FICHA · AUR

scorecard

Security health metrics for Open Source

  • OSSF Scorecard scanner
  • CLI
  • SECURITY-AUDIT
  • REPOSITORY
  • Launchable
  • Runs in terminal
official+codex · reviewed · Jun 4, 2026 description in en

Description

Repository supply-chain risks can be evaluated with OSSF Scorecard checks. It is for maintainers auditing open source projects, where tokens, repository metadata, and network requests need care.

How to run

scorecard

Commands: scorecard

Permissions

Permissions not analysed for this source yet.