SOOS has a customizable Governance function to allow you to set specific policies to be used as criteria to check the open source code during each scan.

GitHub Attributes, Package Installs, Release Frequency, and Dependency Depth, policies allow you to set acceptability thresholds to flag packages that are in violation of any of the following criteria:

  • Maximum Defects
  • Minimum Contributors
  • Minimum Subscribers
  • Minimum Stargazers
  • Minimum Package Installs
  • Average/Minimum/Maximum Release Frequencies
  • Maximum Dependency Depth