Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Include human friendly links for the GitHub artifacts for Signed-Releases #4030

Open
spencerschrock opened this issue Apr 15, 2024 · 1 comment
Open

Include human friendly links for the GitHub artifacts for Signed-Releases #4030

spencerschrock opened this issue Apr 15, 2024 · 1 comment
Assignees
@schaeferka
Labels
check/Signed-Releases good first issue Good for newcomers kind/enhancement New feature or request

Comments

@spencerschrock
Copy link
Contributor

Is your feature request related to a problem? Please describe.
The links provided in the Signed-Releases check go to the API.

go run main.go --repo ossf/scorecard --checks Signed-Releases --format json --show-details | jq
...
"Info: provenance for release artifact: multiple.intoto.jsonl: https://api.github.com/repos/ossf/scorecard/releases/assets/161822912"
...

Describe the solution you'd like
It would be good to link to a more human friendly (non-API) URL when referencing GitHub release artifacts.
@schaeferka
Copy link

schaeferka commented Apr 15, 2024
edited

I'd like to work on this. I'm here at OpenSSF.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@schaeferka schaeferka

Labels
check/Signed-Releases good first issue Good for newcomers kind/enhancement New feature or request
Projects
Scorecard - NEW
Status: No status
Milestone
No milestone
Development

No branches or pull requests
2 participants
@spencerschrock @schaeferka