{"id":27760,"name":"csaf-controls","description":"Control Systems Analysis Framework - a framework to minimize the effort required to evaluate, implement, and verify controller design (classical and learning enabled) with respect to the system dynamics.","url":"https://github.com/galoisinc/csaf","last_synced_at":"2025-09-05T03:43:26.670Z","repository":{"id":37797101,"uuid":"385701773","full_name":"GaloisInc/csaf","owner":"GaloisInc","description":"Control Systems Analysis Framework - a framework to minimize the effort required to evaluate, implement, and verify controller design (classical and learning enabled) with respect to the system dynamics.","archived":false,"fork":false,"pushed_at":"2022-11-21T19:46:30.000Z","size":88027,"stargazers_count":13,"open_issues_count":13,"forks_count":4,"subscribers_count":6,"default_branch":"develop","last_synced_at":"2025-08-18T12:54:51.246Z","etag":null,"topics":["autonomy","cyberphysical","dynamical-systems","python","simulation","verification"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/GaloisInc.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":"CITATION.cff","codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-07-13T18:36:07.000Z","updated_at":"2025-08-09T02:21:32.000Z","dependencies_parsed_at":"2023-01-21T12:17:52.178Z","dependency_job_id":null,"html_url":"https://github.com/GaloisInc/csaf","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/GaloisInc/csaf","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GaloisInc","download_url":"https://codeload.github.com/GaloisInc/csaf/tar.gz/refs/heads/develop","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/sbom","scorecard":{"id":54569,"data":{"date":"2025-08-11","repo":{"name":"github.com/GaloisInc/csaf","commit":"c90a7346f3a2a651adda5b6ead47d4989af59dcc"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.6,"checks":[{"name":"Code-Review","score":1,"reason":"Found 1/10 approved changesets -- score normalized to 1","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/main.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: BSD 3-Clause \"New\" or \"Revised\" License: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:169: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:174: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:4: pin your Docker image by updating python:3.9 to python:3.9@sha256:754dbbaf5fe730bb2460efb3300293c62c222f74fbf8534ed23691c617c9609b","Warn: pipCommand not pinned by hash: Dockerfile:8","Warn: pipCommand not pinned by hash: Dockerfile:12","Warn: pipCommand not pinned by hash: dependencies.sh:15","Warn: pipCommand not pinned by hash: .github/workflows/main.yml:36","Warn: pipCommand not pinned by hash: .github/workflows/main.yml:180","Info:   0 out of   4 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   4 third-party GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   5 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'develop'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 22 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"54 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: PYSEC-2024-230 / GHSA-248v-346w-9cwc","Warn: Project is vulnerable to: PYSEC-2022-42986 / GHSA-43fp-rhv2-5gv8","Warn: Project is vulnerable to: PYSEC-2023-135 / GHSA-xqr8-7jwr-rhp7","Warn: Project is vulnerable to: PYSEC-2024-60 / GHSA-jjg7-2v4v-x38h","Warn: Project is vulnerable to: GHSA-29gw-9793-fvw7","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: GHSA-gmj6-6f8f-6699","Warn: Project is vulnerable to: GHSA-h5c8-rqwp-cp95","Warn: Project is vulnerable to: GHSA-h75v-3vvj-5mfj","Warn: Project is vulnerable to: GHSA-q2x7-8rv6-6q7h","Warn: Project is vulnerable to: PYSEC-2022-288 / GHSA-6hrg-qmvc-2xh8","Warn: Project is vulnerable to: GHSA-33p9-3p43-82vq","Warn: Project is vulnerable to: PYSEC-2022-42974 / GHSA-m678-f26j-3hrp","Warn: Project is vulnerable to: PYSEC-2022-249 / GHSA-9jmq-rx5f-8jwq","Warn: Project is vulnerable to: PYSEC-2022-180 / GHSA-m87f-39q9-6f55","Warn: Project is vulnerable to: PYSEC-2022-212 / GHSA-v7vq-3x77-87vg","Warn: Project is vulnerable to: GHSA-6p56-wp2h-9hxr","Warn: Project is vulnerable to: GHSA-fpfv-jqm9-f5jm","Warn: Project is vulnerable to: GHSA-3f63-hfp8-52jq","Warn: Project is vulnerable to: GHSA-44wm-f244-xhp3","Warn: Project is vulnerable to: PYSEC-2023-227 / GHSA-8ghj-p4vj-mr35","Warn: Project is vulnerable to: GHSA-8vj2-vxx3-667w","Warn: Project is vulnerable to: PYSEC-2022-168 / GHSA-9j59-75qj-795w","Warn: Project is vulnerable to: GHSA-j7hp-h8jx-5ppr","Warn: Project is vulnerable to: PYSEC-2022-42979 / GHSA-m2vv-5vj5-2hm7","Warn: Project is vulnerable to: PYSEC-2023-175","Warn: Project is vulnerable to: PYSEC-2023-228 / GHSA-mq26-g339-26xf","Warn: Project is vulnerable to: GHSA-8gq9-2x98-w8hf","Warn: Project is vulnerable to: GHSA-8qvm-5x2c-j2w7","Warn: Project is vulnerable to: PYSEC-2022-42969","Warn: Project is vulnerable to: GHSA-mr82-8j83-vxmv","Warn: Project is vulnerable to: PYSEC-2023-117 / GHSA-mrwq-x4v8-fh7p","Warn: Project is vulnerable to: GHSA-9hjg-9r4m-mvj7","Warn: Project is vulnerable to: GHSA-9wx4-h78v-vm56","Warn: Project is vulnerable to: PYSEC-2023-74 / GHSA-j8r2-6x86-q33q","Warn: Project is vulnerable to: PYSEC-2024-110 / GHSA-jw8x-6495-233v","Warn: Project is vulnerable to: GHSA-jxfp-4rvq-9h9m","Warn: Project is vulnerable to: PYSEC-2023-102","Warn: Project is vulnerable to: PYSEC-2023-114","Warn: Project is vulnerable to: PYSEC-2025-49 / GHSA-5rjg-fvgr-3xxf","Warn: Project is vulnerable to: GHSA-cx63-2mw6-8hw5","Warn: Project is vulnerable to: PYSEC-2022-43012 / GHSA-r9hx-vwmv-q579","Warn: Project is vulnerable to: GHSA-753j-mpmx-qq6g","Warn: Project is vulnerable to: GHSA-7cx3-6m66-7c5m","Warn: Project is vulnerable to: GHSA-8w49-h785-mj3c","Warn: Project is vulnerable to: PYSEC-2023-75 / GHSA-hj3f-6gcp-jg8j","Warn: Project is vulnerable to: GHSA-qppv-j76h-2rpx","Warn: Project is vulnerable to: GHSA-w235-7p84-xx57","Warn: Project is vulnerable to: GHSA-g7vv-2v7x-gj9p","Warn: Project is vulnerable to: GHSA-34jh-p97f-mpxf","Warn: Project is vulnerable to: PYSEC-2023-212 / GHSA-g4mx-q9vg-27p4","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: PYSEC-2023-192 / GHSA-v845-jxx5-vc9f","Warn: Project is vulnerable to: PYSEC-2022-43017 / GHSA-qwmp-2cf2-g9g6"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-15T00:24:46.725Z","repository_id":37797101,"created_at":"2025-08-15T00:24:46.725Z","updated_at":"2025-08-15T00:24:46.725Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":273708979,"owners_count":25153728,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-05T02:00:09.113Z","response_time":402,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"owner":{"login":"GaloisInc","name":"Galois, Inc.","uuid":"1584774","kind":"organization","description":"","email":null,"website":"http://galois.com","location":"Portland, OR","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/1584774?v=4","repositories_count":450,"last_synced_at":"2023-04-10T08:41:02.454Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/GaloisInc","funding_links":[],"total_stars":null,"followers":null,"following":null,"created_at":"2022-11-02T16:42:02.233Z","updated_at":"2023-04-10T08:41:03.332Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GaloisInc","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GaloisInc/repositories"},"packages":[{"id":2683896,"name":"csaf-controls","ecosystem":"pypi","description":"Control Systems Analysis Framework","homepage":"https://github.com/GaloisInc/csaf","licenses":"BSD License","normalized_licenses":["BSD-3-Clause"],"repository_url":"https://github.com/GaloisInc/csaf","keywords_array":[],"namespace":null,"versions_count":1,"first_release_published_at":"2021-12-23T01:21:12.000Z","latest_release_published_at":"2021-12-23T01:21:12.000Z","latest_release_number":"0.2","last_synced_at":"2025-08-18T12:26:21.739Z","created_at":"2022-04-10T10:29:22.748Z","updated_at":"2025-08-18T13:11:56.377Z","registry_url":"https://pypi.org/project/csaf-controls/","install_command":"pip install csaf-controls --index-url https://pypi.org/simple","documentation_url":"https://csaf-controls.readthedocs.io/","metadata":{"funding":null,"documentation":null,"classifiers":["License :: OSI Approved :: BSD License","Operating System :: OS Independent","Programming Language :: Python :: 3"],"normalized_name":"csaf-controls","project_status":null},"repo_metadata":{"id":37797101,"uuid":"385701773","full_name":"GaloisInc/csaf","owner":"GaloisInc","description":"Control Systems Analysis Framework - a framework to minimize the effort required to evaluate, implement, and verify controller design (classical and learning enabled) with respect to the system dynamics.","archived":false,"fork":false,"pushed_at":"2022-11-21T19:46:30.000Z","size":88027,"stargazers_count":12,"open_issues_count":13,"forks_count":4,"subscribers_count":6,"default_branch":"develop","last_synced_at":"2025-07-09T05:49:54.676Z","etag":null,"topics":["autonomy","cyberphysical","dynamical-systems","python","simulation","verification"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-3-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/GaloisInc.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":"CITATION.cff","codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2021-07-13T18:36:07.000Z","updated_at":"2024-11-23T03:38:20.000Z","dependencies_parsed_at":"2023-01-21T12:17:52.178Z","dependency_job_id":null,"html_url":"https://github.com/GaloisInc/csaf","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"purl":"pkg:github/GaloisInc/csaf","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GaloisInc","download_url":"https://codeload.github.com/GaloisInc/csaf/tar.gz/refs/heads/develop","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/sbom","scorecard":{"id":54569,"data":{"date":"2025-08-11","repo":{"name":"github.com/GaloisInc/csaf","commit":"c90a7346f3a2a651adda5b6ead47d4989af59dcc"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.6,"checks":[{"name":"Code-Review","score":1,"reason":"Found 1/10 approved changesets -- score normalized to 1","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/main.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: BSD 3-Clause \"New\" or \"Revised\" License: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:163: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:166: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:169: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:174: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:25: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/main.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/GaloisInc/csaf/main.yml/develop?