Skip to content

Commit

Permalink
Update 2024-11-25-业界对CICD能力评级.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@shihai1991
shihai1991 authored Dec 5, 2024
1 parent c9b0d5b commit 6dcea15
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion _posts/2024-11-25-业界对CICD能力评级.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ Synk在做安全开源安全状况调查采用了问卷调查,问卷的构成
[最佳实践徽章计划](https://www.bestpractices.dev/zh-CN),徽章有:[黄金徽章](https://www.bestpractices.dev/zh-CN/criteria/2)[白银徽章](https://www.bestpractices.dev/zh-CN/criteria/1)[通过徽章](https://www.bestpractices.dev/zh-CN/criteria/0)三种。每个奖牌都有不同的[标准要求](https://www.bestpractices.dev/zh-CN/criteria_stats),具体标准可以看[规则定义详情](https://github.com/coreinfrastructure/best-practices-badge/blob/main/criteria/criteria.yml),每个标准都有三个类别:`MUST|SHOULD|SUGGESTED`
![]({{site.baseurl}}/img/2024/Q4/20241202145002-OpenSSF-BestPractices.png)

OpenSSF对工具体系能力评级有一个统计标准,每个级别的标准要求数有一定的区别
OpenSSF对工具体系能力评级有一个统计标准,每个级别的标准要求有一定的区分度
![]({{site.baseurl}}/img/2024/Q4/20241205171954-OpenSSF等级评估标准项.png)

# [SLSA(Supply-chain Levels for Software Artifacts)](https://slsa.dev/)
Expand Down

0 comments on commit 6dcea15

Please sign in to comment.