Verify any public GitHub repo. Free.
Paste a GitHub URL. Get a Trust Score (0–100) across security, code quality, license clarity, and completeness in about 30 seconds. No signup. Embed the badge in your README — it links back to a public verification report you (or anyone) can audit.
What gets scored
Four dimensions. Weighted by what your repo is.
Security
OWASP-pattern review, hardcoded-secret detection, unsafe-eval/SSRF/injection patterns. AI-driven on top of deterministic checks.
Quality
Documentation coverage, code style consistency, test presence, modular structure. Idioms scored per primary language.
License
SPDX detection (deterministic floor) + review of README claims vs. license text. Catches hidden commercial restrictions.
Completeness
Asset-class specific. MCP servers checked for mcpName + tool schemas. KiCad checked for schematic + PCB pair + BOM. CAD checked for parametricity. ML models checked for cards.
What you get
A public report page + an embeddable badge.
- Public report at
archimedes.market/r/owner/repo— score breakdown, findings, repo metadata, JSON-LD entity for AI search. - Shields.io-style badge to drop into your README. Every README view is a permanent backlink to the verification page.
- Detailed findings — Maintainer claims the listing (GitHub OAuth, 30 seconds) to see file:line citations + recommended fixes.
- Matched bounties — Verified engineers get recommended for Archimedes bounties that fit their skill profile.
Example: how the badge embeds
[](https://archimedes.market/r/owner/repo)Drops into any README. Three styles via ?style=flat, ?style=for-the-badge, or ?style=plastic.
How is this different from OpenSSF Scorecard / Snyk Advisor?
OpenSSF + Snyk score security on generic OSS — they're excellent for it. Archimedes scores across security plus completeness specific to your asset class — MCP servers, KiCad PCB designs, OpenSCAD/CADQuery models, and ML model cards. We also tie verified work to a marketplace where you can earn money. Different angle, complementary not competing.