evaluation

Documentation

Index

• Constants
• func BinaryArtifacts(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func BranchProtection(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func CIIBestPractices(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func CITests(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func CodeReview(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func Contributors(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func DangerousWorkflow(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func DependencyUpdateTool(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func Fuzzing(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func License(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func Maintained(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func Packaging(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func PinningDependencies(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func SAST(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func SBOM(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func SecurityPolicy(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func SignedReleases(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func TokenPermissions(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func Vulnerabilities(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult
• func Webhooks(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult

Constants

const (
	Tier1 tier = iota
	Tier2
	Tier3
	Tier4
	Tier5
)

const CheckCITests = "CI-Tests"

Functions

func BinaryArtifacts

func BinaryArtifacts(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

BinaryArtifacts applies the score policy for the Binary-Artifacts check.

func BranchProtection

func BranchProtection(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

BranchProtection runs Branch-Protection check.

func CIIBestPractices

func CIIBestPractices(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

CIIBestPractices applies the score policy for the CIIBestPractices check.

func CITests

func CITests(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

func CodeReview

func CodeReview(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult

CodeReview applies the score policy for the Code-Review check.

func Contributors

func Contributors(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

Contributors applies the score policy for the Contributors check.

func DangerousWorkflow

func DangerousWorkflow(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

DangerousWorkflow applies the score policy for the DangerousWorkflow check.

func DependencyUpdateTool

func DependencyUpdateTool(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

DependencyUpdateTool applies the score policy and logs the details for the Dependency-Update-Tool check.

func Fuzzing

func Fuzzing(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

Fuzzing applies the score policy for the Fuzzing check.

func License

func License(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

License applies the score policy for the License check.

func Maintained

func Maintained(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

Maintained applies the score policy for the Maintained check.

func Packaging

func Packaging(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

Packaging applies the score policy for the Packaging check.

func PinningDependencies

func PinningDependencies(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

PinningDependencies applies the score policy for the Pinned-Dependencies check.

func SAST

func SAST(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

SAST applies the score policy for the SAST check.

func SBOM

func SBOM(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

SBOM applies the score policy for the SBOM check.

func SecurityPolicy

func SecurityPolicy(name string, findings []finding.Finding, dl checker.DetailLogger) checker.CheckResult

SecurityPolicy applies the score policy for the Security-Policy check.

func SignedReleases

func SignedReleases(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

SignedReleases applies the score policy for the Signed-Releases check.

func TokenPermissions

func TokenPermissions(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

TokenPermissions applies the score policy for the Token-Permissions check.

func Vulnerabilities

func Vulnerabilities(name string,
	findings []finding.Finding,
	dl checker.DetailLogger,
) checker.CheckResult

Vulnerabilities applies the score policy for the Vulnerabilities check.

func Webhooks

func Webhooks(name string,
	findings []finding.Finding, dl checker.DetailLogger,
) checker.CheckResult

Webhooks applies the score policy for the Webhooks check.