{"id":1248,"name":"guitarsounds","description":"guitarsounds: A Python package to visualize harmonic sounds for musical instrument design - Published in JOSS (2023)","url":"https://github.com/olivecha/guitarsounds","last_synced_at":"2025-09-04T16:20:34.657Z","repository":{"id":44031305,"uuid":"368305237","full_name":"olivecha/guitarsounds","owner":"olivecha","description":"python library to analyse guitar sounds","archived":false,"fork":false,"pushed_at":"2023-02-09T01:00:43.000Z","size":84670,"stargazers_count":8,"open_issues_count":1,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-08-28T01:45:38.577Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/olivecha.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-05-17T19:49:47.000Z","updated_at":"2025-06-29T22:41:29.000Z","dependencies_parsed_at":"2023-02-19T20:45:42.176Z","dependency_job_id":null,"html_url":"https://github.com/olivecha/guitarsounds","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/olivecha/guitarsounds","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/olivecha","download_url":"https://codeload.github.com/olivecha/guitarsounds/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/sbom","scorecard":{"id":705094,"data":{"date":"2025-08-11","repo":{"name":"github.com/olivecha/guitarsounds","commit":"9b54b6a1b353287b68144e16a25c4b891aeed19f"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.5,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: topLevel 'contents' permission set to 'read': .github/workflows/python-app.yml:13","Warn: topLevel 'contents' permission set to 'write': .github/workflows/static.yml:14","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: MIT License: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-app.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/python-app.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-app.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/python-app.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/static.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: pipCommand not pinned by hash: .github/workflows/python-app.yml:29","Warn: pipCommand not pinned by hash: .github/workflows/python-app.yml:30","Warn: pipCommand not pinned by hash: .github/workflows/python-app.yml:31","Warn: pipCommand not pinned by hash: .github/workflows/static.yml:34","Warn: pipCommand not pinned by hash: .github/workflows/static.yml:35","Warn: pipCommand not pinned by hash: .github/workflows/static.yml:36","Info:   0 out of   8 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   1 third-party GitHubAction dependencies pinned","Info:   0 out of   6 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Vulnerabilities","score":0,"reason":"16 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-29gw-9793-fvw7","Warn: Project is vulnerable to: PYSEC-2015-24 / GHSA-4vwq-x64q-j4cj","Warn: Project is vulnerable to: PYSEC-2017-46 / GHSA-66gw-5xpf-gfp5","Warn: Project is vulnerable to: PYSEC-2015-25 / GHSA-92mr-v722-f48m","Warn: Project is vulnerable to: PYSEC-2022-12 / GHSA-pq7m-3gw7-gq5x","Warn: Project is vulnerable to: PYSEC-2017-47","Warn: Project is vulnerable to: PYSEC-2018-34 / GHSA-2fc2-6r4j-p65h","Warn: Project is vulnerable to: PYSEC-2021-856 / GHSA-5545-2q6w-2gh6","Warn: Project is vulnerable to: PYSEC-2019-108 / GHSA-9fq2-x9r6-wfmf","Warn: Project is vulnerable to: PYSEC-2018-33 / GHSA-cw6w-4rcx-xphc","Warn: Project is vulnerable to: PYSEC-2021-857 / GHSA-f7c7-j99h-c22f","Warn: Project is vulnerable to: GHSA-fpfv-jqm9-f5jm","Warn: Project is vulnerable to: PYSEC-2017-1 / GHSA-frgw-fgh6-9g52","Warn: Project is vulnerable to: PYSEC-2019-156 / GHSA-xp76-357g-9wqq","Warn: Project is vulnerable to: PYSEC-2023-102","Warn: Project is vulnerable to: PYSEC-2023-114"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-22T06:19:40.403Z","repository_id":44031305,"created_at":"2025-08-22T06:19:40.403Z","updated_at":"2025-08-22T06:19:40.403Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":273518745,"owners_count":25120031,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-03T02:00:09.631Z","response_time":76,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"owner":{"login":"olivecha","name":null,"uuid":"78630053","kind":"user","description":"Mechanical engineering master's student.