Refresh Dependencies with Annual Releases
Description
Ensure dependencies are refreshed through a new release at least once annually
Dashboard Inclusion
We use the column has_annualDependencyRefresh_policy from the table projects to calculate the status, this column is populated using the bulk importer. More information
Details
- Default Category: vulnerability management
- Default Priority Group: P14
- Implementation Details: It is manual (details).
- C-SCRM: true
- Sources: OpenSSF Best Practices Badge Passing Level (maintained)