{"id":13509322,"url":"https://github.com/alibaba/hybridnet","last_synced_at":"2025-10-14T08:46:53.967Z","repository":{"id":37461392,"uuid":"372485175","full_name":"alibaba/hybridnet","owner":"alibaba","description":"Make underlay and overlay network can coexist, communicate, even be transformed purposefully.","archived":false,"fork":false,"pushed_at":"2024-09-18T07:06:50.000Z","size":128385,"stargazers_count":259,"open_issues_count":14,"forks_count":36,"subscribers_count":10,"default_branch":"main","last_synced_at":"2025-03-30T13:35:21.943Z","etag":null,"topics":["bgp","cni","cni-plugin","container","hybrid-cloud","kubernetes","kubernetes-networking","networking","overlay-network","sdn","vlan","vxlan"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/alibaba.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-05-31T11:37:46.000Z","updated_at":"2025-03-17T16:45:02.000Z","dependencies_parsed_at":"2024-04-18T11:55:54.051Z","dependency_job_id":"9436c9de-c71f-4272-8cfc-37ff5494742d","html_url":"https://github.com/alibaba/hybridnet","commit_stats":{"total_commits":537,"total_committers":10,"mean_commits":53.7,"dds":0.4972067039106145,"last_synced_commit":"b847fd2505c05ec4f48c4d387f511401fb6b4f0b"},"previous_names":["oecp/rama"],"tags_count":68,"template":false,"template_full_name":null,"purl":"pkg:github/alibaba/hybridnet","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alibaba%2Fhybridnet","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alibaba%2Fhybridnet/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alibaba%2Fhybridnet/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alibaba%2Fhybridnet/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/alibaba","download_url":"https://codeload.github.com/alibaba/hybridnet/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alibaba%2Fhybridnet/sbom","scorecard":{"id":183675,"data":{"date":"2025-08-11","repo":{"name":"github.com/alibaba/hybridnet","commit":"64b295a2c7f2c09de48b52c421deac24110fb2c7"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.8,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/build.yml:1","Warn: no topLevel permission defined: .github/workflows/check.yml:1","Warn: no topLevel permission defined: .github/workflows/helm.yml:1","Warn: no topLevel permission defined: .github/workflows/release.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact helm-chart-0.6.9 not signed: https://api.github.com/repos/alibaba/hybridnet/releases/151717785","Warn: release artifact helm-chart-0.6.8 not signed: https://api.github.com/repos/alibaba/hybridnet/releases/124529080","Warn: release artifact helm-chart-0.6.7 not signed: https://api.github.com/repos/alibaba/hybridnet/releases/122145236","Warn: release artifact helm-chart-0.6.9 does not have provenance: https://api.github.com/repos/alibaba/hybridnet/releases/151717785","Warn: release artifact helm-chart-0.6.8 does not have provenance: https://api.github.com/repos/alibaba/hybridnet/releases/124529080","Warn: release artifact helm-chart-0.6.7 does not have provenance: https://api.github.com/repos/alibaba/hybridnet/releases/122145236"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/build.yml:45"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/build.yml:56: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/build.yml:79: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/build.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/check.yml:42: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:70: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/check.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:81: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:83: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/check.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/check.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/helm.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/helm.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/helm.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/helm.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/helm.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/helm.