github/spec-kit
application Python 84.8k stars
B
89
/ 100
Last analyzed: April 3, 2026
Dimension Scores
Individual health dimension scores for this repository
Security 85
Testing 94
Documentation 100
Architecture 100
DevOps 72
Maintenance 81
Detailed Findings
Security 85/100
✓ Security policy (SECURITY.md) Security policy found with contact info and disclosure process (1736 chars)
✗ Pinned dependencies (Actions SHA) 1/8 action refs pinned to SHA (13%) — pin actions to full commit SHA for supply-chain safety
✓ Token permissions At least one workflow uses explicit restrictive permissions
✓ Dependency update automation Using Dependabot
✓ Code ownership CODEOWNERS file found
✓ No committed .env files No .env files committed
✓ .gitignore present .gitignore found
✓ CI workflows (branch protection proxy) GitHub Actions found (likely branch protection in place)
Testing 94/100
✓ CI workflows GitHub Actions detected
✓ Test files 55 test-related file(s) found
✓ Coverage configuration Coverage/test runner config found
✓ Test runner configured Test runner configuration detected
✗ Pre-commit hooks No pre-commit hooks found
Documentation 100/100
✓ README quality README.md is 67223 chars
✓ LICENSE file License: MIT
✓ CONTRIBUTING guide Contributing guide found
✓ CHANGELOG Changelog or release notes found
✓ Documentation directory or API docs Documentation directory or API docs found
✓ Repository description Description: "💫 Toolkit to help you get started with Spec-Driven Development"
Architecture 100/100
✓ Type checking (mypy / pyright) pyproject.toml found (may contain [tool.mypy])
✓ Linter (ruff / flake8 / pylint) Linter config found
✓ Code formatter (black / ruff / yapf) Formatter config found
✓ Package structure (src/ or package layout) Python package structure found
✓ Build configuration (pyproject.toml / setup.py) Build config found
DevOps 72/100
✓ CI/CD pipeline GitHub Actions
✗ Container support (Docker) No Docker configuration
✓ Release automation Release automation configured
✓ Issue/PR templates Issue/PR templates found
✗ Deployment/Infrastructure config No deployment configuration detected
Maintenance 81/100
✓ Last commit recency Last commit 0 day(s) ago — actively maintained
✗ Open issue freshness Median open issue age: 200 day(s) — stale issues accumulating (oldest sampled: 205 days)
✓ Recent releases Latest release 0 day(s) ago (5 recent releases)
✓ Bus factor Bus factor 2 — moderate (localden, mnriem). More contributors would reduce risk.
✓ Community adoption (stars) 84,831 stars — strong community adoption
✗ Maintainer funding No FUNDING.yml found (not penalized)