Caleb Brown
Caleb Brown
The production run occasionally aborts with: ``` non-200 OK status code: 502 Bad Gateway body: { "data": null, "errors":[ { "message":"Something went wrong while executing your query. This may be...
The Python project has support for extracting data from GitLab. Ideally this should be available in `collect_signals` in the Go implementation before deprecating Python. GitLab's API does not support enumeration...
To make it easy for users, and to facility scenarios where a "one shot" for a single repository is needed for collecting signals and scoring them, add, publish, and maintain...
Much of the projects documentation currently refers to the Python code. This needs to be updated to refer to the Go tools.
*DO NOT SUBMIT* This is a draft of inflight work.
# OSS Criticality Score and Security Risk **Last Updated**: 2022-02-23 **Status**: Draft ## Goal 1. Evaluate the quality of the existing score produced by the [criticality_score](https://github.com/ossf/criticality_score) project. 2. Propose changes...
The current implementation of criticality_score available in this repo has been stagnant for a while. It has some serious problems with how it enumerates projects on GitHub (see #33), and...
This ability can help find places where the sandbox can be improved, or be used to identify when a command being executed succeeded for failed. The strace output generated by...
While researching #378 I discovered that the docker-compose setup in `example/e2e` does not appear to work under cgroupsv2. `docker run --cgroupns=host` does work, but there is no equivalent for use...
Some samples of malware check for a `$HOME` of `/root` and skip running if true. Running at root has its advantages, so perhaps changing the home from `/root` to `/home/${name}`,...