README badges are vulnerabilities

TL;DR: Badges are not magic. They are just image hotlinks, and therefore you need to be able to trust the third party who serves them. Introduction Badges are those cute little colourful rectangles that you see at the top of many READMEs. They often display things like the current version

markdown - How to add SonarCloud badge on GitHub? - Stack Overflow

Doc] The Readme badges Dependency Status and devDependency

jacoco-badge-generator/README.md at main · cicirello/jacoco-badge

Add license scan badge to the README · Issue #1562 · argoproj/argo

Legitimize Your Project With Some Badge Swag

markdown - Why do GitHub workflow badges not render on Jekyll

cdk-badges - npm Package Health Analysis

Add NPM Badge to README · Issue #2 · simonepri/pidtree · GitHub

Badges - TL;DR for your repository's README - DEV Community

Sonarqube quality badges on gitlab - Stack Overflow

How to use GitHub badges to stop feeling like a noob

README badges are vulnerabilities

github - How can I add a snyk badge to my private repository