dmtf/libspdm: Grade F (48/100)

dmtf/libspdm

/ 100

Documentation82

Engineering19

Health68

C180BSD-3-Clause1d ago

Grade a repo

Getting noticed, but rough fundamentals could turn visitors away.

DMTF's Reference Implementation of SPDM

Documentation

0 checks need work

README12pt

README is present.

Contributing guide5pt

Contributing guide is detailed and thorough.

Install and run instructions9pt

README documents how to install the project.

License6pt

100

Licensed under BSD-3-Clause.

Engineering

5 checks need work

Tests18pt

No tests detected anywhere in the repository.

→ Add automated tests. They prove the code works and give contributors confidence to make changes.

Linting and formatting5pt

No linter or formatter config found.

→ Add a linter config such as .eslintrc.json, .prettierrc, ruff.toml, or .golangci.yml to enforce consistent code style.

Issue and PR templates6pt

No issue or PR templates found (−100 pts).

→ Add .github/ISSUE_TEMPLATE/ with bug_report.md and feature_request.md to guide contributors. It dramatically improves issue quality.

Reproducibility6pt

No dependency lockfile found (−70 pts).

→ Commit the lockfile for this project's package manager so installs produce the same dependency versions everywhere.

CI/CD14pt

CI is configured (.github/workflows/build.yml).

Project health

1 checks need work

Dependency manifest6pt

No dependency manifest detected at root.

→ Add a manifest (package.json, pyproject.toml, Cargo.toml, go.mod, etc.) so others can install dependencies in one command.

Repository metadata5pt

100

Repository has a description.

Activity5pt

100

Actively maintained (pushed within the last month).

Housekeeping3pt

100

.gitignore present.

Repository health signals

Activity, community, and responsiveness at scan time

Activity

—
Commits (30d / 90d)
156
Forks
18
Releaseslatest 2y ago

Community

—
Community health
—
authors own >50% of commits
180
Watchers

Responsiveness

5d 12h
Median issue response
8d 11h
Median PR merge time
126
Open issues

Repository files17 root entries

.github
Good: CI is configured (.github/workflows/build.yml).
Good: Dependabot configured for github-actions.
doc
include
library
os_stub
script
unit_test
Good: Environment pinned via unit_test/fuzzing/oss-fuzz_conf/Dockerfile.
.gitignore
Good: .gitignore present.
.gitmodules
.uncrustify.cfg
CMakeLists.txt
CONTRIBUTING.md
Good: Contributing guide is detailed and thorough.
Issue: Contributing guide lacks a setup section (−12 pts).Fix: Show new contributors how to get a local dev environment running.
Issue: Contributing guide lacks a code style section (−8 pts).Fix: Describe your linting/formatting rules and how to run them.
Issue: Contributing guide lacks a testing section (−8 pts).Fix: Show contributors how to run the test suite (e.g. npm test, pytest, cargo test).
Good: Contributing guide describes the PR/review workflow.
Good: Contributing guide includes code examples.
libspdm.pc.in
LICENSE.md
Good: Licensed under BSD-3-Clause.
README.md
Good: README is present.
Good: README is well structured with multiple sections.
Issue: No screenshots or images in the README (−20 pts).Fix: Add a GIF, screenshot, or logo image. It is the fastest way to show what your project does.
Good: README has code examples.
Good: README links to a live demo or deployed app.
Issue: No status badges in the README (−10 pts).Fix: Add CI/build status badges from shields.io or your CI provider to signal project health.
Good: README documents how to install the project.
Good: README documents how to run the project.
SECURITY.md
Good: Security policy present.
VERSION.md