"Fossies" - the Fresh Open Source Software Archive  

Source code changes report for "scorecard" between the packages
scorecard-3.1.1.tar.gz and scorecard-3.2.1.tar.gz

About: Scorecard determines security health metrics for open source software projects.

Summary:

The "scorecard" source code changed by about 0.7% and now consists of 371 regular files (+25) and 61 directories (+6).

Related Informations:

None found by Fossies.

Changes In Files (According File Type):

File TypeTotalAddedRemovedChanged
Go program 171 23 6 85
Shell program 17 0 1 0
JavaScript file 1 0 0 0
JSON file 22 1 0 7
Makefile 1 0 0 1
SGML document 2 0 0 1
CSV file 12 0 1 0
Git file 1 0 0 1
Protocol Buffer file 4 0 1 1
YAML file 97 8 1 12
Image file 2 0 0 0
Vector Image file 2 0 0 0
Directory 65 10 4 0
Archive 1 0 0 0
Information file 1 0 0 1
License 3 1 1 0
Readme file 3 0 0 1
Text file 42 4 1 8
Other 1 0 0 0
Total Files4484716118



Go Programs (114 of 171):

NameStatusDeltaVisual Diff
checker/check_request.go changed 21.6% diff
checks/binary_artifact.go changed 70.0% diff
checks/branch_protection.go changed 100.0% diff
checks/branch_protection_test.go changed 71.6% diff
checks/ci_tests.go changed 18.5% diff
checks/cii_best_practices.go changed 72.6% diff
checks/cii_best_practices_test.go added
checks/dangerous_workflow.go added
checks/dangerous_workflow_test.go added
checks/dependency_update_tool.go changed 16.4% diff
checks/evaluation/binary_artifacts.go added
checks/file_utils.go removed
checks/fileparser/errors.go added
checks/fileparser/github_workflow.go added
checks/fileparser/github_workflow_test.go added
checks/fileparser/listing.go added
checks/fuzzing.go changed 49.9% diff
checks/maintained.go changed 58.2% diff
checks/permissions.go changed 16.6% diff
checks/permissions_test.go changed 20.8% diff
checks/pinned_dependencies.go changed 35.6% diff
checks/pinned_dependencies_test.go changed 18.1% diff
checks/raw/binary_artifact.go added
checks/sast.go changed 3.4% diff
checks/security_policy.go changed 24.8% diff
checks/shell_download_validate_test.go changed 4.6% diff
checks/signed_releases.go changed 2.7% diff
clients/branch.go added
clients/branch.pb.go removed
clients/cii_blob_client.go added
clients/cii_client.go added
clients/cii_http_client.go added
clients/cii_response.go added
clients/githubrepo/branches.go changed 62.7% diff
clients/githubrepo/client.go changed 10.8% diff
clients/githubrepo/copy.go added
clients/githubrepo/graphql.go changed 17.3% diff
clients/githubrepo/repo.go changed 7.2% diff
clients/githubrepo/search.go changed 16.0% diff
clients/githubrepo/search_test.go changed 11.9% diff
clients/githubrepo/tarball.go changed 5.1% diff
clients/githubrepo/tarball_test.go changed 2.6% diff
clients/issue.go added
clients/localdir/client.go changed 87.0% diff
clients/localdir/client_test.go added
clients/localdir/repo.go changed 55.9% diff
clients/mockclients/cii_client.go added
clients/mockclients/repo_client.go added
clients/mockrepo/client.go removed
clients/mockrepo/repo.go moved 11.4% diff
clients/mockclients/repo.go
clients/repo.go changed 7.2% diff
clients/repo_client.go changed 13.2% diff
cmd/root.go changed 37.3% diff
cmd/serve.go changed 17.3% diff
cron/bq/main.go changed 9.1% diff
cron/cii/main.go added
cron/config/config.go changed 11.4% diff
cron/config/config_test.go changed 2.8% diff
cron/controller/main.go changed 15.1% diff
cron/data/add/main.go changed 27.1% diff
cron/data/add/main_test.go changed 54.3% diff
cron/data/blob_test.go changed 2.7% diff
cron/data/format.go changed 57.1% diff
cron/data/format_test.go changed 55.1% diff
cron/data/iterator.go changed 29.8% diff
cron/data/iterator_test.go changed 40.0% diff
cron/data/request.pb.go changed 65.2% diff
cron/data/update/dependency.go changed 15.3% diff
cron/data/validate/main.go changed 8.5% diff
cron/data/writer.go changed 43.2% diff
cron/data/writer_test.go changed 49.3% diff
cron/format/json_test.go changed 0.5% diff
cron/format/mock_doc.go changed 12.8% diff
cron/pubsub/publisher_test.go changed 3.1% diff
cron/pubsub/subscriber_gocloud_test.go changed 5.3% diff
cron/shuffle/main.go added
cron/webhook/main.go changed 3.3% diff
cron/worker/main.go changed 16.7% diff
docs/checks/doc.go changed 3.2% diff
docs/checks/impl.go changed 7.4% diff
docs/checks/internal/reader.go changed 2.5% diff
docs/checks/internal/validate/main.go changed 100.0% diff
e2e/binary_artifacts_test.go changed 5.7% diff
e2e/branch_protection_test.go changed 46.1% diff
e2e/ci_tests_test.go changed 14.7% diff
e2e/cii_best_practices_test.go changed 7.0% diff
e2e/code_review_test.go changed 14.0% diff
e2e/contributors_test.go changed 34.0% diff
e2e/dangerous_workflow_test.go added
e2e/dependency_update_tool_test.go changed 3.1% diff
e2e/executable_test.go changed 2.7% diff
e2e/fuzzing_test.go changed 100.0% diff
e2e/maintained_test.go changed 2.5% diff
e2e/packaging_test.go changed 11.2% diff
e2e/permissions_test.go changed 3.5% diff
e2e/pinned_dependencies_test.go changed 11.7% diff
e2e/sast_test.go changed 10.8% diff
e2e/security_policy_test.go changed 3.2% diff
e2e/signedreleases_test.go changed 2.4% diff
e2e/vulnerabilities_test.go changed 3.1% diff
pkg/json_test.go changed 0.5% diff
pkg/mock_doc.go changed 12.8% diff
pkg/sarif.go changed 29.6% diff
pkg/sarif_test.go changed 28.3% diff
pkg/scorecard.go changed 52.9% diff
policy/policy_test.go changed 2.0% diff
repos/repo_uri.go removed
repos/repo_uri_test.go removed
stats/measures.go changed 14.2% diff
stats/tags.go changed 7.7% diff
stats/views.go changed 20.2% diff
tools/tools.go changed 9.0% diff
utests/utlib.go changed 3.0% diff

Shell Programs (1 of 17):

NameStatusDeltaVisual Diff
actions/entrypoint.sh removed

JSON Files (8 of 22):

NameStatusDeltaVisual Diff
pkg/testdata/check1.sarif changed 4.1% diff
pkg/testdata/check2.sarif changed 4.3% diff
pkg/testdata/check3.sarif changed 1.6% diff
pkg/testdata/check4.sarif changed 1.6% diff
pkg/testdata/check5.sarif changed 100.0% diff
pkg/testdata/check6.sarif changed 4.4% diff
pkg/testdata/check7.sarif changed 100.0% diff
pkg/testdata/check8.sarif added

Makefiles (all 1):

NameStatusDeltaVisual Diff
Makefile changed 48.9% diff

SGML Documents (1 of 2):

NameStatusDeltaVisual Diff
docs/checks.md changed 7.9% diff

CSV Files (1 of 12):

NameStatusDeltaVisual Diff
cron/data/projects.csv changed skipped
cron/data/projects.release.csv removed

Git Files (all 1):

NameStatusDeltaVisual Diff
.gitignore changed 7.1% diff

Protocol Buffer Files (2 of 4):

NameStatusDeltaVisual Diff
clients/branch.proto removed
cron/data/request.proto changed 13.2% diff

YAML Files (21 of 97):

NameStatusDeltaVisual Diff
.github/workflows/codeql-analysis.yml changed 2.8% diff
.github/workflows/goreleaser.yaml changed 4.3% diff
.github/workflows/integration.yml changed 73.4% diff
.github/workflows/main.yml changed 12.4% diff
.github/workflows/scorecard-analysis.yml changed 34.0% diff
.golangci.yml changed 3.5% diff
.goreleaser.yml changed 29.5% diff
actions/policies/template.yml removed
checks/testdata/github-workflow-dangerous-pattern-default-checkout.yml added
checks/testdata/github-workflow-dangerous-pattern-safe-trigger.yml added
checks/testdata/github-workflow-dangerous-pattern-trusted-checkout.yml added
checks/testdata/github-workflow-dangerous-pattern-untrusted-checkout.yml added
checks/testdata/github-workflow-multiple-unpinned-uses.yaml changed 8.9% diff
checks/testdata/github-workflow-permissions-packages-writes.yaml added
checks/testdata/github-workflow-permissions-release-writes.yaml added
cron/cloudbuild/cii.yaml added
cron/config/config.yaml changed 27.9% diff
cron/k8s/cii.yaml added
cron/k8s/worker.release.yaml changed 4.9% diff
cron/k8s/worker.yaml changed 4.0% diff
docs/checks/internal/checks.yaml changed 8.9% diff

Directories (14 of 65):

NameStatus
actions removed
actions/policies removed
checks/evaluation added
checks/fileparser added
checks/raw added
clients/localdir/testdata added
clients/localdir/testdata/repo0 added
clients/localdir/testdata/repo0/dir1 added
clients/localdir/testdata/repo0/dir1/dir2 added
clients/mockclients added
clients/mockrepo removed
cron/cii added
cron/shuffle added
repos removed

Information Files (all 1):

NameStatusDeltaVisual Diff
.github/CODEOWNERS changed 100.0% diff

Licenses (2 of 3):

NameStatusDeltaVisual Diff
clients/mockrepo/license.txt moved 0.0%
clients/mockclients/license.txt

Readme Files (1 of 3):

NameStatusDeltaVisual Diff
README.md changed 8.9% diff

Text Files (13 of 42):

NameStatusDeltaVisual Diff
actions/Dockerfile moved 61.9% diff
cron/cii/Dockerfile
clients/localdir/testdata/repo0/dir1/dir2/file2 added
clients/localdir/testdata/repo0/dir1/file1 added
clients/localdir/testdata/repo0/file0 added
cron/controller/Dockerfile changed 46.7% diff
cron/webhook/Dockerfile changed 10.4% diff
cron/worker/Dockerfile changed 22.0% diff
Dockerfile changed 10.8% diff
go.mod changed 9.9% diff
go.sum changed 0.7% diff
tools/go.mod changed 1.2% diff
tools/go.sum changed 0.3% diff

Packages Compared:

scorecard-3.1.1.tar.gz
scorecard-3.2.1.tar.gz


Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)