Scoutflo Documentation
  • 🚀Welcome to Scoutflo💙
  • Overview
    • What is Scoutflo?
    • Getting Started
    • Scoutflo Architecture
    • Basic Concepts
    • Our Products
  • Our Products
    • Scoutflo Deploy
    • Scoutflo Atlas
      • About
      • Key Features
      • Scoutflo Sandbox
        • How to use
        • Available Product Sandboxes
      • Scoutflo Health Score
        • Overview
        • Key Metrics
          • Security Key Elements
          • Code Quality & Maintenance Key Elements
          • Support Key Elements
          • Community Activeness Key Elements
          • Business Readiness Key Elements
        • Calculation
        • Use case of these Scores
        • Process of Score calculation
        • FAQ
      • Product Qualification
      • Find the right product
      • Product Information and Maintenance
      • Product Stakeholders
  • Key Feature
    • Infrastructure Provisioning
      • Create a new Cluster
        • Add Credentials
        • VPC Configuration
      • Edit an existing Cluster
        • Security Scans for Cluster
      • Delete a Cluster
    • Service Deployment
      • Service Onboarding
      • Service Cost Prediction
      • Service Deployment
      • Delete a Service
    • Helm Service Deployment
      • Customized Helm Deployment
      • Open Source Helm Deployment
      • Open Source Service Catalog
      • Edit an App
      • Delete an App
    • Database Deployment
    • RBAC
      • Set Up your custom Roles
    • Workspace
    • Dora Dashboard
    • Kubernetes Dashboard
    • Notification (Coming Soon)
    • Alert Management
      • Default Alert Rules
  • Guide
    • Terraform and Scoutflo
    • AWS EKS Best Practices Guide
    • Kubernetes and Scoutflo
    • ArgoCD and Scoutflo
    • Connect your Cloud
    • Scoutflo Deploy Free Trial Cluster
    • Add-on deployments
    • Custom Configurations
    • Terminology Guide
    • Workflow Action ID
  • Integrations
    • Scoutflo Integration
    • Version Control tool
      • GitHub App
    • Container Registry
      • AWS ECR Container Registry
      • Docker Hub Container Registry
    • Slack
    • Scoutflo Add-Ons
  • Fundamentals
    • GitOps with Scoutflo
    • Container/OCI Registry
    • Monitoring
    • AWS EKS Cluster
    • List of IAM permissions for your scoutflo IAM user on AWS
  • FAQs
    • General
    • Scoutflo Atlas
    • Scoutflo Deploy
    • Scoutflo Sandbox
    • Contact Us
  • Glossary
Powered by GitBook
On this page
  1. Our Products
  2. Scoutflo Atlas
  3. Scoutflo Health Score

Key Metrics

The Scoutflo Health Score evaluates open-source products based on five key metrics:

  1. Security:

This metric evaluates the project's efforts to safeguard its code and data from external attacks and known vulnerabilities, ensuring proactive security measures during the software development process.

Criteria: Assessment of security measures ensuring the codebase's resilience against external threats and maintaining data integrity.

Scoring Mechanism:

  • High Score: Implementation of robust security measures, regular audits, and prompt resolution of identified vulnerabilities.

  • Low Score: Weak security measures, absence of regular audits, and delayed response to identified vulnerabilities.

Significance: High security underscores the codebase's integrity, protects user data, and enhances the overall trustworthiness of the project.

  1. Code Quality & Maintenance:

This metric reflects the project's maintenance practices and internal development efforts to maintain high-quality code, ensuring the stability of the product through regular updates and bug fixes.

Criteria: Evaluation of internal processes and structure to enhance code quality and ensure systematic ongoing maintenance.

Scoring Mechanism:

  • High Score: Well-maintained codebase, strict adherence to coding standards, and efficient processes for continual maintenance.

  • Low Score: Poorly maintained codebase, lack of coding standards, and neglect in ongoing maintenance.

Significance: Code quality directly influences project stability, performance, and ease of future development.

  1. Support (Responsiveness to Issues):

This metric provides an overall assessment of how well the project handles user-reported issues, engages in code review processes, and provides timely and effective support to its community, making the product more attractive and reliable.

Criteria: Examination of the internal team’s responsiveness to issues, encompassing average resolution time and the efficiency of the code review process.

Scoring Mechanism:

  • High Score: Timely issue resolution, efficient code review processes, and proactive engagement with the community.

  • Low Score: Delayed issue resolution, inefficiency in code review, and inadequate community engagement.

Significance: Responsive support enhances user satisfaction and contributes to a positive community experience.

  1. Community Activeness:

This metric assesses the project's community engagement, diversity of contributors, release frequency, and growth in the number of active contributors, reflecting the vibrancy and long-term sustainability of the project.

Criteria: Evaluation of the vibrancy and engagement level of the company’s community, considering social presence, GitHub stars, forks, active contributors, and diversity.

Scoring Mechanism:

  • High Score: Active and diverse community, robust social presence, and substantial project engagement on platforms like GitHub.

  • Low Score: Limited community engagement, weak social presence, and low GitHub activity.

Significance: A vibrant community fosters project growth, collaboration, and long-term sustainability.

  1. Business:

This metric evaluates additional commercial aspects, including the availability of a commercial cloud version, customer support, investment details, and future product roadmap, providing insights into comprehensive solutions and services offered by the project.

Criteria: Assessment of the product's readiness for business use, including factors like commercial offerings, dedicated customer support, and transparent roadmaps.

Scoring Mechanism:

  • High Score: Well-prepared for business use, clear commercial offerings, dedicated support, and a transparent roadmap.

  • Low Score: Limited commercial offerings, lack of dedicated support, and an unclear or absent roadmap.

Significance: Business readiness indicates the project's suitability for enterprise-level adoption.

Elements

The Scoutflo Health Score evaluates open-source products based on five key metrics, each comprising specific elements. These elements are -

Security

Binary Artifacts.

-

0-10

OpenSSF

Branch Protection.

-

0-10

OpenSSF

Dangerous Workflow.

-

0-10

OpenSSF

CI Tests

-

0-10

OpenSSF

Fuzzing.

-

0-10

OpenSSF

Licenses.

-

0-10

OpenSSF

Security Policy.

-

0-10

OpenSSF

Pinned Dependencies.

-

0-10

OpenSSF

Code Quality & Maintenance

Maintained.

-

0-10

OpenSSF

Code Review.

-

0-10

OpenSSF

Token Permissions.

-

0-10

OpenSSF

Vulnerabilities.

-

0-10

OpenSSF

Support

Average Issues Resolution Time Score

Days

0-10

GitHub APIs

Average Closed Issues/Total Created Issues Score

Ratio

0-10

GitHub APIs

Average Review Closing Time Score

Days

0-10

GitHub APIs

Average Reviews Closed/No. of Reviews Score

Ratio

0-10

GitHub APIs

Community Activeness

Contributors' Diversity

-

0-10

OpenSSF

Release Frequency

Days

0-10

GitHub APIs

Monthly Growth in the Number of Active Contributors, Stars, Forks, and Issues.

%

0-10

GitHub APIs

Social Links (LinkedIn, Twitter, YouTube, Mastodon)

-

YES or NO

Manually

Communication Channels (Slack, Discord, Forums, etc.)

-

YES or NO

Manually

Business Score

Commercial Cloud offerings

-

YES or NO

Manually

Investment details

-

YES or NO

Manually

Roadmap

-

YES or NO

Manually

PreviousOverviewNextSecurity Key Elements

Last updated 1 year ago