Data

Tools

Indexes

Applications

Experiments

Open Source Science

criticality_score

Gives criticality score for an open source project

https://github.com/ossf/criticality_score

Science Score: 54.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
    Found CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
    Found .zenodo.json file
  • DOI references
  • Academic publication links
  • Committers with academic emails
    1 of 21 committers (4.8%) from academic institutions
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (8.3%) to scientific vocabulary

Keywords from Contributors

cryptocurrencies optimizer mesh xunit-test graph-generation interactive xunit-framework distributed yolov5s argument-parser
Last synced: 10 months ago · JSON representation ·

Repository

Gives criticality score for an open source project

Basic Info
  • Host: GitHub
  • Owner: ossf
  • License: apache-2.0
  • Language: Go
  • Default Branch: main
  • Size: 1.59 MB
Statistics
  • Stars: 1,372
  • Watchers: 32
  • Forks: 125
  • Open Issues: 76
  • Releases: 11
Created over 5 years ago · Last pushed about 1 year ago
Metadata Files
Readme Contributing License Code of conduct Citation Security

README.md

Open Source Project Criticality Score (Beta)

OpenSSF Scorecard

This project is maintained by members of the Securing Critical Projects WG.

Goals

  1. Generate a criticality score for every open source project.

  2. Create a list of critical projects that the open source community depends on.

  3. Use this data to proactively improve the security posture of these critical projects.

Criticality Score

A project's criticality score defines the influence and importance of a project. It is a number between 0 (least-critical) and 1 (most-critical). It is based on the following algorithm by Rob Pike:

We use the following default parameters to derive the criticality score for an open source project:

| Parameter (Si) | Weight (αi) | Max threshold (Ti) | Description | Reasoning | |---|---:|---:|---|---| | createdsince | 1 | 120 | Time since the project was created (in months) | Older project has higher chance of being widely used or being dependent upon. | | updatedsince | -1 | 120 | Time since the project was last updated (in months) | Unmaintained projects with no recent commits have higher chance of being less relied upon. | | contributor_count | 2 | 5000 | Count of project contributors (with commits) | Different contributors involvement indicates project's importance. | | orgcount | 1 | 10 | Count of distinct organizations that contributors belong to | Indicates cross-organization dependency. | | commitfrequency | 1 | 1000 | Average number of commits per week in the last year | Higher code churn has slight indication of project's importance. Also, higher susceptibility to vulnerabilities. | recentreleasescount | 0.5 | 26 | Number of releases in the last year | Frequent releases indicates user dependency. Lower weight since this is not always used. | | closedissuescount | 0.5 | 5000 | Number of issues closed in the last 90 days | Indicates high contributor involvement and focus on closing user issues. Lower weight since it is dependent on project contributors. | | updatedissuescount | 0.5 | 5000 | Number of issues updated in the last 90 days | Indicates high contributor involvement. Lower weight since it is dependent on project contributors. | | commentfrequency | 1 | 15 | Average number of comments per issue in the last 90 days | Indicates high user activity and dependence. | | **dependentscount** | 2 | 500000 | Number of project mentions in the commit messages | Indicates repository use, usually in version rolls. This parameter works across all languages, including C/C++ that don't have package dependency graphs (though hack-ish). Plan to add package dependency trees in the near future. |

NOTE:

  • You can override those default values at runtime as described below.
  • We are looking for community ideas to improve upon these parameters.
  • There will always be exceptions to the individual reasoning rules.

