Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Source risk assessment table content is mixed up #396

Closed
pohlarized opened this issue May 24, 2023 · 0 comments
Closed

Source risk assessment table content is mixed up #396

pohlarized opened this issue May 24, 2023 · 0 comments

Comments

@pohlarized
Copy link
Contributor

On the scorecards home page, the table labeled "Source risk assessment" contains the following two rows:

| [Branch Protection](https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection)  | Does the project avoid dangerous coding patterns in GitHub Actions?                                                                                   | High     |
| [Dangerous Workflow](https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection) | Does the project use [Branch Protection](https://docs.github.com/en/free-pro-team@latest/github/administering-a-repository/about-protected-branches)? | Critical |

These have two issues.

  1. The link for "Dangerous Workflow" actually links to the "Branch Protection" docs
  2. The descriptions of "Dangerous Workflow" and "Branch Protection" are switched up
pohlarized added a commit to pohlarized/scorecard-webapp that referenced this issue May 24, 2023
@pohlarized
Fix content for "Source risk assessment" table (ossf#396)
82436b8
pohlarized added a commit to pohlarized/scorecard-webapp that referenced this issue May 25, 2023
@pohlarized
Fix content for "Source risk assessment" table (ossf#396)
fc941bd 
Signed-off-by: pohlarized <24480574+pohlarized@users.noreply.github.com>
pohlarized added a commit to pohlarized/scorecard-webapp that referenced this issue May 25, 2023
@pohlarized
Fix content for "Source risk assessment" table (ossf#396)
3124188 
Signed-off-by: pohlarized <24480574+pohlarized@users.noreply.github.com>
spencerschrock pushed a commit that referenced this issue May 25, 2023
@pohlarized
Fix content for "Source risk assessment" table (#396) (#397)
8e5eacf 
Signed-off-by: pohlarized <24480574+pohlarized@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@spencerschrock @pohlarized