遵循以下最佳实践的项目将能够自愿的自我认证,并显示他们已经实现了核心基础设施计划(OpenSSF)徽章。 显示详细资料
[](https://www.bestpractices.dev/projects/9124)
<a href="https://www.bestpractices.dev/projects/9124"><img src="https://www.bestpractices.dev/projects/9124/badge"></a>
Distributed Key Generation over Elliptic Curve Groups in Go.
https://github.com/dkg/blob/main/.github/CONTRIBUTING.md
All commits are signed off and PRs are blocked if the condition is not met. This condition is also mentioned here in CONTRIBUTING.md https://github.com/dkg/blob/main/.github/CONTRIBUTING.md.
https://github.com/dkg/blob/main/.github/CODE_OF_CONDUCT.md
The maturity, size, and reach of the project, as well as the fact that this repo does not present unique technology in itself and implements something that exists outside of this repo, do not justify a bigger organisation than it currently has.
The project implements something defined outside the repo, so a yearly roadmap is maybe not necessary.
https://github.com/dkg
https://github.com/bytemare/dkg
Not relevant to this package.
the software doesn't generate text intended for end-users and doesn't sort human-readable text
the project sites do not store passwords for this purpose
Upgrade use the standard "go get" and doesn't need to be further documented. Available releases can be found here https://github.com/dkg/releases
See https://github.com/dkg/issues
No vulnerabilities resolved in the last 12 months.
See https://github.com/dkg/blob/main/.github/CONTRIBUTING.md
Effective Go. https://github.com/dkg/blob/main/.github/CONTRIBUTING.md
CI includes linting using GolangCI with the following configuration: https://github.com/dkg/blob/main/.github/.golangci.yml
It's a package, no builds included.
The usual "go get".
The project can be obtained with git and used with go.
See dependency file https://github.com/dkg/blob/main/go.mod
The project uses Github's dependabot and Snyk for dependency vulnerabilities. For updates, check this https://github.com/dkg/security
Automated build, run, and vector test on each push.
All commits and PRs must validate the test suite before being accepted and merged.
Coverage is measured by the Go tooling.
Any detected errors are returned and not silenced.
Only strong and recognized algorithms can be picked, see https://github.com/dkg/blob/main/README.md
An instance can switch configurations easily, even at runtime.
All commits are signed using GPG.
https://github.com/dkg/releases.
Input data is always checked.
This is a package.
CI runs linting and security jobs, see https://github.com/dkg/blob/main/.github/workflows
Project is in memory-safe Golang
后退