The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for open source developers.

OpenSSF Scorecard - Security health metrics for Open Source - ossf/scorecard

A Python-based CLI tool designed to scan GitLab projects for compliance against the CIS GitLab Benchmark. Check out the recommendations-as-code...

The Center for Internet Security (CIS) has published a series of benchmarks for Microsoft products and services

Learn why CIS Benchmarks matter, how the CIS GitLab Benchmark was created, and how to use it to properly secure your GitLab installation.