Collect, transform and export security metrics from GitHub repositories from multiple orgs into a prometheus pushgateway.
The tool aims to provide a single pane of glass for security metrics to help people overseeing the security stats for multiple open source projects.
Goal for this Hackweek
- scorecard OpenSSF
- Archive results to a GitHub repository
- Push metrics to Prometheus Push Gateway
- https://github.com/rancherlabs/watchtower (not yet public)
This project is one of its kind!