{"id":13903240,"url":"https://github.com/GeekMasher/quibble","last_synced_at":"2025-07-18T00:33:49.124Z","repository":{"id":64023539,"uuid":"572686687","full_name":"GeekMasher/quibble","owner":"GeekMasher","description":"A container security tool written in Rust focusing on making security easy for compose based configurations","archived":false,"fork":false,"pushed_at":"2024-05-20T19:10:52.000Z","size":350,"stargazers_count":11,"open_issues_count":1,"forks_count":3,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-05-20T22:21:53.544Z","etag":null,"topics":["containers","docker","docker-compose","podman","podman-compose","security"],"latest_commit_sha":null,"homepage":"https://crates.io/crates/quibble/","language":"Rust","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/GeekMasher.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-11-30T20:13:33.000Z","updated_at":"2024-05-28T10:55:35.801Z","dependencies_parsed_at":"2023-12-04T14:37:03.700Z","dependency_job_id":"eb6328d9-c8ea-4c1f-8a88-123cd7360e6b","html_url":"https://github.com/GeekMasher/quibble","commit_stats":null,"previous_names":[],"tags_count":7,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fquibble","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fquibble/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fquibble/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/GeekMasher%2Fquibble/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/GeekMasher","download_url":"https://codeload.github.com/GeekMasher/quibble/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":226320960,"owners_count":17606381,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["containers","docker","docker-compose","podman","podman-compose","security"],"created_at":"2024-08-06T22:01:54.182Z","updated_at":"2024-11-25T11:31:27.298Z","avatar_url":"https://github.com/GeekMasher.png","language":"Rust","funding_links":[],"categories":["security","Point-of-use validations"],"sub_categories":["Vulnerability information exchange"],"readme":"\u003cdiv align=\"center\"\u003e\n\u003ch1\u003eQuibble\u003c/h1\u003e\n\n[![GitHub](https://img.shields.io/badge/github-%23121011.svg?style=for-the-badge\u0026logo=github\u0026logoColor=white)](https://github.com/GeekMasher/quibble)\n[![GitHub Actions](https://img.shields.io/github/actions/workflow/status/geekmasher/quibble/rust.yml?style=for-the-badge)](https://github.com/GeekMasher/quibble/actions/workflows/rust.yml?query=branch%3Amain)\n[![GitHub Issues](https://img.shields.io/github/issues/geekmasher/quibble?style=for-the-badge)](https://github.com/GeekMasher/quibble/issues)\n[![GitHub Stars](https://img.shields.io/github/stars/geekmasher/quibble?style=for-the-badge)](https://github.com/GeekMasher/quibble)\n[![Crates.io](https://img.shields.io/crates/d/quibble?style=for-the-badge)](https://crates.io/crates/quibble/)\n[![Licence](https://img.shields.io/github/license/Ileriayo/markdown-badges?style=for-the-badge)](./LICENSE)\n\n\u003c/div\u003e\n\nA container security tool written in Rust focusing on making security easy for compose based configurations.\n\n## Installing\n\n### Crates.io\n\n```bash\ncargo install quibble\n```\n\n### Cargo CLI - From source\n\n```bash\ngit clone https://github.com/GeekMasher/quibble\ncd quibble\ncargo install --path .\n```\n\n### Actions\n\n```yml\n- name: Quibble Scan\n  uses: GeekMasher/quibble@0.3.3\n```\n\n## Usage\n\nQuibble runs in many modes (more to come soon)\n\n#### Compose\n\n`compose` finds all compose files and runs a set of rules on the parsed compose files.\n\n```bash\nquibble compose --help\n```\n\nThis is a very simple util to quickly scan and detect various security or information about the compose files found in a simple view.\n\n```bash\nquibble compose --path /srv\n```\n\n![screenshot of quibble on a directory containing many different compose files](./assets/quibble-output1.jpg)\n\n## Contributing\n\nContributions are absolutely, positively welcome and encouraged!\nContributions come in many forms. You could:\n\n1. Submit a feature request or bug report as an [issue].\n2. Ask for improved documentation as an [issue].\n3. Comment on [issues that require feedback].\n4. Contribute code via [pull requests].\n\n[issue]: https://github.com/GeekMasher/quibble/issues\n[issues that require feedback]: https://github.com/GeekMasher/quibble/issues?q=is%3Aissue+is%3Aopen+label%3A%22feedback+wanted%22\n[pull requests]: https://github.com/GeekMasher/quibble/pulls\n\nWe aim to keep Quibble's code quality at the highest level. This means that any\ncode you contribute must be:\n\n- **Commented:** Complex and non-obvious functionality must be properly\n  commented.\n- **Documented:** Public items _must_ have doc comments with examples, if\n  applicable.\n- **Styled:** Your code's style should match the existing and surrounding code\n  style.\n- **Simple:** Your code should accomplish its task as simply and\n  idiomatically as possible.\n- **Tested:** You must write (and pass) convincing tests for any new\n  functionality.\n- **Focused:** Your code should do what it's supposed to and nothing more.\n\n## License\n\nAll the code in this repository is under the [MIT License](./LICENSE).\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FGeekMasher%2Fquibble","html_url":"https://awesome.ecosyste.ms/projects/github.com%2FGeekMasher%2Fquibble","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2FGeekMasher%2Fquibble/lists"}