Usage

```shell $ go install github.com/ossf/criticalityscore/v2/cmd/criticalityscore@latest

$ export GITHUB_TOKEN=... # requires a GitHub token to work $ gcloud auth login --update-adc # optional, add -depsdev-disable to skip

$ criticalityscore -gcp-project-id=[your projectID] https://github.com/kubernetes/kubernetes repo.name: kubernetes repo.url: https://github.com/kubernetes/kubernetes repo.language: Go repo.license: Apache License 2.0 legacy.createdsince: 87 legacy.updatedsince: 0 legacy.contributorcount: 3999 legacy.watcherscount: 79583 legacy.orgcount: 5 legacy.commitfrequency: 97.2 legacy.recentreleasescount: 70 legacy.updatedissuescount: 5395 legacy.closedissuescount: 3062 legacy.commentfrequency: 5.5 legacy.dependentscount: 454393 defaultscore: 0.99107 ```

The score can be changed by using the -scoring-config parameter and supplying a different configuration file to specify how the score is calculated.

By default the original_pike.yml configuration is used to calculate the score. However, other config files can be supplied to produce different scores. See config/scorer for more.

Feel free to copy one of the configurations and adjust the weights and thresholds to suit your needs.

Authentication

Before running criticality score, you need to:

```shell

For posix platforms, e.g. linux, mac:

export GITHUBAUTHTOKEN=

For windows:

set GITHUBAUTHTOKEN= ```

Formatting Results

There are three formats currently: text, json, and csv. Others may be added in the future.

These may be specified with the -format flag.

Other Commands

The criticality score project also has other commands for generating and working with criticality score data.

  • enumerate_github: a tool for accurately collecting a set of GitHub repos with a minimum number of stars
  • collect_signals: a worker for collecting raw signals at scale by leveraging the Scorecard project's infrastructure.
  • scorer: a tool for recalculating criticality scores based on an input CSV file.

Public Data

If you're interested in seeing a list of critical projects with their criticality score, we publish them in csv format and a BigQuery dataset.

This data is generated using a production instance of the criticality score project running in GCP. Details for how this is deployed can be found in the infra directory.

NOTE: Currently, these lists are derived from projects hosted on GitHub ONLY. We do plan to expand them in near future to account for projects hosted on other source control systems.

CSV data

The data is available on Google Cloud Storage and can be downloaded via:

BigQuery Dataset

This data is available in the public BigQuery dataset.

With a GCP account you can run queries across the data. For example, here is a query returning the top 100 repos by score:

sql SELECT repo.url, default_score FROM `openssf.criticality_score_cron.criticality-score-v0-latest` ORDER BY default_score DESC LIMIT 100;

Contributing

If you want to get involved or have ideas you'd like to chat about, we discuss this project in the Securing Critical Projects WG meetings.

See the Community Calendar for the schedule and meeting invitations.

See the Contributing documentation for guidance on how to contribute.

Owner

  • Name: Open Source Security Foundation (OpenSSF)
  • Login: ossf
  • Kind: organization
  • Location: San Francisco, CA

Citation (CITATION.cff) 

type: software
cff-version: 1.2.0
message: "If you use this software, please cite it as below."
authors:
- family-names: "Arya"
  given-names: "Abhishek"
- family-names: "Brown"
  given-names: "Caleb"
- family-names: "Pike"
  given-names: "Rob"
- name: "The Open Source Security Foundation" 
title: "Open Source Project Criticality Score"
date-released: 2023-03-01
url: "https://github.com/ossf/criticality_score"
license: Apache-2.0
version: "2.0.2"

GitHub Events

Total
  • Issues event: 4
  • Watch event: 75
  • Delete event: 103
  • Issue comment event: 102
  • Push event: 41
  • Pull request review comment event: 4
  • Pull request review event: 12
  • Pull request event: 204
  • Fork event: 8
  • Create event: 102
Last Year
  • Issues event: 4
  • Watch event: 75
  • Delete event: 103
  • Issue comment event: 102
  • Push event: 41
  • Pull request review comment event: 4
  • Pull request review event: 12
  • Pull request event: 204
  • Fork event: 8
  • Create event: 102

