How MinBZK uses GitHub.
MinBZK projects, departments, and employees using GitHub should follow the guidelines below to the best of their ability. The guidelines are applicable to both repositories and forks.
- Users have GitHub 2FA authentication turned on.
- Repository owners ensure that Dependabot and Code scanning alerts are monitored and addressed.
- Repository owners report new users and users leaving to Peter Giskes.
- Repository owners archive their repositories if they become inactive (meaning no activity for over one year, or no activity for two years if the repository is a fork of another repository).
- Repositories have a repository owner. The repository owner is a human being who works for MinBZK.
- Repositories have a
README.mdfile describing the project. TheREADME.mdmentions the repository owner and contact information for the repository owner. - Repositories have a
LICENSEfile. - Repositories comply to the CODE_OF_CONDUCT.md file accompanied with the CONTRIBUTING.md file explaining how people are invited to contribute.
- Repositories comply to the SECURITY.md file explaining the security status and point of contact for the repository.
- Repositories have Dependabot alerts turned on.
- Repositories have Code scanning alerts turned on.
- Repositories have Secret scanning alerts turned on.
- Repositories have a
publiccode.ymlfile in the root of the repository, a metadata description standard for public software in order to make the software easily discoverable. See publiccode.yml for an example. - Repositories have a
CHANGELOG.mdfile describing relevant changes to the repository contents. The changelog format is based on Keep a Changelog. See CHANGELOG.md for an example. - Repositories use Semantic Versioning to version the repository contents.
Point of contact for this repository is Peter Giskes.