ossf/security-baseline

Go 141 stars
✓ Synced 2h ago Share on X →
README badge: [![ngmi](https://ngmi.review/badge/ossf/security-baseline.svg)](https://ngmi.review/repo/ossf/security-baseline)
274 Merged PRs
6 days Avg Merge Time
2m Fastest PR
2 months Slowest PR
#471 Global Speed Rank

PR Size Analysis

Lines changed (additions + deletions) vs review outcomes. Re-sync to populate data for older PRs.

PRs by size
Avg review time (hrs)
Clean approval rate (%)

Top Reviewers

Recent Merged PRs

# Title Author Time Reviews Blocks
#477 Bump nokogiri from 1.18.9 to 1.19.1 in /docs @dependabot 7.8h 2
#479 Release 2026.02.19 @funnelfiasco 20m 4
#474 Add New Criteria - OSPS-DO-07 - Add build instructions requirement to project documentation @SecurityCRob 2 days 11
#473 Bump faraday from 2.13.4 to 2.14.1 in /docs @dependabot 9 days 2
#467 Add BSI-TR-03185-2 reference IDs to OSPS-VM.yaml @SecurityCRob 1 month 6
#466 Add BSI-TR-03185-2 references to OSPS-QA.yaml @SecurityCRob 1 month 4
#464 Update reference-ids in OSPS-GV.yaml @SecurityCRob 1 month 10
#461 Add BSI-TR-03185-2 reference IDs to OSPS-AC.yaml @SecurityCRob 1 month 8
#476 Improve the wording about mappings @funnelfiasco 1 day 7
#463 Add BSI-TR-03185-2 reference IDs to DO metadata @SecurityCRob 1 month 7
#456 feat: Update titles & objectives for brevity and consistency @eddie-knight 1 month 22
#443 Update BR-01 to split CI/CD security into 3 areas @evankanderson 2 months 11
#465 Add BSI-TR-03185-2 reference IDs to OSPS-LE.yaml @SecurityCRob 1 month 7
#441 Revise QA-04.01 to only add requirements for projects with multiple repositories @evankanderson 2 months 11
#440 Clarify distribution security requirements @evankanderson 2 months 9
#462 Add BSI-TR-03185-2 reference IDs to OSPS-BR.yaml @SecurityCRob 24 days 10
#460 Add BSI TR-03185-2 mapping reference @SecurityCRob 24 days 5
#471 Update charter reference from BEST to ORBIT Working Group @eddie-knight 15.0h 2
#459 Add BSI TR-03185-2 to frameworks.yaml @SecurityCRob 17 days 2
#470 Bump streetsidesoftware/cspell-action from 8.1.2 to 8.2.0 in the actions group @dependabot 1 day 2