 
 

allstar.yaml

allstar.yaml

 
 

binary_artifacts.yaml

binary_artifacts.yaml

 
 

branch_protection.yaml

branch_protection.yaml

 
 

outside.yaml

outside.yaml

 
 

security.yaml

security.yaml

 
 

Repository files navigation

kommitters Security Policies

 

This repo establishes the kommit's OSPO security policies.

Allstar is a security-policy GitHub app that continuously monitors organizations for adherence to security best practices. Security violations are reported as issues in the affected repositories.

This README.md file describes in detail policies applied to this organization.

To configure Allstar in your organization, fork this repository and modify the .yaml files to match your security policies. Visit the Allstar installation page for more information.

Policy configuration

The application is running on all the repos of this organization with the OptOutStrategy strategy with the following configurations:

Branch Protection

Name of setting Setting Description
Branches enforced Yes Enforce upstream branches like main develop v*.*v0.1.
Approval required Yes If required pull request reviews are enabled on the branch, you won't be able to merge changes into the branch until all requirements in the pull request review policy have been met.
Approvals required 1 Approval reviews required to merge changes into a branch.
Block Force Push Yes You won't be able to delete or force push to the branch.
Status check required Yes If required status checks are enabled on the branch, you won't be able to merge changes into the branch until all of the required CI tests pass.
Signed commits required Yes If required commit signing is enabled on a branch, you won't be able to push any commits to the branch that are not signed and verified.

Action: issue Active repositories: public only

Binary artifacts

  • No binary artifacts allowed.

Action: issue Active repositories: public only

Outside collaborators

  • Default push access not allowed, only organization members can push directly to the organization repositories.
  • Default admin access not allowed.

Action: issue Active repositories: public only

Security

  • SECURITY.md not empty file required.

Action: issue Active repositories: public only

Code of conduct

We welcome everyone to contribute. Make sure you have read the CODE_OF_CONDUCT before.

Contributing

For information on how to contribute, please refer to our CONTRIBUTING guide.

Changelog

Policies changes are listed in the CHANGELOG file.

License

This repo is licensed under an MIT license. See LICENSE for details.

Acknowledgements

The OpenSSF organization, and the Securing Critical Projects Working Group.

About

kommit's OSPO policies for adherence to security best practices

Topics

security ospo security-policies

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Latest
Jul 25, 2022

Contributors 2

  •  
  •