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:4: pin your Docker image by updating python:3.9 to python:3.9@sha256:754dbbaf5fe730bb2460efb3300293c62c222f74fbf8534ed23691c617c9609b","Warn: pipCommand not pinned by hash: Dockerfile:8","Warn: pipCommand not pinned by hash: Dockerfile:12","Warn: pipCommand not pinned by hash: dependencies.sh:15","Warn: pipCommand not pinned by hash: .github/workflows/main.yml:36","Warn: pipCommand not pinned by hash: .github/workflows/main.yml:180","Info:   0 out of   4 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   4 third-party GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   5 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'develop'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 22 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"54 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: PYSEC-2024-230 / GHSA-248v-346w-9cwc","Warn: Project is vulnerable to: PYSEC-2022-42986 / GHSA-43fp-rhv2-5gv8","Warn: Project is vulnerable to: PYSEC-2023-135 / GHSA-xqr8-7jwr-rhp7","Warn: Project is vulnerable to: PYSEC-2024-60 / GHSA-jjg7-2v4v-x38h","Warn: Project is vulnerable to: GHSA-29gw-9793-fvw7","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: GHSA-gmj6-6f8f-6699","Warn: Project is vulnerable to: GHSA-h5c8-rqwp-cp95","Warn: Project is vulnerable to: GHSA-h75v-3vvj-5mfj","Warn: Project is vulnerable to: GHSA-q2x7-8rv6-6q7h","Warn: Project is vulnerable to: PYSEC-2022-288 / GHSA-6hrg-qmvc-2xh8","Warn: Project is vulnerable to: GHSA-33p9-3p43-82vq","Warn: Project is vulnerable to: PYSEC-2022-42974 / GHSA-m678-f26j-3hrp","Warn: Project is vulnerable to: PYSEC-2022-249 / GHSA-9jmq-rx5f-8jwq","Warn: Project is vulnerable to: PYSEC-2022-180 / GHSA-m87f-39q9-6f55","Warn: Project is vulnerable to: PYSEC-2022-212 / GHSA-v7vq-3x77-87vg","Warn: Project is vulnerable to: GHSA-6p56-wp2h-9hxr","Warn: Project is vulnerable to: GHSA-fpfv-jqm9-f5jm","Warn: Project is vulnerable to: GHSA-3f63-hfp8-52jq","Warn: Project is vulnerable to: GHSA-44wm-f244-xhp3","Warn: Project is vulnerable to: PYSEC-2023-227 / GHSA-8ghj-p4vj-mr35","Warn: Project is vulnerable to: GHSA-8vj2-vxx3-667w","Warn: Project is vulnerable to: PYSEC-2022-168 / GHSA-9j59-75qj-795w","Warn: Project is vulnerable to: GHSA-j7hp-h8jx-5ppr","Warn: Project is vulnerable to: PYSEC-2022-42979 / GHSA-m2vv-5vj5-2hm7","Warn: Project is vulnerable to: PYSEC-2023-175","Warn: Project is vulnerable to: PYSEC-2023-228 / GHSA-mq26-g339-26xf","Warn: Project is vulnerable to: GHSA-8gq9-2x98-w8hf","Warn: Project is vulnerable to: GHSA-8qvm-5x2c-j2w7","Warn: Project is vulnerable to: PYSEC-2022-42969","Warn: Project is vulnerable to: GHSA-mr82-8j83-vxmv","Warn: Project is vulnerable to: PYSEC-2023-117 / GHSA-mrwq-x4v8-fh7p","Warn: Project is vulnerable to: GHSA-9hjg-9r4m-mvj7","Warn: Project is vulnerable to: GHSA-9wx4-h78v-vm56","Warn: Project is vulnerable to: PYSEC-2023-74 / GHSA-j8r2-6x86-q33q","Warn: Project is vulnerable to: PYSEC-2024-110 / GHSA-jw8x-6495-233v","Warn: Project is vulnerable to: GHSA-jxfp-4rvq-9h9m","Warn: Project is vulnerable to: PYSEC-2023-102","Warn: Project is vulnerable to: PYSEC-2023-114","Warn: Project is vulnerable to: PYSEC-2025-49 / GHSA-5rjg-fvgr-3xxf","Warn: Project is vulnerable to: GHSA-cx63-2mw6-8hw5","Warn: Project is vulnerable to: PYSEC-2022-43012 / GHSA-r9hx-vwmv-q579","Warn: Project is vulnerable to: GHSA-753j-mpmx-qq6g","Warn: Project is vulnerable to: GHSA-7cx3-6m66-7c5m","Warn: Project is vulnerable to: GHSA-8w49-h785-mj3c","Warn: Project is vulnerable to: PYSEC-2023-75 / GHSA-hj3f-6gcp-jg8j","Warn: Project is vulnerable to: GHSA-qppv-j76h-2rpx","Warn: Project is vulnerable to: GHSA-w235-7p84-xx57","Warn: Project is vulnerable to: GHSA-g7vv-2v7x-gj9p","Warn: Project is vulnerable to: GHSA-34jh-p97f-mpxf","Warn: Project is vulnerable to: PYSEC-2023-212 / GHSA-g4mx-q9vg-27p4","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: PYSEC-2023-192 / GHSA-v845-jxx5-vc9f","Warn: Project is vulnerable to: PYSEC-2022-43017 / GHSA-qwmp-2cf2-g9g6"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-15T00:24:46.725Z","repository_id":37797101,"created_at":"2025-08-15T00:24:46.725Z","updated_at":"2025-08-15T00:24:46.725Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":270996757,"owners_count":24681937,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-18T02:00:08.743Z","response_time":89,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"GaloisInc","name":"Galois, Inc.","uuid":"1584774","kind":"organization","description":"","email":null,"website":"http://galois.com","location":"Portland, OR","twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/1584774?v=4","repositories_count":450,"last_synced_at":"2023-04-10T08:41:02.454Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/GaloisInc","funding_links":[],"total_stars":null,"followers":null,"following":null,"created_at":"2022-11-02T16:42:02.233Z","updated_at":"2023-04-10T08:41:03.332Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GaloisInc","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GaloisInc/repositories"},"tags":[{"name":"release-0.1","sha":"41491b64297edfc4a15e36f3d8555983f49cbc28","kind":"commit","published_at":"2021-08-17T21:36:26.000Z","download_url":"https://codeload.github.com/GaloisInc/csaf/tar.gz/release-0.1","html_url":"https://github.com/GaloisInc/csaf/releases/tag/release-0.1","dependencies_parsed_at":null,"dependency_job_id":null,"purl":"pkg:github/GaloisInc/csaf@release-0.1","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags/release-0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags/release-0.1/manifests"},{"name":"release-beta-0.2","sha":"0dc8316b9380c7c467eb8bbaf739a850c9ac15e1","kind":"commit","published_at":"2020-10-01T23:53:16.000Z","download_url":"https://codeload.github.com/GaloisInc/csaf/tar.gz/release