Committers

Last synced: about 1 year ago

All Time
  • Total Commits: 388
  • Total Committers: 21
  • Avg Commits per committer: 18.476
  • Development Distribution Score (DDS): 0.688
Past Year
  • Commits: 44
  • Committers: 4
  • Avg Commits per committer: 11.0
  • Development Distribution Score (DDS): 0.091
Top Committers
Name Email Commits
dependabot[bot] 4****] 121
Caleb Brown c****n@g****m 114
Abhishek Arya i****o@c****g 84
coni2k c****k 27
nathannaveen 4****n 20
Yikun Jiang y****o@g****m 4
Nuthan Munaiah n****h@l****m 3
Azeem Shaikh a****8@g****m 2
Dan Lorenc d****c@g****m 1
tkm t****m@t****m 1
Arnaud J Le Hors l****s@u****m 1
Brandon Simmons b****s@g****m 1
CannedFish Liang l****9@1****m 1
Dan Baston d****n@g****m 1
Dilan d****1@b****u 1
Felix hi@l****e 1
Mille Codex 3****x 1
Naveen 1****n 1
Riaan Kleinhans 6****s 1
dependabot-preview[bot] 2****] 1
i2z1 i****1@y****u 1
Committer Domains (Top 20 + Academic)
google.com: 2 yandex.ru: 1 l33t.name: 1 berkeley.edu: 1 126.com: 1 us.ibm.com: 1 tribepayments.com: 1 chromium.org: 1

Issues and Pull Requests

Last synced: 10 months ago

All Time
  • Total issues: 30
  • Total pull requests: 537
  • Average time to close issues: 2 months
  • Average time to close pull requests: 19 days
  • Total issue authors: 20
  • Total pull request authors: 13
  • Average comments per issue: 1.67
  • Average comments per pull request: 0.82
  • Merged pull requests: 152
  • Bot issues: 0
  • Bot pull requests: 467
Past Year
  • Issues: 4
  • Pull requests: 217
  • Average time to close issues: 16 days
  • Average time to close pull requests: 16 days
  • Issue authors: 3
  • Pull request authors: 5
  • Average comments per issue: 0.0
  • Average comments per pull request: 0.82
  • Merged pull requests: 24
  • Bot issues: 0
  • Bot pull requests: 206
View more stats
Top Authors
Issue Authors
  • LikeFirstMeet (4)
  • calebbrown (4)
  • pnacht (2)
  • tzing0013 (2)
  • fredgan (2)
  • nathannaveen (2)
  • EVAAAs (1)
  • silvergasp (1)
  • nedbat (1)
  • Eiim (1)
  • juliehinge (1)
  • oliverchang (1)
  • winspool (1)
  • Bunos07 (1)
  • JarLob (1)
Pull Request Authors
  • dependabot[bot] (650)
  • calebbrown (54)
  • nathannaveen (18)
  • riaankleinhans (4)
  • Carmendelope (2)
  • tzing0013 (2)
  • dbaston (2)
  • redenmartinez (2)
  • millecodex (1)
  • Surphr (1)
  • coni2k (1)
  • Jehops (1)
Top Labels
Issue Labels
bug (1) priority (1)
Pull Request Labels
dependencies (649) go (408) github_actions (241)

Packages

  • Total packages: 4
  • Total downloads: unknown
  • Total dependent packages: 0
    (may contain duplicates)
  • Total dependent repositories: 0
    (may contain duplicates)
  • Total versions: 11
proxy.golang.org: github.com/ossf/criticality_score
  • Versions: 6
  • Dependent Packages: 0
  • Dependent Repositories: 0
Rankings
Stargazers count: 1.2%
Forks count: 1.7%
Average: 4.8%
Dependent packages count: 7.0%
Dependent repos count: 9.3%
Last synced: 10 months ago
proxy.golang.org: github.com/ossf/criticality_score/tools/v2
  • Versions: 0
  • Dependent Packages: 0
  • Dependent Repositories: 0
Rankings
Dependent packages count: 7.3%
Average: 7.6%
Dependent repos count: 7.8%
Last synced: about 1 year ago
proxy.golang.org: github.com/ossf/criticality_score/v2
  • Versions: 5
  • Dependent Packages: 0
  • Dependent Repositories: 0
Rankings
Dependent packages count: 8.5%
Average: 9.1%
Dependent repos count: 9.6%
Last synced: 10 months ago
proxy.golang.org: github.com/ossf/criticality_score/tools
  • Versions: 0
  • Dependent Packages: 0
  • Dependent Repositories: 0
Rankings
Dependent packages count: 8.9%
Average: 9.5%
Dependent repos count: 10.1%
Last synced: 12 months ago

