🔴 Man United 2-0 Man City 🔵 (Premier Leage LIVE)

⏰ 65' Bryan Mbeumo ⚽️
⏰ 76' Patrick Dorgu ⚽️
—
#ManUnited #ManCity #PremierLeage #scorecard #zflixfootball ...

The @openssf #scorecard project is misleading and harmful; it reduces projects to fairly arbitrary numerical scores based purely on whether they're using tools the scorecard authors are familiar with. For example, it doesn't recognize ruff for python projects.

E.g. https://deps.dev/ displays this information.

🔖 The latest issue of my #newsletter is out, issue 010.

Stories from reviving #Expressjs & reimagining #Lodash, secure publishing on #npm, why #OSS doesn’t fail because of code, backlog updates & #OpenSSF #Scorecard ✨

https://blog.ulisesgascon.com/newsletter-issue-10

Just shipped a new newsletter to my GitHub Sponsors! 🎁

This one includes my latest talk, secure publishing research, #Expressjs updates, #OSSF #Scorecard improvements, and a bunch of ecosystem news.

It will be public soon, but you can read it early and support my OSS work here:
https://github.com/sponsors/UlisesGascon

🚀 Great news!

#Netlify deployments for @openssf #scorecard are running smoothly and PR preview environments are fully live 🎉

It’s the perfect time to get involved. We have plenty of good-first-issues and help-wanted items ready for you: https://github.com/ossf/scorecard-webapp/issues?q=sort%3Aupdated-desc+state%3Aopen+label%3A%22help+wanted%22

Your contributions are welcome. Come build with us ❤️‍🔥

🚀 Recent #Lodash updates focus on stronger #CI & #security posture!

✅ CI support expanded (Node 4 → 25)

🌐 New browser tests via #Playwright

📝 Docs now have dedicated CI

🔒 Added #OpenJS #CNA escalation policy

📊 Reporting #OSSF #Scorecard

🧯 New Incident Response Plan (#IRP)

🧠 Threat Model inspired by #Express & #Webpack

More details: https://blog.ulisesgascon.com/the-future-of-lodash