🥸Project Maturity Tiers (2025)

Note: This process is currently underway where the OSO is working with the individual projects teams to validate results, so some project ratings are subject to change. Only 66 repos have been analyzed with more to follow.

Executive Summary

This evaluation reviews the maturity of 66 public repositories maintained under our organization. Each repository was assessed across three critical domains: Documentation, Technical Infrastructure, and Health & Sustainability. Evaluations were derived from both internal metrics and live GitHub data, ensuring an objective and up-to-date analysis.

🔍 Key Findings:

• 48.5% of repositories are classified as Mature, representing stable, governed, and actively used codebases.

• 19.7% are in the Growth phase, showing strong potential but requiring investment in governance and contributor onboarding.

• 21.2% are in Maintenance, continuing to serve important roles with limited active development.

• 10.6% remain in Incubation, needing structure, documentation, and clearer project goals.

🎯 Evaluation Process:

Each project was scored on:

• Documentation completeness (README, governance, templates)

• Technical soundness (CI/CD, testing, linting, security)

• Project health (GitHub metrics: stars, forks, contributors, governance presence)

Final maturity ratings aligned closely with official designations from the governance team. Where discrepancies existed, manual review accounted for internal priorities or strategic value not visible in public metrics.

✅ Outcome:

This assessment provides a clear view of our open source project landscape. It identifies areas for targeted investment, highlights projects ready for promotion, and flags those requiring consolidation or archival. These insights form the basis for prioritizing resourcing and community engagement in our open source strategy.

Introduction and Purpose

With Cardano’s source code made available as open-source software, Intersects Open Source Office holds an important responsibility to ensure that proper governance is in place alongside healthy development processes. As the engineering teams we support, contribute to and maintain a growing portfolio of public repositories, it becomes increasingly important to ensure these projects are actively governed, aligned with organizational goals, and supported appropriately based on their lifecycle stage.

This report delivers a structured, cross-functional evaluation of all 66 public repositories under our GitHub presence. The evaluation was commissioned by the Open Source Committee to answer key questions:

• Which projects are stable and production-ready?

• Which are still emerging and need investment in maturity?

• Which are entering a phase of decline, deprecation, or archival?

The assessment aims to provide transparency into the current state of each repository and offer a decision-making framework that supports sustainability, efficiency, and strategic alignment across the open source portfolio. By combining automated technical analysis, documentation audits, and live GitHub metrics with internal knowledge of each project’s intent and ecosystem role, this evaluation gives a comprehensive view of our open source landscape.

Beyond reporting, this work is intended to initiate a sustainable rhythm of lifecycle review and project planning. It helps stakeholders across product, engineering, security, and community functions to identify:

• Projects that deserve investment and visibility,

• Initiatives that require corrective action or clearer ownership

• Legacy components that may be candidates for sunsetting or archival.

Ultimately, the purpose of this assessment is to bring structure, fairness, and forward-thinking strategy to the way we manage our public codebases—ensuring our open source efforts remain high-quality, discoverable, secure, and valuable to both internal teams and the broader ecosystem.

2. Evaluation Methodology

The evaluation of each repository was conducted using a multi-dimensional framework designed to reflect the operational health, sustainability, and readiness of open source projects. The methodology integrates both quantitative indicators (e.g., commit activity, file presence) and qualitative signals (e.g., governance maturity, ecosystem role), while incorporating official designations from internal stakeholders.

Repositories were scored independently across three primary dimensions:

2.1 Documentation Maturity (0–9 Points)

The presence and completeness of essential open source documentation was assessed for each repository. These criteria were derived from widely accepted best practices and community standards.

Evaluation Criteria:

• README.md: Overview of the project’s purpose, installation, and usage.

• LICENSE: Indicates the terms of reuse and distribution.

• CONTRIBUTING.md: Guidelines for contributing code or reporting issues.

• SECURITY.md: Describes security contact processes and disclosure policies.

