Add Manual Annotations to Dynamic Content

README.md

@@ -57,3 +57,17 @@ npm run populate-implementations
 
 This will autopolulate the details and implementations sections of the website, respectively. So make sure to commit the changes.
 
+### Improve the content via PR(s)
+
+If you want to enhance any page, you can do so as you would in any other project (via a Pull Request, [example](https://github.com/secure-dashboards/openjs-security-program-standards/pull/9)). However, please note certain rules, as some parts of the files are dynamically generated, and your changes could be overwritten.
+
+**Rules**
+1. Metadata is added automatically. Manual additions or modifications to metadata are not allowed.
+2. You can contribute any content to any file, but avoid making changes within the sections enclosed by specific tags, as these sections are dynamically generated. For example:
+    ```plaintext
+    OK
+    <!-- DESCRIPTION:START -->
+    AVOID (AUTOMATED)
+    <!-- DESCRIPTION:END -->
+    OK
+    ```

docs/details/MFAImpersonationDefense.mdx

@@ -5,17 +5,19 @@ title: Use MFA against impersonation
 slug: /details/MFAImpersonationDefense
 ---
 
-# Use MFA against impersonation
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
+Use Multi Factor Authentication (MFA) Methods that Defend Against Impersonation when Available
+<!-- DESCRIPTION:END -->
 
-Use Multi Factor Authentication (MFA) Methods that Defend Against Impersonation when Available 
-
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -25,4 +27,4 @@ Use Multi Factor Authentication (MFA) Methods that Defend Against Impersonation
 - How To: [Github Docs](https://docs.github.com/en/authentication/securing-your-account-with-two-factor-authentication-2fa)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/PRsBeforeMerge.mdx

@@ -5,17 +5,19 @@ title: Require Pull Requests Before Merging
 slug: /details/PRsBeforeMerge
 ---
 
-# Require Pull Requests Before Merging
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: recommended
 - Active: recommended
 - Retiring: recommended
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Require Pull Requests before Merging
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -25,4 +27,4 @@ Require Pull Requests before Merging
 - How To: [Github Docs](https://docs.github.com/en/repositories/configuring-branches-and-merges-in-your-repository/managing-protected-branches/about-protected-branches#require-pull-request-reviews-before-merging)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/SSHKeysRequired.mdx

@@ -5,17 +5,19 @@ title: Use SSH Keys with Passphrases for Repository Access
 slug: /details/SSHKeysRequired
 ---
 
-# Use SSH Keys with Passphrases for Repository Access
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Use SSH keys for developer access to source code repositories and use a passphrase
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -25,4 +27,4 @@ Use SSH keys for developer access to source code repositories and use a passphra
 - How To: [Github Docs](https://docs.github.com/en/authentication/connecting-to-github-with-ssh/about-ssh)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/activeAdminsSixMonths.mdx

@@ -5,17 +5,19 @@ title: Require Active Admins in GitHub Org (Activity in 6 Months)
 slug: /details/activeAdminsSixMonths
 ---
 
-# Require Active Admins in GitHub Org (Activity in 6 Months)
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: recommended
 - Active: recommended
 - Retiring: n/a
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Github Organization Admins Should Have Activity In The Last 6 Months
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -24,4 +26,4 @@ Github Organization Admins Should Have Activity In The Last 6 Months
 - Sources: [OpenSSF SCM Best Practices](https://best.openssf.org/SCM-BestPractices/github/member/stale_admin_found.html)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/activeWritersSixMonths.mdx

@@ -5,17 +5,19 @@ title: Require Active Members with Write Access (Activity in 6 Months)
 slug: /details/activeWritersSixMonths
 ---
 
-# Require Active Members with Write Access (Activity in 6 Months)
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: recommended
 - Active: recommended
 - Retiring: n/a
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Github Organization Members with Write Permissions Should Have Activity In The Last 6 Months
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -24,4 +26,4 @@ Github Organization Members with Write Permissions Should Have Activity In The L
 - Sources: [OpenSSF SCM Best Practices](https://best.openssf.org/SCM-BestPractices/github/member/stale_member_found.html)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/adminRepoCreationOnly.mdx

@@ -5,17 +5,19 @@ title: Allow Only Admins to Create Public Repositories
 slug: /details/adminRepoCreationOnly
 ---
 
-# Allow Only Admins to Create Public Repositories
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Only Admins Should Be Able To Create Public Repositories
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -25,4 +27,4 @@ Only Admins Should Be Able To Create Public Repositories
 - How To: [Github Docs](https://docs.github.com/en/organizations/managing-organization-settings/restricting-repository-creation-in-your-organization)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/annualDependencyRefresh.mdx

