Welcome!

The OpenSSF Security Metrics Project was created to collect, aggregate, analyze, and communicate relevant security data about open source projects. It leverages existing data sources, including various OpenSSF projects and data available through public APIs.

This project should be considered "early alpha" quality. Features may change at any time, the system may become unavailable, and URLs may change. It is not ready for anything more than early testing.

To get started, search for a project in the form below, jump straight to the dashboard, or try out a few projects like rrostt/use-hash, expressjs/timeout, curl/curl, kubernetes/kubernetes, or nodejs/node .