OssamaN7 · 40.0/100 — Rate My GitHub

01 · Roasts

8 Commits to Rule Them All

Your entire year of GitHub activity fits in a single afternoon's work. 8 commits in 12 months means you committed code less often than most people change their smoke detector batteries.

Security Tool, Insecure Practices

You write reverse shells and LFI exploits but ship them with no license, no tests, and bare `except Exception` catching everything. The attacker mindset without the defender rigor is just vibes.

CI? Never Heard of Her

0 for 3 on CI pipelines across every single repo. Even your portfolio site — a static HTML page — couldn't get a GitHub Actions workflow. At this rate, 'it works on my machine' is load-bearing infrastructure.

The Portfolio That Forgot Its README

You built an eportfolio to show off your skills and didn't add a README to explain it. The meta-irony is painful enough to deserve its own star.

Language Collector, Project Minimalist

C#, Python, HTML, CSS, Shell, SCSS — impressive language spread for someone with 3 repos. The langPcts suggest coursework breadth, not shipped products. Collect languages, not languages.

Built using

Zoral

Shadows one worker for a week, then takes over their job with zero extra setup. Behaves exactly like the original.

zoral.ai

02 · Category breakdown

Impact
25% weight
25F
Consistency
20% weight
55D
Quality
20% weight
32F
Depth
15% weight
50D
Breadth
10% weight
55D
Community
10% weight
25F

03 · Stats

365-day commit heatmap

9 active days

Less

Language distribution

7 langs

C#20%
Python17%
HTML15%
CSS14%
Shell9%
SCSS7%
Other18%

04 · Numbers

Owned repos

non-fork

Commits

last 12 months

Followers

Joined GitHub

Nov 2023

05 · Top repos

OssamaN7 /

OsXploiter

33/100

Python-based Windows reverse shell payload generator with dual-layer encryption (Base64 + AES). Small codebase (~276 KB) active since Nov 2023. No tests, CI, or license; untyped Python with basic documentation.

I20Q35D45

README

Python★ 41y ago

OssamaN7 /

eportfolio

25/100

Personal portfolio website for a CS student with unpolished HTML/CSS/JS implementation. No README, tests, CI, or documentation. Marked as work-in-progress in UI with limited architectural scope and single-purpose use case.

I15Q25D35

HTML★ 07mo ago

OssamaN7 /

LFI_Racer

23/100

One-week security tool for LFI-to-RCE exploitation. Untyped Python, no tests/CI/license, hardcoded payloads. Minimal commits in burst phase. Serves narrow security research niche but lacks depth, modularity, and production-grade craftsmanship.

I15Q35D20

README

Python★ 61y ago

06 · Timeline

Nov 20, 2023
Joined GitHub
Nov 20, 2023
Created OsXploiter
Dec 2, 2023
Created eportfolio
Apr 14, 2025
Created LFI_Racer — A tool to exploit Local File Inclusion (LFI) vulnerabilities for Remote Code Execution (RCE)
Oct 16, 2025
Most recent push to eportfolio

07 · Compare

Compare OssamaN7 against

github.com/

OssamaN7 · 6dmedian coder

08 · Rubric

How this score was produced

Overall = Σ (category × weight) + gentle top-end curve

CategoryWeightScoreContrib.

Raw total39.1

Top-end curve+0.9

Final overall40.0

Tier thresholds

S90–100Mass-producing humansA80–89Ship machineB70–79Solid engineerC60–69Getting thereD40–59README enthusiastF0–39GitHub tourist

▸ How the pipeline works

01Scrape.Pull every non-fork repo pushed in the last 90 days, plus your contribution calendar, followers, and language byte counts — straight from GitHub's REST & GraphQL APIs.
02Triage.A small model reads every repo's file tree + README and picks the 20 files per repo that actually reveal how you code.
03Grade each repo. All repos run in parallel through a fast scoring model that reads the picked files and rates each one independently on Impact, Quality, and Depth — with evidence citations.
04Aggregate. A larger reasoning model combines the per-repo scores with server-computed stats (heatmap, commit cadence, language entropy, follower count) to produce the 6-dimension profile score + roasts.
05Correct.Deterministic server-side checks enforce anchor-scale floors (e.g. a profile with 2,000+ public commits can't score 30 Consistency) and recompute the final verdict.

~90 seconds per profile, ~$0.25 in compute. Total of ~240 files read across your top-12 repos. One rating per GitHub account per day.

▸ Data sources & caveats

Heatmap & commit totals: GitHub GraphQL contributionsCollection — covers the last 365 days, includes private repos when the user has opted in (default).
Language %: byte totals across the top 30 owned non-fork repos.
Curve: a small upward nudge centered on raw score ≈ 70, capping at 100. Prevents specialists from being unfairly penalised for narrow breadth.
Anchor corrections: when server-measured signals (e.g. privateWorkLikely, multiRepoVolume, follower count) mandate a minimum category score, the aggregation step enforces it. These are signal-conditional, not identity-based floors.