Out of curiosity I've started filling https://bestpractices.coreinfrastructure.org/projects/201 for MediaWiki (core) in this Linux Foundation project on best practices for FLOSS.
I got the feeling that the criteria still need to be exposed to a bigger variety of projects: they don't seem focused, for instance, for web applications, multilingual userbases and openness/transparency/community health.
I was able to confirm 79 % of the criteria; I've had some troubles with: issue reporting SLA, test coverage evolution, static/dynamic analysis and cryptography. I suggest that the current status be documented on the relevant mediawiki.org pages, as other people may have the same questions. Hopefully it's then easy enough to update the "badges" (and if not, I see a big delete button).
Nemo