{"id":15009919,"url":"https://github.com/mareksuchanek/repocribro","last_synced_at":"2025-10-12T00:06:13.134Z","repository":{"id":50160255,"uuid":"75464275","full_name":"MarekSuchanek/repocribro","owner":"MarekSuchanek","description":"Extensible sifting tool for information from GitHub repositories","archived":false,"fork":false,"pushed_at":"2022-12-08T07:50:40.000Z","size":579,"stargazers_count":5,"open_issues_count":6,"forks_count":2,"subscribers_count":2,"default_branch":"develop","last_synced_at":"2025-10-12T00:05:14.660Z","etag":null,"topics":["community","github","project","python-3","share","sieve","web-application"],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/MarekSuchanek.png","metadata":{"files":{"readme":"README.rst","changelog":"CHANGELOG.md","contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null},"funding":{"github":"MarekSuchanek"}},"created_at":"2016-12-03T09:21:53.000Z","updated_at":"2021-01-13T11:19:01.000Z","dependencies_parsed_at":"2023-01-25T06:30:13.570Z","dependency_job_id":null,"html_url":"https://github.com/MarekSuchanek/repocribro","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"purl":"pkg:github/MarekSuchanek/repocribro","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/MarekSuchanek%2Frepocribro","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/MarekSuchanek%2Frepocribro/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/MarekSuchanek%2Frepocribro/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/MarekSuchanek%2Frepocribro/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/MarekSuchanek","download_url":"https://codeload.github.com/MarekSuchanek/repocribro/tar.gz/refs/heads/develop","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/MarekSuchanek%2Frepocribro/sbom","scorecard":{"id":89895,"data":{"date":"2025-08-11","repo":{"name":"github.com/MarekSuchanek/repocribro","commit":"66b665c5fcef6049e4d455b55b1c7e4481db1536"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":2.5,"checks":[{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Code-Review","score":0,"reason":"Found 0/20 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/main.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/MarekSuchanek/repocribro/main.yml/develop?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/main.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/MarekSuchanek/repocribro/main.yml/develop?enable=pin","Warn: containerImage not pinned by hash: Dockerfile:1: pin your Docker image by updating python:3.6 to python:3.6@sha256:f8652afaf88c25f0d22354d547d892591067aa4026a7fa9a6819df9f300af6fc","Warn: pipCommand not pinned by hash: Dockerfile:7","Warn: pipCommand not pinned by hash: Dockerfile:11","Warn: pipCommand not pinned by hash: Dockerfile:16","Warn: pipCommand not pinned by hash: .github/workflows/main.yml:28","Info:   0 out of   2 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   1 containerImage dependencies pinned","Info:   0 out of   4 pipCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'develop'","Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Vulnerabilities","score":0,"reason":"26 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: PYSEC-2022-42986 / GHSA-43fp-rhv2-5gv8","Warn: Project is vulnerable to: PYSEC-2023-135 / GHSA-xqr8-7jwr-rhp7","Warn: Project is vulnerable to: PYSEC-2023-62 / GHSA-m2qf-hxjv-5gpq","Warn: Project is vulnerable to: PYSEC-2024-60 / GHSA-jjg7-2v4v-x38h","Warn: Project is vulnerable to: GHSA-cpwx-vrp4-4pq7","Warn: Project is vulnerable to: PYSEC-2021-66 / GHSA-g3rq-g295-4j3m","Warn: Project is vulnerable to: GHSA-h5c8-rqwp-cp95","Warn: Project is vulnerable to: GHSA-h75v-3vvj-5mfj","Warn: Project is vulnerable to: GHSA-q2x7-8rv6-6q7h","Warn: Project is vulnerable to: PYSEC-2022-260 / GHSA-v973-fxgf-6xhp","Warn: Project is vulnerable to: GHSA-9hjg-9r4m-mvj7","Warn: Project is vulnerable to: GHSA-9wx4-h78v-vm56","Warn: Project is vulnerable to: PYSEC-2023-74 / GHSA-j8r2-6x86-q33q","Warn: Project is vulnerable to: GHSA-34jh-p97f-mpxf","Warn: Project is vulnerable to: PYSEC-2021-59 / GHSA-5phf-pp7p-vc2r","Warn: Project is vulnerable to: PYSEC-2023-212 / GHSA-g4mx-q9vg-27p4","Warn: Project is vulnerable to: GHSA-pq67-6m6q-mj2v","Warn: Project is vulnerable to: PYSEC-2021-108 / GHSA-q2q7-5pp4-w6pg","Warn: Project is vulnerable to: PYSEC-2023-192 / GHSA-v845-jxx5-vc9f","Warn: Project is vulnerable to: GHSA-2g68-c3qc-8985","Warn: Project is vulnerable to: GHSA-f9vj-2wh5-fj8j","Warn: Project is vulnerable to: PYSEC-2023-221 / GHSA-hrfv-mqp8-q5rw","Warn: Project is vulnerable to: PYSEC-2023-57 / GHSA-px8h-6qxv-m22q","Warn: Project is vulnerable to: GHSA-q34m-jh98-gwm2","Warn: Project is vulnerable to: PYSEC-2023-58 / GHSA-xg9f-g7g7-2323","Warn: Project is vulnerable to: PYSEC-2022-203"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 25 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-15T07:43:38.048Z","repository_id":50160255,"created_at":"2025-08-15T07:43:38.049Z","updated_at":"2025-08-15T07:43:38.049Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279009475,"owners_count":26084609,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-11T02:00:06.511Z","response_time":55,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["community","github","project","python-3","share","sieve","web-application"],"created_at":"2024-09-24T19:29:07.955Z","updated_at":"2025-10-12T00:06:13.111Z","avatar_url":"https://github.com/MarekSuchanek.png","language":"Python","funding_links":["https://github.com/sponsors/MarekSuchanek"],"categories":[],"sub_categories":[],"readme":"repocribro\n==========\n\n|license| |docs| |pypi| |requires|\n\n\nRepocribro is web application allowing users to register their GitHub repository so they can \nbe managed, searched, browsed, tested, etc. (depends on used extensions) with the site. Main \nidea is to provide simple but powerful modular tool for building groups of GitHub repositories \nwhich are developed by different users and organizations.\n\n*Cribro* means sieve in `Italian language`_ (origins in Latin word *cribrum*). This project \nprovides tool for intelligent sifting repositories, information about them and its contents.\n\nTypical use cases of Repocribro:\n\n- **Community** - repositories hub of examples / projects related to the community (methodology, \n  standards, ...)\n- **Courses** - gathering and evaluating homeworks\n\nInstallation and usage\n----------------------\n\nInstallation is done via standard way by ``setup.py`` file, alternatively you can install\nby ``pip`` but there are just major releases and bugfixed versions. You need to have Python\n3.5+ (tested with 3.5 and 3.6), all dependencies will be installed automatically.\n\n::\n\n    $ python setup.py install\n    $ repocribro --version\n    $ repocribro --help\n\nYou can also setup virtual Python environment before installation:\n\n::\n\n    $ python -venv env\n    $ . env/bin/activate\n    (env) $ python3 setup.py install\n\nFor running the application you will need to set up the configuration with GitHub client ID and\nsecret, security keys, database and so on.\n\nFor details please visit `repocribro.readthedocs.io`_.\n\nBugs, ideas, extensions and experience\n--------------------------------------\n\nIf you find any bug, get any idea or have any experience with **Repocribro** - let us know via\n`issues@GitHub`_. **Repocribro** is extensible, if you are developing any extension or have an\nidea for some new extension, let us know via `issues@GitHub`_ too. Please use a corresponding\nlabel.\n\nFor details please visit `repocribro.readthedocs.io`_ and `wiki@GitHub`_.\n\nDocker Compose\n--------------\n\nTo make use of ``docker-compose.yml``, you need to adjust configuration based on ``docker-config.example.cfg`` and also create the database:\n\n\n::\n\n    $ docker exec -it repocribro_db_1 mysql -u root -p\n    Enter password: \u003cpassword\u003e\n    mysql\u003e CREATE DATABASE repocribro;\n    mysql\u003e exit\n    Bye\n\n    $ docker exec -it repocribro_repocribro_1 repocribro db_create\n\n\n\nLicense\n-------\n\nThis project is licensed under the MIT License - see the `LICENSE`_ file for more details.\n\n.. _Italian language: https://en.wiktionary.org/wiki/cribro\n.. _repocribro.readthedocs.io: http://repocribro.readthedocs.io/en/latest/\n.. _wiki@GitHub: https://github.com/MarekSuchanek/repocribro/wiki\n.. _issues@GitHub: https://github.com/MarekSuchanek/repocribro/issues\n.. _LICENSE: LICENSE\n\n.. |license| image:: https://img.shields.io/badge/license-MIT-blue.svg\n    :alt: License\n    :target: LICENSE\n.. |docs| image:: https://readthedocs.org/projects/pyt-twitterwall/badge/?version=latest\n    :alt: Documentation Status\n    :target: http://repocribro.readthedocs.io/en/latest/?badge=latest\n.. |pypi| image:: https://badge.fury.io/py/repocribro.svg\n    :alt: PyPi Version\n    :target: https://badge.fury.io/py/repocribro\n.. |requires| image:: https://requires.io/github/MarekSuchanek/repocribro/requirements.svg?branch=develop\n     :alt: Requirements Status\n     :target: https://requires.io/github/MarekSuchanek/repocribro/requirements/?branch=develop\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmareksuchanek%2Frepocribro","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmareksuchanek%2Frepocribro","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmareksuchanek%2Frepocribro/lists"}