Skip to content

docs: improve documentation for GitHub Actions and CODEOWNERS policie… #770

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
codeurluce wants to merge 1 commit into
base: main
Choose a base branch
from
Open

docs: improve documentation for GitHub Actions and CODEOWNERS policie… #770

codeurluce wants to merge 1 commit into from

Conversation

@codeurluce
Copy link

@codeurluce codeurluce commented Dec 17, 2025

(Fixes #726)

This PR enhances the documentation for the actions and codeowners policies by:

  • Clearly explaining what each policy checks
  • Providing example configuration files (.allstar/actions.yaml, .allstar/codeowners.yaml)
  • Linking to upstream resources (OpenSSF Scorecard, GitHub docs)
  • Adding remediation hints and compliance references (NIST 800-53)

This unblocks orgs like @pauldoomgov from enabling these policies confidently.

@codeurluce codeurluce requested a review from a team as a code owner December 17, 2025 10:05
@dosubot dosubot bot added the size:M This PR changes 30-99 lines, ignoring generated files. label Dec 17, 2025
@codeurluce codeurluce force-pushed the improve-actions-codeowners-docs branch from d827570 to dd4ff05 Compare December 17, 2025 10:37
@github-actions
Copy link

github-actions bot commented Dec 28, 2025

This pull request has been marked stale because it has been open for 10 days with no activity

@github-actions github-actions bot added the Stale label Dec 28, 2025
jeffmendoza
jeffmendoza requested changes Jan 5, 2026
View reviewed changes
Copy link
Member

@jeffmendoza jeffmendoza left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks like there are some unbalanced quotations that mess up the rendering.

@codeurluce
docs: improve documentation for GitHub Actions and CODEOWNERS policies (
9d3fdb4 
fixes ossf#726)

Signed-off-by: Luce <codeurluce@users.noreply.github.com>
@codeurluce codeurluce force-pushed the improve-actions-codeowners-docs branch from dd4ff05 to 9d3fdb4 Compare January 5, 2026 17:49
@codeurluce
Copy link
Author

codeurluce commented Jan 5, 2026

Hi @jeffmendoza ,
Thanks for the review! I've just pushed a fix for the unbalanced backticks in the YAML code blocks.
The rendering should now be correct.

Could you please take another look when you have a moment?

Thanks!

@github-actions github-actions bot removed the Stale label Jan 6, 2026
@github-actions
Copy link

github-actions bot commented Jan 17, 2026

This pull request has been marked stale because it has been open for 10 days with no activity

@github-actions github-actions bot added the Stale label Jan 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jeffmendoza jeffmendoza jeffmendoza requested changes

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

size:M This PR changes 30-99 lines, ignoring generated files. Stale

Projects

OpenSSF Scorecard
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Better documentation for GitHub Actions and CODEOWNERS

2 participants

@codeurluce @jeffmendoza