Read the original article: Developers: This is Google’s new idea for keeping your open-source projects secure
Scorecards provides an assessment of open-source packages, which developers can use to judge whether they are safe to introduce into their projects or systems.
Read the original article: Developers: This is Google’s new idea for keeping your open-source projects secure