Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🌱 Update active cisco projects, remove cisco-open projects #4226

Merged
merged 2 commits into from
Jul 11, 2024
Merged

🌱 Update active cisco projects, remove cisco-open projects #4226

merged 2 commits into from
Jul 11, 2024

Conversation

lelia
Copy link
Contributor

@lelia lelia commented Jul 8, 2024

What kind of change does this PR introduce?

Updates the active list of cisco projects, and removes cisco-open projects from the weekly cronjob.

We have recently installed the Scorecard Action on all cisco-open projects, and are using Scorecard Monitor to further evaluate each project, so we want to ensure only the results from the Action are being used, given the known limitations with Scorecard results from the cronjob.

What is the current behavior?

Currently, only some cisco projects are checked by Scorecard, and all cisco-open projects are included.

Which issue(s) this PR fixes

NONE

Does this PR introduce a user-facing change?

NONE

@lelia lelia requested a review from a team as a code owner July 8, 2024 20:45
@lelia lelia requested review from justaugustus and spencerschrock and removed request for a team July 8, 2024 20:45
@lelia lelia temporarily deployed to integration-test July 8, 2024 20:46 — with GitHub Actions Inactive
@spencerschrock
Copy link
Member

are using Scorecard Monitor to further evaluate each project, so we want to ensure only the results from the Action are being used

Currently the API prioritizes the action results over the cron results already. Were you seeing otherwise?

@lelia
Copy link
Contributor Author

lelia commented Jul 9, 2024

are using Scorecard Monitor to further evaluate each project, so we want to ensure only the results from the Action are being used

Currently the API prioritizes the action results over the cron results already. Were you seeing otherwise?

No issues with that currently, but we have some older Scorecard Monitor reports with results from the cronjob that were causing some confusion when trying to analyze overall project health, so I wanted to create a clean separation.

I don't anticipate there being collisions with reports we run in the future, but there's less value in having /cisco-open projects analyzed by the cronjob, compared with /cisco projects, which we have limited access to influence directly.

@lelia
Merge branch 'main' into update-cisco-cronjob-projects
a9c425f 
Signed-off-by: lelia <le1ia@me.com>
@lelia lelia temporarily deployed to integration-test July 11, 2024 16:31 — with GitHub Actions Inactive
@spencerschrock spencerschrock merged commit c75c63c into ossf:main Jul 11, 2024
36 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@spencerschrock spencerschrock spencerschrock approved these changes

@justaugustus justaugustus Awaiting requested review from justaugustus justaugustus is a code owner automatically assigned from ossf/scorecard-maintainers

Assignees
No one assigned
Labels
None yet
Projects
Scorecard - NEW
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@lelia @spencerschrock