Compute dependency stack quality scores for repositories
Opened this issue · 8 comments
Is your feature request related to a problem? Please describe.
As a user of the Thoth GitHub action, I would like to have an overview of my dependencies quality available as a global score and/or multiple scores covering scorecards checks and other quality metrics computed with Thoth's recommendations, displayed as a result of a CI check and eventually on a badge to pin on the landing page of my repository.
Describe the solution you'd like
- Find relevant scores to compute with regards to dependencies health and to the information available in Thoth's knowledge base
and
Provide these dependency stack quality scores to display:
- On a CI check result as a comment on the corresponding pull request. This way, information about dependencies quality will be more visible to users, as they will not need to look at workflow results in the Actions section
- As badges on the main page of the repository with scores for dependencies quality.
Describe alternatives you've considered
Leave the results of the recommendations in the workflow logs.
/kind feature
@mayaCostantini: The label(s) kind/feature cannot be applied, because the repository doesn't have them.
In response to this:
/kind feature
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.
/assign
/kind feature
/sig stack-guidance
/priority critical-urgent
/remove priority-critical-urgent
/priority backlog
Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.
If this issue is safe to close now please do so with /close.
/lifecycle stale
/remove-lifecycle stale
/lifecycle frozen