Dependencies

go.mod go
  • cloud.google.com/go v0.100.2
  • cloud.google.com/go/bigquery v1.32.0
  • cloud.google.com/go/compute v1.5.0
  • cloud.google.com/go/iam v0.3.0
  • github.com/bombsimon/logrusr/v2 v2.0.1
  • github.com/bradleyfalzon/ghinstallation/v2 v2.0.4
  • github.com/go-logr/logr v1.2.3
  • github.com/golang-jwt/jwt/v4 v4.4.1
  • github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da
  • github.com/golang/protobuf v1.5.2
  • github.com/google/go-cmp v0.5.8
  • github.com/google/go-github/v41 v41.0.0
  • github.com/google/go-github/v44 v44.1.0
  • github.com/google/go-querystring v1.1.0
  • github.com/googleapis/gax-go/v2 v2.3.0
  • github.com/iancoleman/strcase v0.2.0
  • github.com/ossf/scorecard/v4 v4.1.1-0.20220413163106-b00b31646ab4
  • github.com/shurcooL/githubv4 v0.0.0-20220115235240-a14260e6f8a2
  • github.com/shurcooL/graphql v0.0.0-20200928012149-18c5c3165e3a
  • github.com/sirupsen/logrus v1.8.1
  • github.com/stretchr/testify v1.7.1
  • go.opencensus.io v0.23.0
  • golang.org/x/crypto v0.0.0-20220331220935-ae2d96664a29
  • golang.org/x/net v0.0.0-20220401154927-543a649e0bdd
  • golang.org/x/oauth2 v0.0.0-20220309155454-6242fa91716a
  • golang.org/x/sys v0.0.0-20220330033206-e17cdc41300f
  • golang.org/x/text v0.3.7
  • golang.org/x/xerrors v0.0.0-20220411194840-2f41105eb62f
  • google.golang.org/api v0.74.0
  • google.golang.org/appengine v1.6.7
  • google.golang.org/genproto v0.0.0-20220413183235-5e96e2839df9
  • google.golang.org/grpc v1.45.0
  • google.golang.org/protobuf v1.28.0
  • gopkg.in/yaml.v3 v3.0.1
go.sum go
  • 630 dependencies
.github/workflows/ci.yml actions
  • actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
  • actions/setup-go 6edd4406fa81c3da01a34fa6f6343087c207a568 composite
  • golangci/golangci-lint-action 08e2f20817b15149a52b5b3ebe7de50aff2ba8c5 composite
.github/workflows/codeql-analysis.yml actions
  • actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
  • github/codeql-action/analyze v2 composite
  • github/codeql-action/autobuild v2 composite
  • github/codeql-action/init v2 composite
.github/workflows/scorecards.yml actions
  • actions/checkout ac593985615ec2ede58e132d2e21d2b1cbd6127c composite
  • actions/upload-artifact 0b7f8abb1508181956e8e162db84b466c27e18ce composite
  • github/codeql-action/upload-sarif f5d822707ee6e8fb81b04a5c0040b736da22e587 composite
  • ossf/scorecard-action e38b1902ae4f44df626f11ba0734b14fb91f8f86 composite
cmd/collect_signals/Dockerfile docker
  • base latest build
  • gcr.io/distroless/base nonroot@sha256 build
  • golang@sha256 122f3484f844467ebe0674cf57272e61981770eb0bc7d316d1f0be281a88229f build
cmd/criticality_score/Dockerfile docker
  • base latest build
  • gcr.io/distroless/base nonroot@sha256 build
  • golang@sha256 122f3484f844467ebe0674cf57272e61981770eb0bc7d316d1f0be281a88229f build