@@ -5,22 +5,24 @@ title: Refresh Dependencies with Annual Releases
 slug: /details/annualDependencyRefresh
 ---
 
-# Refresh Dependencies with Annual Releases
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: n/a
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 A new release to refresh dependencies occurs at least annually
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
 - Priority Group: P14
 - Sources: [OpenSSF Best Practices Badge Passing Level [maintained]](https://www.bestpractices.dev/en/criteria?details=true&rationale=true#0.maintained)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/assignCVEForKnownVulns.mdx

@@ -5,22 +5,24 @@ title: Assign CVEs to All Known Security Vulnerabilities
 slug: /details/assignCVEForKnownVulns
 ---
 
-# Assign CVEs to All Known Security Vulnerabilities
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 All Known Security Vulnerabilities are Issued a CVE
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
 - Priority Group: P7
 - Sources: [OpenSSF Best Practices Badge Passing Level [release_notes_vulns]](https://www.bestpractices.dev/en/criteria?details=true&rationale=true#0.release_notes_vulns)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/automateDependencyManagement.mdx

@@ -5,17 +5,19 @@ title: Automate Monitoring of Outdated Dependencies
 slug: /details/automateDependencyManagement
 ---
 
-# Automate Monitoring of Outdated Dependencies
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Automated Process is Used to Monitor for and Maintain a List of Out of Date Dependencies
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -24,4 +26,4 @@ Automated Process is Used to Monitor for and Maintain a List of Out of Date Depe
 - How To: [Socket.Dev](https://socket.dev/)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/automateVulnDetection.mdx

@@ -5,17 +5,19 @@ title: Automate Dependency Vulnerability Identification
 slug: /details/automateVulnDetection
 ---
 
-# Automate Dependency Vulnerability Identification
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 An automated process to identify dependencies with publicly disclosed vulnerabilities
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -25,4 +27,4 @@ An automated process to identify dependencies with publicly disclosed vulnerabil
 - How To: [Github Docs](https://docs.github.com/en/code-security/dependabot/dependabot-security-updates/configuring-dependabot-security-updates#managing-dependabot-security-updates-for-your-repositories)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/blockWorkflowPRApproval.mdx

@@ -5,17 +5,19 @@ title: Prevent Workflows from Creating or Approving PRs
 slug: /details/blockWorkflowPRApproval
 ---
 
-# Prevent Workflows from Creating or Approving PRs
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: expected
 - Active: expected
 - Retiring: expected
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Workflows are not Allowed To Create or Approve Pull Requests
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -25,4 +27,4 @@ Workflows are not Allowed To Create or Approve Pull Requests
 - How To: [Github Docs](https://docs.github.com/en/enterprise-cloud@latest/admin/policies/enforcing-policies-for-your-enterprise/enforcing-policies-for-github-actions-in-your-enterprise#preventing-github-actions-from-creating-or-approving-pull-requests)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/ciAndCdPipelineAsCode.mdx

@@ -5,17 +5,19 @@ title: Automate CI/CD Steps in Code-Based Pipelines
 slug: /details/ciAndCdPipelineAsCode
 ---
 
-# Automate CI/CD Steps in Code-Based Pipelines
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: deferrable
 - Active: expected
 - Retiring: n/a
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 CI/CD steps should all be automated through a pipeline defined as code
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -24,4 +26,4 @@ CI/CD steps should all be automated through a pipeline defined as code
 - How To: [Github Docs](https://docs.github.com/en/actions/publishing-packages/publishing-nodejs-packages)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->

docs/details/commitSignoffForWeb.mdx

@@ -5,17 +5,19 @@ title: Enforce Commit Signoff for Web-Based Commits
 slug: /details/commitSignoffForWeb
 ---
 
-# Enforce Commit Signoff for Web-Based Commits
-
 ## Use Case
+<!-- LEVELS:START -->
 - Incubating: recommended
 - Active: recommended
 - Retiring: recommended
+<!-- LEVELS:END -->
 
+<!-- DESCRIPTION:START -->
 ## Description
-
 Github Org Requires Commit Signoff for Web-Based Commits
+<!-- DESCRIPTION:END -->
 
+<!-- DETAILS:START -->
 ## Details
 - Implementation Status: pending
 - C-SCRM: true
@@ -24,4 +26,4 @@ Github Org Requires Commit Signoff for Web-Based Commits
 - How To: [Github Docs](https://docs.github.com/en/organizations/managing-organization-settings/managing-the-commit-signoff-policy-for-your-organization#managing-compulsory-commit-signoffs-for-your-organization)
 - Created at 2024-12-07T23:06:38.197Z
 - Updated at 2024-12-07T23:06:38.197Z
-
+<!-- DETAILS:END -->