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release.yml:24: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:32: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release.yml:63: update your workflow using https://app.stepsecurity.io/secureworkflow/alibaba/hybridnet/release.yml/main?enable=pin","Warn: containerImage not pinned by hash: Dockerfile.amd64:1","Warn: containerImage not pinned by hash: Dockerfile.amd64:31","Warn: containerImage not pinned by hash: Dockerfile.amd64:80: pin your Docker image by updating alpine:3.14 to alpine:3.14@sha256:0f2d5c38dd7a4f4f733e688e3a6733cb5ab1ac6e3cb4603a5dd564e5bfb80eed","Warn: containerImage not pinned by hash: Dockerfile.arm64:1","Warn: containerImage not pinned by hash: Dockerfile.arm64:31","Warn: containerImage not pinned by hash: Dockerfile.arm64:80: pin your Docker image by updating arm64v8/alpine:3.14 to arm64v8/alpine:3.14@sha256:170208aa3b6aa675792bbfca6cf8abacf15dba2b5a3d5cdf43e911869aa51766","Info:   0 out of  19 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of  16 third-party GitHubAction dependencies pinned","Info:   0 out of   6 containerImage dependencies pinned","Info:   2 out of   2 goCommand dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"34 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2024-3124 / GHSA-6rqv-5cg7-m4x3","Warn: Project is vulnerable to: GO-2025-3631 / GHSA-7m35-vw2c-696v","Warn: Project is vulnerable to: GO-2025-3633 / GHSA-c5jg-wr5v-2wp2","Warn: Project is vulnerable to: GO-2025-3630 / GHSA-hqhq-hp5x-xp3w","Warn: Project is vulnerable to: GO-2025-3632 / GHSA-mfvv-mgf6-q25r","Warn: Project is vulnerable to: GO-2023-1571 / GHSA-vvpx-j8f3-3w6h","Warn: Project is vulnerable to: GO-2023-1988 / GHSA-2wrh-6pvc-2jm9","Warn: Project is vulnerable to: GO-2023-2102 / GHSA-4374-p667-p6c8","Warn: Project is vulnerable to: GO-2023-2153 / GHSA-m425-mq94-257g / GHSA-qppj-fm5r-hxr3","Warn: Project is vulnerable to: GO-2024-2687 / GHSA-4v7x-pqxf-cx7m","Warn: Project is vulnerable to: GO-2024-3333","Warn: Project is vulnerable to: GO-2025-3503 / GHSA-qxp5-gwg8-xv66","Warn: Project is vulnerable to: GO-2025-3595 / GHSA-vvgc-356p-c3xw","Warn: Project is vulnerable to: GO-2025-3488 / GHSA-6v2p-p543-phr9","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37","Warn: Project is vulnerable to: GO-2023-2159 / GHSA-35c7-w35f-xwgh","Warn: Project is vulnerable to: GO-2023-1864 / GHSA-xc8m-28vv-4pjc","Warn: Project is vulnerable to: GO-2023-1892 / GHSA-cgcv-5272-97pr","Warn: Project is vulnerable to: GO-2023-1891 / GHSA-qc2g-gmh6-95p4","Warn: Project is vulnerable to: GO-2023-2330 / GHSA-7fxm-f474-hf8w","Warn: Project is vulnerable to: GO-2023-2170 / GHSA-q78c-gwqw-jcmc","Warn: Project is vulnerable to: GO-2023-2341 / GHSA-hq6q-c2x6-hmch","Warn: Project is vulnerable to: GO-2022-0983 / GHSA-f9jg-8p32-2f55","Warn: Project is vulnerable to: GO-2024-3277 / GHSA-h7wq-jj8r-qm7p","Warn: Project is vulnerable to: GO-2024-2746 / GHSA-pxhw-596r-rwq5","Warn: Project is vulnerable to: GO-2024-2994 / GHSA-82m2-cv7p-4m75","Warn: Project is vulnerable to: GO-2024-3286 / GHSA-27wf-5967-98gx","Warn: Project is vulnerable to: GO-2025-3522 / GHSA-vv39-3w5q-974q","Warn: Project is vulnerable to: GO-2025-3465 / GHSA-jgfp-53c3-624w","Warn: Project is vulnerable to: GO-2025-3521 / GHSA-3wgm-2gw2-vh5m","Warn: Project is vulnerable to: GHSA-74j8-88mm-7496","Warn: Project is vulnerable to: GHSA-j9wf-vvm6-4r9w","Warn: Project is vulnerable to: GHSA-vw47-mr44-3jf9","Warn: Project is vulnerable to: GO-2025-3547"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-16T19:21:55.254Z","repository_id":37461392,"created_at":"2025-08-16T19:21:55.254Z","updated_at":"2025-08-16T19:21:55.254Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279018301,"owners_count":26086345,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-14T02:00:06.444Z","response_time":60,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bgp","cni","cni-plugin","container","hybrid-cloud","kubernetes","kubernetes-networking","networking","overlay-network","sdn","vlan","vxlan"],"created_at":"2024-08-01T02:01:06.167Z","updated_at":"2025-10-14T08:46:48.941Z","avatar_url":"https://github.com/alibaba.png","language":"Go","funding_links":[],"categories":["Go","StandAlone Projects","sdn"],"sub_categories":[],"readme":"# Hybridnet\n\n[![Go Report Card](https://goreportcard.com/badge/github.com/alibaba/hybridnet)](https://goreportcard.com/report/github.com/alibaba/hybridnet)\n[![Github