cmd/csv_transfer/Dockerfile docker
  • base latest build
  • gcr.io/distroless/base nonroot@sha256 build
  • golang@sha256 122f3484f844467ebe0674cf57272e61981770eb0bc7d316d1f0be281a88229f build
cmd/enumerate_github/Dockerfile docker
  • base latest build
  • gcr.io/distroless/base nonroot@sha256 build
  • golang@sha256 122f3484f844467ebe0674cf57272e61981770eb0bc7d316d1f0be281a88229f build
infra/test/docker-compose.yml docker
  • criticality-score-enumerate-github latest
  • gcr.io/openssf/scorecard-github-server latest
  • minio/minio@sha256 684ce208c005fe032659ec77bafa6a17a16c41686c334618dec924b3505e7090
tools/go.mod go
  • 4d63.com/gocheckcompilerdirectives v1.2.1
  • 4d63.com/gochecknoglobals v0.2.1
  • github.com/Abirdcfly/dupword v0.0.9
  • github.com/Antonboom/errname v0.1.7
  • github.com/Antonboom/nilnil v0.1.1
  • github.com/BurntSushi/toml v1.2.1
  • github.com/Djarvur/go-err113 v0.0.0-20210108212216-aea10b59be24
  • github.com/GaijinEntertainment/go-exhaustruct/v2 v2.3.0
  • github.com/Masterminds/semver v1.5.0
  • github.com/OpenPeeDeeP/depguard v1.1.1
  • github.com/alexkohler/prealloc v1.0.0
  • github.com/alingse/asasalint v0.0.11
  • github.com/ashanbrown/forbidigo v1.3.0
  • github.com/ashanbrown/makezero v1.1.1
  • github.com/beorn7/perks v1.0.1
  • github.com/bkielbasa/cyclop v1.2.0
  • github.com/blizzy78/varnamelen v0.8.0
  • github.com/bombsimon/wsl/v3 v3.3.0
  • github.com/breml/bidichk v0.2.3
  • github.com/breml/errchkjson v0.3.0
  • github.com/butuzov/ireturn v0.1.1
  • github.com/cespare/xxhash/v2 v2.1.2
  • github.com/charithe/durationcheck v0.0.9
  • github.com/chavacava/garif v0.0.0-20221024190013-b3ef35877348
  • github.com/curioswitch/go-reassign v0.2.0
  • github.com/daixiang0/gci v0.9.0
  • github.com/davecgh/go-spew v1.1.1
  • github.com/denis-tingaikin/go-header v0.4.3
  • github.com/esimonov/ifshort v1.0.4
  • github.com/ettle/strcase v0.1.1
  • github.com/fatih/color v1.14.1
  • github.com/fatih/structtag v1.2.0
  • github.com/firefart/nonamedreturns v1.0.4
  • github.com/fsnotify/fsnotify v1.5.4
  • github.com/fzipp/gocyclo v0.6.0
  • github.com/go-critic/go-critic v0.6.5
  • github.com/go-toolsmith/astcast v1.0.0
  • github.com/go-toolsmith/astcopy v1.0.3
  • github.com/go-toolsmith/astequal v1.0.3
  • github.com/go-toolsmith/astfmt v1.0.0
  • github.com/go-toolsmith/astp v1.0.0
  • github.com/go-toolsmith/strparse v1.0.0
  • github.com/go-toolsmith/typep v1.0.2
  • github.com/go-xmlfmt/xmlfmt v1.1.2
  • github.com/gobwas/glob v0.2.3
  • github.com/gofrs/flock v0.8.1
  • github.com/golang/protobuf v1.5.2
  • github.com/golangci/check v0.0.0-20180506172741-cfe4005ccda2
  • github.com/golangci/dupl v0.0.0-20180902072040-3e9179ac440a
  • github.com/golangci/go-misc v0.0.0-20220329215616-d24fe342adfe
  • github.com/golangci/gofmt v0.0.0-20220901101216-f2edd75033f2
