hashgraph-online/hol-guard: Grade A (99/100)

/ 100

GradeA

Polished and well engineered. Punching above its star count.

AI antivirus for developer agents: protect Codex, Claude Code, Cursor, Gemini, OpenCode, plugins, skills, MCP servers, and AI harnesses before tools run.

Documentation97

Engineering100

Health100

Python375Othertoday

Outstanding. A score of 99/100 puts this repo in a very small tier of truly well-engineered projects.

Documentation

0 checks need work

Install and run instructions9pt

README documents how to install the project.

README12pt

100

README is present.

License6pt

100

Licensed under Other.

Contributing guide5pt

100

Contributing guide is detailed and thorough.

Engineering

100

0 checks need work

Tests18pt

100

Test files detected (dashboard/e2e/policy-cloud-exceptions-states.spec.ts).

CI/CD14pt

100

CI is configured (.github/workflows/ci.yml).

Linting and formatting5pt

100

Linter or formatter configured ([tool.ruff] / [tool.black] in pyproject.toml).

Reproducibility6pt

100

Lockfile present (requirements.txt). Installs are reproducible.

Issue and PR templates6pt

100

Issue or PR templates present.

Project health

100

0 checks need work

Dependency manifest6pt

100

Dependency manifest found (pyproject.toml).

Repository metadata5pt

100

Repository has a description.

Activity5pt

100

Actively maintained (pushed within the last month).

Housekeeping3pt

100

.gitignore present.

Repository health signals

Activity, community, and responsiveness at scan time

Activity

-
Commits (30d / 90d)
7
Forks
949
Releaseslatest 2mo ago

Community

-
Community health
-
authors own >50% of commits
375
Watchers

Responsiveness

15d 18h
Median issue response
<1h
Median PR merge time
71
Open issues

Repository files24 root entries

.clusterfuzzlite
Good: Environment pinned via .clusterfuzzlite/Dockerfile.
.factory
.github
Good: CI is configured (.github/workflows/ci.yml).
Good: Dependabot covers 3 ecosystems (pip, github-actions, docker). Dependencies stay current.
Good: Issue or PR templates present.
action
dashboard
Good: Test files detected (dashboard/e2e/policy-cloud-exceptions-states.spec.ts).
docs
fuzzers
schemas
scripts
src
tests
.dockerignore
.gitignore
Good: .gitignore present.
.pre-commit-hooks.yaml
CONTRIBUTING.md
Good: Contributing guide is detailed and thorough.
Good: Contributing guide includes setup/install instructions.
Good: Contributing guide describes code style expectations.
Good: Contributing guide explains how to run tests.
Good: Contributing guide describes the PR/review workflow.
Good: Contributing guide includes code examples.
docker-requirements.txt
Dockerfile
LICENSE
Good: Licensed under Other.
PRODUCT.md
pyproject.toml
Good: Dependency manifest found (pyproject.toml).
README.md
Good: README is present.
Good: README is well structured with multiple sections.
Good: README includes screenshots or visuals. Great for first impressions.
Good: README has code examples.
Good: README links to a live demo or deployed app.
Good: README includes status badges.
Good: README documents how to install the project.
Good: README documents how to run the project.
requirements.txt
Good: Lockfile present (requirements.txt). Installs are reproducible.
SECURITY.md
Good: Security policy present.
uv.lock