-beta-0.2","html_url":"https://github.com/GaloisInc/csaf/releases/tag/release-beta-0.2","dependencies_parsed_at":null,"dependency_job_id":null,"purl":"pkg:github/GaloisInc/csaf@release-beta-0.2","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags/release-beta-0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags/release-beta-0.2/manifests"},{"name":"release-beta-0.1","sha":"79a541760437d406ac1e78f13c1135fa7956eada","kind":"commit","published_at":"2020-09-28T18:05:15.000Z","download_url":"https://codeload.github.com/GaloisInc/csaf/tar.gz/release-beta-0.1","html_url":"https://github.com/GaloisInc/csaf/releases/tag/release-beta-0.1","dependencies_parsed_at":null,"dependency_job_id":null,"purl":"pkg:github/GaloisInc/csaf@release-beta-0.1","tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags/release-beta-0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/tags/release-beta-0.1/manifests"}]},"repo_metadata_updated_at":"2025-08-18T13:11:56.377Z","dependent_packages_count":0,"downloads":7,"downloads_period":"last-month","dependent_repos_count":1,"rankings":{"downloads":59.70896887297107,"dependent_repos_count":21.64168977689945,"dependent_packages_count":10.051680376746889,"stargazers_count":17.681470184652195,"forks_count":15.314340757842752,"docker_downloads_count":null,"average":24.87962999382247},"purl":"pkg:pypi/csaf-controls","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/pypi/csaf-controls","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/pypi/csaf-controls","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/pypi/csaf-controls/dependencies","status":null,"funding_links":[],"critical":null,"issue_metadata":{"last_synced_at":"2025-06-07T04:36:44.408Z","issues_count":77,"pull_requests_count":23,"avg_time_to_close_issue":1019858.734375,"avg_time_to_close_pull_request":1770063.043478261,"issues_closed_count":64,"pull_requests_closed_count":23,"pull_request_authors_count":3,"issue_authors_count":5,"avg_comments_per_issue":2.7142857142857144,"avg_comments_per_pull_request":0.6956521739130435,"merged_pull_requests_count":14,"bot_issues_count":0,"bot_pull_requests_count":3,"past_year_issues_count":0,"past_year_pull_requests_count":0,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":null,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":0,"past_year_pull_request_authors_count":0,"past_year_issue_authors_count":0,"past_year_avg_comments_per_issue":null,"past_year_avg_comments_per_pull_request":null,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":0,"issues_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/issues","maintainers":[{"login":"podhrmic","count":67,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/podhrmic"},{"login":"cslockett","count":21,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/cslockett"},{"login":"EthanJamesLew","count":7,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/EthanJamesLew"},{"login":"zutshi","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/zutshi"},{"login":"jeappen","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/jeappen"}],"active_maintainers":[]},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/csaf-controls/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/csaf-controls/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/csaf-controls/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/csaf-controls/related_packages","maintainers":[{"uuid":"elew","login":"elew","name":null,"email":null,"url":null,"packages_count":3,"html_url":"https://pypi.org/user/elew/","role":null,"created_at":"2023-02-20T03:19:46.872Z","updated_at":"2023-02-20T03:19:46.872Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/elew/packages"}],"registry":{"name":"pypi.org","url":"https://pypi.org","ecosystem":"pypi","default":true,"packages_count":724971,"maintainers_count":308293,"namespaces_count":0,"keywords_count":237984,"github":"pypi","metadata":{"funded_packages_count":50481},"icon_url":"https://github.com/pypi.png","created_at":"2022-04-04T15:19:23.364Z","updated_at":"2025-09-04T05:23:51.177Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/namespaces"}}],"commits":{"id":554635,"full_name":"GaloisInc/csaf","default_branch":"develop","committers":[{"name":"Ethan Lew","email":"elew@galois.com","count":212},{"name":"Michal Podhradsky","email":"mpodhradsky@galois.com","count":108},{"name":"Aditya Zutshi","email":"aditya.zutshi@galois.com","count":31},{"name":"Matt Bauer","email":"mbauer@galois.com","count":19},{"name":"Ben Hamlin","email":"hamlinb@galois.com","count":3},{"name":"dependabot[bot]","email":"49699333+dependabot[bot]@users.noreply.github.com","count":2},{"name":"Andrew Kent","email":"andrew@galois.com","count":1}],"total_commits":376,"total_committers":7,"total_bot_commits":2,"total_bot_committers":1,"mean_commits":53.714285714285715,"dds":0.43617021276595747,"past_year_committers":null,"past_year_total_commits":null,"past_year_total_committers":null,"past_year_total_bot_commits":null,"past_year_total_bot_committers":null,"past_year_mean_commits":null,"past_year_dds":null,"last_synced_at":"2023-03-18T00:52:43.518Z","last_synced_commit":"c90a7346f3a2a651adda5b6ead47d4989af59dcc","created_at":"2023-03-09T04:48:48.578Z","updated_at":"2023-09-19T17:15:55.966Z","commits_url":"https://commits.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/commits","host":{"name":"GitHub","url":"https://github.com","kind":"github","last_synced_at":"2025-09-05T00:00:10.343Z","repositories_count":5480019,"commits_count":853389012,"contributors_count":31098138,"owners_count":906558,"icon_url":"https://github.com/github.png","host_url":"https://commits.