  • github.com/golangci/golangci-lint v1.51.1
  • github.com/golangci/lint-1 v0.0.0-20191013205115-297bf364a8e0
  • github.com/golangci/maligned v0.0.0-20180506175553-b1d89398deca
  • github.com/golangci/misspell v0.4.0
  • github.com/golangci/revgrep v0.0.0-20220804021717-745bb2f7c2e6
  • github.com/golangci/unconvert v0.0.0-20180507085042-28b1c447d1f4
  • github.com/google/go-cmp v0.5.9
  • github.com/gordonklaus/ineffassign v0.0.0-20230107090616-13ace0543b28
  • github.com/gostaticanalysis/analysisutil v0.7.1
  • github.com/gostaticanalysis/comment v1.4.2
  • github.com/gostaticanalysis/forcetypeassert v0.1.0
  • github.com/gostaticanalysis/nilerr v0.1.1
  • github.com/hashicorp/errwrap v1.0.0
  • github.com/hashicorp/go-multierror v1.1.1
  • github.com/hashicorp/go-version v1.6.0
  • github.com/hashicorp/hcl v1.0.0
  • github.com/hexops/gotextdiff v1.0.3
  • github.com/inconshreveable/mousetrap v1.0.1
  • github.com/jgautheron/goconst v1.5.1
  • github.com/jingyugao/rowserrcheck v1.1.1
  • github.com/jirfag/go-printf-func-name v0.0.0-20200119135958-7558a9eaa5af
  • github.com/julz/importas v0.1.0
  • github.com/junk1tm/musttag v0.4.4
  • github.com/kisielk/errcheck v1.6.3
  • github.com/kisielk/gotool v1.0.0
  • github.com/kkHAIKE/contextcheck v1.1.3
  • github.com/kulti/thelper v0.6.3
  • github.com/kunwardeep/paralleltest v1.0.6
  • github.com/kyoh86/exportloopref v0.1.11
  • github.com/ldez/gomoddirectives v0.2.3
  • github.com/ldez/tagliatelle v0.4.0
  • github.com/leonklingele/grouper v1.1.1
  • github.com/lufeee/execinquery v1.2.1
  • github.com/magiconair/properties v1.8.6
  • github.com/maratori/testableexamples v1.0.0
  • github.com/maratori/testpackage v1.1.0
  • github.com/matoous/godox v0.0.0-20210227103229-6504466cf951
  • github.com/mattn/go-colorable v0.1.13
  • github.com/mattn/go-isatty v0.0.17
  • github.com/mattn/go-runewidth v0.0.9
  • github.com/matttproud/golang_protobuf_extensions v1.0.1
  • github.com/mbilski/exhaustivestruct v1.2.0
  • github.com/mgechev/revive v1.2.5
  • github.com/mitchellh/go-homedir v1.1.0
  • github.com/mitchellh/mapstructure v1.5.0
  • github.com/moricho/tparallel v0.2.1
  • github.com/nakabonne/nestif v0.3.1
  • github.com/nbutton23/zxcvbn-go v0.0.0-20210217022336-fa2cb2858354
  • github.com/nishanths/exhaustive v0.9.5
  • github.com/nishanths/predeclared v0.2.2
  • github.com/nunnatsa/ginkgolinter v0.8.1
  • github.com/olekukonko/tablewriter v0.0.5
  • github.com/pelletier/go-toml v1.9.5
  • github.com/pelletier/go-toml/v2 v2.0.5
  • github.com/pkg/errors v0.9.1
  • github.com/pmezard/go-difflib v1.0.0
  • github.com/polyfloyd/go-errorlint v1.0.6
  • github.com/prometheus/client_golang v1.12.1
  • github.com/prometheus/client_model v0.2.0
  • github.com/prometheus/common v0.32.1
  • github.com/prometheus/procfs v0.7.3
  • github.com/quasilyte/go-ruleguard v0.3.18
