=============================
ScoreCode
=============================
ScoreCode is a tool for assessing the security and compliance of software projects. It
evaluates various aspects of a project's security posture and generates a scorecard to help organizations understand the security risks associated with the software.
**Features:**
- Automated security assessment
- Comprehensive scoring based on multiple criteria
- Easy integration with existing workflows
- Supports various platforms and repositories
Installation
------------
To install Scorecard, you can use pip:
.. code-block:: bash
pip install scorecode
Usage
-----
To use Scorecard, you need to call the `fetch_scorecard` function with the appropriate parameters. Below is a basic usage example:
.. code-block:: python
from scorecode.ossf_scorecard import fetch_scorecard
# Fetch the scorecard data for a specific platform org and repo
data = fetch_scorecard(platform="github.com", org="nexB", repo="scancode-toolkit")
# Print the results
print("Scoring Tool:", data.scoring_tool)
print("Scoring Tool Version:", data.scoring_tool_version)
print("Score Date:", data.score_date)
print("Score:", data.score)
print("Documentation URL:", data.scoring_tool_documentation_url)
Testing
-------
To run the tests, use pytest. Ensure that all dependencies are installed and then execute:
.. code-block:: bash
make test
Raw data
{
"_id": null,
"home_page": "https://github.com/aboutcode-org/scorecode",
"name": "scorecode",
"maintainer": null,
"docs_url": null,
"requires_python": ">=3.8",
"maintainer_email": null,
"keywords": "Scorecard, ScoreCode, OpenSSF, OSSF, Vulnerablity Analysis",
"author": "nexB. Inc. and others",
"author_email": null,
"download_url": "https://files.pythonhosted.org/packages/76/f5/a02d0c9fb01e0fa358aefcb0e7c8876d32af60f067844cf3474872cf2123/scorecode-0.0.4.tar.gz",
"platform": null,
"description": "=============================\nScoreCode\n=============================\n\nScoreCode is a tool for assessing the security and compliance of software projects. It\nevaluates various aspects of a project's security posture and generates a scorecard to help organizations understand the security risks associated with the software.\n\n**Features:**\n- Automated security assessment\n- Comprehensive scoring based on multiple criteria\n- Easy integration with existing workflows\n- Supports various platforms and repositories\n\nInstallation\n------------\n\nTo install Scorecard, you can use pip:\n\n.. code-block:: bash\n\n pip install scorecode\n\nUsage\n-----\n\nTo use Scorecard, you need to call the `fetch_scorecard` function with the appropriate parameters. Below is a basic usage example:\n\n.. code-block:: python\n\n from scorecode.ossf_scorecard import fetch_scorecard\n\n # Fetch the scorecard data for a specific platform org and repo\n data = fetch_scorecard(platform=\"github.com\", org=\"nexB\", repo=\"scancode-toolkit\")\n\n # Print the results\n print(\"Scoring Tool:\", data.scoring_tool)\n print(\"Scoring Tool Version:\", data.scoring_tool_version)\n print(\"Score Date:\", data.score_date)\n print(\"Score:\", data.score)\n print(\"Documentation URL:\", data.scoring_tool_documentation_url)\n\n\nTesting\n-------\n\nTo run the tests, use pytest. Ensure that all dependencies are installed and then execute:\n\n.. code-block:: bash\n\n make test\n",
"bugtrack_url": null,
"license": "Apache-2.0",
"summary": "A package to fetch data from OpenSSF Scorecard API",
"version": "0.0.4",
"project_urls": {
"Homepage": "https://github.com/aboutcode-org/scorecode"
},
"split_keywords": [
"scorecard",
" scorecode",
" openssf",
" ossf",
" vulnerablity analysis"
],
"urls": [
{
"comment_text": null,
"digests": {
"blake2b_256": "4d7d5ff7b97ec64920984cd8d9ed0c0f219e735b02a9d98e65b4b27811cb0fed",
"md5": "b7022c52be8412f0a68edd826f222087",
"sha256": "5aa015ced4f3a5cf89d631c43b385114ab6634dc555553f48f2a26a4679a5135"
},
"downloads": -1,
"filename": "scorecode-0.0.4-py3-none-any.whl",
"has_sig": false,
"md5_digest": "b7022c52be8412f0a68edd826f222087",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": ">=3.8",
"size": 12151,
"upload_time": "2025-07-13T03:36:56",
"upload_time_iso_8601": "2025-07-13T03:36:56.199492Z",
"url": "https://files.pythonhosted.org/packages/4d/7d/5ff7b97ec64920984cd8d9ed0c0f219e735b02a9d98e65b4b27811cb0fed/scorecode-0.0.4-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": null,
"digests": {
"blake2b_256": "76f5a02d0c9fb01e0fa358aefcb0e7c8876d32af60f067844cf3474872cf2123",
"md5": "b995ce886a2cfff84743c48240e3260d",
"sha256": "4a7b3bc4fa600ed2f26f0737e4a5b6fc445dfce8b61a4bee894495794f6cad4b"
},
"downloads": -1,
"filename": "scorecode-0.0.4.tar.gz",
"has_sig": false,
"md5_digest": "b995ce886a2cfff84743c48240e3260d",
"packagetype": "sdist",
"python_version": "source",
"requires_python": ">=3.8",
"size": 67896,
"upload_time": "2025-07-13T03:36:57",
"upload_time_iso_8601": "2025-07-13T03:36:57.437166Z",
"url": "https://files.pythonhosted.org/packages/76/f5/a02d0c9fb01e0fa358aefcb0e7c8876d32af60f067844cf3474872cf2123/scorecode-0.0.4.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2025-07-13 03:36:57",
"github": true,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"github_user": "aboutcode-org",
"github_project": "scorecode",
"travis_ci": false,
"coveralls": false,
"github_actions": true,
"requirements": [
{
"name": "attrs",
"specs": [
[
"==",
"23.2.0"
]
]
},
{
"name": "beautifulsoup4",
"specs": [
[
"==",
"4.12.3"
]
]
},
{
"name": "black",
"specs": [
[
"==",
"24.4.2"
]
]
},
{
"name": "certifi",
"specs": [
[
"==",
"2024.7.4"
]
]
},
{
"name": "charset-normalizer",
"specs": [
[
"==",
"3.3.2"
]
]
},
{
"name": "click",
"specs": [
[
"==",
"8.1.7"
]
]
},
{
"name": "commoncode",
"specs": [
[
"==",
"31.2.1"
]
]
},
{
"name": "django-environ",
"specs": [
[
"==",
"0.11.2"
]
]
},
{
"name": "idna",
"specs": [
[
"==",
"3.7"
]
]
},
{
"name": "iniconfig",
"specs": [
[
"==",
"2.0.0"
]
]
},
{
"name": "isort",
"specs": [
[
"==",
"5.13.2"
]
]
},
{
"name": "mypy-extensions",
"specs": [
[
"==",
"1.0.0"
]
]
},
{
"name": "packaging",
"specs": [
[
"==",
"24.1"
]
]
},
{
"name": "pathspec",
"specs": [
[
"==",
"0.12.1"
]
]
},
{
"name": "platformdirs",
"specs": [
[
"==",
"4.2.2"
]
]
},
{
"name": "pluggy",
"specs": [
[
"==",
"1.5.0"
]
]
},
{
"name": "pycodestyle",
"specs": [
[
"==",
"2.12.0"
]
]
},
{
"name": "pytest",
"specs": [
[
"==",
"8.3.1"
]
]
},
{
"name": "PyYAML",
"specs": [
[
"==",
"6.0.1"
]
]
},
{
"name": "requests",
"specs": [
[
"==",
"2.32.3"
]
]
},
{
"name": "saneyaml",
"specs": [
[
"==",
"0.6.0"
]
]
},
{
"name": "soupsieve",
"specs": [
[
"==",
"2.5"
]
]
},
{
"name": "text-unidecode",
"specs": [
[
"==",
"1.3"
]
]
},
{
"name": "urllib3",
"specs": [
[
"==",
"2.2.2"
]
]
}
],
"lcname": "scorecode"
}
JSON
