@gregorywaynepower is this good to go now? Can you the merge conflicts?

@nyalldawson I'll handle the merge conflicts and do another pass on the OpenSSF Best Practices badge so the score isn't sitting at 22%.

@nyalldawson Merge conflicts managed, you should be good to go.

@gregorywaynepower Thanks for the updates (we now have 22% to cover instead of being at 22% 😃). About https://www.bestpractices.dev/fr/projects/1581, afaict all the official pages we handle are https (website, downloads, user manuals, APIs, plugins, github...) so there is a missing checkbox in the General group. And the URL of the website should be https.

Thanks!
Any idea why the "branch protection" doesn't show up (we should have a good score here I guess)

I just ran the the OpenSSF's CLI Tool against master at 472ce88 and your score should be an 8/10 for Branch-Protection.

Here's the new summary report and your aggregate score is 8.1/10: ScoreCardCLI_Report.txt

Along with the specifics for how you have the 8/10 score: ScoreCardCLI_Report_Branch_Protection.txt

Here's the settings they expect if you want to get a 10/10 for Branch-Protection.

I'd expect this to be more up-to-date when y'all add the OpenSSF's Scorecard GitHub action, but that'll be a separate and more involved pull-request.

@gregorywaynepower Thanks for the updates (we now have 22% to cover instead of being at 22% 😃). About https://www.bestpractices.dev/fr/projects/1581, afaict all the official pages we handle are https (website, downloads, user manuals, APIs, plugins, github...) so there is a missing checkbox in the General group. And the URL of the website should be https.

Woops, I didn't realize that the third question under Basics had an http link. I've fixed that and we're at 79%!

Thanks! Any idea why the "branch protection" doesn't show up (we should have a good score here I guess)

Sorry for taking so long on this @m-kuhn!

It looks like it may be an issue with permissions associated with the Github Action.