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://commits.ecosyste.ms/api/v1/hosts/GitHub/repositories"}},"issues_stats":{"full_name":"GaloisInc/csaf","html_url":"https://github.com/GaloisInc/csaf","last_synced_at":"2025-08-18T12:52:11.225Z","status":"error","issues_count":77,"pull_requests_count":23,"avg_time_to_close_issue":1019858.734375,"avg_time_to_close_pull_request":1770063.043478261,"issues_closed_count":64,"pull_requests_closed_count":23,"pull_request_authors_count":3,"issue_authors_count":5,"avg_comments_per_issue":2.7142857142857144,"avg_comments_per_pull_request":0.6956521739130435,"merged_pull_requests_count":14,"bot_issues_count":0,"bot_pull_requests_count":3,"past_year_issues_count":0,"past_year_pull_requests_count":0,"past_year_avg_time_to_close_issue":null,"past_year_avg_time_to_close_pull_request":null,"past_year_issues_closed_count":0,"past_year_pull_requests_closed_count":0,"past_year_pull_request_authors_count":0,"past_year_issue_authors_count":0,"past_year_avg_comments_per_issue":null,"past_year_avg_comments_per_pull_request":null,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":0,"created_at":"2023-05-14T11:17:45.994Z","updated_at":"2025-08-18T12:52:11.226Z","repository_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf","issues_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/GaloisInc%2Fcsaf/issues","issue_labels_count":{"feature":8,"user-story: test framework":7,"user-story: rta":6,"stretch":5,"bug":5,"user-story: ease of use":5,"pre-release":4,"user-story: simulation and vis":4,"enhancement":3,"documentation":3,"subs-integration":3,"brainstorm":3,"testing":3,"user-story: controls testing":3,"csaf":2,"zeromq":1},"pull_request_labels_count":{"csaf":4,"dependencies":3,"feature":1,"documentation":1},"issue_author_associations_count":{"COLLABORATOR":75,"MEMBER":2},"pull_request_author_associations_count":{"COLLABORATOR":15,"MEMBER":5,"CONTRIBUTOR":3},"issue_authors":{"podhrmic":52,"cslockett":21,"EthanJamesLew":2,"zutshi":1,"jeappen":1},"pull_request_authors":{"podhrmic":15,"EthanJamesLew":5,"dependabot[bot]":3},"host":{"name":"GitHub","url":"https://github.com","kind":"github","last_synced_at":"2025-08-25T00:00:12.559Z","repositories_count":8395294,"issues_count":15742819,"pull_requests_count":37506257,"authors_count":5664657,"icon_url":"https://github.com/github.png","host_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories","owners_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/owners","authors_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors"},"past_year_issue_labels_count":{},"past_year_pull_request_labels_count":{},"past_year_issue_author_associations_count":{},"past_year_pull_request_author_associations_count":{},"past_year_issue_authors":{},"past_year_pull_request_authors":{},"maintainers":[{"login":"podhrmic","count":67,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/podhrmic"},{"login":"cslockett","count":21,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/cslockett"},{"login":"EthanJamesLew","count":7,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/EthanJamesLew"},{"login":"zutshi","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/zutshi"},{"login":"jeappen","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/jeappen"}],"active_maintainers":[]},"events":{"total":{"WatchEvent":1},"last_year":{"WatchEvent":1}},"keywords":["autonomy","cyberphysical","dynamical-systems","python","simulation","verification"],"dependencies":[{"ecosystem":"pypi","filepath":"requirements.txt","sha":null,"kind":"manifest","created_at":"2022-06-23T15:46:27.625Z","updated_at":"2022-06-23T15:46:27.625Z","repository_link":"https://github.com/GaloisInc/csaf/blob/develop/requirements.txt","dependencies":[{"id":22398754,"package_name":"appnope","ecosystem":"pypi","requirements":"==0.1.2","direct":true,"kind":"runtime","optional":false},{"id":22398755,"package_name":"argon2-cffi","ecosystem":"pypi","requirements":"==21.1.0","direct":true,"kind":"runtime","optional":false},{"id":22398756,"package_name":"attrs","ecosystem":"pypi","requirements":"==21.2.0","direct":true,"kind":"runtime","optional":false},{"id":22398757,"package_name":"backcall","ecosystem":"pypi","requirements":"==0.2.0","direct":true,"kind":"runtime","optional":false},{"id":22398758,"package_name":"bleach","ecosystem":"pypi","requirements":"==4.1.0","direct":true,"kind":"runtime","optional":false},{"id":22398759,"package_name":"blessings","ecosystem":"pypi","requirements":"==1.7","direct":true,"kind":"runtime","optional":false},{"id":22398760,"package_name":"bpython","ecosystem":"pypi","requirements":"==0.21","direct":true,"kind":"runtime","optional":false},{"id":22398761,"package_name":"certifi","ecosystem":"pypi","requirements":"==2021.5.30","direct":true,"kind":"runtime","optional":false},{"id":22398762,"package_name":"cffi","ecosystem":"pypi","requirements":"==1.14.6","direct":true,"kind":"runtime","optional":false},{"id":22398763,"package_name":"charset-normalizer","ecosystem":"pypi","requirements":"==2.0.5","direct":true,"kind":"runtime","optional":false},{"id":22398764,"package_name":"cloudpickle","ecosystem":"pypi","requirements":"==2.0.0","direct":true,"kind":"runtime","optional":false},{"id":22398765,"package_name":"coverage","ecosystem":"pypi","requirements":"==5.5","direct":true,"kind":"runtime","optional":false},{"id":22398766,"package_name":"curtsies","ecosystem":"pypi","requirements":"==0.3.5","direct":true,"kind":"runtime","optional":false},{"id":22398767,"package_name":"cwcwidth","ecosystem":"pypi","requirements":"==0.1.4","direct":true,"kind":"runtime","optional":false},{"id":22398768,"package_name":"cycler","ecosystem":"pypi","requirements":"==0.10.0","direct":true,"kind":"runtime","optional":false},{"id":22398769,"package_name":"Cython","ecosystem":"pypi","requirements":"==0.29.24","direct":true,"kind":"runtime","optional":false},{"id":22398770,"package_name":"data-science-types","ecosystem":"pypi","requirements":"==0.2.23","direct":true,"kind":"runtime","optional":false},{"id":22398771,"package_name":"debugpy","ecosystem":"pypi","requirements":"==1.4.3","direct":true,"kind":"runtime","optional":false},{"id":22398772,"package_name":"decorator","ecosystem":"pypi","requirements":"==5.1.0","direct":true,"kind":"runtime","optional":false},{"id":22398773,"package_name":"defusedxml","ecosystem":"pypi","requirements":"==0.7.1","direct":true,"kind":"runtime","optional":false},{"id":22398774,"package_name":"entrypoints","ecosystem":"pypi","requirements":"==0.3","direct":true,"kind":"runtime","optional":false},{"id":22398775,"package_name":"filelock","ecosystem":"pypi","requirements":"==3.0.12","direct":true,"kind":"runtime","optional":false},{"id":22398776,"package_name":"flatbuffers","ecosystem":"pypi","requirements":"==2.0","direct":true,"kind":"runtime","optional":false},{"id":22398777,"package_name":"GPy","ecosystem":"pypi","requirements":"==1.10.0","direct":true,"kind":"runtime","optional":false},{"id":22398778,"package_name":"GPyOpt","ecosystem":"pypi","requirements":"==1.2.6","direct":true,"kind":"runtime","optional":false},{"id":22398779,"package_name":"greenlet","ecosystem":"pypi","requirements":"==1.1.1","direct":true,"kind":"runtime","optional":false},{"id":22398780,"package_name":"idna","ecosystem":"pypi","requirements":"==3.2","direct":true,"kind":"runtime","optional":false},{"id":22398781,"package_name":"iniconfig","ecosystem":"pypi","requirements":"==1.1.1","direct":true,"kind":"runtime","optional":false},{"id":22398782,"package_name":"ipykernel","ecosystem":"pypi","requirements":"==6.4.1","direct":true,"kind":"runtime","optional":false},{"id":22398783,"package_name":"ipython","ecosystem":"pypi","requirements":"==7.31.1","direct":true,"kind":"runtime","optional":false},{"id":22398784,"package_name":"ipython-genutils","ecosystem":"pypi","requirements":"==0.2.0","direct":true,"kind":"runtime","optional":false},{"id":22398785,"package_name":"ipywidgets","ecosystem":"pypi","requirements":"==7.6.5","direct":true,"kind":"runtime","optional":false},{"id":22398786,"package_name":"jedi","ecosystem":"pypi","requirements":"==0.18.0","direct":true,"kind":"runtime","optional":false},{"id":22398787,"package_name":"Jinja2","ecosystem":"pypi","requirements":"==3.0.1","direct":true,"kind":"runtime","optional":false},{"id":22398788,"package_name":"joblib","ecosystem":"pypi","requirements":"==1.0.1","direct":true,"kind":"runtime","optional":false},{"id":22398789,"package_name":"jsonschema","ecosystem":"pypi","requirements":"==3.2.0","direct":true,"kind":"runtime","optional":false},{"id":22398790,"package_name":"jupyter","ecosystem":"pypi","requirements":"==1.0.0","direct":true,"kind":"runtime","optional":false},{"id":22398791,"package_name":"jupyter-client","ecosystem":"pypi","requirements":"==7.0.2","direct":true,"kind":"runtime","optional":false},{"id":22398792,"package_name":"jupyter-console","ecosystem":"pypi","requirements":"==6.4.0","direct":true,"kind":"runtime","optional":false},{"id":22398793,"package_name":"jupyter-core","ecosystem":"pypi","requirements":"==4.7.1","direct":true,"kind":"runtime","optional":false},{"id":22398794,"package_name":"jupyterlab-pygments","ecosystem":"pypi","requirements":"==0.1.2","direct":true,"kind":"runtime","optional":false},{"id":22398795,"package_name":"jupyterlab-widgets","ecosystem":"pypi","requirements":"==1.0.2","direct":true,"kind":"runtime","optional":false},{"id":22398796,"package_name":"kiwisolver","ecosystem":"pypi","requirements":"==1.3.2","direct":true,"kind":"runtime","optional":false},{"id":22398797,"package_name":"llvmlite","ecosystem":"pypi","requirements":"==0.37.0","direct":true,"kind":"runtime","optional":false},{"id":22398798,"package_name":"MarkupSafe","ecosystem":"pypi","requirements":"==2.0.1","direct":true,"kind":"runtime","optional":false},{"id":22398799,"package_name":"matplotlib","ecosystem":"pypi","requirements":"==3.4.3","direct":true,"kind":"runtime","optional":false},{"id":22398800,"package_name":"matplotlib-inline","ecosystem":"pypi","requirements":"==0.1.3","direct":true,"kind":"runtime","optional":false},{"id":22398801,"package_name":"mistune","ecosystem":"pypi","requirements":"==0.8.4","direct":true,"kind":"runtime","optional":false},{"id":22398802,"package_name":"mypy","ecosystem":"pypi","requirements":"==0.910","direct":true,"kind":"runtime","optional":false},{"id":22398803,"package_name":"mypy-extensions","ecosystem":"pypi","requirements":"==0.4.3","direct":true,"kind":"runtime","optional":false},{"id":22398804,"package_name":"nbclient","ecosystem":"pypi","requirements":"==0.5.4","direct":true,"kind":"runtime","optional":false},{"id":22398805,"package_name":"nbconvert","ecosystem":"pypi","requirements":"==6.1.0","direct":true,"kind":"runtime","optional":false},{"id":22398806,"package_name":"nbformat","ecosystem":"pypi","requirements":"==5.1.3","direct":true,"kind":"runtime","optional":false},{"id":22398807,"package_name":"nbmake","ecosystem":"pypi","requirements":"==0.8","direct":true,"kind":"runtime","optional":false},{"id":22398808,"package_name":"nest-asyncio","ecosystem":"pypi","requirements":"==1.5.1","direct":true,"kind":"runtime","optional":false},{"id":22398809,"package_name":"notebook","ecosystem":"pypi","requirements":"==6.4.3","direct":true,"kind":"runtime","optional":false},{"id":22398810,"package_name":"numba","ecosystem":"pypi","requirements":"==0.54.0","direct":true,"kind":"runtime","optional":false},{"id":22398811,"package_name":"numpy","ecosystem":"pypi","requirements":"==1.20.0","direct":true,"kind":"runtime","optional":false},{"id":22398812,"package_name":"onnxruntime","ecosystem":"pypi","requirements":"==1.8.1","direct":true,"kind":"runtime","optional":false},{"id":22398813,"package_name":"packaging","ecosystem":"pypi","requirements":"==21.0","direct":true,"kind":"runtime","optional":false},{"id":22398814,"package_name":"pandocfilters","ecosystem":"pypi","requirements":"==1.5.0","direct":true,"kind":"runtime","optional":false},{"id":22398815,"package_name":"paramz","ecosystem":"pypi","requirements":"==0.9.5","direct":true,"kind":"runtime","optional":false},{"id":22398816,"package_name":"parso","ecosystem":"pypi","requirements":"==0.8.2","direct":true,"kind":"runtime","optional":false},{"id":22398817,"package_name":"pathlib","ecosystem":"pypi","requirements":"==1.0.1","direct":true,"kind":"runtime","optional":false},{"id":22398818,"package_name":"pexpect","ecosystem":"pypi","requirements":"==4.8.0","direct":true,"kind":"runtime","optional":false},{"id":22398819,"package_name":"pickleshare","ecosystem":"pypi","requirements":"==0.7.5","direct":true,"kind":"runtime","optional":false},{"id":22398820,"package_name":"Pillow","ecosystem":"pypi","requirements":"==9.0.0","direct":true,"kind":"runtime","optional":false},{"id":22398821,"package_name":"pip","ecosystem":"pypi","requirements":"==21.2.4","direct":true,"kind":"runtime","optional":false},{"id":22398822,"package_name":"pluggy","ecosystem":"pypi","requirements":"==1.0.0","direct":true,"kind":"runtime","optional":false},{"id":22398823,"package_name":"prometheus-client","ecosystem":"pypi","requirements":"==0.11.0","direct":true,"kind":"runtime","optional":false},{"id":22398824,"package_name":"prompt-toolkit","ecosystem":"pypi","requirements":"==3.0.20","direct":true,"kind":"runtime","optional":false},{"id":22398825,"package_name":"protobuf","ecosystem":"pypi","requirements":"==3.17.3","direct":true,"kind":"runtime","optional":false},{"id":22398826,"package_name":"ptyprocess","ecosystem":"pypi","requirements":"==0.7.0","direct":true,"kind":"runtime","optional":false},{"id":22398827,"package_name":"py","ecosystem":"pypi","requirements":"==1.10.0","direct":true,"kind":"runtime","optional":false},{"id":22398828,"package_name":"pyaml","ecosystem":"pypi","requirements":"==21.8.3","direct":true,"kind":"runtime","optional":false},{"id":22398829,"package_name":"pycparser","ecosystem":"pypi","requirements":"==2.20","direct":true,"kind":"runtime","optional":false},{"id":22398830,"package_name":"pydantic","ecosystem":"pypi","requirements":"==1.8.2","direct":true,"kind":"runtime","optional":false},{"id":22398831,"package_name":"pydot","ecosystem":"pypi","requirements":"==1.4.2","direct":true,"kind":"runtime","optional":false},{"id":22398832,"package_name":"Pygments","ecosystem":"pypi","requirements":"==2.10.0","direct":true,"kind":"runtime","optional":false},{"id":22398833,"package_name":"pymap3d","ecosystem":"pypi","requirements":"==2.4.0","direct":true,"kind":"runtime","optional":false},{"id":22398834,"package_name":"pyparsing","ecosystem":"pypi","requirements":"==2.4.7","direct":true,"kind":"runtime","optional":false},{"id":22398844,"package_name":"requests","ecosystem":"pypi","requirements":"==2.26.0","direct":true,"kind":"runtime","optional":false},{"id":22398845,"package_name":"scikit-learn","ecosystem":"pypi","requirements":"==0.24.2","direct":true,"kind":"runtime","optional":false},{"id":22398846,"package_name":"scikit-optimize","ecosystem":"pypi","requirements":"==0.8.1","direct":true,"kind":"runtime","optional":false},{"id":22398843,"package_name":"QtPy","ecosystem":"pypi","requirements":"==1.11.1","direct":true,"kind":"runtime","optional":false},{"id":22398835,"package_name":"pyrsistent","ecosystem":"pypi","requirements":"==0.18.0","direct":true,"kind":"runtime","optional":false},{"id":22398836,"package_name":"pytest","ecosystem":"pypi","requirements":"==6.2.5","direct":true,"kind":"runtime","optional":false},{"id":22398837,"package_name":"pytest-mypy","ecosystem":"pypi","requirements":"==0.8.1","direct":true,"kind":"runtime","optional":false},{"id":22398838,"package_name":"python-dateutil","ecosystem":"pypi","requirements":"==2.8.2","direct":true,"kind":"runtime","optional":false},{"id":22398839,"package_name":"pyxdg","ecosystem":"pypi","requirements":"==0.27","direct":true,"kind":"runtime","optional":false},{"id":22398840,"package_name":"PyYAML","ecosystem":"pypi","requirements":"==5.4.1","direct":true,"kind":"runtime","optional":false},{"id":22398841,"package_name":"pyzmq","ecosystem":"pypi","requirements":"==22.2.1","direct":true,"kind":"runtime","optional":false},{"id":22398842,"package_name":"qtconsole","ecosystem":"pypi","requirements":"==5.1.1","direct":true,"kind":"runtime","optional":false},{"id":22398847,"package_name":"scipy","ecosystem":"pypi","requirements":"==1.7.1","direct":true,"kind":"runtime","optional":false},{"id":22398848,"package