• CODE_OF_CONDUCT.md: Defines behavioral expectations for contributors.

• Issue and Pull Request Templates: Promotes consistency in contributions and maintenance.

• Setup & Configuration Instructions: Enables reproducibility and usability.

Each file or component present earned one point for mandatory files, and 0.5 points for having recommended files, contributing to a maximum score of 7. Projects missing several of these components typically reflect lower accessibility and onboarding friction, which impacts community growth.

2.2 Technical Infrastructure Maturity (0–18 Points)

This dimension evaluates the engineering robustness of each repository based on practical software development and DevSecOps practices. The criteria are derived from the internal Technical Assessment Criteria used by engineering teams and adapted for consistency across all public repositories.

Each project was scored across multiple sub-areas of infrastructure maturity, with a total possible score of 18 points. Scores reflect the presence, depth, and automation of technical practices, which collectively determine how scalable and maintainable a project is over time.

Scoring Approach

• Each repository was manually or programmatically inspected for indicators across these categories.

• Projects with partial implementations (e.g., CI enabled but tests skipped) received proportional scores.

• Repositories with visible release tags, security alert configurations, and automated workflows earned higher scores.

This methodology ensures that technical maturity is not only about the presence of tooling but its operational effectiveness and completeness.

2.3 Health & Sustainability (0–12 Points)

The health of a repository reflects its long-term viability, activity level, and readiness to sustain community contributions or internal dependency. This portion of the analysis was powered by live GitHub data, collected at the time of evaluation.

Scored Dimensions (0–2 points each):

1. Community Engagement – Stars, forks, issue/PR traffic, and evidence of external interest.

2. Governance & Leadership – Presence of CODEOWNERS, contribution policies, or governance files.

3. Succession Planning – Number and diversity of active maintainers; reliance on a single contributor.

4. Ecosystem Importance – Whether the project serves as a dependency or critical integration point.

5. Activity Trend – Recency and consistency of commits, PRs, and releases.

6. Sustainability & Risks – Visibility into long-term support, organizational sponsorship, and deprecation risk.

Scores were totaled and mapped into qualitative labels:

• Healthy (10–12): Active, sustainable, and structurally sound.

• Moderate (6–9): Viable but with limitations or improvement opportunities

• Unhealthy (0–5): At risk due to stagnation, governance gaps, or declining interest.

This data-driven approach ensured fairness and comparability across projects of different sizes and scopes.

Data Integration and Cross-Referencing

To synthesize the evaluation, each repository’s scores across the three categories were aggregated and tallied in the official maturity phase designation listed in the internal governance sheet (Tab 1, Column C). The total scored reflect as follows:

3. Results Summary

Following a comprehensive evaluation of 66 public repositories, each project was assigned a maturity phase based on combined scores across documentation quality, technical infrastructure, and health & sustainability. Official designations were further validated against live GitHub metrics and internal context from subject matter reviewers.

The final distribution of repositories across maturity phases is as follows:

Note: No repositories were officially designated as “Decline” or “Archived” in the current dataset, although some repositories scored near thresholds that could indicate future deprecation risk.

Key Observations:

• Mature repositories represent nearly half of the portfolio and tend to have active CI/CD, comprehensive test coverage, documented governance, and high community signals (stars, forks, issues). These are excellent candidates for showcasing externally or adopting as long-term maintained assets.

• Growth-phase projects demonstrated strong activity but often lacked formal governance or complete documentation. These represent high-leverage opportunities where small investments (like CONTRIBUTING files or release processes) can accelerate maturity.

• Maintenance-phase repositories showed signs of long-term use but limited ongoing contributions. Many are functionally complete or serve niche legacy roles. These should be monitored to ensure security hygiene and tagged accordingly for downstream consumers.

• Incubation-phase projects are largely in early development or were recently open-sourced. Most lacked full setup documentation, test automation, or active contributors. These require clearer ownership and development plans if they are to mature effectively.

4. Detailed Results:

Source Documents: