{"payload":{"pageCount":3,"repositories":[{"type":"Public","name":"scorecard-action","owner":"ossf","isFork":false,"description":"Official GitHub Action for OpenSSF Scorecard.","allTopics":["github","security","supply-chain","github-actions","openssf-scorecard"],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":1,"issueCount":27,"starsCount":233,"forksCount":63,"license":"Apache License 2.0","participation":[5,7,2,3,2,3,1,3,1,4,2,2,3,6,2,2,5,6,5,2,3,5,0,3,3,2,0,3,3,1,1,3,2,1,5,0,2,0,0,6,1,3,1,4,0,3,4,5,1,0,1,2],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T19:32:42.013Z"}},{"type":"Public","name":"tac","owner":"ossf","isFork":false,"description":"Technical Advisory Council","allTopics":[],"primaryLanguage":null,"pullRequestCount":2,"issueCount":27,"starsCount":103,"forksCount":44,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T18:11:47.598Z"}},{"type":"Public","name":"fuzz-introspector","owner":"ossf","isFork":false,"description":"Fuzz Introspector -- introspect, extend and optimise fuzzers","allTopics":["testing","security","fuzz-testing","vulnerability-analysis","security-research","fuzzing"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":5,"issueCount":93,"starsCount":358,"forksCount":53,"license":"Apache License 2.0","participation":[17,28,23,15,2,5,17,14,5,4,12,10,4,3,2,3,5,14,9,9,13,11,6,9,0,1,1,8,0,3,13,18,19,11,10,9,6,11,12,13,13,3,3,2,0,5,4,7,2,6,15,11],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T15:42:51.373Z"}},{"type":"Public","name":"malicious-packages","owner":"ossf","isFork":false,"description":"A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":12,"issueCount":8,"starsCount":201,"forksCount":17,"license":"Apache License 2.0","participation":[0,3,14,0,2,4,14,8,39,51,83,46,27,84,49,37,56,58,22,33,69,80,52,54,51,42,40,44,56,70,53,52,28,34,46,30,24,47,52,56,37,24,31,6,30,9,47,22,8,20,30,68],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T15:08:26.493Z"}},{"type":"Public","name":"scorecard-monitor","owner":"ossf","isFork":false,"description":"Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts","allTopics":["security","security-audit","security-tools","github-actions","open-source-management","openssf-scorecard"],"primaryLanguage":{"name":"JavaScript","color":"#f1e05a"},"pullRequestCount":2,"issueCount":12,"starsCount":26,"forksCount":6,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,0,24,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,2,0,0,1,5],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T09:36:22.579Z"}},{"type":"Public","name":"scorecard-visualizer","owner":"ossf","isFork":false,"description":"Tool for visualizing the Open SSF Scorecard Api data in a human friendly way","allTopics":["hacktoberfest","openssf","openssf-scorecard"],"primaryLanguage":{"name":"TypeScript","color":"#3178c6"},"pullRequestCount":14,"issueCount":1,"starsCount":9,"forksCount":2,"license":"Apache License 2.0","participation":[5,9,30,16,9,8,7,1,1,2,1,0,29,10,1,0,1,0,1,45,0,0,2,9,1,2,15,1,0,0,0,2,1,9,1,0,0,0,0,1,0,1,2,1,12,2,2,2,0,7,0,13],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T07:25:33.177Z"}},{"type":"Public","name":"ossf-landscape","owner":"ossf","isFork":false,"description":"","allTopics":[],"primaryLanguage":null,"pullRequestCount":6,"issueCount":1,"starsCount":26,"forksCount":28,"license":"Apache License 2.0","participation":[1,4,3,4,0,2,0,4,3,1,1,3,1,10,1,5,2,2,2,2,2,2,3,2,3,0,2,0,3,2,2,0,0,0,0,1,0,1,3,1,1,0,2,1,0,1,3,3,2,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-11T01:32:00.485Z"}},{"type":"Public","name":"scorecard","owner":"ossf","isFork":false,"description":"OpenSSF Scorecard - Security health metrics for Open Source","allTopics":["scorecard","openssf-scorecard"],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":11,"issueCount":318,"starsCount":4213,"forksCount":451,"license":"Apache License 2.0","participation":[18,21,13,9,13,24,18,14,15,11,15,4,10,16,17,3,22,14,15,17,10,17,14,2,14,7,10,2,18,15,12,11,11,8,13,5,6,7,15,4,12,11,8,15,2,10,13,15,12,1,11,17],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T23:09:45.649Z"}},{"type":"Public","name":"wg-best-practices-os-developers","owner":"ossf","isFork":false,"description":"The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for open source developers.","allTopics":[],"primaryLanguage":{"name":"JavaScript","color":"#f1e05a"},"pullRequestCount":11,"issueCount":46,"starsCount":672,"forksCount":107,"license":"Apache License 2.0","participation":[14,23,17,2,0,0,11,15,5,28,9,23,3,9,1,4,5,10,9,4,19,16,1,36,35,9,5,0,0,0,7,13,0,4,2,2,0,6,0,98,90,25,18,2,1,5,12,4,12,2,13,3],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T22:07:09.530Z"}},{"type":"Public archive","name":"scorecard-dependencyanalysis","owner":"ossf","isFork":false,"description":"Scorecard action for checking when new dependencies are added to the repository. ","allTopics":["openssf-scorecard"],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":0,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,2,0,0,0,0,0,0,3,0,0,0,0,0,0,0,0,1,0,1,5,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T19:53:12.653Z"}},{"type":"Public","name":"scorecard-webapp","owner":"ossf","isFork":false,"description":"Website and API for OpenSSF Scorecard","allTopics":["openssf-scorecard"],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":4,"issueCount":30,"starsCount":21,"forksCount":26,"license":"Apache License 2.0","participation":[4,3,3,4,3,3,3,3,1,7,2,1,1,6,4,0,7,2,3,5,3,2,4,2,6,1,3,3,9,2,4,6,2,1,2,3,2,1,1,10,1,5,3,2,2,3,4,4,1,1,2,3],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T19:52:28.001Z"}},{"type":"Public","name":"disclosure-check","owner":"ossf","isFork":false,"description":"disclosure-check","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":13,"issueCount":2,"starsCount":2,"forksCount":0,"license":"Apache License 2.0","participation":[2,13,1,0,0,3,3,14,0,0,0,0,2,0,0,0,1,0,1,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,11,2,2,12,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T18:21:21.213Z"}},{"type":"Public","name":"allstar","owner":"ossf","isFork":false,"description":"GitHub App to set and enforce security policies","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":7,"issueCount":60,"starsCount":1206,"forksCount":121,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T12:30:24.980Z"}},{"type":"Public","name":"criticality_score","owner":"ossf","isFork":false,"description":"Gives criticality score for an open source project","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":30,"issueCount":42,"starsCount":1291,"forksCount":113,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-10T01:15:58.853Z"}},{"type":"Public","name":"artwork","owner":"ossf","isFork":false,"description":"OpenSSF Artwork","allTopics":[],"primaryLanguage":null,"pullRequestCount":1,"issueCount":0,"starsCount":7,"forksCount":9,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,3,4,0,0,0,0,0,0,0,0,5,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-07T17:51:08.015Z"}},{"type":"Public","name":"osv-schema","owner":"ossf","isFork":false,"description":"Open Source Vulnerability schema. ","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":14,"issueCount":32,"starsCount":171,"forksCount":69,"license":"Apache License 2.0","participation":[3,2,2,0,2,3,2,2,2,0,1,0,0,4,0,0,0,0,0,0,0,1,1,1,2,0,0,0,0,0,2,2,0,1,0,2,1,0,0,1,0,0,2,1,1,0,1,0,1,1,0,1],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-07T06:02:21.782Z"}},{"type":"Public","name":"ai-ml-security","owner":"ossf","isFork":false,"description":"Potential WG on Artificial Intelligence and Machine Learning (AI/ML)","allTopics":[],"primaryLanguage":null,"pullRequestCount":2,"issueCount":2,"starsCount":35,"forksCount":5,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,3,1,1,0,2,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,0,0,1,1,0,0,2,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-06T19:57:59.616Z"}},{"type":"Public","name":"foundation","owner":"ossf","isFork":false,"description":"OpenSSF Governance and Legal Docs","allTopics":[],"primaryLanguage":null,"pullRequestCount":1,"issueCount":0,"starsCount":68,"forksCount":19,"license":"Apache License 2.0","participation":[0,0,0,0,0,3,0,0,0,0,0,3,0,0,0,0,0,0,0,0,0,0,0,1,0,0,1,0,0,1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-06T16:54:49.840Z"}},{"type":"Public","name":"package-feeds","owner":"ossf","isFork":false,"description":"Feed parsing for language package manager updates","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":12,"issueCount":21,"starsCount":70,"forksCount":24,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-06T14:15:26.164Z"}},{"type":"Public","name":"s2c2f","owner":"ossf","isFork":false,"description":"The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously improve the S2C2F guide which outlines and defines how to securely consume Open Source Software (OSS) dependencies into the developer’s workflow. ","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":7,"starsCount":158,"forksCount":22,"license":"Other","participation":[0,4,6,2,0,3,0,3,1,0,0,8,3,0,0,0,0,0,1,1,0,0,0,1,0,0,0,0,0,0,2,0,6,2,0,3,1,0,0,1,3,0,1,6,0,2,3,1,0,1,0,4],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-05T14:40:33.662Z"}},{"type":"Public","name":"alpha-omega","owner":"ossf","isFork":false,"description":"Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.","allTopics":["security","opensource","open-source-security"],"primaryLanguage":{"name":"Open Policy Agent","color":"#7d9199"},"pullRequestCount":0,"issueCount":50,"starsCount":71,"forksCount":45,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-05T13:41:22.838Z"}},{"type":"Public","name":"sbom-everywhere","owner":"ossf","isFork":false,"description":"Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption","allTopics":[],"primaryLanguage":{"name":"Vue","color":"#41b883"},"pullRequestCount":0,"issueCount":19,"starsCount":61,"forksCount":21,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-04T17:57:35.212Z"}},{"type":"Public","name":"package-analysis","owner":"ossf","isFork":false,"description":"Open Source Package Analysis","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":10,"issueCount":57,"starsCount":711,"forksCount":50,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-06-01T22:58:16.372Z"}},{"type":"Public","name":"secure-sw-dev-fundamentals","owner":"ossf","isFork":false,"description":"Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)","allTopics":[],"primaryLanguage":{"name":"CSS","color":"#563d7c"},"pullRequestCount":2,"issueCount":31,"starsCount":160,"forksCount":45,"license":"Creative Commons Attribution 4.0 International","participation":[0,0,3,0,11,3,1,0,2,1,8,4,0,0,0,0,0,4,0,0,0,0,0,0,1,0,0,0,0,1,3,0,0,0,0,0,1,0,0,0,0,0,2,1,0,9,0,0,0,0,2,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-31T16:41:31.200Z"}},{"type":"Public","name":"oss-vulnerability-guide","owner":"ossf","isFork":true,"description":"A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications.","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":4,"starsCount":114,"forksCount":45,"license":"Creative Commons Attribution 4.0 International","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,0,1,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-31T16:00:04.343Z"}},{"type":"Public","name":"wg-securing-critical-projects","owner":"ossf","isFork":false,"description":"Helping allocate resources to secure the critical open source projects we all depend on.","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":21,"starsCount":317,"forksCount":34,"license":"Apache License 2.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-29T19:25:42.085Z"}},{"type":"Public","name":"toolbelt","owner":"ossf","isFork":false,"description":"","allTopics":[],"primaryLanguage":null,"pullRequestCount":2,"issueCount":5,"starsCount":16,"forksCount":4,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,25,1,0,0,0,0,10,0,0,0,0,14,8,1,36,1,0,0,0,0,4,0,0,0,4,1,0,0,0,2,0,0,1,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-28T13:50:09.910Z"}},{"type":"Public","name":"security-insights-spec","owner":"ossf","isFork":false,"description":"OPENSSF SECURITY INSIGHTS: Repository for development of the draft standard, where requests for modification should be made via Github Issues.","allTopics":[],"primaryLanguage":null,"pullRequestCount":4,"issueCount":8,"starsCount":46,"forksCount":8,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-24T18:31:00.673Z"}},{"type":"Public","name":"si-tooling","owner":"ossf","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":1,"issueCount":0,"starsCount":2,"forksCount":1,"license":"Apache License 2.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,1,0,2,0,0,0,0,0,0,0,0,3,0,0,0,0,0,1,2,7,2,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-21T07:34:54.327Z"}},{"type":"Public","name":"S2C2F-attestation-schema-and-tool","owner":"ossf","isFork":false,"description":"Secure Supply Chain Consumption Framework (S2C2F) OSCAL Catalog and tool","allTopics":["oscal","s2c2f","software-transparency"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":1,"issueCount":7,"starsCount":3,"forksCount":1,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-21T06:21:28.445Z"}}],"repositoryCount":63,"userInfo":null,"searchable":true,"definitions":[],"typeFilters":[{"id":"all","text":"All"},{"id":"public","text":"Public"},{"id":"source","text":"Sources"},{"id":"fork","text":"Forks"},{"id":"archived","text":"Archived"},{"id":"template","text":"Templates"}],"compactMode":false},"title":"Repositories"}