  • github.com/quasilyte/gogrep v0.0.0-20220828223005-86e4605de09f
  • github.com/quasilyte/regex/syntax v0.0.0-20200407221936-30656e2c4a95
  • github.com/quasilyte/stdinfo v0.0.0-20220114132959-f7386bf02567
  • github.com/ryancurrah/gomodguard v1.3.0
  • github.com/ryanrolds/sqlclosecheck v0.4.0
  • github.com/sanposhiho/wastedassign/v2 v2.0.7
  • github.com/sashamelentyev/interfacebloat v1.1.0
  • github.com/sashamelentyev/usestdlibvars v1.21.1
  • github.com/securego/gosec/v2 v2.14.0
  • github.com/shazow/go-diff v0.0.0-20160112020656-b6b7b6733b8c
  • github.com/sirupsen/logrus v1.9.0
  • github.com/sivchari/containedctx v1.0.2
  • github.com/sivchari/nosnakecase v1.7.0
  • github.com/sivchari/tenv v1.7.1
  • github.com/sonatard/noctx v0.0.1
  • github.com/sourcegraph/go-diff v0.7.0
  • github.com/spf13/afero v1.8.2
  • github.com/spf13/cast v1.5.0
  • github.com/spf13/cobra v1.6.1
  • github.com/spf13/jwalterweatherman v1.1.0
  • github.com/spf13/pflag v1.0.5
  • github.com/spf13/viper v1.13.0
  • github.com/ssgreg/nlreturn/v2 v2.2.1
  • github.com/stbenjam/no-sprintf-host-port v0.1.1
  • github.com/stretchr/objx v0.5.0
  • github.com/stretchr/testify v1.8.1
  • github.com/subosito/gotenv v1.4.1
  • github.com/t-yuki/gocover-cobertura v0.0.0-20180217150009-aaee18c8195c
  • github.com/tdakkota/asciicheck v0.1.1
  • github.com/tetafro/godot v1.4.11
  • github.com/timakin/bodyclose v0.0.0-20221125081123-e39cf3fc478e
  • github.com/timonwong/loggercheck v0.9.3
  • github.com/tomarrell/wrapcheck/v2 v2.8.0
  • github.com/tommy-muehle/go-mnd/v2 v2.5.1
  • github.com/ultraware/funlen v0.0.3
  • github.com/ultraware/whitespace v0.0.5
  • github.com/uudashr/gocognit v1.0.6
  • github.com/yagipy/maintidx v1.0.0
  • github.com/yeya24/promlinter v0.2.0
  • gitlab.com/bosi/decorder v0.2.3
  • go.uber.org/atomic v1.7.0
  • go.uber.org/multierr v1.6.0
  • go.uber.org/zap v1.17.0
  • golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e
  • golang.org/x/exp/typeparams v0.0.0-20221208152030-732eee02a75a
  • golang.org/x/mod v0.7.0
  • golang.org/x/sync v0.1.0
  • golang.org/x/sys v0.4.0
  • golang.org/x/text v0.6.0
  • golang.org/x/tools v0.5.0
  • google.golang.org/protobuf v1.28.0
  • gopkg.in/ini.v1 v1.67.0
  • gopkg.in/yaml.v2 v2.4.0
  • gopkg.in/yaml.v3 v3.0.1
  • honnef.co/go/tools v0.4.0
  • mvdan.cc/gofumpt v0.4.0
  • mvdan.cc/interfacer v0.0.0-20180901003855-c20040233aed
  • mvdan.cc/lint v0.0.0-20170908181259-adc824a0674b
  • mvdan.cc/unparam v0.0.0-20221223090309-7455f1af531d
tools/go.sum go
  • 800 dependencies
.github/workflows/binary-release.yml actions
  • actions/checkout 8e5e7e5ab8b370d6c329ec480221332ada57f0ab composite
  • actions/setup-go 4d34df0c2316fe8122ab82dc22947d607c0c91f9 composite
  • goreleaser/goreleaser-action f82d6c1c344bcacabba2c841718984797f664a6b composite