All Releases](https://img.shields.io/docker/pulls/hybridnetdev/hybridnet.svg)](https://hub.docker.com/r/hybridnetdev/hybridnet/tags)\n[![Version](https://img.shields.io/github/v/release/alibaba/hybridnet)](https://github.com/alibaba/hybridnet/releases)\n[![Artifact Hub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/hybridnet)](https://artifacthub.io/packages/search?repo=hybridnet)\n[![License](https://img.shields.io/github/license/alibaba/hybridnet)](https://www.apache.org/licenses/LICENSE-2.0.html)\n[![codecov](https://codecov.io/gh/alibaba/hybridnet/branch/main/graphs/badge.svg)](https://codecov.io/gh/alibaba/hybridnet)\n![workflow check](https://github.com/alibaba/hybridnet/actions/workflows/check.yml/badge.svg)\n![workflow build](https://github.com/alibaba/hybridnet/actions/workflows/build.yml/badge.svg)\n\nHybridnet is an open source container networking solution designed for hybrid clouds, integrated with Kubernetes and used officially by following well-known PaaS platforms\n\n- ACK Distro of Alibaba Cloud\n- AECP of Alibaba Cloud\n- SOFAStack of Ant Financial Co.\n\n\n## Introduction\n\nMost CNI plugins classify the forms of container network into two types and make them work at their own paces without connection:\n1. *Overlay*, an abstract data plane on top of host network which is usually not visible to underlying network and brings cost\n2. *Underlay*, putting container traffic \"directly\" into host network and depending on the abilities of underlying network\n\nIn hybridnet, we try to break the strict boundary of all the forms of container network with a simple design:\n1. Overlay and underlay network can be created in the same cluster\n2. If a connection has either an overlay container side (even the other side is an underlay container), it's considered an \"Overlay\" connection (without NATed). In other words, underlay containers are always connected with overlay containers directly, just like they are all overlay containers\n3. Traffic between underlay containers keeps the origin \"Underlay\" attributes. Lower costs and being visible to underlying network\n\n![datapath](/docs/images/datapath.jpeg)\n\nThe users of hybridnet can keep both *Overlay* and *Underlay* network inside a Kubernetes cluster without any concern about the connectivity, which brings a more flexible and extensible container network to orchestrate different applications.\n\nAs the foundation of hybridnet, we use \"Policy Routing\" to distribute traffic across the different data planes. The feature of \"Policy Routing\" is introduced in 2.1 version of linux kernel as a basic part of routing subsystem, which provides strong stability and compatibility. Another two docs about [hybridnet components](/docs/components.md) and [the contrast between hybridnet and other CNI implementations](/docs/other-implementations.md) can be considered as further references.\n\n## Features\n\n- [Unified topology-aware management APIs](/docs/crd.md) implemented with Kubernetes CRD\n- Support IPv4/IPv6 dual stack\n- Multiple network fabrics. VXLAN(overlay), VLAN(underlay), BGP(underlay), etc.\n- Advanced IPAM. Retaining IP for stateful workloads, topology-aware IP allocation, etc.\n- Good compatibility with other networking components (e.g., kube-proxy, cilium)\n\n## How-To-Use\n\nSee documents on [wiki](https://github.com/alibaba/hybridnet/wiki).\n\n## Compile and build\n\nClone the repository to local and `make` can build hybridnet images.\n\n## Contributing\n\nHybridnet welcome contributions, including bug reports, feature requests and documentation improvements.\nIf you want to contribute, please start with [CONTRIBUTING.md](CONTRIBUTING.md)\n\n## Contact\n\nFor any questions about hybridnet, please reach us via:\n\n- Slack: #general on the [hybridnet slack](https://hybridnetworkspace.slack.com)\n- DingTalk: Group No.35109308\n- E-mail: private or security issues should be reported via e-mail addresses listed in the [MAINTAINERS](MAINTAINERS) file\n\n## License\n\n[Apache 2.0 License](LICENSE)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Falibaba%2Fhybridnet","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Falibaba%2Fhybridnet","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Falibaba%2Fhybridnet/lists"}