\r\n\r\nAll things simulation.\r\n","email":"","website":"https://www.researchgate.net/profile/Olivier-Chabot-3","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/78630053?u=dd98a9af589a07852b8af028de049ed9183bdc51\u0026v=4","repositories_count":4,"last_synced_at":"2023-05-30T17:25:37.778Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/olivecha","funding_links":[],"total_stars":null,"followers":null,"following":null,"created_at":"2023-05-30T17:25:37.786Z","updated_at":"2023-05-30T17:25:37.786Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/olivecha","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/olivecha/repositories"},"packages":[{"id":2754406,"name":"guitarsounds","ecosystem":"pypi","description":"A python package to analyze and visualize harmonic sounds","homepage":"https://github.com/olivecha/guitarsounds","licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/olivecha/guitarsounds","keywords_array":[],"namespace":null,"versions_count":3,"first_release_published_at":"2021-08-30T00:38:37.000Z","latest_release_published_at":"2023-02-08T21:05:30.000Z","latest_release_number":"1.2.0","last_synced_at":"2025-09-03T22:11:18.580Z","created_at":"2022-04-10T11:12:26.729Z","updated_at":"2025-09-04T09:00:10.484Z","registry_url":"https://pypi.org/project/guitarsounds/","install_command":"pip install guitarsounds --index-url https://pypi.org/simple","documentation_url":"https://olivecha.github.io/guitarsounds/","metadata":{"funding":null,"documentation":"https://olivecha.github.io/guitarsounds/","classifiers":["License :: OSI Approved :: MIT License","Programming Language :: Python :: 3","Programming Language :: Python :: 3.9"],"normalized_name":"guitarsounds","project_status":null},"repo_metadata":{"id":44031305,"uuid":"368305237","full_name":"olivecha/guitarsounds","owner":"olivecha","description":"python library to analyse guitar sounds","archived":false,"fork":false,"pushed_at":"2023-02-09T01:00:43.000Z","size":84670,"stargazers_count":8,"open_issues_count":1,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-08-28T01:45:38.577Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/olivecha.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-05-17T19:49:47.000Z","updated_at":"2025-06-29T22:41:29.000Z","dependencies_parsed_at":"2023-02-19T20:45:42.176Z","dependency_job_id":null,"html_url":"https://github.com/olivecha/guitarsounds","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/olivecha/guitarsounds","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/olivecha","download_url":"https://codeload.github.com/olivecha/guitarsounds/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/sbom","scorecard":{"id":705094,"data":{"date":"2025-08-11","repo":{"name":"github.com/olivecha/guitarsounds","commit":"9b54b6a1b353287b68144e16a25c4b891aeed19f"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.5,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":0,"reason":"Found 0/30 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"SAST","score":0,"reason":"no SAST tool detected","details":["Warn: no pull requests merged into dev branch"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: topLevel 'contents' permission set to 'read': .github/workflows/python-app.yml:13","Warn: topLevel 'contents' permission set to 'write': .github/workflows/static.yml:14","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: MIT License: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-app.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/python-app.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/python-app.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/python-app.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/static.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:57: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:59: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:61: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/static.