_name":"Send2Trash","ecosystem":"pypi","requirements":"==1.8.0","direct":true,"kind":"runtime","optional":false},{"id":22398849,"package_name":"setuptools","ecosystem":"pypi","requirements":"==52.0","direct":true,"kind":"runtime","optional":false},{"id":22398850,"package_name":"six","ecosystem":"pypi","requirements":"==1.16.0","direct":true,"kind":"runtime","optional":false},{"id":22398851,"package_name":"svgpath2mpl","ecosystem":"pypi","requirements":"==1.0.0","direct":true,"kind":"runtime","optional":false},{"id":22398852,"package_name":"terminado","ecosystem":"pypi","requirements":"==0.12.1","direct":true,"kind":"runtime","optional":false},{"id":22398853,"package_name":"testpath","ecosystem":"pypi","requirements":"==0.5.0","direct":true,"kind":"runtime","optional":false},{"id":22398854,"package_name":"threadpoolctl","ecosystem":"pypi","requirements":"==2.2.0","direct":true,"kind":"runtime","optional":false},{"id":22398855,"package_name":"toml","ecosystem":"pypi","requirements":"==0.10.2","direct":true,"kind":"runtime","optional":false},{"id":22398856,"package_name":"tornado","ecosystem":"pypi","requirements":"==6.1","direct":true,"kind":"runtime","optional":false},{"id":22398857,"package_name":"tqdm","ecosystem":"pypi","requirements":"==4.62.2","direct":true,"kind":"runtime","optional":false},{"id":22398858,"package_name":"traitlets","ecosystem":"pypi","requirements":"==5.1.0","direct":true,"kind":"runtime","optional":false},{"id":22398859,"package_name":"typing-extensions","ecosystem":"pypi","requirements":"==3.10.0.2","direct":true,"kind":"runtime","optional":false},{"id":22398860,"package_name":"urllib3","ecosystem":"pypi","requirements":"==1.26.6","direct":true,"kind":"runtime","optional":false},{"id":22398861,"package_name":"wcwidth","ecosystem":"pypi","requirements":"==0.2.5","direct":true,"kind":"runtime","optional":false},{"id":22398862,"package_name":"webencodings","ecosystem":"pypi","requirements":"==0.5.1","direct":true,"kind":"runtime","optional":false},{"id":22398863,"package_name":"wheel","ecosystem":"pypi","requirements":"==0.37.0","direct":true,"kind":"runtime","optional":false},{"id":22398864,"package_name":"widgetsnbextension","ecosystem":"pypi","requirements":"==3.5.1","direct":true,"kind":"runtime","optional":false}]},{"ecosystem":"pypi","filepath":"setup.py","sha":null,"kind":"manifest","created_at":"2022-06-23T15:46:27.753Z","updated_at":"2022-06-23T15:46:27.753Z","repository_link":"https://github.com/GaloisInc/csaf/blob/develop/setup.py","dependencies":[{"id":22398917,"package_name":"numpy","ecosystem":"pypi","requirements":"\u003e=1.20.0","direct":true,"kind":"runtime","optional":false},{"id":22398918,"package_name":"numba","ecosystem":"pypi","requirements":"\u003e=0.54.0","direct":true,"kind":"runtime","optional":false},{"id":22398919,"package_name":"matplotlib","ecosystem":"pypi","requirements":"\u003e=3.4.3","direct":true,"kind":"runtime","optional":false},{"id":22398920,"package_name":"scipy","ecosystem":"pypi","requirements":"\u003e=1.7.1","direct":true,"kind":"runtime","optional":false},{"id":22398921,"package_name":"GPyOpt","ecosystem":"pypi","requirements":"\u003e=1.2.6","direct":true,"kind":"runtime","optional":false},{"id":22398922,"package_name":"tqdm","ecosystem":"pypi","requirements":"\u003e=4.62.2","direct":true,"kind":"runtime","optional":false},{"id":22398923,"package_name":"onnxruntime","ecosystem":"pypi","requirements":"\u003e=1.7.0","direct":true,"kind":"runtime","optional":false},{"id":22398924,"package_name":"pydot","ecosystem":"pypi","requirements":"\u003e=1.4.1","direct":true,"kind":"runtime","optional":false},{"id":22398925,"package_name":"svgpath2mpl","ecosystem":"pypi","requirements":"\u003e=1.0.0","direct":true,"kind":"runtime","optional":false}]},{"ecosystem":"actions","filepath":".github/workflows/main.yml","sha":null,"kind":"manifest","created_at":"2023-01-21T12:17:52.156Z","updated_at":"2023-01-21T12:17:52.156Z","repository_link":"https://github.com/GaloisInc/csaf/blob/develop/.github/workflows/main.yml","dependencies":[{"id":7077831189,"package_name":"actions/checkout","ecosystem":"actions","requirements":"v2","direct":true,"kind":"composite","optional":false},{"id":7077831190,"package_name":"actions/setup-python","ecosystem":"actions","requirements":"v2","direct":true,"kind":"composite","optional":false},{"id":7077831191,"package_name":"syphar/restore-virtualenv","ecosystem":"actions","requirements":"v1","direct":true,"kind":"composite","optional":false},{"id":7077831192,"package_name":"syphar/restore-pip-download-cache","ecosystem":"actions","requirements":"v1","direct":true,"kind":"composite","optional":false}]},{"ecosystem":"docker","filepath":"Dockerfile","sha":null,"kind":"manifest","created_at":"2023-01-21T12:17:52.164Z","updated_at":"2023-01-21T12:17:52.164Z","repository_link":"https://github.com/GaloisInc/csaf/blob/develop/Dockerfile","dependencies":[{"id":7077831193,"package_name":"python","ecosystem":"docker","requirements":"3.9","direct":true,"kind":"build","optional":false}]}],"score":7.401231264413015,"created_at":"2025-09-04T15:51:00.102Z","updated_at":"2025-10-07T08:12:17.670Z","avatar_url":"https://github.com/GaloisInc.png","language":"Python","category":null,"sub_category":null,"monthly_downloads":7,"funding_links":[],"readme_doi_urls":[],"works":{},"citation_counts":{},"total_citations":0,"keywords_from_contributors":[],"project_url":"https://science.ecosyste.ms/api/v1/projects/27760","html_url":"https://science.ecosyste.ms/projects/27760"}