CrOSSD

Towards a Critical Open-Source Software Database

CrOSSD is a research project that aims to identify important and critical open source software projects and measure their current "health" through automated analyses.

Open source software (OSS) is used in countless companies and public agencies, however, there is currently no efficient way to view or automatically check the health of OSS. The aim of CrOSSD is to assess the status quo regarding the "health" of (especially: critical) OSS projects. "Health" is to be defined by various metrics (including stability, resilience, security and compliance).

How does it work?

Quantitative & qualitative metrics are to be applied:

  • Quantitative & automated: Crawling of meta-information (e.g. contributors, commits, activity), analysis of dependencies.
  • Qualitative: sustainability/funding, activity indicators, security policies, etc.

The result of the project is a platform that offers monitoring and evaluation of the metrics of a corpus of OSS projects.

open source

OSS Health

  • Quantitative and qualitative metrics
  • Crawling of meta-information (such as contributors and commits)
  • Analysis of dependencies on other software projects
  • Sustainability and/or existing funding
  • Compliance with security policies

Results

  • Concept for assessing the health of OSS projects.
  • Platform that provides continuous monitoring and evaluation of the metrics of a corpus of OSS projects.