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/olivecha/guitarsounds/static.yml/main?enable=pin","Warn: pipCommand not pinned by hash: .github/workflows/python-app.yml:29","Warn: pipCommand not pinned by hash: .github/workflows/python-app.yml:30","Warn: pipCommand not pinned by hash: .github/workflows/python-app.yml:31","Warn: pipCommand not pinned by hash: .github/workflows/static.yml:34","Warn: pipCommand not pinned by hash: .github/workflows/static.yml:35","Warn: pipCommand not pinned by hash: .github/workflows/static.yml:36","Info:   0 out of   8 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   1 third-party GitHubAction dependencies pinned","Info:   0 out of   6 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'main'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Vulnerabilities","score":0,"reason":"16 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-29gw-9793-fvw7","Warn: Project is vulnerable to: PYSEC-2015-24 / GHSA-4vwq-x64q-j4cj","Warn: Project is vulnerable to: PYSEC-2017-46 / GHSA-66gw-5xpf-gfp5","Warn: Project is vulnerable to: PYSEC-2015-25 / GHSA-92mr-v722-f48m","Warn: Project is vulnerable to: PYSEC-2022-12 / GHSA-pq7m-3gw7-gq5x","Warn: Project is vulnerable to: PYSEC-2017-47","Warn: Project is vulnerable to: PYSEC-2018-34 / GHSA-2fc2-6r4j-p65h","Warn: Project is vulnerable to: PYSEC-2021-856 / GHSA-5545-2q6w-2gh6","Warn: Project is vulnerable to: PYSEC-2019-108 / GHSA-9fq2-x9r6-wfmf","Warn: Project is vulnerable to: PYSEC-2018-33 / GHSA-cw6w-4rcx-xphc","Warn: Project is vulnerable to: PYSEC-2021-857 / GHSA-f7c7-j99h-c22f","Warn: Project is vulnerable to: GHSA-fpfv-jqm9-f5jm","Warn: Project is vulnerable to: PYSEC-2017-1 / GHSA-frgw-fgh6-9g52","Warn: Project is vulnerable to: PYSEC-2019-156 / GHSA-xp76-357g-9wqq","Warn: Project is vulnerable to: PYSEC-2023-102","Warn: Project is vulnerable to: PYSEC-2023-114"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-22T06:19:40.403Z","repository_id":44031305,"created_at":"2025-08-22T06:19:40.403Z","updated_at":"2025-08-22T06:19:40.403Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":273518745,"owners_count":25120031,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-03T02:00:09.631Z","response_time":76,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"olivecha","name":null,"uuid":"78630053","kind":"user","description":"Mechanical engineering master's student.\r\n\r\nAll things simulation.\r\n","email":"","website":"https://www.researchgate.net/profile/Olivier-Chabot-3","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/78630053?u=dd98a9af589a07852b8af028de049ed9183bdc51\u0026v=4","repositories_count":4,"last_synced_at":"2023-05-30T17:25:37.778Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/olivecha","funding_links":[],"total_stars":null,"followers":null,"following":null,"created_at":"2023-05-30T17:25:37.786Z","updated_at":"2023-05-30T17:25:37.786Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/olivecha","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/olivecha/repositories"},"tags":[]},"repo_metadata_updated_at":"2025-09-04T09:00:10.484Z","dependent_packages_count":0,"downloads":7,"downloads_period":"last-month","dependent_repos_count":1,"rankings":{"downloads":48.19394577194503,"dependent_repos_count":21.878192032686414,"dependent_packages_count":9.642260191289813,"stargazers_count":21.566374369122858,"forks_count":29.87481549262261,"docker_downloads_count":null,"average":26.231117571533343},"purl":"pkg:pypi/guitarsounds","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/pypi/guitarsounds","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/pypi/guitarsounds","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/pypi/guitarsounds/dependencies","status":null,"funding_links":[],"critical":null,"issue_metadata":{"last_synced_at":"2025-08-31T20:50:31.207Z","issues_count":47,"pull_requests_count":1,"avg_time_to_close_issue":4332488.804347826,"avg_time_to_close_pull_request":7718.0,"issues_closed_count":46,"pull_requests_closed_count":1,"pull_request_authors_count":1,"issue_authors_count":4,"avg_comments_per_issue":1.1914893617021276,"avg_comments_per_pull_request":0.0,"merged_pull_requests_count":1,"bot_issues_count":0,"bot_pull_requests_count":0,"past_year_issues_count":0,"past_year_pull_requests_count":0,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":null,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":0,"past_year_pull_request_authors_count":0,"past_year_issue_authors_count":0,"past_year_avg_comments_per_issue":null,"past_year_avg_comments_per_pull_request":null,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":0,"issues_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/issues","maintainers":[{"login":"olivecha","count":27,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/olivecha"}],"active_maintainers":[]},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/guitarsounds/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/guitarsounds/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/guitarsounds/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/guitarsounds/related_packages","maintainers":[{"uuid":"olivecha","login":"olivecha","name":null,"email":null,"url":null,"packages_count":2,"html_url":"https://pypi.org/user/olivecha/","role":null,"created_at":"2022-12-10T18:52:51.327Z","updated_at":"2022-12-10T18:52:51.327Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/olivecha/packages"}],"registry":{"name":"pypi.org","url":"https://pypi.org","ecosystem":"pypi","default":true,"packages_count":724713,"maintainers_count":308189,"namespaces_count":0,"keywords_count":237984,"github":"pypi","metadata":{"funded_packages_count":50481},"icon_url":"https://github.com/pypi.png","created_at":"2022-04-04T15:19:23.364Z","updated_at":"2025-09-04T05:23:51.177Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/namespaces"}}],"commits":{"id":590480,"full_name":"olivecha/guitarsounds","default_branch":"main","committers":[{"name":"olivecha","email":"olivier.chabot.2@ens.etsmtl.ca","login":"olivecha","count":149}],"total_commits":149,"total_committers":1,"total_bot_commits":0,"total_bot_committers":0,"mean_commits":149.0,"dds":0.0,"past_year_committers":[],"past_year_total_commits":0,"past_year_total_committers":0,"past_year_total_bot_commits":0,"past_year_total_bot_committers":0,"past_year_mean_commits":0.0,"past_year_dds":0.0,"last_synced_at":"2025-08-07T07:49:57.588Z","last_synced_commit":"9b54b6a1b353287b68144e16a25c4b891aeed19f","created_at":"2023-03-09T06:19:12.779Z","updated_at":"2025-08-07T07:49:57.589Z","commits_url":"https://commits.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/commits","host":{"name":"GitHub","url":"https://github.com","kind":"github","last_synced_at":"2025-08-27T00:00:29.048Z","repositories_count":5479765,"commits_count":853308191,"contributors_count":31095157,"owners_count":906558,"icon_url":"https://github.com/github.png","host_url":"https://commits.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://commits.ecosyste.ms/api/v1/hosts/GitHub/repositories"}},"issues_stats":{"full_name":"olivecha/guitarsounds","html_url":"https://github.com/olivecha/guitarsounds","last_synced_at":"2025-08-31T20:50:31.207Z","status":"error","issues_count":47,"pull_requests_count":1,"avg_time_to_close_issue":4332488.804347826,"avg_time_to_close_pull_request":7718.0,"issues_closed_count":46,"pull_requests_closed_count":1,"pull_request_authors_count":1,"issue_authors_count":4,"avg_comments_per_issue":1.1914893617021276,"avg_comments_per_pull_request":0.0,"merged_pull_requests_count":1,"bot_issues_count":0,"bot_pull_requests_count":0,"past_year_issues_count":0,"past_year_pull_requests_count":0,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":null,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":0,"past_year_pull_request_authors_count":0,"past_year_issue_authors_count":0,"past_year_avg_comments_per_issue":null,"past_year_avg_comments_per_pull_request":null,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":0,"created_at":"2023-05-14T15:13:54.967Z","updated_at":"2025-08-31T20:50:31.207Z","repository_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds","issues_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/olivecha%2Fguitarsounds/issues","issue_labels_count":{"enhancement":7,"question":3,"documentation":1,"bug":1},"pull_request_labels_count":{},"issue_author_associations_count":{"OWNER":27,"NONE":20},"pull_request_author_associations_count":{"NONE":1},"issue_authors":{"olivecha":27,"cwitkowitz":16,"ebezzam":3,"louisbrillon":1},"pull_request_authors":{"danielskatz":1},"host":{"name":"GitHub","url":"https://github.com","kind":"github","last_synced_at":"2025-09-01T00:00:07.725Z","repositories_count":9917002,"issues_count":29224957,"pull_requests_count":83952544,"authors_count":9027317,"icon_url":"https://github.com/github.png","host_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories","owners_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/owners","authors_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors"},"past_year_issue_labels_count":{},"past_year_pull_request_labels_count":{},"past_year_issue_author_associations_count":{},"past_year_pull_request_author_associations_count":{},"past_year_issue_authors":{},"past_year_pull_request_authors":{},"maintainers":[{"login":"olivecha","count":27,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/olivecha"}],"active_maintainers":[]},"events":{"total":{"WatchEvent":2},"last_year":{"WatchEvent":2}},"keywords":[],"dependencies":[{"ecosystem":"actions","filepath":".github/workflows/python-app.yml","sha":null,"kind":"manifest","created_at":"2023-02-19T20:45:41.682Z","updated_at":"2023-02-19T20:45:41.682Z","repository_link":"https://github.com/olivecha/guitarsounds/blob/main/.github/workflows/python-app.yml","dependencies":[{"id":7797279588,"package_name":"actions/checkout","ecosystem":"actions","requirements":"v3","direct":true,"kind":"composite","optional":false},{"id":7797279589,"package_name":"actions/setup-python","ecosystem":"actions","requirements":"v3","direct":true,"kind":"composite","optional":false}]},{"ecosystem":"actions","filepath":".github/workflows/static.yml","sha":null,"kind":"manifest","created_at":"2023-02-19T20:45:41.979Z","updated_at":"2023-02-19T20:45:41.979Z","repository_link":"https://github.com/olivecha/guitarsounds/blob/main/.github/workflows/static.yml","dependencies":[{"id":7797283327,"package_name":"actions/checkout","ecosystem":"actions","requirements":"v3","direct":true,"kind":"composite","optional":false},{"id":7797283328,"package_name":"actions/setup-python","ecosystem":"actions","requirements":"v3","direct":true,"kind":"composite","optional":false},{"id":7797283329,"package_name":"stefanzweifel/git-auto-commit-action","ecosystem":"actions","requirements":"v4","direct":true,"kind":"composite","optional":false},{"id":7797283428,"package_name":"actions/configure-pages","ecosystem":"actions","requirements":"v3","direct":true,"kind":"composite","optional":false},{"id":7797283429,"package_name":"actions/upload-pages-artifact","ecosystem":"actions","requirements":"v1","direct":true,"kind":"composite","optional":false},{"id":7797283430,"package_name":"actions/deploy-pages","ecosystem":"actions","requirements":"v1","direct":true,"kind":"composite","optional":false}]},{"ecosystem":"pypi","filepath":"requirements.txt","sha":null,"kind":"manifest","created_at":"2022-09-06T01:12:03.304Z","updated_at":"2022-09-06T01:12:03.304Z","repository_link":"https://github.com/olivecha/guitarsounds/blob/main/requirements.txt","dependencies":[{"id":3962463619,"package_name":"IPython","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463620,"package_name":"librosa","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463621,"package_name":"soundfile","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463622,"package_name":"matplotlib","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463623,"package_name":"numpy","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463624,"package_name":"noisereduce","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463625,"package_name":"scipy","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463626,"package_name":"tabulate","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false},{"id":3962463627,"package_name":"ipywidgets","ecosystem":"pypi","requirements":"*","direct":true,"kind":"runtime","optional":false}]}],"score":4.394449154672439,"created_at":"2025-09-04T09:17:45.602Z","updated_at":"2025-10-07T08:04:31.063Z","avatar_url":"https://github.com/olivecha.png","language":"Python","category":"Scientific Software","sub_category":"Peer-reviewed","monthly_downloads":7,"funding_links":[],"readme_doi_urls":[],"works":{},"citation_counts":{},"total_citations":0,"keywords_from_contributors":[],"project_url":"https://science.ecosyste.ms/api/v1/projects/1248","html_url":"https://science.ecosyste.ms/projects/1248"}